rastoto Privacy Policy

This page describes what we collect when you use rastoto and how we keep that data protected. We at rastoto take your privacy seriously. When you open an account, deposit via DANA, e-wallet, mobile banking, local payment, online payment, or bank transfer, or place bets on Liga 1, Piala AFF, or our live-dealer tables, we collect personal information to verify your identity, process your transactions, and comply with local regulations.

We do not sell your data to third parties. We use your information only to operate rastoto, respond to your support requests, and meet legal obligations. This policy explains what we collect, how we use it, who we share it with, and what rights you have.

If you have questions about how we handle your data or want to exercise your privacy rights, contact our support team via live chat, email, or phone. We're available 24/7 to answer your concerns.

What Data We Collect

We collect different types of information depending on how you use rastoto:

• Account information: When you register, we collect your email address, password, full name, date of birth, phone number, and residential address. We use this to verify your identity and set up your rastoto account.
• Identity verification: To comply with anti-money-laundering regulations, we ask you to upload a government-issued ID (passport, national ID, or driver's license) and proof of address (utility bill, bank statement, or government letter). We store these documents securely and use them only for verification.
• Payment information: When you deposit or withdraw, we collect details about your payment method (e-wallet account, bank account number, or virtual-account reference). We do not store full credit card numbers or banking credentials; payment processors handle this data.
• Activity data: We log your bets, game play, account balance changes, and login history. This helps us detect fraud, resolve disputes, and improve rastoto's service.
• Device and browser data: We collect information about your device (operating system, browser type, IP address) to ensure rastoto works correctly and to detect unauthorized access.

How We Use Your Data

We use the information we collect for specific purposes:

• Account management: We use your data to create and manage your rastoto account, process your deposits and withdrawals, and send you account notifications.
• Verification and compliance: We verify your identity to comply with anti-money-laundering and know-your-customer (KYC) regulations. We may share your data with payment processors and regulatory authorities when required by law.
• Fraud prevention: We analyze your activity to detect suspicious behavior, duplicate accounts, and unauthorized access. If we detect fraud, we may suspend your rastoto account and report the activity to relevant authorities.
• Customer support: We use your data to respond to your support requests, resolve disputes, and improve our service.
• Legal obligations: We may disclose your data to comply with court orders, government requests, or applicable law.

We do not use your data for marketing or advertising without your consent. We do not sell your information to third parties.

Third-Party Processors and Data Sharing

We work with third-party service providers to operate rastoto. These processors handle specific functions but are bound by confidentiality agreements:

• Payment processors: DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, and our bank partners (mobile banking, local payment, online payment, e-wallet) process your deposits and withdrawals. They collect and store payment information according to their own privacy policies.
• Identity verification providers: We may use third-party services to verify your identity documents. These providers access your ID and proof of address only for verification purposes.
• Hosting and analytics: Our servers may be located outside your jurisdiction. We use analytics tools to understand how rastoto is used and to improve performance.
• Legal and regulatory authorities: We may share your data with government agencies, gaming regulators, and law enforcement when required by law.

How Long We Keep Your Data

We retain your data for as long as your rastoto account is active and for a period after closure to comply with legal obligations. Identity documents are kept for at least 5 years for regulatory compliance. Activity logs are retained for dispute resolution and fraud prevention.

If you request account closure, we delete your personal data within a reasonable timeframe, except where we are required by law to retain it. We may retain anonymized data for analytics and service improvement.

Your Privacy Rights

You have the right to access, correct, and delete your personal data. To exercise these rights, contact our support team:

• Access: You can request a copy of all data we hold about you. We'll provide this within 30 days.
• Correction: If your information is inaccurate, you can request that we correct it. You can also update your profile directly in your rastoto account.
• Deletion: You can request that we delete your data, subject to legal retention requirements. We'll confirm deletion within 30 days.
• Account closure: You can close your rastoto account anytime. We'll process your request and delete your data according to our retention policy.

Cookies and Tracking

We use cookies and similar tracking technologies to improve your rastoto experience. Cookies help us remember your login, track your preferences, and analyze how you use our platform. You can disable cookies in your browser settings, but this may affect rastoto's functionality.

We use analytics tools to understand user behavior and improve rastoto. These tools may collect anonymized data about your activity. We do not use this data to identify you personally.

Data Security

We protect your data using industry-standard encryption and security practices. Your rastoto account is secured by a password and optional two-factor authentication. We encrypt data in transit and at rest on our servers.

We conduct regular security audits and maintain strict access controls. However, no security system is completely risk-free. If you suspect unauthorized access to your rastoto account, change your password immediately and contact our support team.

Contact Us About Privacy

If you have questions about this privacy policy or how we handle your data, contact our rastoto support team:

• Live chat: Available 24/7 on the rastoto website and app in English and Indonesian.
• Email: [email protected] — we respond within 4 business hours.
• Phone: Call during business hours (9 AM – 6 PM Jakarta time, Monday–Friday). The number is listed in your rastoto account under "Contact Us."

Policy Updates and Summary

We may update this privacy policy from time to time to reflect changes in our practices or applicable law. We'll notify you of significant changes via email or by posting a notice on rastoto. Your continued use of our platform after changes are posted constitutes acceptance of the updated policy.

This rastoto privacy policy is effective as of the date posted on our website. We are committed to protecting your data and operating transparently. If you have concerns about how we handle your information, our support team is ready to help.

Your privacy is important to us. We collect only the data necessary to operate rastoto, comply with regulations, and provide you with a secure, fair gaming experience. We do not sell your data, and we protect it with industry-standard security practices.