LEGAL REFERENCE

Your Privacy Comes First

We built bimatoto around your account security and data protection. Every transaction you make through DANA, OVO, GoPay or QRIS stays encrypted and private. This policy explains exactly...

Data EncryptedPayment SecureAccount PrivateQRIS ProtectedYour Control
Explore Games Read FAQ
bimatoto Your Privacy Comes First

How We Protect Your Information

bimatoto operates under privacy standards designed for Indonesia's digital ecosystem. We collect only what's needed to verify your account, process your DANA, OVO, GoPay and QRIS transactions, and keep your lobby activity safe. Your personal data—name, email, phone number and payment details—is stored on secure servers with restricted access. We never sell your information to third parties. Where local law permits, we

may share transaction records with payment partners to complete your deposits and withdrawals. You can request access to or deletion of your data at any time through your account settings.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

PLAYER SUPPORT

Privacy Questions? We're Here

Email Support Send privacy concerns to our data protection team...
Live Chat Open the chat widget in your account dashboard...
Account Settings Manage your privacy preferences directly. Control what notifications...
PLATFORM TRUST SIGNALS

Privacy Standards We Follow

Encryption Standard

All data in transit and at rest uses TLS 1.3 encryption. Your QRIS, DANA, OVO and GoPay payment details never...

Access Controls

Only authorized staff can view your personal information. We audit access logs monthly and restrict permissions to the minimum needed...

Data Retention

We keep your account data for as long as your account is active. After closure, we retain transaction records for...

Third-Party Audits

Independent security firms test our systems quarterly. Audit reports confirm our encryption, access controls and data handling meet industry standards.

Incident Response

If a data breach occurs, we notify affected users within 48 hours and work with authorities. We maintain cyber insurance...

Policy Updates

We review this privacy policy every six months. Material changes are announced via email and in-app notification at least 30...

Consistency Across Our Platforms

Desktop Lobby
Same privacy protections apply whether you access live tables, slots or sportsbook markets on desktop. Your data handling is identical across all devices.
Mobile App
Our mobile app uses the same encryption and access controls as the web platform. DANA, OVO, GoPay and QRIS payments are protected identically on phone.
Live Dealer Sessions
Video streams from live casino tables are encrypted end-to-end. Your chat messages and betting activity during live play remain private and secure.
Sportsbook Markets
Your betting history, odds selections and account balance in the sportsbook section follow the same privacy standards as casino and slot lobbies.
Payment Processing
Whether you deposit via QRIS, DANA, OVO or GoPay, your transaction data is handled by the same secure payment gateway with identical encryption protocols.
Account Recovery
If you reset your password or recover your account, the same data protection applies. Recovery codes and verification steps are encrypted and time-limited.
Withdrawal Requests
When you request a payout to your DANA, OVO, GoPay or QRIS wallet, your banking details are verified securely and never stored in plain text.

What Defines Our Privacy Approach

Minimal Data Collection

We ask only for information needed to verify your identity and process payments. No unnecessary fields, no hidden data requests. Your account opens with just email and phone.

Transparent Logging

Every login, deposit and withdrawal is logged and visible in your account history. You can review exactly when and where your account was accessed.

Payment Partner Privacy

DANA, OVO, GoPay and QRIS handle their own data according to their privacy policies. We share only the minimum needed to complete your transaction securely.

Cookie Transparency

We use cookies only for session management and fraud prevention. No tracking cookies, no ad networks. You can disable non-essential cookies in your browser settings.

No Data Selling

Your information is never sold to marketers, data brokers or advertisers. We monetize through gaming operations, not by trading your personal details.

Deletion Rights

Request account deletion anytime. We remove your personal data within 30 days, except transaction records kept for regulatory compliance in supported regions.

Privacy Policy Questions Answered

We retain transaction records for seven years to comply with financial regulations in supported regions. Your card or wallet details are deleted within 30 days of your final withdrawal unless you request otherwise.

Yes. Open your account settings and select 'Data Access Request.' We'll compile your personal information, login history and transaction records into a downloadable file within 14 days.

Only transaction details needed to complete your deposit or withdrawal. We don't share your email, phone number or betting history with payment partners. Each handles your data under their own privacy policy.

We notify affected users within 48 hours with details of what was accessed and steps to secure your account. We maintain cyber insurance and work with authorities to investigate and prevent future incidents.

Yes. Request account deletion in your settings. We remove personal data within 30 days. Transaction records are kept for seven years per financial regulations in supported regions.

Passwords are hashed using industry-standard algorithms and never stored in plain text. We recommend enabling two-factor authentication via email or SMS for additional security on your account.

No. Our cookies are session-only and used for account security and fraud prevention. We don't use tracking pixels or ad networks. You can disable cookies in your browser settings anytime.