rr33Privacy Policy

This page describes what we collect when you use rr33 and how we keep that data protected. Your privacy matters to us—we collect only what's necessary to run the platform, process your deposits and withdrawals, verify your identity, and prevent fraud. We do not sell your data to advertisers or data brokers.

When you create an account on rr33, you provide personal information: your name, email, phone number, and date of birth. When you fund your account via DANA, e-wallet, mobile banking, local payment, or your bank, payment details flow through encrypted channels to our payment partners. Before your first withdrawal, we ask for government ID, proof of address, and a selfie—this is Know Your Customer (KYC) verification, required by law to prevent money laundering.

We store all this data in encrypted databases with restricted access. We retain it for as long as your account is active, plus 5 years after closure (per financial regulations), then delete or anonymize it. This policy explains what we collect, how we use it, who has access, your rights, and how to contact us with privacy questions.

What we collect on rr33

We collect several categories of data when you use rr33. Account information includes your name, email, phone number, date of birth, username, and password hash (we never store passwords in plain text). Identity documents include your government ID, proof of address, and selfie photo—collected during KYC verification before your first withdrawal. Payment information includes your bank account number, e-wallet account details, and transaction history (deposits, withdrawals, bet amounts, game results). Device and usage data includes your IP address, device type, browser type, and pages visited—collected via cookies and server logs to detect fraud and analyze platform performance.

We also collect communication data if you contact our support team—your messages, attachments, and any personal information you share in support tickets. This helps us resolve your issue and improve our service. We do not collect biometric data beyond the selfie photo required for KYC verification.

Cookies on rr33: We use cookies to remember your login, track your session, and analyze how you use the platform. You can disable non-essential cookies in your browser settings, but this may affect your rr33 experience (e.g., you may need to log in repeatedly).

How we use your data on rr33

We use your data for specific, legitimate purposes. Account management: We use your name, email, and phone to create and manage your account, send you login links, and notify you of account activity. Payment processing: We share your bank account or e-wallet details with our payment partners (BCA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet providers) to process deposits and withdrawals. KYC verification: We use your ID, address, and selfie to verify your identity and comply with anti-money-laundering (AML) laws. Fraud prevention: We analyze your IP address, device fingerprint, and betting patterns to detect suspicious activity—account hijacking, money laundering, bonus abuse.

We also use your data to improve rr33: We analyze aggregate usage patterns (which games are popular, which payment methods are preferred) to optimize the platform. We do not use your data for marketing or advertising beyond sending you account-related emails (e.g., "Your withdrawal is processing"). We do not sell your data to third parties.

Who has access to your data on rr33

Your data is stored on our secure servers and accessed only by rr33 staff who need it to do their jobs. Our support team can view your account history, messages, and KYC documents to resolve your issues. Our compliance team can access KYC documents and transaction history to verify AML compliance. Our engineering team can access anonymized usage data (no personal identifiers) to debug platform issues and optimize performance.

We share your data with payment partners (banks and e-wallet providers) only to process your deposits and withdrawals. We share data with law enforcement only if legally required (e.g., a court order or government subpoena). We do not share your data with advertisers, data brokers, or third-party marketers. Our payment partners are bound by confidentiality agreements and data-protection laws.

Your data rights on rr33

  • You can request a copy of all data we hold about you.
  • You can request correction of inaccurate data (e.g., if your name is misspelled).
  • You can request deletion of your data after account closure (subject to legal retention requirements).
  • You can opt out of non-essential cookies in your browser settings.
  • You can contact our privacy team with any questions or concerns.

Data storage and security on rr33

We store your data in encrypted databases on secure servers. Our data centers implement physical security (locked rooms, surveillance, access logs), network segmentation (isolating player data from public-facing infrastructure), and automated backups encrypted with AES-256. We use TLS 1.3 encryption for all data in transit—your login credentials, payment details, and personal information are scrambled during transmission and unreadable to eavesdroppers.

Our servers may be located outside your jurisdiction (e.g., in Singapore or Malaysia). By using rr33, you consent to your data being transferred to and stored in these locations. These jurisdictions have data-protection laws comparable to or stricter than Indonesia's. If you do not consent to international data transfer, you should not use rr33.

