LEGAL REFERENCE

Your Privacy Comes First at destoto

We built destoto around your account security and data protection. Every deposit through DANA, OVO, GoPay or QRIS, every table you join, and every bet you place stays...

Data EncryptedPayment SecureAccount PrivateQRIS ProtectedIndonesia Compliant
Browse the Lobby Read FAQ
destoto Your Privacy Comes First at destoto

What We Collect and Why

When you open your destoto account, we collect your name, email, phone number and payment details to verify your identity and process transactions through DANA, OVO, GoPay and QRIS. We also track your login history, game activity and account balance to detect fraud and keep your lobby running smoothly. We never sell your data to third parties. Your information stays with us

and our payment processors in supported regions where local law permits.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

SUPPORT

Privacy Questions? We're Here

Email Support Send privacy concerns to our data team at...
Account Settings Log into your destoto account and visit Settings...
Live Chat Open the chat widget in the bottom-right corner...
WHY VISITORS TRUST US

How We Protect Your Trust

SSL Encryption

Every transaction and login uses 256-bit SSL encryption. Your DANA, OVO, GoPay and QRIS payments travel through secured channels that...

Regular Audits

We conduct quarterly security audits with third-party firms to test our defences. Audit reports are available to account holders upon...

Data Minimisation

We only ask for information we actually need to run your account and process payments. We don't collect browsing history...

Breach Response

If a security incident occurs, we notify affected users within 48 hours and provide guidance on account protection. Our incident...

Staff Training

Every destoto employee handling account data completes privacy and security training annually. Access to your information is logged and reviewed...

Compliance Framework

We follow Indonesia's data protection guidelines and international standards like GDPR principles. Our legal team reviews this policy annually to...

Privacy Across destoto Pages

Home Lobby
Your account dashboard shows only your balance, recent bets and available tables. We don't display other players' data or betting history on your screen.
Live Casino Tables
Table chat is moderated and temporary. We don't store player conversations. Your seat position and bet amounts are visible only to you and the dealer.
Sportsbook Markets
Your betting slip and odds selections stay private. We don't share your market preferences or bet history with other users or external analytics firms.
Slot Lobbies
Your spin history and winnings are encrypted in your account. Slot RTP data is public, but your individual session results remain confidential.
Payment Pages
DANA, OVO, GoPay and QRIS transactions are processed by certified payment partners. We see only confirmation codes, not your full payment credentials or bank details.
Account Settings
You control what notifications we send, which devices can access your account and whether we use cookies for lobby personalisation. Changes take effect immediately.
Support Tickets
When you contact us, your ticket is encrypted and visible only to assigned support staff. We delete resolved tickets after 90 days unless you request longer retention.
SERVICE CONTEXT

What Defines Our Privacy Approach

01
Transparent Logging Every login, deposit and withdrawal is logged with a timestamp. You can review your full activity history in Account > Security to spot any unfamiliar access.
02
Cookie Control We use cookies only for session management and lobby preferences. You can disable non-essential cookies in your browser settings without losing account access.
03
Third-Party Limits We share data only with payment processors (DANA, OVO, GoPay, QRIS partners) and fraud-detection services. No marketing firms, data brokers or ad networks get your information.
04
Retention Schedules Account data stays with us as long as your account is active. After closure, we retain records for 7 years to comply with Indonesia's financial regulations, then delete.
05
Consent-First Design We ask permission before sending promotional emails, SMS or push notifications. You can opt out anytime in Settings > Communications without affecting your account.
06
Data Portability Request a copy of your personal data in machine-readable format anytime. We'll compile your account history, transactions and preferences within 14 days.

Privacy Policy Questions

We retain payment records for 7 years to comply with Indonesia's financial reporting requirements. Your personal details (name, email, phone) are deleted after 90 days unless you request longer retention for dispute resolution.

Yes. Log into your account, go to Settings > Privacy > Download My Data. We'll email you a complete file within 14 days. It includes your profile, transaction history, login logs and any notes from support interactions.

No. We don't sell or share your account data with third parties. Only our payment processors (DANA, OVO, GoPay, QRIS partners) and fraud-detection services see your information, and only to process transactions or prevent abuse.

We notify you within 48 hours if a breach occurs. We'll explain what data was exposed, steps we've taken to secure it and what you should do (password reset, card monitoring). Our incident team works with payment partners to protect QRIS, DANA, OVO and GoPay flows.

Yes. Request account deletion in Settings > Account > Close Account. We'll delete your personal data within 30 days, except transaction records we must keep for 7 years under Indonesia's financial laws.

All payment details are encrypted with 256-bit SSL before leaving your device. We never store full card or wallet credentials. Payment processors handle the actual transaction; we see only confirmation codes and amounts.

We use your activity history to show relevant games and tables in your lobby. You can disable personalisation in Settings > Privacy. We send promotional emails only if you've opted in; unsubscribe anytime without losing account access.