LEGAL REFERENCE

Your data security starts here

geraitoto protects your account, payment details and personal information with encryption and transparent data handling. We explain exactly what we collect, how we use it, and your rights...

DANAOVOGoPayQRIS
Enter Game Lobby Read FAQ
geraitoto Your data security starts here

Policy scope and jurisdiction

This privacy policy applies to geraitoto.app and all services we provide in supported regions of Indonesia, including live casino tables, slot rooms and sportsbook markets. We collect data to verify your identity, process payments through DANA, OVO, GoPay and QRIS, prevent fraud and improve your experience. Your information is held securely and shared only with payment partners and legal authorities where required

by local law. You retain rights to access, correct or request deletion of your data under applicable Indonesian privacy frameworks.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

24/7 SUPPORT

Privacy questions and requests

Email support Contact our data protection team at [email protected] for...
Account settings Review and update your personal details, communication preferences...
Legal requests We respond to formal data access requests and...
TRUST MARKERS

Privacy standards we uphold

Encryption layer

All account logins, payment transactions and personal data travel over encrypted channels. Your DANA, OVO, GoPay and QRIS details never touch unprotected storage.

No third-party selling

We do not sell your data to advertisers, marketers or external brokers. Partner access is limited to payment processors and anti-fraud services only.

Regular audits

Our infrastructure undergoes quarterly security reviews. We keep this commitment public so you know what safeguards are active.

Transparent processing

Every data collection point on geraitoto includes a brief note explaining why. You see exactly what information we ask for and the reason.

Retention limits

Account data stays on file as long as your account is active. After closure, most personal data is deleted within 90 days unless law requires otherwise.

Indonesia-first compliance

We align our practices with the privacy expectations of Indonesia's digital ecosystem and applicable data protection guidelines in supported regions.

Consistency across our legal docs

Terms of Service alignmentBoth our Terms and Privacy Policy cover account responsibility, payment methods (DANA, OVO, GoPay, QRIS) and dispute resolution in the same voice.
Payment security clausePrivacy and Terms both confirm that payment data is encrypted and never stored on unsecured servers. Consistency reinforces our commitment.
Fraud detection noticeWe explain in both documents how we use your data to spot suspicious activity. Same wording, same promise of protection.
Data deletion rightsPrivacy Policy and account closure procedures both detail how long data is retained and how to request removal after you close.
Third-party sharing limitsBoth policies draw the same boundaries: payment partners and legal bodies only. No cross-policy contradictions.
Contact escalation pathsTerms and Privacy each list the same support email and legal contact. One consistent channel for all inquiries.
Policy update noticeBoth documents confirm we'll notify you in-app or by email if we change Privacy or Terms. You see changes before they take effect.
PLATFORM SNAPSHOT

What shapes our privacy approach

Mobile-first account access We designed geraitoto for phones, which means your data flows...
Fast account verification We collect minimal identity data upfront to open your account...
Payment method protection DANA, OVO, GoPay and QRIS credentials are never stored on...
Session safety defaults Your geraitoto session auto-logs out after 30 minutes of inactivity...
Transparent data use Every time we collect data—for KYC, fraud prevention or feature...
Dispute resolution clarity If you dispute a transaction or privacy concern, we share...

Common privacy questions

After account closure, most personal data is deleted within 90 days. Payment history and identity records may be retained longer where Indonesian law requires it. You can request a full data export before deletion.

Yes. Email [email protected] with 'Data Access Request' in the subject line. Include your account email and phone number. We'll send a complete export of your stored information within 14 days.

No. Payment credentials are tokenized immediately after each transaction and deleted from our systems. We store only a reference token and transaction receipt for your account history and dispute resolution.

Only your payment processor partners (for DANA, OVO, GoPay and QRIS transactions) and Indonesian legal authorities under court order. We never share your data with marketers, advertisers or unrelated third parties.

We monitor for security incidents 24/7. If a breach occurs, we notify affected accounts within 48 hours via email and in-app alert. You'll receive guidance on securing your account and protecting your linked payment methods.

We analyze anonymized gameplay patterns, feature usage and crash reports to optimize lobby performance and payment flows. Individual names and payment details are never included in this analysis. You can opt out in settings.

You can edit your profile name, email and phone number in account settings anytime. For permanent deletion of specific data points, contact [email protected] with details. We'll process requests within 30 days where not required by law to retain.