agodaPrivacy Policy

This page describes what we collect when you use agoda and how we keep that data protected. We at agoda take your privacy seriously. Our policy explains what personal information we gather, how we use it, who we share it with, and what rights you have over your data.

We collect information only when necessary to operate our platform, verify your identity, process payments, and provide customer support. Your data is encrypted in transit and at rest. We do not sell your personal information to third parties. We comply with data-protection principles and respond to your requests for access, correction, or deletion within the timeframes set by applicable law.

Read on to understand our data practices and your privacy rights on agoda.

What Data We Collect on agoda

We collect information in three categories when you use agoda. Account information includes your name, email, phone number, date of birth, and government-issued ID (KTP for Indonesian residents). Payment information includes your chosen payment method (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank details) and transaction history. Usage information includes your IP address, browser type, device type, pages visited, games played, and timestamps.

We collect account information when you register on agoda. We collect payment information when you deposit or withdraw. We collect usage information automatically through cookies and server logs. We do not collect your payment card details directly—payment processors handle that data on our behalf.

We also collect proof of address (utility bill, bank statement, or lease agreement) during account verification. This information is used only to verify your identity and comply with anti-money-laundering (AML) regulations. We delete verification documents after the retention period expires, typically within three to five years.

Verification data on agoda: We collect government ID and address proof only to verify your identity and comply with legal requirements. This data is encrypted and never shared with third parties outside our compliance partners.

How We Use Your Data on agoda

We use your data on agoda for specific purposes. Account management: We use your name, email, and phone to create and manage your account, send you transaction confirmations, and help you reset your password. Payment processing: We use your payment information to process deposits and withdrawals through our payment partners. Fraud prevention: We analyze your account activity, IP address, and transaction patterns to detect and prevent fraud.

We use your usage information on agoda to improve our platform, understand which games and features are popular, and troubleshoot technical issues. We do not use your data to profile you or make automated decisions about your account (except fraud detection). We do not sell your data to advertisers or data brokers.

We may contact you on agoda via email or SMS to notify you of account changes, security alerts, or important updates to our terms. We do not send marketing emails unless you opt in. You can manage your communication preferences in your account settings at any time.

Third Parties and Data Sharing on agoda

We share your data on agoda only with trusted partners who help us operate the platform. Payment processors (mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment) receive your payment information to process transactions. Compliance partners receive your identity information to verify your account and comply with AML regulations. Customer support tools may store your email and chat history to help us respond to your inquiries.

Our servers on agoda may be located outside Indonesia. Your data may be transferred to and stored in other countries. We ensure that any international transfer complies with data-protection standards and is protected by encryption. We do not transfer your data to countries without adequate data-protection laws unless you consent.

We do not share your data with third parties for marketing purposes. We do not sell your personal information. We may disclose your data if required by law (court order, government request) or to protect our legal rights. We will notify you of any legal disclosure unless prohibited by law.

Data retention on agoda: We keep your account data as long as your account is active. After you close your account, we retain data for legal and compliance purposes, typically three to five years, then delete it securely.

How We Protect Your Data on agoda

We at agoda use industry-standard security measures to protect your data. All data in transit is encrypted using SSL (Secure Sockets Layer). All data at rest is encrypted using AES-256 encryption. Your password is hashed and salted, never stored in plain text. We do not store payment card details on our servers.

We offer optional two-factor authentication (2FA) on agoda to add an extra layer of security to your account. We recommend enabling 2FA in your account settings. We monitor our systems for unauthorized access and respond to security incidents within hours. We conduct regular security audits and penetration testing to identify and fix vulnerabilities.

Despite our security measures, no system is completely secure. If you believe your account has been compromised on agoda, contact our support team immediately via email or in-app chat. We respond during business hours and can freeze your account, review your transaction history, and help you regain access.

Cookies and Tracking on agoda

We use cookies on agoda to remember your login status, store your preferences, and analyze how you use our platform. Essential cookies are required for agoda to function (login, session management). Analytics cookies help us understand which games and features are popular. Preference cookies remember your language and display settings.

We do not use cookies on agoda to track you across other websites. We do not sell cookie data to advertisers. You can disable cookies in your browser settings, but some features on agoda may not work properly without them. We do not use third-party tracking pixels or beacons.

We use server logs on agoda to record your IP address, browser type, and pages visited. This information helps us troubleshoot technical issues and detect fraud. We retain server logs for 90 days, then delete them. We do not use this information to identify you personally unless you are involved in a security incident.

Your Rights Regarding Your Data on agoda

You have the right to access, correct, and delete your personal data on agoda. You can view and update your account information in your account settings at any time. You can request a copy of all data we hold about you by contacting our support team via email. We will provide your data in a portable format within 30 days.

You have the right to request deletion of your data on agoda, subject to legal and compliance requirements. We may retain some data (transaction history, identity verification) for legal purposes even after you request deletion. You have the right to object to our use of your data for fraud detection or analytics. You have the right to withdraw consent for optional data collection (marketing emails, analytics) at any time.

To exercise any of these rights on agoda, contact our support team via email or in-app chat. We respond within 30 days. If you believe we have violated your privacy rights, you have the right to lodge a complaint with your local data-protection authority.

Contact Us About Privacy on agoda

If you have questions about our privacy practices on agoda, contact our support team via email or in-app chat during business hours. We respond to most privacy inquiries within one business day. We can explain how we use your data, help you exercise your privacy rights, or address concerns about data security.

Our support team is available in English and Indonesian. We do not provide phone support for privacy inquiries. For urgent privacy concerns (data breach, unauthorized access), mark your support ticket as priority and our team will respond faster during business hours.

Your Privacy Matters on agoda

We at agoda are committed to protecting your privacy. We collect only the data necessary to operate our platform, verify your identity, process payments, and provide support. Your data is encrypted, never sold to third parties, and retained only as long as necessary. You have the right to access, correct, and delete your data at any time.

Our privacy practices comply with applicable data-protection laws in the jurisdictions where we operate. We update this policy periodically to reflect changes in our practices or legal requirements. We notify you of material changes via email or in-app notification. Your continued use of agoda after a policy update constitutes your acceptance of the new terms.

If you have questions about how we handle your data on agoda, reach out to our support team. We are here to help during business hours.