Your Privacy Matters to Us
We built 26 2d around your trust. This privacy policy explains how we collect, use and protect your personal information when you open an account, deposit via DANA...
How We Handle Your Information
When you join 26 2d, we collect your name, email, phone number and payment details to verify your identity and process deposits through DANA, OVO, GoPay and QRIS. We use this information to deliver your account, manage transactions, prevent fraud and comply with local regulations in supported Indonesian regions. We do not sell your data to third parties. Your information is encrypted
and stored securely on our servers. We retain your data for as long as your account is active and for the period required by law thereafter.
Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.
Why You Can Trust Our Privacy Approach
Encryption Standard
All data transmitted between your device and our servers uses industry-standard SSL encryption. Your payment details and personal information are protected in transit and at rest.
Compliance Framework
We operate in accordance with Indonesian data protection regulations and international privacy standards. Our policy is reviewed regularly to reflect legal changes.
Third-Party Audits
Our security practices are independently verified by external auditors. We maintain certifications that demonstrate our commitment to data protection.
Fraud Prevention
We monitor account activity to detect and prevent unauthorized access, fraudulent transactions and identity theft. Your security is monitored 24/7.
Limited Data Sharing
We only share your information with payment processors, fraud-detection partners and legal authorities where required by law in supported regions.
Privacy by Design
We collect only the information necessary to deliver your account and process transactions. We do not track your browsing outside 26 2d.
Consistency Across Our Platform
What Defines Our Privacy Commitment
Zero-Knowledge Deposits
When you deposit via DANA, OVO, GoPay or QRIS, we never store your wallet credentials. Payment is processed directly between your e-wallet and our processor.
Session-Based Access
Your login session expires after 30 minutes of inactivity. This prevents unauthorized access if you leave your device unattended at a café or on the train.
Two-Factor Authentication
Protect your account with optional two-factor authentication via SMS or email. This adds a second layer of security beyond your password.
Withdrawal Verification
Before we process a withdrawal, we verify your identity and confirm the destination account matches your registered payment method for fraud prevention.
Anonymized Analytics
We track how you use 26 2d to improve our platform, but we strip personally identifiable information from all analytics data before analysis.
Breach Notification
If a security incident affects your data, we notify you within 48 hours and provide guidance on protective steps you should take immediately.