damritoto Casino & Sportsbook Data Care
This page describes what we collect when you use damritoto and how we keep that data protected. We operate an online gaming and sportsbook service available where local law permits, and we take your privacy and account security seriously across all regions where damritoto is accessible—from Jakarta and Surabaya to Bandung and Medan.
We collect data to deliver our service safely and to comply with local regulations. Our data handling is straightforward: we collect only what we need, we encrypt it during transit and storage, and we do not sell your information to third parties. This policy explains each type of data we collect, how long we keep it, and what rights you have on damritoto.
What data we collect on damritoto
We collect data when you sign up and every time you use damritoto. During account creation, we collect your full name, date of birth, phone number, email address, and national ID number (KTP or passport). We use this information to verify your identity (KYC), confirm your account eligibility, and comply with local gaming regulations. Our verification team processes this data within one business day.
When you deposit funds on damritoto, we collect payment information. If you deposit via DANA, e-wallet, mobile banking, local payment, online payment, or e-wallet, we record the transaction ID, amount, and timestamp. If you use a bank transfer (mobile banking, local payment, online payment, e-wallet), we log your bank account name, the Virtual Account number we assigned to you, and the transfer confirmation. We do not store your credit card number or full bank account details on our servers—payment processing is handled by our payment processor, not by damritoto directly.
We collect gameplay data: every bet, spin, draw entry, and result on damritoto is logged in your account ledger. This data helps us settle payouts accurately and detect irregular account activity (e.g., patterns suggesting account compromise or bonus abuse). We also collect device information: your mobile device model, operating system version (Android or iOS), app version on damritoto, IP address, and browser type. This helps us troubleshoot connection issues and optimize the damritoto experience across different devices.
We collect cookies and local storage data on damritoto mobile browser access (iOS). These store your session token, language preference, and recent game selections. On the Android APK, we store similar data locally on your device, not on our servers. Cookies expire after 30 days of inactivity.
How we use and protect your data on damritoto
Our damritoto team uses your data for: account verification and KYC compliance; processing deposits and withdrawals; settling game outcomes and payouts; detecting fraud and money laundering; and communicating with you about account status, withdrawals, and promotions. We do not use your data for marketing purposes without your consent. We do not sell your data to third parties.
We share your data only with third-party processors necessary for damritoto to operate. These include our payment processor (for deposit and withdrawal settlement), our compliance and KYC vendor (for identity verification), and our hosting provider (for servers and backups). All third-party vendors sign data-processing agreements requiring them to protect your data with encryption and access controls equivalent to ours.
Our damritoto servers are located in Singapore and the European Union. Your data may be processed in jurisdictions outside Indonesia, though we encrypt it at rest so servers cannot read unencrypted content. By using damritoto, you consent to this processing. If you have concerns about offshore data processing, you may contact our support team (see below).
We secure damritoto infrastructure with multiple layers: firewalls, intrusion detection, regular penetration testing, and automated backups. Our database is encrypted at rest. We use role-based access controls—only engineers and compliance staff with specific roles can access your personal data, and all access is logged. We conduct monthly security audits and respond to any detected vulnerabilities within 48 hours.
Your rights on damritoto include the right to access your data (you can download your account ledger and KYC records from account settings), the right to correct inaccurate information (contact support), and the right to request deletion of your account after settlement of all outstanding transactions. We comply with data-protection laws in jurisdictions where damritoto operates. If we receive a legal request for your data (e.g., court order), we process it according to applicable law and notify you unless legally prohibited.
You can update your contact information—phone, email—within damritoto account settings at any time. You can reset your password immediately from the login screen using SMS and email verification. If you believe your account has been compromised, contact our support team immediately; we will reset your password and review your recent activity.
We may update this privacy policy as our damritoto service evolves or laws change. We will notify you via email and in-app message if material changes occur. Your continued use of damritoto after notification constitutes acceptance of the updated policy.
If you have questions about our damritoto privacy practices, or to exercise your data rights, contact our support team through the in-app help centre (available 24/7) or email our data-protection officer. We respond to all privacy requests within 10 business days.