koi toto Privacy Policy

We collect and protect your personal data when you use koi toto. This page describes what information we gather, how we use it, who has access to it, and what rights you have over your data. Our approach prioritizes security and transparency—we do not sell your information to third parties, and we limit data collection to what is necessary to operate our platform and comply with local regulations.

When you create an account on koi toto, deposit funds, or place a stake, you provide us with personal information. We use this data to verify your identity, process your payments, settle your bets, and communicate with you about your account. We also use it to detect fraud, prevent money laundering, and comply with Indonesian financial regulations.

Our servers may be located outside your jurisdiction. Your data is encrypted in transit and at rest. We maintain strict access controls—only koi toto staff with a legitimate business need can view your personal information. This policy explains our practices in detail. If you have questions about how we handle your data, contact our support team via in-app chat.

What Data We Collect on koi toto

We collect several categories of information when you use koi toto. First, we collect account information: your email address, password (encrypted), full name, date of birth, government ID number, and proof of address. This information is required for account verification and compliance with local regulations.

Second, we collect payment information. When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank transfer (mobile banking, local payment, online payment, e-wallet), we record the payment method, amount, date, and transaction ID. We do not store your full payment credentials—payment processors handle that securely on their own systems. We retain payment records for accounting and fraud detection.

Third, we collect activity data. We log every game you play, every stake you place, every withdrawal you request, and every support ticket you open. This includes timestamps, game IDs, stake amounts, and outcomes. We use this data to settle disputes, detect fraud, and improve our platform.

Fourth, we collect device and connection information. We record your device type (Android or iOS), app version, IP address, and approximate location based on IP geolocation. This helps us detect unauthorized access and ensure you are accessing koi toto from a permitted jurisdiction.

Account data: Email, name, date of birth, government ID, proof of address. Required for verification and compliance.
Payment data: Payment method, amount, date, transaction ID. Retained for accounting and fraud detection.
Activity data: Game history, stakes, outcomes, withdrawals, support tickets. Used for dispute resolution and fraud prevention.
Device data: Device type, IP address, approximate location. Used for security and jurisdiction verification.

How We Use Your Data on koi toto

We use your data for several purposes. First, we use it to operate koi toto—to process your deposits and withdrawals, settle your bets, and provide customer support. Second, we use it to verify your identity and prevent fraud. We cross-check your information against fraud databases and monitor for suspicious patterns like multiple accounts or unusual betting behavior.

Third, we use your data to comply with Indonesian financial regulations. We are required to verify customer identity (KYC), monitor for money laundering (AML), and report suspicious activity to relevant authorities. We retain your data for the periods required by law, typically several years after your account closes.

Fourth, we use your data to improve koi toto. We analyze aggregate usage patterns to understand which games are popular, which payment methods work best, and where our platform experiences issues. This analysis does not identify you personally—we use anonymized data.

We do not use your data for marketing purposes without your consent. We do not sell your data to third parties. We do not share your data with advertisers or data brokers.

We encrypt your data in transit and at rest.

Your personal information is protected by encryption standards. We use HTTPS for all connections to koi toto, and we encrypt sensitive data on our servers. Only authorized koi toto staff can access your information.

Third-Party Processors and Data Sharing on koi toto

We work with third-party service providers to operate koi toto. These include payment processors (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet), cloud hosting providers, and customer support platforms. We share only the data necessary for each provider to perform their function. For example, we share your payment information with payment processors to process your deposits and withdrawals, but we do not share your game history with them.

All third-party processors are contractually required to protect your data and use it only for the purposes we specify. We do not allow them to use your data for their own marketing or to share it with other parties.

We may disclose your data if required by law. If a court orders us to provide your information, or if we are required to report suspicious activity to financial authorities, we comply. We do not voluntarily share your data with government agencies unless legally required.

Your Rights and Data Retention on koi toto

You have the right to access your personal data. Contact our support team to request a copy of all information we hold about you. We provide this within 14 days at no cost.

You have the right to correct inaccurate data. If your name, address, or other information is wrong, contact support and we update it immediately.

You have the right to request deletion of your data. If you close your account on koi toto, we retain your data for the periods required by law (typically several years for financial records). After those periods expire, we delete your data. You may request earlier deletion for non-essential data, though we may retain some information for legal compliance.

We retain your data as follows: account information for the life of your account plus seven years after closure (required by Indonesian financial regulations); payment records for seven years (required for tax and AML compliance); activity logs for three years (for dispute resolution); device and connection logs for one year (for security).

Cookies and Tracking on koi toto

We use cookies to keep you logged in and to remember your preferences on koi toto. These are essential cookies—without them, the platform would not function. We do not use tracking cookies for advertising or analytics.

You can disable cookies in your browser settings, but this will prevent koi toto from functioning properly. We do not recommend disabling cookies.

Contact and Updates on koi toto

If you have questions about this privacy policy or how we handle your data, contact our support team via in-app chat. We provide English-language support during business hours.

We may update this policy at any time. Material changes are communicated via email or in-app notification. Your continued use of koi toto after changes take effect means you agree to the updated policy. If you do not agree with changes, you may close your account before the changes take effect.

Our privacy practices apply to all account holders on koi toto, regardless of location. We operate only in jurisdictions where local law permits. Account holders in Jakarta, Surabaya, Bandung, Medan, and Semarang may access koi toto where local law permits. We comply with all applicable data protection regulations in those jurisdictions.