momobola Platform Privacy Notice

This page describes what data we collect when you use momobola and how we keep that data protected. We take your privacy seriously — we do not sell your information to third parties, we encrypt sensitive data, and we comply with applicable data protection law in the jurisdictions where we operate.

When you create a momobola account, deposit funds via DANA or e-wallet, or withdraw your balance, we collect information necessary to verify your identity, process payments, and provide customer support. We store this data on encrypted servers and restrict access to authorized staff only. This privacy notice explains our practices in plain language.

Our data handling respects your autonomy. We do not track your behaviour across external websites, we do not share your account details with marketing partners, and we do not use your contact information for unsolicited promotions. If you have questions about this policy or wish to exercise your data rights, contact our privacy team through Account → Help.

What data we collect on momobola

Account registration and KYC verification

When you register for momobola, we collect your full name, email address, phone number, date of birth, and country of residence. We use this information to create your account and verify your identity against government records (a process called KYC, or know-your-customer verification).

We verify your phone number by sending an SMS code — you must enter this code to confirm the number belongs to you. We verify your email address by sending a confirmation link — clicking the link proves you own the email address. Once verified, we do not re-verify phone or email unless you change them.

Our KYC process cross-references your provided name and date of birth against official identity databases maintained by Indonesian government agencies. We do not store copies of your identity documents (passport, national ID card, or driver's license) — only confirmation that your details matched official records.

Payment and transaction data

When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank transfer, we collect the transaction amount, timestamp, and payment method used. We do not store your card number, mobile banking PIN, local payment password, or any other payment credential. We store only a token — a unique identifier confirming that a transaction completed — and the final amount credited to your momobola balance.

Your momobola balance is stored in our database and encrypted at rest. When you withdraw funds, we collect your withdrawal amount, destination payment method, and timestamp. We review withdrawals before processing to verify your account balance matches the requested amount and no disputes are active.

Activity and game data

We log your login times, game activity (which games you play, how long you play, results of completed games), and support interactions (messages you send to our support team, tickets you open, issues you report). This data helps us improve service reliability, identify technical problems, and respond to your support requests.

We do not sell this activity data to third parties. We use it internally to understand platform usage, monitor for fraud, and detect accounts that may have been compromised. If you participate in prediction contests during Liga 1, Piala Indonesia, or Piala AFF tournaments, we store your prediction entries and the outcomes — this lets us settle contests fairly and keep a historical record.

Data retention: We retain your account data for as long as your account is active. If you close your momobola account, we retain transaction records for seven years (required by financial regulations), then delete personal details like name and email address.

Technical and device data

When you access momobola via the Android app or iOS browser, we collect your device type (Android version, iPhone model), IP address, browser identifier, and operating system. We use this information to troubleshoot technical issues, optimize app performance, and prevent unauthorized access attempts.

We do not use device data to track your location or personal movements. Our servers log your IP address only to deliver the service and investigate security threats. If you enable push notifications, we store your notification preference and device token (a unique identifier allowing us to send notifications to your specific phone).

How we use and protect your data on momobola

Data usage and third-party processors

We use your data to operate momobola — processing deposits, settling game outcomes, managing your account, and providing customer support. We may share your data with third-party processors who help us deliver these services: payment processors (who confirm that OVO or e-wallet transactions completed), identity verification services (who cross-check your KYC details against government databases), and hosting providers (who store our encrypted servers).

All third-party processors sign data processing agreements committing them to protect your data at the same standard we do. We do not permit them to use your data for their own marketing or sell it to other companies. We choose processors carefully — if a processor is located outside Indonesia (for example, a server farm in Singapore), that processor's servers remain encrypted and subject to our access controls.

We do not share your momobola account details with external marketing companies, advertisers, or social media platforms. We do not use your email address or phone number for unsolicited marketing — we contact you only to confirm account changes, notify you of withdrawals, or respond to support requests you initiated.

Security measures on momobola

We encrypt your password using industry-standard hashing algorithms — we do not store your actual password, only a mathematical hash that we can verify against when you log in. We encrypt data in transit (between your phone and our servers) using TLS/SSL encryption — the same standard banks use.

We offer two-factor authentication (2FA) on all momobola accounts. When you enable 2FA, every login from a new device requires an SMS code sent to your registered phone number. This prevents unauthorized access even if someone obtains your momobola password.

Our servers sit in secure data centers with physical access controls, surveillance, and backup power systems. We perform regular security audits and penetration testing to identify and fix vulnerabilities. If we discover a data breach, we notify affected users within 72 hours as required by applicable law.

Your rights on momobola

You have the right to access your data — you can download a copy of all information we hold about you by requesting it through Account → Help. You have the right to correct inaccurate data — if your name is misspelled or your birth date is wrong, contact support and we'll update it. You have the right to delete your data — if you close your momobola account, we delete personal details after the seven-year regulatory retention period expires.

You have the right to object to certain uses of your data. For example, you can opt out of push notifications by toggling the setting in Account → Settings → Notifications. You can disable cookies (if you access momobola via a browser) through your browser settings, though this may limit some features.

Key data privacy points

  • We collect name, email, phone, and date of birth for account verification and KYC compliance.
  • We do not store payment credentials — only transaction tokens confirming deposits and withdrawals completed.
  • We encrypt all sensitive data and restrict staff access to authorized personnel only.
  • We do not sell your data to marketers or permit third-party processors to use it for their own purposes.
  • You can request, correct, or delete your data through Account → Help at any time.
  • If you enable two-factor authentication, every login from a new device requires SMS verification.

Cookies and tracking on momobola

When you access momobola via a browser (on desktop or iOS), we use cookies to store your login session. These cookies let you stay logged in as you navigate between pages without re-entering your password each time. We do not use cookies for tracking your behaviour outside momobola or selling data to advertisers.

You can disable cookies through your browser settings (typically Settings → Privacy → Cookies). If you disable cookies, you'll need to re-login each time you visit momobola, but your account and data remain secure. We do not use third-party tracking pixels, analytics cookies, or retargeting services that follow you across the internet.

Policy changes and contact

We may update this privacy notice to reflect changes in our practices or applicable law. We will notify you of material changes via email to your registered address at least 30 days before the changes take effect. Your continued use of momobola after the notification period indicates you accept the updated policy.

If you have questions about our privacy practices, wish to request your data, or want to exercise your rights, contact our privacy team through Account → Help. You can also email us directly — our support team will forward your request to the appropriate department. We respond to privacy requests within 14 days.

momobola operates in multiple jurisdictions where applicable data protection law may vary. Our policy reflects the highest standard across all regions where we serve — if you are in Jakarta, Surabaya, Bandung, Medan, or any other supported location, we apply the same data protection practices.