Reference

How manila365 Handles Your Personal Data

At manila365, your personal data is handled with clear purpose: we collect only what we need to run your account, process deposits via DANA, OVO, GoPay or QRIS…

Data collected only as neededDANA, OVO, GoPay & QRIS transactions encryptedAccount data kept on secure serversYour deletion requests honouredPolicy reviewed and updated regularly
manila365 How manila365 Handles Your Personal Data
PRIVACY CONTACT PATHS

How to Reach Our Privacy Team

If you have a question about your personal data, want to request a copy of what we hold, or wish to ask us to delete specific…

Live Chat Open the chat widget from your account dashboard any day between 08:00 and 23:00…
Email Support Send a written data request to our privacy address listed in your account settings.
Account Settings Some data changes — such as updating your registered phone number or linked DANA…
DATA HANDLING PRACTICES

Six Ways We Protect Your Privacy

Privacy at manila365 is not a single checkbox — it runs through every layer of how your account operates, from the moment you deposit via OVO to the day you request your…

Encryption at Every Step

All data moving between your device and our servers travels over TLS 1.3 encryption. Payment data tied to DANA, OVO, GoPay or QRIS is additionally encrypted at the database level, meaning raw account numbers are never stored in plain text anywhere in our system.

Cookie Transparency

We use session cookies to keep you logged in and analytics cookies to understand which sections of your account you use most. You can review and withdraw cookie consent at any time from the Cookie Settings link at the bottom of every page — no re-login required.

Account Access Controls

Your account is protected by password hashing using bcrypt, and we strongly encourage enabling two-factor authentication from Settings > Security. If our system detects a login from an unrecognised device, we send a verification prompt to your registered email before granting access.

Data Retention Schedule

Active account data is retained for the life of your account plus a 24-month window after closure, in line with financial audit requirements. After that window closes, identifiable personal fields are anonymised. Transaction logs linked to QRIS payments follow a five-year statutory retention period.

Third-Party Data Sharing

We share your data only with payment processors required to settle your DANA or GoPay transactions, and with identity verification partners where local law requires it. We do not share your data with advertising networks, data brokers, or any party outside the operational chain.

Your Rights and How to Use Them

You hold the right to access, correct, port or request deletion of your personal data. Submit a request via Live Chat or email and we will respond within 14 calendar days. Whether specific deletion requests can be fully honoured depends on local law and active financial record obligations.

Your Privacy Policy Questions, Addressed

The questions below are the ones we receive most often from Indonesian account holders about how their data is managed on manila365. If your question is not covered here, reach out via Live Chat between 08:00 and 23:00 WIB or use the email contact in your account settings.

We collect your name, email address, date of birth, phone number and the payment method you register — such as DANA, OVO, GoPay or QRIS. We also record your IP address and device type at the time of registration for security purposes.

Transaction records from DANA, OVO, GoPay and QRIS are stored in an encrypted database and retained for a minimum of five years to meet financial audit obligations. Only our compliance team can access raw transaction records, and only when reviewing a specific case.

Yes. Submit a data access request via Live Chat or email, and we will compile and deliver a structured copy of your personal data within 14 calendar days. Include your registered email address in the request so we can match your account quickly.

Contact us via Live Chat (08:00–23:00 WIB) or email with your deletion request. Whether we can delete all data depends on local law — transaction logs tied to financial obligations must be retained for the statutory period even after account closure.

We do not share your data with advertisers or data brokers. Data is shared only with payment processors needed to settle your DANA, OVO, GoPay or QRIS transactions, and with identity verification partners where local law requires it — no one else.

We use session cookies (to keep you logged in) and analytics cookies (to improve your account experience). You can review and withdraw consent at any time via the Cookie Settings link at the foot of any page — your preferences are saved instantly without requiring a logout.

Minor corrections — such as updating your linked DANA wallet number or phone number — can be made directly in Settings > Personal Data. For identity document corrections, contact our support team via Live Chat; changes are typically processed within one business day.