doyantotoPrivacy Policy
This page describes what we collect when you use doyantoto and how we keep that data protected. We operate in multiple jurisdictions, and our approach to your data differs depending on where you are located—whether you are accessing doyantoto from Jakarta, Surabaya, Bandung, Medan, or another supported region. We undertake to be transparent about the data we collect during account registration, when you deposit via DANA, e-wallet, mobile banking, or bank transfer, and while you place forecasts on Liga 1, Piala AFF, Champions League, or other markets available on our platform.
We are the controller of the data you provide. Third-party payment processors (local payment, online payment, e-wallet, mobile banking, local payment, online payment) and live-dealer studios operate as separate data processors where relevant. This policy sets out your rights, how we secure your information, and how to contact us if you have concerns about your data or wish to exercise your rights.
Our privacy commitments are binding and apply equally to all users where local law permits us to operate. If you do not agree with our data practices, you should not create a doyantoto account or provide personal information to us.
What We Collect and How We Use Your Data
We collect information in several categories. When you register for doyantoto, we collect your email, phone number, date of birth, and full name. During Know Your Customer (KYC) verification, we collect a copy of your government ID, confirmation of your residential address, and a phone verification code. When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or a mobile banking, local payment, online payment, e-wallet account, we record the transaction amount, timestamp, and payment method. When you place a forecast on Liga 1, Piala Indonesia, or any other market, we log the forecast details, stake, odds, and outcome.
We use this data for four core purposes. First, we verify your identity and prevent fraud—your ID and address confirm you are who you claim to be, and we compare your KYC documents against public fraud databases. Second, we manage your account—we use your email and phone to send account notifications, withdrawal confirmations, and password recovery codes. Third, we comply with anti-money-laundering (AML) and know-your-customer regulations in the jurisdictions where we operate. Fourth, we improve our service—we analyse forecasting patterns and user activity to identify technical issues, improve the doyantoto interface, and detect suspicious behaviour.
Data you provide directly
- Account registration: email, name, phone, date of birth
- KYC verification: government ID, address, phone verification
- Payment history: deposits via mobile banking, local payment, or bank account
- Betting activity: all forecasts, stakes, outcomes, withdrawals
- Communications: emails, support tickets, live-chat messages
Third-Party Data Processors
We engage third parties to deliver parts of doyantoto. Payment processors (online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, and our banking partners mobile banking, local payment, online payment, e-wallet) receive only the information necessary to process your deposits and withdrawals. Live-dealer studios (blackjack, roulette, Dragon Tiger) receive your username and session ID to authenticate your play but do not receive your financial data. Our hosting provider stores our servers outside your jurisdiction; your data is encrypted in transit and at rest.
We do not sell your personal data. We do not share your data with marketing companies, data brokers, or third parties unrelated to delivering doyantoto services. We may disclose your data to law enforcement or regulators if we receive a valid legal order.
Your Rights and Data Security on doyantoto
You have the right to access, correct, or request deletion of your personal data. You can download your account history—all forecasts, deposits, withdrawals—from your account settings. If your data is inaccurate, contact our support team and we will correct it. If you wish to delete your account and associated data, we will remove it within 30 days of your request, except where we are required to retain records for AML or regulatory compliance.
We encrypt all data in transit using TLS and store sensitive data (IDs, payment records) in encrypted databases. Our staff access your data only when necessary for account support or fraud investigation. We retain KYC documents for five years; forecasting history is retained for 12 months; payment records are retained for seven years as required by financial regulators.
We use cookies to remember your login session and recognise you on return visits. Cookies are stored on your device and expire when your browser closes (session cookies) or after 30 days of inactivity (persistent cookies). You can disable cookies in your browser, though this may limit doyantoto functionality.
If you have questions about our privacy practices, wish to exercise your rights, or have a concern about how we handle your data, contact our privacy team via support email or the in-app contact form. We respond to data requests within 15 business days.