Data retention on rr33

We retain your account data (name, email, phone, transaction history) for as long as your account is active. After you close your account, we retain data for 5 years to comply with financial regulations and resolve potential disputes. After 5 years, we delete or anonymize your data. KYC documents (ID, address proof, selfie) are retained for 5 years after account closure, then permanently deleted. Payment transaction records are retained for 7 years per banking regulations.

If we detect fraud or a legal dispute, we may retain relevant data longer than 5 years to investigate and resolve the matter. We will notify you if we retain your data beyond the standard retention period.

Your privacy rights and contact

You have the right to access, correct, and delete your personal data. To exercise these rights, contact our privacy team via email or in-app support. We will respond within 30 days. You also have the right to lodge a complaint with your local data-protection authority if you believe we've violated your privacy rights.

Our privacy policy may change as we update our practices or comply with new laws. We will notify you of material changes via email or in-app notification. Your continued use of rr33 after a policy update means you accept the new policy. For questions about this privacy policy or your data on rr33, contact our support team in English via in-app chat, email, or phone.

Third-party processors and international transfers

We work with third-party service providers to operate rr33. Our payment processors (banks, e-wallet providers) handle your deposit and withdrawal data. Our cloud infrastructure provider stores our databases. Our email service provider sends you account notifications. These processors are bound by confidentiality agreements and data-protection laws. We do not authorize them to use your data for their own purposes.

Your data may be transferred to and processed in jurisdictions outside Indonesia—including Singapore, Malaysia, or other countries where our infrastructure partners operate. These jurisdictions have data-protection laws; by using rr33, you consent to these transfers. If you have concerns about international data transfer, contact our privacy team before creating an account.

Children and rr33

rr33 is not intended for users under 18 years old. We do not knowingly collect data from minors. If we discover that a user is under 18, we will close their account and delete their data (subject to legal retention requirements). Parents or guardians who believe a minor has created an account on rr33 should contact our support team immediately.

Policy updates and contact information

We review this privacy policy annually and update it as needed to reflect changes in our practices or legal requirements. Material changes (e.g., new data collection practices, new third-party processors) are announced in-app with 30 days' notice. Minor clarifications (e.g., fixing typos, updating contact information) may take effect immediately. Your continued use of rr33 after a policy update means you accept the new policy.

For questions about this privacy policy, requests to access or delete your data, or concerns about how we handle your information, contact our privacy team. You can reach us via in-app support chat (available in English and regional languages), email, or phone. We will respond to privacy requests within 30 days. If you're in Jakarta, Bandung, Surabaya, Medan, or Semarang and have urgent privacy concerns, our support team can escalate your request to our compliance officer for priority review.

Trust, fairness, and account management on rr33

Platform security layers

We at rr33 protect your personal data and account credentials using industry-standard encryption and security protocols. When you log in, your username and password travel over TLS 1.3 (Transport Layer Security), an encryption standard that renders your credentials unreadable to eavesdroppers. Your password is never stored in plain text; instead, we store a one-way cryptographic hash using bcrypt, a deliberately slow algorithm that makes brute-force password guessing computationally impractical. If an attacker obtained our password database, the hashes would be unusable without centuries of computing power.

Your payment data receives additional safeguards. When you deposit via DANA, OVO, GoPay, ShopeePay, or your bank, that information is encrypted and routed through PCI-DSS-compliant payment partners—we never handle your card numbers or wallet credentials directly. Bank transfers use OAuth 2.0 tokens, allowing you to authorize transfers without exposing your banking credentials to rr33. Our data centers implement physical security (locked server rooms, surveillance, access logs), network segmentation (isolating player data from public-facing servers), and automated backups encrypted with AES-256. We maintain incident-response protocols; if a breach were detected, we would notify affected users within 72 hours per regional data-protection regulations.

Account recovery follows a secure process. If you forget your password, we verify your identity via email or SMS before allowing a reset. Two-factor authentication (2FA), when enabled via authenticator app or SMS code, adds a second proof of identity before login, protecting your account even if your password is compromised. Our support team is available to assist with account recovery emergencies via phone and email. We conduct regular third-party penetration testing to verify our defenses and identify vulnerabilities before they can be exploited.

