Your data safety is how we earn trust
We've built our privacy policy around one principle: your account, your payments through DANA, OVO, GoPay and QRIS, and your personal details stay secure and private. This page...
What we collect and why
When you open an account with deditoto, we collect information needed to verify your identity, process your DANA, OVO, GoPay and QRIS transactions, and keep your account secure. We gather your name, email, phone number, payment details and game activity. This information is held only as long as your account is active and for the period required by Indonesian regulations in supported
regions. We do not sell your data to third parties. Our servers encrypt all transfers between your device and our platform. Access to your account details is limited to authorized staff and trusted payment processors.
Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.
How we earn your trust on privacy
Encryption standard
All connections use TLS 1.2 or higher. Your DANA, OVO, GoPay and QRIS payment details are stored in encrypted vaults separate from game logs.
Audit trail
Our system logs who accesses your data and when. You can request a copy of your data-access history at any time through privacy support.
Third-party testing
We contract independent security auditors annually to test our encryption, data handling and payment processor integrations for vulnerabilities.
Consent-first design
We ask for your permission before using your email or phone for marketing. You can opt out of all promotional messages from your account settings anytime.
Regional compliance
Our policy aligns with data protection standards in supported Indonesian regions. We respect local regulations around payment data and account retention.
No data sale
We never sell your account details, game history or payment information to advertisers, brokers or third-party data firms. Period.
How our privacy stance compares
| Data portability | We let you download a copy of your account data in standard format. Other platforms often gate this behind support tickets or delays. |
|---|---|
| Transparent logging | You can see when your account was accessed and from which device. Most casino sites don't show you this level of detail. |
| Payment isolation | Your DANA, OVO, GoPay and QRIS credentials are never stored on our main servers. They stay with encrypted payment partners only. |
| Deletion window | Request account deletion and we purge your data within 90 days. Some platforms keep anonymized records indefinitely without consent. |
| Cookie clarity | We list every cookie, tracker and analytics tool on this site. You control which ones are active from your browser settings. |
| No data brokers | We don't hire data brokers to refine your profile or sell lookalike audiences. Your information stays internal and secure. |
| Breach notification | If any security incident affects your account, we notify you within 24 hours with details and next steps. Transparency is non-negotiable. |
What shapes our privacy promise
Dedicated security team
We employ full-time engineers who monitor account activity, flag suspicious login attempts and protect against unauthorized access 24/7.
Payment partner vetting
We work only with DANA, OVO, GoPay and QRIS processors that meet banking-grade encryption. Every partner is audited before integration.
Two-factor authentication
Enable 2FA on your account to require a second verification step. We send codes via SMS or app notification, not email.
Session timeout
Inactive accounts log out automatically after 30 minutes. This prevents unauthorized access if you leave your device unattended.
IP whitelisting
Add trusted device fingerprints to your account. We'll alert you if a login attempt comes from an unfamiliar location or browser.
Regular backups
Your account data is backed up daily to secure offline storage. If a server fails, your game history and balance are restored within hours.