LEGAL REFERENCE

Your data. Your control. Our promise.

We keep your account details, payment history and gaming activity private. This policy explains exactly how balontoto handles your information from login to payout — and how you...

Account SecurityPayment PrivacyData ControlTransparent StorageYour Rights
Account access Read FAQ
balontoto Your data. Your control. Our promise.

Policy scope and data jurisdiction.

balontoto respects Indonesian data protection principles and processes your information in line with supported-region regulations. We collect account credentials, payment method details, transaction history and gaming preferences to deliver lobby access, process withdrawals via DANA, OVO, GoPay and QRIS, and maintain platform security. Your data stays encrypted during transmission and at rest. We do not sell personal information to third parties. Access

requests and deletion claims are handled within 30 days. This policy applies to all users in supported Indonesian regions. For specific jurisdiction concerns, contact our data team directly.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

PLAYER SUPPORT

Privacy questions? Reach out directly.

Team online

Email Support

Contact our data protection team at [email protected] for account, payment or policy-specific inquiries. Responses typically arrive within one business day.

In-Account Settings

Review and update your privacy preferences, communication settings and data-sharing choices directly from your account dashboard. Changes take effect immediately.

Legal Requests

Formal data access, correction or deletion requests should be submitted in writing with valid identification. We process compliant requests within the timeframe specified by applicable law.

WHY THIS PLATFORM

How we earn your trust on data.

Encryption Standard

All account logins, payment details and transaction records are transmitted over TLS 1.3 and stored in encrypted databases. No plaintext credentials are ever logged or cached.

Third-Party Audits

We commission annual security reviews of our data infrastructure. Audit findings and remediation steps are documented and made available to regulators upon request.

Payment Card Compliance

balontoto maintains PCI DSS Level 1 compliance for all e-wallet and card processing. DANA, OVO, GoPay and QRIS transactions flow through dedicated secure gateways.

Data Minimization

We collect only the information needed to operate your account, process payouts and meet local regulatory obligations. Optional fields stay optional. Unused data is purged after 12 months.

Staff Access Control

Internal team members access account data only when required and logged. Role-based permissions ensure customer service staff see only the minimum necessary details to help you.

Breach Response Plan

In the unlikely event of a data incident, we notify affected users within 48 hours, disclose scope and remediation steps, and coordinate with authorities in supported regions.

Privacy consistency across balontoto.

Live Casino Tables
Your table history, betting patterns and chat logs are kept private. Live dealer footage is never stored on your personal file; session data expires after 30 days.
Slot Lobbies
Spin history and favourite-slot lists stay in your account only. We do not share gaming preferences with other players or external analytics platforms.
Sportsbook Markets
Betting slips and match predictions are private to your account. Your odds choices and stake history are encrypted and never displayed on leaderboards.
Payment Methods
DANA, OVO, GoPay and QRIS tokens are stored in isolated vaults. We do not retain full payment credentials; tokenised references are used for repeat transactions only.
Account Profile
Your username, email, phone and address are visible only to you and our support team. Display name customisation lets you control what other lobby users see.
Withdrawal Logs
Payout history is private to your account view. Transaction receipts are archived for 7 years for audit purposes and are never shared without explicit consent.
Communication Preferences
You control email frequency, SMS notifications and promotional content. Opt-out at any time via settings or email. We honour your choices within 24 hours.

What makes our policy work for you.

One Clear Policy

No hidden clauses. One privacy document covers your entire account — login, gaming, payments and support. You see exactly what we store and for how long.

Instant Access Requests

Export your data at any time from the account settings. Download full transaction history, profile details and gaming logs in a portable format within minutes.

No Data Resale

We keep your information confidential. Payment methods, betting patterns and account activity are never sold to advertisers, affiliates or third-party brokers.

Automated Deletion

Request permanent account closure and we scrub your data within 60 days. Regulatory archival copies are anonymised and retained separately for compliance only.

Indonesia-First Compliance

Our policy reflects local protections for users in supported Indonesian regions. QRIS, DANA, OVO and GoPay transactions follow domestic payment standards.

Transparent Cookie Use

We use session cookies for login and preferences only. No tracking pixels or cross-site cookies follow you outside balontoto. Clear your browser cache anytime.

Privacy questions answered.

We retain tokenised payment references (not full card or wallet numbers) for 90 days to speed up repeat withdrawals. You can delete saved payment methods anytime in settings. Full transaction records stay in your account history for 7 years for audit purposes.

Yes. Head to your account settings and select "Download My Data." We'll generate a complete file of your profile, login history, gaming activity, payment methods and support tickets within minutes. This export includes everything we hold about your account.

No. We do not sell or share your personal data with third parties for marketing. Payment processors (for DANA, OVO, GoPay and QRIS) receive only the minimum transaction details needed to process your request. All partners sign strict confidentiality agreements.

You can request permanent deletion anytime. We anonymise and remove your profile, gaming history and personal details within 60 days. Regulatory backup records are kept separately and stripped of identifying information. Regulatory backup records are kept separately and stripped of identifying information.

No. Your betting history, slot spins and sportsbook selections are completely private. Only you and our support team can see transaction details. Public leaderboards show nicknames only, never personal information or payment data.

All e-wallet credentials are encrypted at rest and in transit. We never store full payment numbers; instead, we use tokenised references for security. Each transaction is individually verified and logged. Payment data is housed in isolated, PCI-compliant vaults.

Yes, instantly. Use the unsubscribe link in any email or reply STOP to SMS promotions. You can also toggle notification settings in your account dashboard. Changes take effect within 24 hours. You'll still receive critical security and account alerts.