LEGAL REFERENCE

Your privacy. Our commitment.

We built toto macao to put your data security first. From the moment you open your account through every transaction via QRIS, DANA, OVO or GoPay, we keep...

Data encrypted end-to-endPayment details protectedYour privacy controlsTransparent data handlingIndonesia-compliant storage
Account access Read FAQ
toto macao Your privacy. Our commitment.

How we handle your data

toto macao collects and processes your personal information — username, email, phone number, identity verification details and payment history — only to deliver your account, process deposits via QRIS, DANA, OVO and GoPay, prevent fraud, and comply with local laws in supported regions. We do not sell your data. We do not share it with third parties except where required by law

or to process your payments. All data is stored on secure servers with encryption in transit and at rest. You can request access to, or deletion of, your information at any time through your account settings or our support team.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

HELP CHANNELS

Privacy questions? We're here.

Team online

Email Support

Send your privacy concern or data request to our compliance team. We respond within 48 hours.

Live Chat

Chat with our support staff directly from your account. They'll guide you through any privacy setting or help you understand our policy.

Account Settings

Review and manage your personal data, communication preferences and privacy controls whenever you log in.

WHY VISITORS TRUST US

Why this policy matters to you

Encryption Standard

All account and payment data travels over TLS 1.2+ encryption, the same standard used by banks processing QRIS and e-wallet...

Local Compliance

We align with Indonesia data protection guidelines and payment regulations, including mandatory ID verification for DANA, OVO and GoPay deposits.

Regular Audits

Third-party security firms audit our systems quarterly to confirm encryption, access controls and fraud prevention remain current and robust.

No Data Broker Sales

We've committed not to sell player data to marketers, brokers or external companies — your gaming history stays yours alone.

Transparent Logging

Every access to your account is logged and can be reviewed by you. Suspicious logins trigger immediate alerts sent to...

Deletion on Request

Close your account and request full data deletion. We remove your profile within 30 days, except where law requires retention...

PLATFORM COMPARISON

Consistency across our pages

01

Terms of Service

Our ToS outlines the account rules and responsible use framework; this privacy policy covers data handling.

02

Security Policy

Separate security documentation details system infrastructure, penetration testing and incident response alongside this privacy commitment.

03

Payment Terms

Payment-specific agreements for QRIS, DANA, OVO and GoPay deposits appear in those payment method guides, not here.

04

Cookie Policy

Our cookie and tracking disclosure is a separate document covering analytics, session management and preference storage.

05

Dispute Resolution

The complaints and arbitration process is detailed in our Complaints Procedure page, not within this privacy policy.

06

API Privacy

If you build third-party tools using our API, the API Developer Agreement includes its own privacy addendum.

07

Updates to This Policy

We notify you of material changes via email and on-site notice at least 14 days before they take effect.

PLATFORM SNAPSHOT

What shapes our privacy approach

Your Account Ownership Everything tied to your login belongs to you: gaming history...
Fraud Prevention We monitor for suspicious activity — unusual login locations, rapid...
Payment Privacy QRIS, DANA, OVO and GoPay transaction IDs are stored separately...
Session Control You can log out of all devices at once, revoke...
Consent-First Design We ask permission before sending marketing emails, SMS or push...
Audit Trail Access Download a complete history of logins, deposits, withdrawals and account...

Privacy questions answered

We collect your name, email, phone number, date of birth, identity document details and payment history — everything we need to verify your account, process QRIS, DANA, OVO and GoPay deposits, prevent fraud and comply with local law.

We retain account data for 7 years to comply with financial regulations and fraud prevention requirements, even after you request closure. Marketing and preference data is deleted within 30 days unless you opt into archival.

No, we do not sell your data. We share information only with payment processors for QRIS, DANA, OVO and GoPay transactions, and with legal authorities when required by law or court order in supported regions.

Yes. Log into your account, navigate to Settings > Privacy > Download My Data, and we'll email you a complete export within 48 hours, including all logins, deposits, withdrawals and account activity.

Payment card numbers and e-wallet credentials are encrypted with TLS 1.2+, never stored in plain text on our servers, and tokenized before processing. We never log full card numbers or OVO, DANA, GoPay secrets.

We conduct breach impact assessments and notify affected players via email and on-site notice within 48 hours. We'll describe what data was exposed, steps we took to secure it and what you should monitor.

Go to Account Settings > Communications to toggle marketing emails, SMS alerts and push notifications individually. You can also manage session activity, login alerts and data sharing preferences from Privacy Controls.