live totoPrivacy Policy
This page describes what we collect when you use live toto and how we keep that data protected. We take your privacy seriously and operate under clear principles: we collect only what we need to verify your account, process your payments, and deliver our service where local law permits.
Our commitment is straightforward — we do not sell your personal information to third parties, we do not share your payment details beyond what payment processors require, and we give you control over how your data is used. If you have questions about our practices, you can reach our support team through the channels listed at the end of this policy.
What we collect on live toto
We collect your email address, full name, date of birth, and national identity number when you open an account. We also collect proof of address — a utility bill or government-issued document — to verify where you live. This information helps us comply with local regulations and confirm that you are eligible to use our platform in your jurisdiction.
When you deposit funds, we collect details about your chosen payment method. If you use DANA, e-wallet, mobile banking, local payment, online payment, or e-wallet, we record the transaction reference and timestamp. For bank transfers via mobile banking, local payment, online payment, or e-wallet, we log your account holder name and the virtual-account number assigned to you. We do not store your full card numbers or bank passwords — payment processors handle that encryption.
We also collect your IP address, device type, and browser information when you log in. This helps us detect unusual account activity and protect you from unauthorized access. If you enable two-factor authentication, we store a backup code securely so you can recover your account if you lose access to your phone.
How we use your data on live toto
We use your identity documents to verify that you are who you say you are — a process called Know Your Customer (KYC) verification. This is a legal requirement in most jurisdictions where we operate, including Indonesia. Once verified, your data stays on file so we can process your withdrawals and resolve any account disputes.
Your payment information is used only to process deposits and withdrawals. We do not use it for marketing or any other purpose. If you withdraw funds, we cross-check your withdrawal request against your deposit history to prevent fraud. This review may take a few hours, depending on the payment method and the time of day.
We use your login history and device information to flag suspicious activity — for example, if your account is accessed from a new country or device without your two-factor code. If we detect a potential breach, we will notify you by email and ask you to reset your password.
Third-party processors and data sharing
We work with payment processors to handle deposits and withdrawals. These processors may be located outside Indonesia — for example, in Singapore or the Philippines. We share only the minimum data they need: your name, account number, and transaction amount. They are bound by confidentiality agreements and cannot use your data for their own marketing.
We also use cloud hosting providers to store your account data. These providers operate data centres in multiple regions and may replicate your information for backup purposes. We choose providers that comply with international data-protection standards.
We do not share your data with third-party advertisers, data brokers, or analytics firms. The only exception is if we are required by law — for example, if a court orders us to disclose information as part of a legal investigation. In that case, we will notify you unless the law forbids us from doing so.
Your rights regarding your data
You have the right to request a copy of all personal data we hold about you. You can also ask us to correct any information that is inaccurate or incomplete. To exercise these rights, contact our support team with your account email and a copy of your identity document.
You can request that we delete your account and associated data, subject to legal and financial obligations. For example, if you have an outstanding withdrawal or a dispute, we may need to retain your information until the matter is resolved. Once those obligations are met, we will delete your data within 30 days of your request.
Cookies and tracking
We use cookies to keep you logged in and to remember your preferences — such as your preferred language or payment method. These are session cookies and expire when you close your browser. We do not use cookies to track you across other websites.
You can disable cookies in your browser settings, but this may affect your ability to use live toto. For example, you may be logged out more frequently or unable to save your preferences.
Contact us about privacy
If you have questions about this policy or want to exercise your data rights, reach out to our support team. We respond to privacy requests within 14 days. You can also contact us if you believe your data has been misused or if you want to report a security concern.
Our services are available only where local law permits. We do not offer our services in jurisdictions where online wagering is prohibited. Users are responsible for verifying that access and use comply with their own jurisdiction's law.
Our commitment to you
We at live toto believe that privacy is not a feature — it is a foundation. Every time you log in, deposit via DANA or e-wallet, or request a withdrawal, your data is handled with care. We do not sell it, we do not share it carelessly, and we do not use it to manipulate you into spending more.
This policy reflects our current practices. If we make material changes — for example, if we add a new payment processor or change how we store data — we will notify you by email at least 30 days in advance. Your continued use of live toto after that notice means you accept the updated policy.