Reference

How bolaresmi Protects Your Personal Data

At bolaresmi, your personal data is handled with clear purpose and transparent process — we collect only what we need to operate your account, process payments via DANA…

Data collected only as neededDANA, OVO, GoPay & QRIS payment data securedYour right to access and correct dataRetention periods clearly definedContact us to request data changes
bolaresmi How bolaresmi Protects Your Personal Data
PRIVACY CONTACT CHANNELS

How to Reach Us About Your Privacy

If you have a question about how your data is stored, want to correct an error, or need to request deletion of your account information, our privacy support team is ready to…

Live Chat Reach our data support team through the live chat widget on this site, available every day from 07:00 to 23:00 WIB. A privacy case reference is issued within minutes of your first message.
Email Support Send your data access or correction request to our privacy email address at any time. We aim to respond within 3 business days and will confirm receipt with a case ID so you can track progress.
Account Settings Minor data corrections — such as updating your registered phone number or payment alias for OVO or GoPay — can be made directly inside your account settings panel without contacting support.
DATA HANDLING STANDARDS

Six Ways We Keep Your Data Safe

Your privacy is not a checkbox for us — it shapes how we build every account feature.

Encrypted Payment Data

All payment identifiers — whether tied to DANA, OVO, GoPay or QRIS — are stored using AES-256 encryption. We never display full payment account numbers in your dashboard or in support transcripts.

Cookie Management

We use session cookies to keep you logged in and analytics cookies to understand how pages are used. You can adjust cookie preferences at any time through the consent panel shown when you first visit the site.

Account Security Controls

Your account is protected by password hashing and optional two-step verification. If we detect a login from an unrecognised device or location, you receive an immediate email alert before access is granted.

Data Retention Schedule

Active account data is held for the lifetime of your account. After closure, we retain the minimum data required by applicable rules — typically no longer than 5 years — then securely delete it in full.

Third-Party Data Sharing

We share data only with payment processors (such as the rails behind GoPay and QRIS) and identity verification partners. No data is sold to advertisers. Every partner is bound by a data processing agreement.

Your Rights & How to Use Them

You have the right to access, correct, port or request deletion of your personal data where local law permits. Submit a request through live chat or email and we will action it within 3 business days, providing written confirmation.

Frequently Asked Privacy Questions

Below are the questions our account holders ask most often about how their personal data is handled at bolaresmi. If yours is not listed here, our live chat team at 07:00–23:00 WIB can give you a direct answer within minutes.

We collect your name, email, date of birth and payment identifiers for methods like DANA or OVO. We also log device ID and session data to secure your account. We collect only what is needed to run your account and process transactions.

Yes. Payment identifiers linked to DANA, GoPay, OVO and QRIS are encrypted at rest using AES-256 and never exposed in plain text in your dashboard, in support chats, or in any exported account data.

You can submit a data access request through live chat (07:00–23:00 WIB) or by email at any time. We will compile and send your data summary within 3 business days, along with a reference number to track the request.

Contact us via live chat or email with a deletion request. Where local law permits and your account is closed, we will delete your data beyond the minimum retention period required by regulations, and confirm deletion in writing.

We share data only with payment processing partners (such as those handling QRIS and GoPay transactions) and identity verification services. We do not sell your data to advertisers or unrelated third parties under any circumstances.

We hold the minimum data required by applicable regulations after account closure — typically up to 5 years. After that period, all stored personal data is securely and permanently deleted in line with our retention schedule.

We use session cookies for login continuity and analytics cookies to improve page performance. You can review and change your cookie preferences at any time via the consent panel, and opting out of analytics cookies does not affect account functionality.