Your Privacy Matters to Us
We've built 20toto around your trust. This privacy policy explains how we collect, use and protect your personal data when you open an account, fund it through DANA...
How We Handle Your Information
When you join 20toto, we collect your name, email, phone number and payment details to verify your identity and process transactions through DANA, OVO, GoPay and QRIS. We use this data to deliver the platform, prevent fraud, comply with local regulations in supported regions, and improve your experience. We do not sell your information to third parties. Your data is encrypted and
stored securely. We retain account information for as long as your account is active, plus a retention period required by law.
Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.
Questions About Your Privacy
Why Your Data Is Safe With Us
Encryption Standard
All payment and account data travels over SSL/TLS encryption. Your DANA, OVO, GoPay and QRIS transactions are protected by the same security protocols used by banks.
Compliance Framework
We comply with Indonesian data protection regulations and international privacy standards. Our systems are audited annually by independent security firms.
No Third-Party Sales
We never sell your personal information to advertisers, brokers or unrelated companies. Your data stays within 20toto unless you explicitly consent otherwise.
Fraud Prevention
We monitor account activity to detect and prevent unauthorized access, payment fraud and identity theft. Your security is our priority every day.
Transparent Logging
Every login, payment and withdrawal is logged and visible in your account history. You can review your activity anytime and flag anything unusual.
Incident Response
If a security breach occurs, we notify affected users within 48 hours and provide guidance on protecting your account. We maintain incident response protocols.
Consistency Across Our Platform
| Same Privacy Rules Everywhere | Whether you're on our live casino tables, slot lobbies or sportsbook, the same privacy protections apply. No hidden data collection between sections. |
|---|---|
| Mobile & Desktop Aligned | Your privacy settings sync across all devices. Log in on your phone or desktop and your preferences, data access and security settings remain consistent. |
| Payment Method Parity | DANA, OVO, GoPay and QRIS transactions receive identical encryption and fraud monitoring. No payment method gets less protection than another. |
| Account History Unified | All your activity — deposits, withdrawals, game sessions and support tickets — lives in one searchable history. Nothing is hidden or siloed. |
| Withdrawal & Refund Privacy | When you withdraw funds to DANA, OVO, GoPay or QRIS, we apply the same data minimization rules. Only essential details reach your payment provider. |
| Support Ticket Confidentiality | Every support conversation is encrypted and visible only to you and our support team. We never share ticket content with third parties or use it for marketing. |
| Policy Updates Notified | If we change this privacy policy, we email you 30 days in advance. You can review changes and decide whether to continue using 20toto. |
What Defines Our Privacy Approach
Minimal Data Collection
We ask only for information needed to verify your identity, process DANA, OVO, GoPay and QRIS payments, and deliver the platform. No unnecessary fields.
User Control First
You decide what data we collect and how we use it. Opt out of marketing emails, disable analytics tracking and manage cookie preferences in your settings.
Transparent Processing
We explain exactly why we collect each piece of data and how long we keep it. No vague terms or hidden clauses buried in fine print.
Secure Payment Flow
Your DANA, OVO, GoPay and QRIS details never touch our servers directly. Payment processing happens through PCI-DSS compliant third-party gateways.
Right to Be Forgotten
You can request account deletion anytime. We remove your personal data within 30 days, except where law requires us to retain records for compliance.
Regular Security Audits
We conduct quarterly penetration tests and annual third-party security audits. Results inform our ongoing improvements to data protection systems.