LEGAL REFERENCE

How We Protect Your Account & Data

Your privacy matters to us. This policy outlines exactly how toto21 collects, uses and safeguards your personal information — from account sign-up through every deposit, withdrawal and gaming...

Account SecurityPayment DataGaming PrivacyEncryptionYour Control
Enter Game Lobby Read FAQ
toto21 How We Protect Your Account & Data

Privacy Policy & Data Protection

toto21 operates in supported regions where local law permits. We collect your name, email, phone number and payment details to verify your identity, process deposits via DANA, OVO, GoPay and QRIS, and maintain account security. Your gaming activity is logged to prevent fraud and comply with local regulations. We do not sell your data to third parties. Encryption protects all transmissions. You

may request access to or deletion of your personal information subject to legal obligations. Our privacy commitments align with Indonesian data protection standards and supported regional requirements.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

PLAYER SUPPORT

Privacy Questions & Support Channels

Live Chat Reach our support team via live chat on...
Email Support Send detailed privacy inquiries to our compliance team...
Account Settings Manage your privacy preferences, notification settings and data...
WHY THIS PLATFORM

Policy Integrity & Your Privacy Rights

Transparent Practices

We publish this policy in plain English so you understand exactly what data we hold, how we use it and...

Encryption Standard

All account logins, payment details and gaming records are encrypted end-to-end using industry-standard SSL/TLS protocols.

No Third-Party Sales

Your personal information is never sold to advertisers, brokers or external firms. We keep it within toto21 only.

Data Access Rights

You can request a full export of your account data, activity history and personal information at any time from support.

Deletion Requests

Subject to legal hold periods, we honour requests to delete your account and associated data within supported regions.

Regular Audits

Our privacy procedures are reviewed quarterly to ensure compliance with evolving data protection standards and local law.

Policy Consistency Across toto21 Brand

Single Policy FrameworkAll toto21 pages — lobby, sportsbook, slots, live casino — operate under one unified privacy policy covering the entire account.
Uniform Data CollectionWhether you deposit via DANA, OVO, GoPay or QRIS, the same privacy standards apply. Payment method does not change our protections.
Consistent EncryptionLive tables, slot lobbies and sportsbook markets all transmit your session data through the same encrypted tunnel.
Same Retention RulesGaming records, account history and payment logs follow identical storage timelines across all toto21 features.
Unified Support FlowPrivacy requests, data access inquiries and deletion demands route through one support queue with standardised response times.
Shared Audit TrailEvery login, transaction and activity is logged to a single ledger visible to our compliance team for fraud prevention.
Cross-Feature ClarityIf you play slots, then sportsbook, then live casino in one session, your privacy posture remains constant throughout.
AT A GLANCE

What Defines Our Privacy Approach

Mobile-First Security Your account is protected on every device — phone, tablet...
Session Isolation Each login generates a unique session token. Even if one...
Payment Privacy Shield Your DANA, OVO, GoPay and QRIS details are tokenised. We...
Activity Pseudonymisation Internal gaming logs use account IDs, not names. Your actual...
Audit Trail Accessibility You can request a complete log of every login, deposit...
Compliance Certification Our privacy framework is reviewed by independent auditors annually to...

Privacy Policy Questions Answered

We collect your name, email, phone number, and payment details to verify identity and process deposits via DANA, OVO, GoPay and QRIS. We also log your login times, gaming activity, bet history and IP address for fraud prevention and account security.

Account and payment records are retained for the duration of your membership plus 7 years for compliance. Gaming logs are archived for 5 years. You may request earlier deletion where local law permits. Specific retention depends on regional regulatory requirements.

Yes. Contact our support team via live chat or email [email protected] with a data access request. We'll provide a complete export of your account details, transaction history and gaming activity within 14 business days.

All payment data is tokenised and encrypted using SSL/TLS protocols. We never store full DANA, OVO, GoPay or QRIS credentials. Payment processing is handled by PCI-DSS compliant third-party gateways for added security.

We do not sell or share your personal information with advertisers or brokers. We may share data with payment processors, fraud prevention services and regulators only where required by law in supported regions.

Immediately contact [email protected] with details of the suspected breach. Change your account password, enable two-factor authentication if available, and review your recent activity for unauthorised transactions.

Yes. Submit a deletion request to our support team. Your account will be closed and personal data removed within 30 days, subject to legal hold periods required by local regulation in your supported region.