Game fairness and RTP

At rr33, we are committed to fair gaming. All our live-dealer tables operate with published RTP (Return to Player) percentages—baccarat typically offers on Player bets and rules% on Banker bets; blackjack averages non-specific info. These percentages reflect the long-term mathematical expectation; over millions of hands, the game returns that percentage of wagered funds to players. The house margin comes from the game rules themselves, not from hidden manipulation.

Live-dealer games differ from RNG-driven slots in an important way. Our slots use certified random-number generators (tested quarterly by independent auditors like iTech Labs or GLI) that determine outcomes invisibly in milliseconds. Live-dealer games use physical randomness—card shuffles, roulette spins, dice rolls—visible in real time on video feeds. Both are mathematically fair when executed correctly, but live games offer transparency that RNG games cannot. Our dealers follow standardized procedures: cutting decks, burning cards, using certified roulette wheels and dice. We display RTP for every game title so you can compare and make informed choices.

Sports bets on rr33 settle based on official league outcomes—Liga 1, Piala AFF, ATP Tour, and esports matches (Mobile Legends, Free Fire, PUBG Mobile) all settle according to official results. Our odds are set by our trading team based on player form, head-to-head records, and market demand, not by hidden algorithms. If odds shift during a match, it reflects genuine game progress and market sentiment, not arbitrary adjustment. We maintain encrypted records of all odds changes and transaction history so disputes can be resolved transparently by reviewing historical data.

KYC verification process

Know Your Customer (KYC) verification is a legal requirement. Before you can withdraw funds from rr33, we must confirm your identity and address. This protects you (preventing account hijacking and fraud) and us (preventing money laundering and illegal funding). When you request your first withdrawal, you'll provide: a government-issued ID (KTP, driving license, or passport), proof of address (utility bill, recent bank statement, or lease agreement), and a selfie photo holding your ID.

Our automated system reads documents using optical character recognition (OCR) to extract names, ID numbers, and expiry dates, then cross-checks them against your account registration. If details align and documents appear authentic (checking for security features, correct issuer formatting, and expiry status), your account is marked "verified" within 1–2 hours. If there's a mismatch—your registered name differs from your ID, or your address documents are outdated—we send a support message requesting clarification or updated documents. The verification process is not punitive; it's a standard safeguard required by law.

Once verified, future withdrawals do not re-verify unless your account triggers an automated risk signal (e.g., sudden activity spike or withdrawal to a new bank account). We retain KYC documents in an encrypted database with restricted access. Only our compliance team can retrieve documents, and only for legitimate review. We delete documents after a retention period (typically 5 years) per regional data-protection rules. If you close your account, documents remain securely archived for the retention period in case of future disputes, then are permanently deleted.

User feedback and review channels

Feedback shapes how we improve rr33. We monitor app store reviews, social media, and community forums to identify patterns. If many users report slow withdrawals, we audit our payment partners and add faster payment rails. If users consistently mention confusing UI for live-dealer table selection, we redesign that interface. We read negative reviews honestly and respond where possible. We do not suppress or artificially boost reviews; instead, we let genuine player sentiment guide improvements.

We also track internal metrics—customer support response time, withdrawal success rate, game uptime, KYC verification speed—and publish transparency reports sporadically, sharing aggregate data on withdrawal volumes, dispute resolution times, and incident response. We do not claim industry-leading metrics; we are open about our actual performance. If you experience an issue, we encourage you to contact our support team directly before leaving a public review. Most issues resolve faster through direct communication (within minutes or hours) than through public review channels.

When reading reviews of rr33 or any gaming platform, context matters. A single bad experience might reflect a rare glitch, a user misunderstanding, or a payment-partner delay beyond our control. Patterns matter more—if many independent users report the same issue consistently, that suggests a real problem. Our support is available in English and regional languages via in-app chat, email, and phone for account recovery emergencies. We maintain a complaint log and escalation process, so repeated issues get engineering attention and are tracked toward resolution.