Can I request a copy of all the data you hold about me?

Yes. Submit a 'Data Subject Access Request' via our privacy contact form or email privacy@bengbengtoto.id. We'll compile and send your portable data file within 14 business days. Verification of your identity is required before we release the file.

LEGAL REFERENCE

Your data. Our promise. Here's how we protect it.

When you open an account with us and move money through DANA, OVO, GoPay or QRIS, your privacy matters. This page walks you through exactly what we collect...

Data SecurityAccount ProtectionPayment SafetyYour RightsIndonesia Compliance

Enter Game Lobby Read FAQ

Privacy policy foundation and scope

bengbengtoto operates its casino, sportsbook and slot lobbies in compliance with Indonesian data protection principles and the regulations that apply to our supported regions. We collect personal information — your name, email, phone number, payment details and account activity — to verify your identity, process transactions through DANA, OVO, GoPay and QRIS, deliver the lobby experience you've chosen, and maintain the integrity

of our gaming platform. Your information is encrypted in transit and at rest, and is never sold to third parties without explicit consent. This policy covers all interactions on bengbengtoto.id and our mobile app.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

SUPPORT

Questions about your privacy with us?

Email our Privacy Team Reach out directly to [email protected] with any concerns about how we handle your data, account details or payment information.

Live Chat Support Our customer team is available 24/7 to clarify our privacy practices and help you understand your rights regarding personal data.

Data Request Form Submit a formal request to access, correct or delete your personal information. We respond within 14 business days of verification.

REVIEW SIGNALS

Trust signals: how we earn your confidence

Encryption Standard

All data transmitted between your device and our servers uses TLS 1.2 or higher. Payment details stored offline meet PCI DSS compliance benchmarks.

Third-party Audits

Our infrastructure undergoes annual security audits by independent firms. Results confirm data isolation, access controls and incident response protocols.

Payment Partner Vetting

DANA, OVO, GoPay and QRIS connections are maintained through certified gateway providers. Each integrates tokenisation to shield card and wallet data.

Privacy Officer Oversight

A dedicated Data Protection Officer reviews all collection, storage and sharing practices quarterly to ensure ongoing compliance with regional standards.

Incident Response Plan

We maintain a documented breach protocol. If an incident occurs, affected users are notified within 72 hours with remediation details and guidance.

Cookie Transparency

Every cookie on bengbengtoto.id is listed with its purpose, duration and optional status. Analytical cookies require your consent before they load.

SIDE BY SIDE

Privacy consistency across our platform pages

Home Page

Outlines lobby access and payment availability; links to this privacy policy in footer.

Terms of Service

Covers account rules and prohibited conduct. References this privacy policy for data handling specifics.

Payment Methods Page

Details DANA, OVO, GoPay and QRIS integration. Directs users to privacy policy for transaction data questions.

Account Settings

Allows you to update profile info and opt out of promotional emails. All changes logged and encrypted.

Responsible Choices

Provides self-imposed limits and account controls. Privacy policy governs how we store these preferences.

FAQ Section

Common questions about account creation, lobby access and payouts. Points to privacy policy for data retention details.

Support Portal

Help centre tickets are encrypted. Privacy policy ensures ticket content is only shared with authorised support staff.

QUICK SIGNAL

What defines our approach to your information

Transparent Data Collection We tell you exactly what we need — your name, email, phone, address for verification. Nothing more. Every required field is marked clearly during account setup.

Minimal Retention Account data stays with us for the life of your profile plus two years after closure. Payment records follow Indonesian audit requirements. Old logs are deleted automatically.

No Third-Party Sales We don't sell your personal information to advertisers, brokers or data aggregators. Internal teams access data only when your account needs verification or support.

Opt-In Marketing Promotional emails and SMS alerts happen only if you enable them. You can toggle promo preferences in account settings anytime. One click unsubscribes you entirely.

Secure Payment Tokenisation Your DANA wallet, OVO card, GoPay balance and QRIS reference are never stored raw. We use tokens instead so our database never holds your actual payment credentials.

Your Access Rights You can download all data we hold about you in portable format. You can request corrections, deletions or account export anytime. We process these requests within 14 days.

Privacy questions answered

We collect your full name, date of birth, email address, phone number and residential address for identity verification. During your first deposit via DANA, OVO, GoPay or QRIS, we also record the transaction reference and wallet type to track funding history and prevent duplicate accounts.

Account records and transaction history remain in our archive for two years after closure to comply with Indonesian regulatory requirements and resolve disputes. Personal identifiers like email and phone are deleted after six months unless a dispute or investigation is pending.

Yes. In your account settings, toggle off 'Marketing Communications'. You'll stop receiving promotional emails and SMS immediately. Service notifications related to deposits, withdrawals and account security will still reach you because they're essential to your account.

No. We store a secure token instead of your actual wallet or card details. Your DANA wallet ID, OVO card number, GoPay credentials and QRIS reference stay with their respective providers. We only see enough information to complete and verify your transactions.

We maintain an incident response protocol and notify affected users within 72 hours with details of what occurred, what we're doing to fix it, and what steps you should take. We also report incidents to relevant Indonesian authorities where required by law.

Yes. Submit a 'Data Subject Access Request' via our privacy contact form or email [email protected]. We'll compile and send your portable data file within 14 business days. Verification of your identity is required before we release the file.

Only authorised teams access your data: account verification staff during signup, customer support agents when you request help, and fraud prevention specialists if suspicious activity is detected. All access is logged and audited monthly. No employee can share your data with external parties without your explicit consent.