LEGAL REFERENCE

Your Privacy Matters to Us

We've built top5 toto around your account security and data protection. Every transaction through QRIS, DANA, OVO or GoPay, every lobby session, and every payout is handled with...

Data ProtectionSecure PaymentsTransparent PracticesYour Control
Enter Game Lobby Read FAQ
top5 toto Your Privacy Matters to Us

How We Handle Your Information

top5 toto collects and processes personal data to deliver your account, process payments via QRIS, DANA, OVO and GoPay, and comply with local regulations in supported regions. We use encryption for all sensitive information, limit staff access to what's necessary, and never sell your data to third parties. Your account details, transaction history and payment preferences stay with us alone. We retain

data only as long as needed for account operations and legal compliance.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

SUPPORT

Questions About Your Privacy

Email Support Reach our privacy team at [email protected] with any data requests, deletion inquiries or privacy concerns. We respond within 48 hours.
Account Settings Manage your personal data, communication preferences and privacy controls directly from your account dashboard. Changes take effect immediately.
Live Chat Chat with our support team during lobby hours to discuss privacy questions, data access requests or account security concerns in real time.
PLATFORM TRUST SIGNALS

Privacy Standards We Follow

Encryption Standard

All account logins, payment details and personal information travel over TLS 1.2+ encryption. Your QRIS, DANA, OVO and GoPay transactions...

Data Minimization

We collect only what's needed to run your account, process payouts and meet local compliance. No unnecessary fields, no hidden...

Third-Party Audit

Our privacy practices are reviewed annually by independent security auditors. Audit reports confirm our encryption, access controls and data handling...

Staff Training

Every team member with access to account data completes privacy and security training annually. Violations result in immediate access revocation...

Incident Response

If a data breach occurs, we notify affected users within 24 hours with details of what happened, what we're doing...

Compliance Updates

We monitor changes to Indonesian data protection regulations and update this policy within 30 days of any legal change affecting...

Privacy Across Our Platform

Casino Lobby
Your live table sessions, slot room history and game preferences are encrypted and stored separately from payment data for added security.
Sportsbook Markets
Betting history and market selections are tied to your account but never shared with third-party odds providers or analytics firms.
Payment Processing
QRIS, DANA, OVO and GoPay transactions are processed through PCI-compliant payment gateways. We never store full card or wallet credentials.
Account Recovery
If you lose access, we verify your identity through email and phone before resetting your password. No shortcuts, no account takeovers.
Payout Requests
Withdrawal requests require two-factor authentication. Your destination wallet or bank account is confirmed before any funds leave our system.
Session Management
Your lobby session expires after 30 minutes of inactivity. Log out manually anytime to end your session immediately across all devices.
Device Tracking
We log the devices and locations where you access your account. You can review and revoke access from any device in your security settings.
PLATFORM SNAPSHOT

What Defines Our Privacy Approach

01
Transparent Logging Every login, payment and data access is logged with a timestamp. You can download your full activity report from your account anytime.
02
No Cookies for Tracking We use cookies only for session management and account preferences. No third-party trackers, no behavioural profiling, no ad networks.
03
Data Deletion Rights Request account closure and we delete your personal data within 30 days, except where local law requires us to retain records for compliance.
04
API Security If you connect external tools to your account, each connection requires explicit permission and can be revoked instantly from your settings.
05
Breach Notification We maintain cyber insurance and incident response protocols. Any breach affecting your data triggers immediate notification and remediation steps.
06
Privacy by Design New features are built with privacy first. Before launch, every feature undergoes a privacy impact assessment and security review.

Privacy Questions Answered

We delete personal data within 30 days of account closure, except transaction records required by Indonesian financial regulations, which we retain for seven years. You can request a data export before deletion.

Yes. Log into your account, go to Settings > Privacy, and click 'Download My Data'. We'll email you a complete record of your personal information, transactions and activity within 48 hours.

No. Payment details are processed through encrypted payment gateways and never stored on our servers. We keep only a reference ID and transaction confirmation for your records.

Only our support team (when you contact us), our fraud prevention team (to protect your account) and our compliance team (to meet legal requirements) can access your data. All access is logged and audited.

Any acquisition or merger requires explicit consent from you regarding data transfer. We'll notify you 60 days in advance and give you the option to delete your data instead of transferring it.

We use two-factor authentication, IP whitelisting, device fingerprinting and real-time fraud detection. You can enable additional security features like login alerts and session limits in your settings.

Yes. Every marketing email includes an unsubscribe link. You can also manage email preferences in your account settings. We'll stop sending promotional content within 24 hours.