Signup and identity verification on mejampo
Creating an account on mejampo takes three minutes. You provide your phone number, set a password, and we send a verification code via SMS. Enter the code, and your account activates. We then ask for your full name, date of birth, and national ID number (KTP). We cross-check these details against government records. If everything matches, your account moves to full status immediately. If we detect a mismatch, we email you explaining the discrepancy and ask you to resubmit or verify manually.
We store your ID and personal data in encrypted form on our servers. We never display your full ID number on screen—we mask it after verification. If you lose access to the phone number you registered with, you can update it through account settings by verifying your identity via email and a security question.
Password requirements and reset
We require passwords with at least 8 characters, including uppercase, lowercase, and numbers. We recommend adding a special character for extra strength. Your password is hashed—we never store it in plain text. If you forget your password, you request a reset link via email. We send a link valid for 24 hours; you click it, verify your identity through SMS, and set a new password.
If you suspect someone knows your password, change it immediately through account settings. We will log out all other sessions on your account, forcing anyone else to re-authenticate with the new password.
Two-factor authentication (2FA) on mobile and desktop
We offer two-factor authentication through SMS or email. When 2FA is enabled and you log in from a new device or after your session expires, we send a six-digit code to your phone or email. You enter the code on the login screen to complete authentication. We generate a new code every 30 seconds; if you miss a window, request a new code and try again.
We recommend enabling 2FA immediately after signup, especially if you use mejampo from multiple devices. On your phone, you can save your device as "trusted" after logging in—this means we will not ask for 2FA codes on that device for 30 days. On public computers or shared phones, always disable the trusted-device option to avoid leaving your account open.
Two-factor authentication stops unauthorized access even if someone obtains your password. We make it simple—one code, sent instantly to your phone.
Device recognition and login alerts
When you log in from a new phone, tablet, or browser, we detect the change and flag it. We send you an email immediately saying "Your mejampo account was accessed from a new device on [date/time] in [location]." If you recognize the device, you can confirm it in your email and mark it as trusted. If you do not recognize it, you can revoke access immediately, forcing the unauthorized user to re-authenticate.
We track IP addresses, browser types, and device IDs. If we notice a login from an unusual location or at an unusual time (for example, a login from Jakarta two hours after a login from Medan), we may ask you to verify your identity through email or SMS before allowing you to proceed.
Payment security and deposit verification
When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, or bank transfer, we capture your payment method ID and bind it to your account. On future deposits, we verify that the payment source matches your registered method. If you try to deposit from a different e-wallet or bank account, we ask you to verify your identity first. This prevents someone else from funding your account without permission.
During withdrawal, we match your requested destination to the payment method you used for your most recent deposit. If you want to withdraw to a different method, we ask you to link it first and complete a small test transaction to verify ownership. This layered approach protects your funds and ensures they reach only accounts you control.
Fraud detection and account monitoring
We monitor your account activity continuously. Our system flags unusual patterns—for example, a withdrawal that is multiple times your typical monthly play, a login from an IP address you have never used, or a sudden series of high-stakes bets after months of small play. When we detect a flag, we may temporarily freeze your account and contact you via email or SMS to confirm the activity is legitimate.
We use machine learning to refine our fraud detection. We learn your normal patterns—when you play, which games you prefer, your typical bet size, your usual payment methods. Deviations from your baseline trigger additional verification. If we believe your account has been compromised, we lock it immediately and walk you through account recovery steps via email.
Account recovery if compromised
If you suspect unauthorized activity, contact our support team immediately through in-app chat or email. We ask you to verify your identity—we confirm your date of birth, your registered email, and other details only you would know. Once verified, we roll back any unauthorized transactions, return funds to your account, and force a password reset. You will need to set a new password and re-enable two-factor authentication.
We will also audit your account for remaining security gaps. If you used the same password on other sites, we recommend changing those passwords too. We never ask for your password via email or phone—if someone claims to be mejampo support and asks for your password, it is a scam.
-
1
Change your password immediatelyStep 1
Go to Account Settings and request a password reset. We send a verification code to your registered email or phone.
-
2
Review your active sessionsStep 2
In Settings, view all logged-in devices and locations. Revoke any sessions you do not recognize.
-
3
Enable two-factor authenticationStep 3
Activate 2FA via SMS or email in your security settings. This prevents future unauthorized access.
-
4
Contact supportStep 4
Our team will investigate any fraudulent transactions and restore your balance if needed.
Regional security and data residency
mejampo operates servers in Indonesia and Southeast Asia. Your account data, transaction records, and personal information are stored in data centers subject to local data protection law. We do not store your data on overseas servers without explicit encryption and compliance approval. If you are in Jakarta, Surabaya, Bandung, or Medan, your data is processed through regional infrastructure.
We comply with anti-money-laundering regulations in all supported jurisdictions. This means we may ask for additional verification when you reach certain transaction thresholds, and we report suspicious activity to relevant authorities as required by law. We are transparent about these requirements—if we ask for additional documents, we explain why and which regulation triggered the request.
Your privacy and data retention
We retain your account data for as long as your account exists. If you close your account, we delete personal data after a grace period, except where law requires us to retain records (typically 5-7 years for financial records). We never sell your data to advertisers or third-party marketers. We use your data only to operate mejampo, prevent fraud, and comply with regulations.
You can download a copy of your data—account balance history, transaction log, personal details—through your account settings. This export is encrypted and available only to you.