Data Encryption
TLS 1.2+ for all connections; AES-256 for stored data. Payment details encrypted separately by QRIS, DANA, OVO and GoPay processors.
We built bayi toto around Indonesia's payment ecosystem and your account security. This privacy policy explains how we collect, use and protect your information across live tables, slot...
When you open an account with bayi toto, we collect your name, email, phone number and payment details to verify your identity and process deposits via QRIS, DANA, OVO or GoPay. We also track your gaming activity, session history and account balance to deliver the lobby experience you expect. Your data is encrypted and stored in compliance with Indonesian data protection standards.
We never sell your information to third parties. Payment processors handle transaction data separately under their own security protocols. Your account remains yours; we're here to keep it safe and accessible.
Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.
All data in transit and at rest uses industry-standard TLS 1.2+ encryption. Your QRIS, DANA, OVO and GoPay transactions are protected by the same protocols banks use.
We don't monetize your data. Your gaming history, payment methods and account balance stay within bayi toto. Marketing partners see only anonymized, aggregated trends.
Our security team conducts quarterly reviews of data handling practices. We test encryption, access controls and backup systems to catch vulnerabilities early.
Our privacy framework respects Indonesian data residency expectations and payment system regulations. QRIS, DANA, OVO and GoPay integrations follow local compliance standards.
You can request a copy of your data, correct inaccuracies or ask for deletion. We process these requests within 30 days and confirm completion in writing.
When we change this policy, we notify you via email and in-app message at least 14 days before the change takes effect. You can review the full update before it applies.
TLS 1.2+ for all connections; AES-256 for stored data. Payment details encrypted separately by QRIS, DANA, OVO and GoPay processors.
We share data only with payment processors and legal authorities when required. No marketing lists, no data brokers, no affiliate networks.
Account data retained for 7 years post-closure to meet tax and anti-fraud rules. Session logs deleted after 90 days unless a dispute is active.
You can access, correct, port or delete your data anytime. Requests processed within 30 days. No fees for standard data subject requests.
If a breach occurs, we notify affected users within 72 hours with details of what was exposed and steps we've taken to secure your account.
We use session cookies for login and preference storage. No cross-site tracking. Analytics are anonymized and aggregated; you can opt out in settings.
Our policy aligns with Indonesian data protection norms and payment system rules. QRIS, DANA, OVO and GoPay integrations follow local regulatory frameworks.