madetoto login Privacy Policy
This page describes what we collect when you use madetoto login and how we keep that data protected. We collect your email address, name, phone number, payment details, and identity documents (national ID, proof of address, selfie) only for account verification, payment processing, and fraud prevention. We store these records in encrypted form and do not share them with third parties outside our payment processors and compliance partners.
Our privacy commitments apply to all madetoto login account holders — whether you play slots like Aviator, Sweet Bonanza, Gates of Olympus, Fortune Tiger, or Mahjong Ways; use our live-dealer tables (blackjack, roulette, baccarat, Dragon Tiger); place bets on Liga 1, Piala Indonesia, or other sports; or deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank virtual accounts (mobile banking, local payment, online payment, e-wallet). This policy covers data collected from account creation through withdrawal and account closure.
We comply with applicable data protection and financial regulations. If local law requires data processing changes, we update this policy and notify affected account holders within 30 days. We do not sell personal data to third parties, and we do not use your data for marketing without explicit consent.
What Data We Collect on madetoto login
Account registration requires email, password, full name, and date of birth. Payment setup requires a phone number and payment method details (e-wallet account, bank account number, virtual account code). Identity verification (KYC) requires a national ID (KTP, SIM, or passport), a proof-of-address document dated within three months (utility bill, bank statement, or mobile invoice), and a selfie holding your ID.
During gameplay, we log your IP address, device fingerprint (browser type, operating system, resolution), login timestamps, game selections, and bet amounts. During payment transactions, we record the payment method, amount, processing time, and outcome (successful, pending, failed). Our servers may sit outside your jurisdiction — specifically in data centres across Southeast Asia and internationally. All data is encrypted in transit and at rest.
- Account Data
- Email, phone, name, date of birth, password hash. We do not store passwords in plain text.
- Identity Documents
- National ID, proof of address, selfie. Encrypted and accessible only to our compliance team.
- Session Data
- IP address, device fingerprint, login times, game history. Logged for security and fraud detection.
- Transaction Data
- Deposits, withdrawals, amounts, payment method, processing status. Retained for seven years per financial law.
How We Use Your Data on madetoto login
We use your email to send account notifications (login alerts, password resets, withdrawal confirmations, support replies). We use your phone number for two-factor authentication and SMS payment confirmations. We use your identity documents to verify your account eligibility and comply with Know Your Customer (KYC) regulations — this is mandatory before real-money play.
We use your payment details to process deposits and withdrawals. Our payment processors (third-party gateways handling DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, and bank transfers) have their own privacy policies covering this data. We use your IP address and device fingerprint to detect fraud, suspicious login patterns, and account compromise. We use your game history and bet amounts to generate account statements and verify complaint claims (e.g., "I placed a bet but the result shows incorrect").
We do not use your data to create profiles for targeted advertising. We do not share your data with marketing partners or data brokers. We do not sell personal information. During holiday periods like Idul Fitri, Idul Adha, Imlek, or Nyepi, we maintain standard data-protection practices — reduced staff does not mean reduced security.
Your Rights and Data Requests on madetoto login
You have the right to access all personal data we hold about you. Contact support during business hours (Monday–Friday 09:00–18:00 Jakarta time, Saturday–Sunday 12:00–17:00) and request a data export. We provide a copy of your account data, gameplay history, and transaction records within 14 days. You may correct inaccurate information (name, email, phone) by updating Account Settings → Profile on madetoto login. We update your records within one business day.
You have the right to delete your account and request permanent data deletion. We delete your email, password, name, and gameplay profile immediately. Transaction data (amounts, dates, payment methods, KYC documents) cannot be deleted due to financial regulations, but we retain them only for compliance and are not accessible for any other purpose.
You may withdraw consent to marketing emails at any time by clicking "Unsubscribe" in any email we send. You may adjust cookie preferences in your browser settings — we respect "Do Not Track" headers, though some platform features may function differently if cookies are disabled. You may request we stop processing your data for fraud detection, though this may result in account suspension for security.
Cookies and Tracking on madetoto login
We use session cookies (temporary, deleted when you close your browser) to keep you logged in and maintain your game state. We use persistent cookies (lasting 30 days) to remember your preferred language, currency, and device as trusted (allowing faster login on your next visit). We do not use third-party tracking pixels or cookies from advertising networks. We do not use cookies to create advertising profiles.
We use anonymized analytics (Google Analytics in aggregated, anonymized form) to understand which games are popular, how long sessions last, and where account holders visit from. This data does not identify you personally and helps us improve our platform. You may disable analytics by adjusting your browser's privacy settings or requesting our support team to opt out your account.
Data Breach and Security Incidents
If we discover a data breach affecting your personal information, we notify you within 24 hours via email to the address on file. We contact affected account holders before public disclosure. We provide details of what data was exposed, who may have accessed it, what steps we took to stop the breach, and what you should do (e.g., password reset, payment card monitoring). We do not delay notification for internal review or legal consultation — your immediate awareness is the priority.
We store all data in encrypted databases with access restricted to our compliance and technical teams. We conduct annual security audits and penetration testing to identify vulnerabilities. We do not log plaintext passwords, credit card numbers, or national ID numbers — only hashed values and tokenized references.
Third-Party Data Processors
Our payment processors (handling mobile banking, local payment, online payment, e-wallet, mobile banking, local payment transfers and bank virtual accounts) receive your name, account number, and transaction amounts. These processors have their own privacy policies; we encourage you to review them. Our email service provider (for password resets, withdrawal notifications, support replies) may store emails in their systems; these providers are bound by data protection agreements and cannot use your data for their own purposes.
Our compliance partners (anti-fraud vendors, identity-verification services) receive your name, national ID, and address to verify your eligibility and detect suspicious account patterns. These partners are contractually restricted to using your data only for our verification purpose and cannot retain or reuse it. We do not share your data with sports leagues, gaming operators, or other third-party services.
Our madetoto login Data Protection Commitments
We at madetoto login commit to transparent data handling. We explain in plain English what we collect, why, and who can access it. We do not use dark patterns, misleading wording, or hidden consent clauses. We do not retroactively change this policy without 30 days' notice and explicit account-holder acknowledgment. We do not store data longer than necessary — gameplay logs are retained for one year, transaction data for seven years per law, identity documents are encrypted and marked for deletion upon request (subject to financial retention rules).
We provide support in English and Indonesian via live chat, email, and phone (Monday–Friday 09:00–18:00, Saturday–Sunday 12:00–17:00 Jakarta time). If you have a data concern — believe your information was shared, accessed without permission, or retained beyond the periods we describe — contact support with details. Our compliance team investigates within two business hours and reports findings within 14 days. If we find a violation, we correct it, notify you of the fix, and prevent recurrence.
This privacy policy applies to all madetoto login account holders worldwide. If you live in a jurisdiction with specific data protection laws (GDPR in Europe, CCPA in California, PDPA in Thailand or Indonesia), we follow the strictest applicable standard. We do not modify your rights based on location — all account holders have the same rights to access, correction, deletion, and breach notification.