LEGAL REFERENCE

Your Data, Our Responsibility

We built prtoto around your account security and payment privacy. Every deposit through DANA, OVO, GoPay or QRIS is protected by the same encryption and compliance measures we...

Account SecurityPayment ProtectionData TransparencyYour RightsCompliance
See the Lobby Read FAQ
prtoto Your Data, Our Responsibility

Policy Scope & Jurisdiction

prtoto operates in supported regions across Indonesia where local law permits. We collect personal data when you open an account, make deposits via DANA, OVO, GoPay or QRIS, withdraw funds, or interact with our live casino, slots and sportsbook. Your data is processed under applicable data protection frameworks and shared only with payment partners, compliance auditors and service providers necessary to run

our platform. You retain rights to access, correct, export or delete your information.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

PLAYER SUPPORT

Privacy Requests & Support Contacts

Team online

Data Access Requests

Submit a request to retrieve all personal data we hold about your account. We'll compile your information within 14 business days and deliver it in a portable format.

Account & Privacy Updates

Update your profile details, communication preferences or payment method information at any time from your account settings. Changes take effect immediately.

Complaints & Escalations

Raise a privacy concern or data handling complaint through our support team. We acknowledge and investigate within 5 business days and respond with remediation steps.

REVIEW SIGNALS

Privacy Standards & Compliance

Encryption & Storage

All personal data, including payment card details and transaction history, travels over TLS 1.2+ encryption and is stored in secured...

Payment Card Compliance

prtoto maintains PCI DSS Level 1 certification for cardholder data handling. DANA, OVO, GoPay and QRIS transactions follow Indonesian fintech...

Annual Security Audits

We commission third-party penetration testing and vulnerability assessments yearly. Audit findings are reviewed by our data protection and compliance officers.

Staff Data Training

Everyone who touches customer data completes annual privacy and security training. Staff sign confidentiality agreements and access is logged and...

Data Retention Schedules

We retain account data for 7 years post-closure for tax and regulatory purposes. Transaction records and logs follow industry standard...

Policy Review Cycle

This privacy policy is reviewed and updated annually or whenever regulations change. Material updates are notified to active account holders...

Consistency Across Our Policy Pages

Terms of Service
Defines account rules, game conduct and withdrawal eligibility. Payment methods (DANA, OVO, GoPay, QRIS) coverage mirrors this privacy policy's scope.
Cookie & Tracking Policy
Outlines how we use first-party session cookies and analytics trackers. Tracks lobby navigation and game preferences; users can opt out in account settings.
Payment Method Guides
Explains DANA, OVO, GoPay and QRIS deposit and withdrawal flows. Each method's privacy terms are summarised; full partner policies available on request.
Account Deletion Policy
Details the steps to permanently close your account and request data erasure. Some records retained for legal compliance; erasure process takes up to 30 days.
Withdrawal & Refund Policy
Governs payout timing, reversal rules and transaction dispute handling. Personal data used in refund verification is protected under this privacy policy.
Dispute Resolution Process
Describes complaint escalation and third-party mediation procedures. Your privacy is maintained throughout dispute investigations and resolution stages.
Responsible Engagement Framework
Outlines account cooling-off and session tracking features. Session limits and account alerts rely on personal data safeguards outlined here.

What Defines prtoto's Privacy Layer

Multi-Provider Payment Rail

We partner with DANA, OVO, GoPay and QRIS to move your deposits and payouts. Each partner's privacy commitments are contractually bound to match our standards.

Lobby Access Without Friction

Account creation collects only essential data: name, email, phone and address. We don't ask for unnecessary personal details; your lobby access starts immediately.

Transaction History Transparency

Every deposit, wager and withdrawal appears in your account ledger with timestamps and payment method used. You can download transaction reports anytime.

Real-Time Account Controls

Manage your privacy preferences, communication opt-outs and data exports directly from settings. Changes sync across the live casino, slots and sportsbook instantly.

Third-Party Visibility Rules

Your data is never sold to marketing brokers or data brokers. We share information only with essential partners: payment processors, tax authorities and compliance auditors.

Portable Data Format

Export your complete account data—deposits, wagers, withdrawals, profile—in machine-readable JSON format. Transfer to another service or archive independently.

Privacy Policy Questions

We collect your name, email, phone number, date of birth, residential address and payment method details (DANA, OVO, GoPay or QRIS account info). Optional fields include nationality and document ID for verification. All data is encrypted on arrival and stored securely.

Payment credentials are tokenised instantly—we never store full card or wallet details. DANA, OVO, GoPay and QRIS transactions are processed through PCI DSS Level 1 compliant gateways. Your payment history is visible in your account ledger but only you can authorise withdrawals.

Yes. Submit a data access request via your account settings or support chat. We'll compile your profile, transaction history, login records and preferences into a portable JSON or CSV file within 14 business days, provided free of charge.

Your account access stops immediately. Personal data is anonymised for analytics but retained for 7 years to meet tax and anti-money-laundering requirements. You can request deletion of non-essential data; some records must be kept for legal compliance.

Only your authorised session and our compliance team can view your full profile. Payment processors (DANA, OVO, GoPay, QRIS partners) see transaction details only. Support staff access limited profile fields only when you submit a support ticket.

No. We never sell personal data to marketing brokers, data aggregators or advertisers. Data sharing is limited to payment partners, tax authorities in supported regions and compliance auditors. All sharing is contractually bound.

We review and update this policy annually or whenever regulations change in supported Indonesia regions. Material updates trigger an email notification 30 days before the new policy takes effect. You can review changes in our policy changelog anytime.