Reference

How posd Protects Your Personal Data

At posd, your personal data belongs to you — we collect only what we need to run your account, process deposits via DANA, OVO, GoPay and QRIS, and…

Data encrypted in transit and at restNo data sold to third partiesDANA, OVO, GoPay & QRIS payment data secured separatelyAccount deletion requests actioned within 30 daysIndonesia-based contact channel available
posd How posd Protects Your Personal Data
PRIVACY CONTACT PATHS

Reach Us About Your Privacy Rights

If you want to access, correct, or delete the personal data we hold about you, our privacy team is reachable through three direct channels every day of the week.

Live Chat Available 24 hours a day, 7 days a week inside your account dashboard. Raise a data-access or deletion request directly and receive a written confirmation ticket within minutes.
Email Privacy Team Send a formal Subject Access Request or a deletion notice to our privacy address. We acknowledge every email within 24 hours and resolve the request within 30 calendar days.
Account Settings Portal Log in, navigate to Settings then Privacy, and download your full data export or submit a deletion request without contacting support — the self-service path is the fastest option.
HOW WE HANDLE YOUR DATA

Six Practices That Protect Your Account

We have structured our data operations around six concrete practices so you always know how your information is handled.

End-to-End Encryption

All data transmitted between your device and our servers — including payment identifiers for DANA, OVO, GoPay and QRIS — is encrypted using TLS 1.3. No plain-text credentials travel across our network at any point.

Cookie Controls

We use strictly necessary cookies to keep your session alive and, only with your consent, analytics cookies to improve page performance. You can review and revoke cookie consent any time via the cookie banner in your account.

Data Retention Schedule

Account activity logs are held for five years to meet financial-record requirements. Marketing preference data is deleted within 90 days of account closure. You can request an earlier deletion where local law permits.

Third-Party Access Limits

We share data only with payment processors needed to clear your DANA, OVO, GoPay or QRIS transaction, and with identity-verification providers. No data goes to advertisers or data brokers under any circumstances.

Account Security Alerts

Any login from a new device or IP address triggers an immediate email alert to your registered address. You can confirm or flag the access as suspicious from that email within one tap, locking the session instantly.

Right to Access and Correct

You may request a full export of your personal data at any time through the Settings portal or via our privacy email. Corrections to inaccurate records — wrong phone number, outdated email — are processed within seven business days.

Your Privacy Policy Questions, Answered

Below are the questions we hear most often from people reviewing our Privacy Policy before opening an account or before requesting their data. If your question is not listed here, our live chat team can walk you through the answer in real time — available 24/7 inside your account dashboard.

We collect your name, email, phone number, and the payment identifier you link — such as your DANA wallet ID or OVO account number. We also log device type and IP address to protect your account from unauthorised access.

Payment identifiers are stored in an encrypted vault separate from your main account record. They are transmitted only to the relevant payment processor to clear your transaction and are never visible to our front-line support team.

Yes. Log in, go to Settings then Privacy, and click 'Download My Data'. You will receive a structured file within 72 hours covering account activity, payment records and communication logs — or contact our privacy email for a formal request.

Submit a deletion request through the Settings portal or email our privacy team directly. We action verified requests within 30 calendar days. Transactional records required by financial law are retained separately, as permitted where local law permits.

We do not sell or share your data with advertisers or data brokers. Data is disclosed only to payment processors — DANA, OVO, GoPay, QRIS — and to identity-verification services strictly necessary to run your account.

Account activity and transaction logs are retained for five years in line with applicable financial regulations. Marketing preference data is deleted within 90 days of account closure. Earlier deletion is available where local law permits.

Use the suspicious-login link in the security alert email you receive, or contact live chat immediately — available around the clock. Our team can lock the session, reset credentials and open a formal data-access investigation within four hours.