halma Platform Privacy Notice
This page describes what we collect when you use halma and how we keep that data protected. We collect personal information—email, government ID, address, phone number—during account signup and verification. We also collect behavioural data: which games you access, your deposit and withdrawal patterns, your device fingerprint, and your IP address. This information enables us to operate the halma platform securely, comply with regulations, detect fraud, and improve user experience.
We at halma process your data in accordance with applicable privacy law. Our servers may sit outside your jurisdiction; when they do, we apply encryption and access controls to protect your information. We do not sell your personal data to third parties for marketing. We share data only with payment processors (DANA, e-wallet, mobile banking, local payment handlers), fraud-detection services, and regulatory authorities when legally required. Your data is stored encrypted; we access it only for legitimate operational and compliance purposes.
This privacy notice applies to all halma users. If you have questions about how we handle your data, or if you wish to exercise your rights (access, correction, deletion), contact our support team. We respond to data-subject requests within thirty calendar days where applicable law requires it. We undertake to be transparent about our data practices and to respect your privacy while maintaining account security and regulatory compliance.
What data we collect on halma
We collect personal information when you create a halma account. Your email address, chosen username, and password are required to establish login credentials. During Know Your Customer (KYC) verification, we collect your full legal name, date of birth, government-issued ID number, and address. We also collect your phone number for two-factor authentication during withdrawals. We store all this data encrypted on our halma servers and access it only for account management and compliance purposes.
We at halma also collect behavioural and technical data. When you log in, we record your IP address, device model, operating system, and browser type. This device fingerprint helps us detect account takeover attempts and fraudulent access. We log which games you access—Liga 1 markets, live-dealer tables, Aviator slots—and track your deposit and withdrawal activity. We record the timestamp, amount, and payment method of each transaction. This behavioural data enables us to identify suspicious patterns: rapid geographic changes, mismatched devices, unusual bet sizes, or withdrawal sequences that violate our terms.
halma also collects data from payment processors. When you deposit via DANA, e-wallet, mobile banking, or local payment virtual account, the payment provider shares transaction confirmation data—amount, timestamp, and payment method identifier. We use this data to credit your halma balance and reconcile deposits. Payment processors also share fraud signals if they detect suspicious activity; we use these signals to protect your account and halma's platform.
How we use your data on halma
We use your data primarily to operate the halma platform. Your email and password enable login and account recovery. Your KYC information verifies your identity and complies with anti-money-laundering regulations in supported jurisdictions. Your device fingerprint and IP address detect fraud and unauthorized access attempts. Your behavioural data (game access, deposit patterns, withdrawal sequences) helps us identify account takeover, money laundering, and other policy violations.
halma uses your data to improve platform experience. We analyse aggregate game-access patterns to understand which titles are popular—Aviator, Sweet Bonanza, Liga 1 markets, Mobile Legends—so we can optimize our game library. We track payment-method usage—online payment, e-wallet, mobile banking, local payment—to ensure payment infrastructure is stable and responsive. We do not use individual user data for targeted advertising; we do not sell your information to data brokers or third-party marketers.
We at halma may also contact you via email or SMS for operational reasons: account verification status, payment confirmation, security alerts (suspicious login attempt detected), or policy updates. We do not send unsolicited marketing emails; any communication is service-related or mandatory for compliance. If you wish to opt out of non-mandatory emails, you can do so via your halma account settings, but operational emails (payment confirmation, security alerts) will continue.
Data storage, encryption, and third-party processors
halma stores your data on encrypted servers. We use industry-standard encryption (AES-256 for data at rest, TLS 1.3 for data in transit) to protect your information. Our halma servers may sit outside your jurisdiction; when they do, we apply the same encryption and access controls as if they were local. We maintain backups of your data for business continuity; these backups are also encrypted and stored securely. We retain your data only as long as necessary to operate your halma account and comply with applicable law—typically the duration of your account plus seven years for financial records.
We share your data with third-party processors only when necessary to provide halma services. Payment processors (online payment, e-wallet, mobile banking handlers, local payment, online payment, e-wallet, mobile banking) receive transaction details to process deposits and withdrawals. Fraud-detection services receive your device fingerprint, IP address, and transaction history to identify suspicious activity. These processors are contractually required to protect your data and use it only for the purposes we specify. We do not share your data with data brokers, social-media platforms, or advertising networks.
halma may disclose your data to regulatory authorities, law enforcement, or courts if legally required. If a jurisdiction's regulator (tax authority, financial crime office, or gaming commission) requests your information as part of an investigation, we comply with lawful demands. We also comply with court orders and subpoenas. We do not voluntarily share data with authorities; we respond only to documented legal requests. We may inform you of such disclosure unless prohibited by law.
Your data protection rights on halma
- Access: request a copy of all personal data we hold about you
- Correction: request that we correct inaccurate or incomplete data
- Deletion: request that we delete your data (subject to legal retention obligations)
- Portability: request that we provide your data in a machine-readable format
- Objection: request that we stop processing your data for specific purposes
Cookies and tracking technologies on halma
halma uses cookies to maintain your login session. When you enter your credentials, we create a session cookie on your browser; this cookie persists during your browsing session and is deleted when you log out or close your browser. This session cookie is necessary for halma to recognize that you are authenticated and to prevent you from re-entering your password on every page. We also use cookies to store your language preference and theme settings so the halma interface displays consistently.
We at halma use analytics cookies to understand how users interact with our platform. These cookies track which pages you visit, how long you stay, and which games you access. We use this data to identify usability issues—if many users abandon the deposit flow at the same step, we investigate and fix the problem. We do not use this data to target you with ads or to profile you for third-party marketing. Our analytics provider is contractually required to delete this data after a defined period (typically twelve months).
halma does not use third-party tracking pixels or cross-site tracking technologies. We do not enable Google Analytics, Facebook Pixel, or similar cross-domain tracking. If you disable cookies in your browser, halma will still function, but your session may be less stable and your preferences may not persist. You can manage cookies via your browser settings; consult your browser's help documentation for instructions.
Your privacy on halma: rights, contact, and updates
You have rights over your personal data. If you wish to access all information halma holds about you, submit a data-access request via our support form. We respond within thirty calendar days (or as required by applicable law) with a downloadable file containing your email, KYC documents, transaction history, and device fingerprints. If you believe your data is inaccurate—for example, your address is outdated—submit a correction request and we will update your records within five business days. If you wish to delete your halma account and associated data, submit an account-closure request; we delete your information thirty days after account closure, unless we are legally required to retain it longer.
halma's privacy policy may change as we evolve our operations or respond to new regulatory requirements. We will notify you of material changes via email at least thirty days in advance. If you do not agree with the updated policy, you may close your halma account before the new policy takes effect. Continued use of halma after the effective date indicates your acceptance of the updated policy. We encourage you to review this page periodically for updates.
If you have questions or concerns about halma's privacy practices, contact our support team via email or live chat. Provide your account email, a clear description of your concern, and any relevant transaction IDs or timestamps. We aim to respond to privacy inquiries within five business days. If you are in a jurisdiction with a data-protection authority (such as a Privacy Commissioner or Data Protection Office), you also have the right to lodge a complaint with that authority if you believe we have violated your privacy rights.