LEGAL REFERENCE

Your Privacy Matters to Us

We've built bahantoto around your account security and data protection. Every transaction through DANA, OVO, GoPay and QRIS, every table you join, and every lobby you explore stays...

Data EncryptedQRIS SecureAccount ProtectedPayment SafeIndonesia Compliant

Account access Read FAQ

What We Collect and Why

When you open your account, we collect your name, email, phone number and payment details to verify your identity and process deposits through DANA, OVO, GoPay and QRIS. We also track your gameplay history, session times and account activity to prevent fraud, improve your lobby experience and comply with Indonesian financial regulations. Your data is stored on secure servers and never sold

to third parties. We retain your information for as long as your account is active, plus a retention period required by local law.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

SUPPORT

Privacy Questions? Reach Out

REVIEW SIGNALS

How We Protect Your Trust

SSL Encryption

All data transmitted between your device and our servers uses 256-bit SSL encryption. Your payment details and account credentials are never exposed in transit or at rest.

Regular Audits

We conduct quarterly security audits and penetration testing to identify vulnerabilities. Third-party compliance firms verify our data handling practices annually.

Payment Compliance

bahantoto meets PCI DSS standards for payment card security. DANA, OVO, GoPay and QRIS transactions are processed through certified payment gateways in Indonesia.

Data Minimization

We collect only the information needed to run your account and process withdrawals. We don't ask for unnecessary personal details or store data longer than required.

Breach Response

If a security incident occurs, we notify affected users within 24 hours and work with Indonesian authorities. Our incident response team is on standby 24/7.

Staff Training

Every team member handling customer data completes privacy and security training quarterly. Access to personal information is restricted to staff who need it for their role.

Consistency Across Our Platform

Mobile App	Your privacy settings sync across web and mobile. Data collected in the app follows the same encryption and retention rules as the desktop lobby.
Live Tables	When you join a live dealer session, your camera and microphone permissions are managed separately. We don't record your video; only the table feed is streamed.
Sportsbook Markets	Your betting history and odds preferences are stored privately. We use this data to personalize your market view, not to sell to third-party analytics firms.
Slot Lobbies	Slot play data is tied to your account for payout verification only. We don't share your game preferences or session length with game providers.
Payment Processing	DANA, OVO, GoPay and QRIS transactions are processed through isolated payment channels. Your e-wallet credentials are never stored on our servers.
Account Deletion	When you request account closure, we delete your personal data within 30 days. Transaction records are retained only as required by Indonesian tax law.
Cookie Policy	We use cookies to remember your login and language preference. No tracking cookies are placed without your consent. You can disable non-essential cookies anytime.

What Defines Our Privacy Approach

Indonesia-First Design

Our privacy framework is built around Indonesian data protection standards and financial regulations. We comply with OJK guidelines for payment security and Bank Indonesia requirements.

Transparent Logging

Every login, deposit and withdrawal is logged and visible in your account history. You can review exactly when and where your account was accessed.

No Third-Party Ads

We don't sell your data to advertisers or data brokers. Your email and phone number stay private. Marketing emails come only from bahantoto, not partner networks.

Withdrawal Verification

To prevent fraud, we verify your identity before processing withdrawals to DANA, OVO, GoPay or QRIS. This protects your account from unauthorized access.

Session Timeout

Your session automatically expires after 30 minutes of inactivity. This prevents unauthorized access if you step away from your device on a shared computer.

Two-Factor Authentication

Enable 2FA in your account settings to add a second layer of security. We support SMS and authenticator app methods for login and withdrawal confirmation.

Privacy Policy Questions

We delete personal data within 30 days of account closure. Transaction records are retained for seven years to comply with Indonesian financial reporting requirements. You can request a data export before deletion.

Yes. Log into your account, go to Settings > Privacy, and click 'Request Data Export'. We'll email you a complete file of your account information, transaction history and preferences within five business days.

We share only the minimum data needed to run your game session: your account ID, session token and bet amount. Game providers never receive your name, email, phone or payment details.

No. Your e-wallet credentials are processed through encrypted payment gateways and never stored on our servers. We store only a transaction reference and your account balance for reconciliation.

We maintain cyber insurance and have a 24-hour incident response team. If a breach occurs, we notify affected users within 24 hours, provide credit monitoring where applicable and work with Indonesian authorities.

Yes. Every marketing email includes an unsubscribe link. You can also disable marketing communications in your account settings under Preferences. We'll stop sending promotional content within 48 hours.

No. Our cookies are used only within bahantoto to remember your login and language preference. We don't place tracking pixels or retargeting cookies. You can disable all non-essential cookies in your browser settings.