Reference

Your Rights and Our Legal Commitments

api138 operates under a defined legal framework so you know exactly where you stand before you open an account.

Jurisdiction-dependent accessData privacy covered by policyAccount terms in plain EnglishDANA, OVO, GoPay, QRIS within policy scopeContact path for legal queries
api138 Your Rights and Our Legal Commitments
LEGAL CONTACT PATHS

Reach Us on Policy and Account Matters

If you have a question about our terms, a data-access request or a complaint about an account decision, our support team is reachable around the clock.

Live Chat Support Available 24 hours a day, 7 days a week.
Legal Email Channel Send detailed written queries or data-access requests to our legal email address listed in…
Formal Complaints Form For account disputes or policy objections, submit the in-platform complaints form under Account Settings…
ACCOUNT SECURITY STANDARDS

How We Protect Your Data and Account

Our security and data-retention practices are built to be auditable, not just stated in policy.

Data Retention Policy

We retain your account data for the period required by our operational and legal obligations.

Cookie Handling

We use session cookies to keep you logged in and analytics cookies to understand page performance.

Account Security Controls

Two-step login verification is available and strongly recommended for all accounts.

Payment Data Handling

Your DANA, OVO, GoPay or QRIS account details are never stored in plain text on our servers.

Who to Contact for Data Requests

To request a copy of the personal data we hold on your account, or to ask for corrections, go to…

Policy Change Notification

When we make a material change to our privacy policy or terms of use, we send a notification to your…

Common Legal Questions from Our Account Holders

Below are the questions we receive most often through our support and legal channels. Each answer reflects our actual policy, not a generic platform statement — so if something here contradicts what you were told in chat, please escalate using the complaints form.

Access to api138 depends on local law. It is your responsibility to confirm that participation is permitted where you are located in Indonesia before opening or continuing to use an account on this domain.

We collect the name, email address, date of birth and contact number you provide at registration, plus transaction records tied to your chosen payment rail — whether that is DANA, OVO, GoPay or QRIS. Device and session data are also logged for security purposes.

Go to Account Settings → Privacy → Data Request Form and submit the form. We will compile the data held under your account ID and deliver it to your registered email within seven calendar days of receiving your request.

Yes. Submit a deletion request through the same Privacy section of your account settings. Note that transaction records required under financial retention rules cannot be deleted ahead of the statutory minimum period, but all other personal data will be purged on confirmation.

Use Account Settings → Help → Submit Complaint to file a formal complaint. You will receive a reference number immediately. Our legal team reviews all submissions and aims to provide a substantive response within three Indonesian business days.

Payment tokens linked to DANA, GoPay, OVO or QRIS are not stored in plain text after a transaction is processed. They are handled through encrypted payment channels and are not retrievable by support staff once the session closes.

We send an email to your registered address at least seven days before any material policy change takes effect. You can also review the full policy change history in the Policy History section inside your account dashboard at any time.