LEGAL REFERENCE

Your Data. Your Control. Our Commitment.

We handle your account details, payment records and gaming history with the same care you'd expect from a platform built for Indonesia. This policy explains exactly what we...

Data SecurityPayment PrivacyAccount ProtectionTransparent PracticesYour Rights
rimbatoto Your Data. Your Control. Our Commitment.

Privacy Policy Overview

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

SUPPORT

Privacy Questions & Support

Have concerns about how we handle your data? Reach out through any of these channels and we'll respond within one business day.

Email Support Send privacy inquiries to our data team at [email protected]. We'll confirm receipt and address your request according to local data protection timelines.
Account Settings Review and update your personal information directly in your account dashboard. Changes take effect immediately and are logged for your security.
Live Chat Our support team can walk you through privacy settings, data requests and account controls during business hours via the chat widget on your account page.
WHY VISITORS TRUST US

Why Your Privacy Matters to Us

Privacy isn't a checkbox for us—it's built into how we operate. Here's what backs our commitment.

Encryption Standard

All data in transit uses TLS 1.2 or higher. Payment information is tokenized and never stored in plain text on our servers.

Compliance Framework

We align with Indonesian data protection principles and gaming regulations for supported regions, reviewed quarterly by our legal team.

Third-Party Audits

Our infrastructure undergoes annual security assessments by independent firms to verify encryption, access controls and incident response protocols.

Payment Partner Vetting

DANA, OVO, GoPay and QRIS integrations are certified and monitored. We share only the minimum data needed to process your transaction.

Data Minimization

We collect only what's necessary to verify your identity, process payments and deliver your gaming session. No unnecessary tracking or profiling.

Incident Response

If a breach occurs, we notify affected users within 72 hours and provide guidance on account security steps you can take immediately.

SIDE BY SIDE

How Our Policy Stands

We've aligned our privacy practices with what Indonesia's gaming community expects: clarity, speed and real protection.

01

Clear Language

No legal jargon hiding the facts. We explain what we collect, why, and how long we keep it in plain English.

02

Payment Transparency

Your DANA, OVO, GoPay and QRIS transactions are logged separately from your gaming activity for your audit trail.

03

User Control

You can download your data, request corrections or ask for deletion. We process these requests within 30 days.

04

No Hidden Sharing

We don't sell your email, phone or gaming history to marketers. Third-party access is limited to payment processors and compliance partners.

05

Regular Updates

When we change this policy, we notify you via email at least 30 days in advance. You can review changes before they take effect.

06

Accessible Support

Privacy questions get routed to our data team, not a generic support queue. Expect a substantive response, not a template.

07

Breach Accountability

If we experience a data incident, we report it to you and relevant authorities within the required timeframe, with clear next steps.

PLATFORM SNAPSHOT

What This Policy Covers

Privacy protection spans every part of your rimbatoto experience—from account creation through live casino sessions, slot play and sportsbook activity. We detail how each touchpoint handles your information.

01
Account Registration We collect your name, email, phone and date of birth to verify your identity and comply with gaming regulations in supported Indonesian regions.
02
Gaming Activity Logs Your session history, game selections and betting patterns are recorded for account security, dispute resolution and your own transaction history.
03
Payment Processing DANA, OVO, GoPay and QRIS transactions are processed through encrypted channels. We retain transaction records for 7 years per regulatory requirements.
04
Device & Location Data We log your IP address and device type to detect unauthorized access and prevent fraud. This data is deleted after 90 days unless a dispute is active.
05
Communication Records Support chats, emails and account notifications are stored to resolve issues and improve our service. You can request deletion of these records anytime.
06
Cookie & Analytics We use cookies to remember your preferences and track site performance. You can disable non-essential cookies in your browser settings without losing account access.

Privacy Policy Questions

We retain your account information for as long as your account is active. After closure, we keep records for 7 years to comply with gaming and financial regulations. Payment transaction logs are retained for the same period. You can request earlier deletion where local law permits.

Yes. Log into your account, go to Settings > Privacy, and select 'Download My Data'. We'll compile your personal information, transaction history and gaming logs into a file and email it within 14 days. No charge applies.

No. Payment details are tokenized—we store a secure reference, not your actual card or wallet number. DANA, OVO, GoPay and QRIS process the transaction directly. We never see your full payment credentials.

We notify you via email within 72 hours with details of what was accessed and steps to secure your account. We also report the incident to relevant authorities in supported regions and provide free credit monitoring if personal data was exposed.

No. We do not sell, rent or trade your personal information. We share data only with payment processors, compliance partners and legal authorities when required by law. All partners sign strict confidentiality agreements.

Yes. Essential cookies (login, security) cannot be disabled, but you can turn off analytics and marketing cookies in your browser settings or our Privacy Center. This won't affect your gaming experience or account access.

Go to Settings > Account > Close Account and follow the prompts. We'll deactivate your account immediately and delete personal data within 30 days, except records we must retain for legal or regulatory compliance.