arrowsPrivacy Policy

This page describes what we collect when you use arrows and how we keep that data protected. We at arrows take your privacy seriously. We collect personal information only to verify your identity, process your deposits and withdrawals, and comply with legal obligations. We do not sell your data to third parties.

Our servers may sit outside your jurisdiction, but we apply the same data-protection standards regardless of location. You have the right to access, correct, or delete your personal data. This policy applies to all users of arrows—whether you access via desktop, mobile app, or browser.

If you have questions about how we handle your data, our support team is available via email and live chat.

What data we collect on arrows

We collect personal information when you create an account on arrows. This includes your email address, phone number, full name, date of birth, and government ID number. We also collect proof of address (utility bill or bank statement) and a selfie for identity verification.

We collect transaction data: every deposit, withdrawal, and gameplay activity is logged. This includes the payment method used, the amount, the date and time, and the outcome. We also collect device information—your IP address, browser type, and operating system—to detect fraud and ensure account security.

We do not collect your password in plain text. Your password is hashed using industry-standard encryption before storage. We do not collect your bank account details directly; payment processors (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet) handle that information.

Identity data
Name, date of birth, government ID, proof of address. Required for KYC verification.
Contact data
Email and phone number. Used for account recovery and support communication.
Transaction data
Deposits, withdrawals, gameplay activity. Logged for compliance and dispute resolution.
Device data
IP address, browser type, operating system. Used for fraud detection and security.

How we use your data on arrows

We use your personal data for the following purposes:

  • Account verification: We verify your identity using your government ID and proof of address. This is required by law and protects both you and us from fraud.
  • Payment processing: We use your contact information and transaction history to process deposits and withdrawals. Payment processors receive only the information necessary to complete the transaction.
  • Compliance: We retain transaction records to comply with anti-money-laundering (AML) and know-your-customer (KYC) regulations. We may share this data with relevant authorities if required by law.
  • Support: We use your email and phone number to respond to support requests and resolve account issues.
  • Fraud detection: We analyze device data and transaction patterns to detect and prevent fraud. If we detect suspicious activity, we may freeze your account pending investigation.
  • Service improvement: We analyze aggregated, anonymized data to improve arrows—for example, to identify technical issues or optimize the user interface.

We do not use your data for marketing or advertising without your explicit consent. We do not sell your data to third parties.

arrows Team

Third-party processors and data sharing

We share your data with third parties only when necessary to provide our service or comply with law. Payment processors (mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment) receive your transaction information to process deposits and withdrawals. These processors have their own privacy policies and data-protection standards.

We may share your data with game providers (for example, the studios that operate our live-casino tables or slot games) only to the extent necessary for them to provide their service. We do not share your full personal data with game providers—only your account ID and transaction history.

We may disclose your data to law enforcement or regulatory authorities if required by law or court order. We will notify you of such disclosure unless legally prohibited from doing so.

Data retention on arrows

We retain your personal data for as long as your account is active. After you close your account, we retain transaction records for at least five years to comply with AML and tax regulations. We delete other personal data (such as your government ID and proof of address) within 30 days of account closure, unless we are required by law to retain it longer.

If you request deletion of your data, we will comply where legally permitted. However, we may retain transaction records and other data necessary for compliance, fraud prevention, or dispute resolution.

Cookies and tracking on arrows

We use cookies to maintain your session and remember your preferences. These are essential cookies required for arrows to function. We do not use cookies for tracking or advertising purposes.

You can disable cookies in your browser settings, but this may affect your ability to use arrows. We do not use third-party tracking tools or analytics services that collect personal data.

Your rights regarding your data on arrows

You have the right to access, correct, or delete your personal data. To exercise these rights, contact our support team. We will respond to your request within a reasonable timeframe.

You have the right to data portability—we can provide your data in a structured, machine-readable format. You also have the right to object to certain uses of your data, such as profiling for fraud detection.

If you believe we have mishandled your data, you have the right to lodge a complaint with the relevant data-protection authority in your jurisdiction.

Data security on arrows

We encrypt your personal data in transit using TLS (Transport Layer Security) and at rest using AES-256 encryption. Our servers are protected by firewalls and intrusion-detection systems. We conduct regular security audits and penetration testing to identify and fix vulnerabilities.

We limit access to your personal data to employees and contractors who need it to provide our service. All staff sign confidentiality agreements. We do not store your password in plain text—it is hashed using bcrypt or similar algorithms.

Despite our security measures, no system is completely secure. If we detect a data breach, we will notify you and relevant authorities as required by law.

International data transfers

Our servers may be located outside your jurisdiction. When we transfer your data internationally, we apply the same data-protection standards as if the data remained in your country. We use standard contractual clauses or other legal mechanisms to ensure your data is protected during transfer.

Changes to this privacy policy

We may update this policy from time to time. We will notify you of material changes via email or by posting a notice on arrows. Your continued use of arrows after such notice constitutes acceptance of the updated policy.

Contact us about privacy

If you have questions about this privacy policy or how we handle your data, contact our support team via email or live chat. We are available during peak hours and will respond to your inquiry within a reasonable timeframe.

Related guides

Legal
Terms of Use
7-min read
Legal
Legal Notice
5-min read
Support
Frequently Asked Questions
6-min read