LEGAL REFERENCE

Your Data. Your Control. Our Commitment.

We handle your account details, payment information and gaming history with the same care you'd expect from a brand built for Indonesia. This policy explains exactly what we...

Data SecurityPayment ProtectionTransparencyYour RightsIndonesia Compliant
afk toto Your Data. Your Control. Our Commitment.

What We Collect and Why

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

PLAYER SUPPORT

Questions About Your Privacy

Email Support Reach our privacy team at [email protected] with any...
Account Settings Review and update your personal details, communication preferences...
Data Access Request Submit a formal request to download a copy...
EDITORIAL CLARITY

How We Protect Your Trust

Encryption Standard

All data in transit and at rest uses TLS 1.3 and AES-256 encryption, the same standard banks use to protect account transfers across Indonesia.

Third-Party Audit

Our privacy and security practices are reviewed annually by independent auditors to ensure compliance with data protection standards in supported regions.

No Data Selling

We never sell your personal information to third parties. Your gaming history, payment details and account data remain yours alone.

Fraud Detection

We monitor account activity in real time to spot unusual login patterns, unauthorized transactions and suspicious payment attempts before they affect you.

Secure Payment Flow

DANA, OVO, GoPay and QRIS transactions are processed through PCI-DSS compliant gateways with tokenization so your wallet details never touch our database.

Incident Response

If a data breach occurs, we notify affected users within 24 hours and provide guidance on account security steps and password resets.

BENCHMARKED

Consistency Across Our Brand

01

Same Policy Everywhere

Whether you access afk toto on mobile, desktop or tablet, the same privacy rules and data protections apply to your account and session.

02

Unified Account Data

Your profile, gaming history and payment methods sync across all devices, so your privacy settings and preferences follow you everywhere.

03

One Payment Standard

DANA, OVO, GoPay and QRIS deposits and withdrawals use identical encryption and fraud-detection rules regardless of which device you use.

04

Consistent Retention

We keep your account data for the same duration across all platforms—active accounts retain full history; closed accounts are purged after 90 days.

05

Unified Support Access

Contact our privacy team through email, in-app chat or account settings and receive the same response standards and resolution timelines.

06

Single Privacy Dashboard

One account settings page lets you manage all your data preferences, communication choices and privacy controls in one place.

07

Transparent Updates

When we change this policy, we notify you via email and in-app alert at least 30 days before the new terms take effect.

What Defines Our Privacy Approach

Account Verification

We verify your identity once during signup using your phone number and email, then keep your account secure with optional two-factor authentication for extra protection.

Session Privacy

Your gaming sessions are logged for fraud prevention and account recovery, but session data is encrypted and never shared with third parties outside our platform.

Payment Tokenization

When you link DANA, OVO, GoPay or QRIS, we store a secure token instead of your actual wallet details, so your payment method stays private.

Withdrawal Transparency

Every withdrawal request shows you the exact amount, destination wallet and processing time before you confirm, so you control exactly where your funds go.

Minimal Data Retention

We keep only the data needed to run your account and comply with local law. Deleted account information is purged from our active systems within 90 days.

Opt-Out Options

You can disable marketing emails, turn off push notifications and limit data collection for analytics—all from your account settings without losing access to the lobby.

Privacy Questions We Hear Often

We retain your full gaming history for as long as your account is active. If you close your account, we keep transaction records for 90 days to process any pending withdrawals, then delete the rest. Tax records are kept for seven years where required by local law.

Yes. Email [email protected] with a data access request and we'll send you a complete export of your account details, gaming activity and payment history within 14 days. You can also request deletion of specific data categories anytime.

Completely. We never store your actual wallet credentials. When you link a payment method, we create an encrypted token that lets us process transactions without ever seeing your real account details. Each transaction is verified through your wallet app.

Only you and our fraud-prevention team can access your gaming history. We never share your activity with other players, advertisers or third-party platforms. Our support team can view your account only when you contact them for help.

If our company is acquired, your data transfers under the same privacy protections outlined in this policy. We'll notify you by email at least 30 days before any change takes effect, and you can request deletion instead of transfer.

We monitor login locations, device changes, withdrawal patterns and payment method switches in real time. If we spot unusual activity, we'll email you immediately and may temporarily lock your account until you verify it's really you.

Yes. Request account deletion from your settings or email [email protected]. We'll close your account immediately and purge all personal data within 90 days, except transaction records kept for tax compliance in supported regions.