LEGAL REFERENCE

How We Handle Your Account Data

This is the top5toto privacy policy — the document that explains what we collect when you open an account, what we keep on file while you move between...

Account dataSession logsCookie controlsWallet recordsPolicy updates
View Game Library Read FAQ
top5toto How We Handle Your Account Data

Our Privacy Posture and Your Rights

We collect only what we need to run your account: your sign-in identifiers, your wallet references for DANA, OVO, GoPay and QRIS top-ups, your device fingerprint for fraud checks, and the game-session logs that let our support team trace a disputed round. Where local law permits, we retain these records for the period required by Indonesian financial and gaming rules, then we

purge them. You can ask us for a copy of what we hold, request a correction, or ask us to close your account and delete non-mandatory data. Requests are handled by our policy desk, not by lobby staff, and we respond within a documented window. This policy applies across supported regions only.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

SUPPORT

Policy Contact Paths

If you have a question that belongs to this policy rather than your lobby session, route it through one of the channels...

Privacy Inbox Email the policy desk directly for data-access requests...
Live Chat Escalation Start in the lobby chat widget and ask...
Written Notice For formal complaints or regulator-routed queries, send a...
WHY THIS PLATFORM

How We Keep This Policy Honest

This page isn't a copy-paste template. It's reviewed against our actual data flows and updated when something changes in the lobby stack or the payment rails. The signals below are how we...

Named Reviewer

Each revision of this policy is signed off by a named data officer on our side, not an anonymous legal box. The reviewer's role is logged in the change history we keep on file.

Dated Revisions

Every material change carries a revision date at the foot of the document so you can tell when wording shifted. Cosmetic edits don't bump the date; only substantive policy moves do.

Plain-Language Pass

After the legal draft, we run a plain-language pass so you don't need a lawyer to read your own rights. Defined terms are kept short and used consistently throughout the document.

Scope Boundaries

We state clearly what this policy covers and what sits in a separate document, such as cookies or third-party processor terms. No silent cross-references that send you hunting through unrelated pages.

Retention Tables

Retention windows are written as concrete periods, tied to the Indonesian rule that requires them, rather than vague phrases like 'as long as necessary' that leave you guessing.

Request Logging

Every privacy request you send is logged with a reference number you can quote back to us. That log is what we use if a regulator asks how we handled your file.

Consistency Across Our Policy Pages

We keep this privacy policy aligned with the sibling legal pages on top5toto so you don't see one rule here and a different rule on the terms page...

Versus Terms of UseThe terms page governs how you use the lobby; this page governs what we do with the data that use generates. Where the two overlap, the privacy wording takes precedence on data handling.
Versus Cookie NoticeCookies sit in their own notice with the per-category toggles. This policy references that notice but does not repeat the table, so you adjust cookies in one place only.
Versus AML StatementAnti-money-laundering checks are described in the AML statement. This policy notes only that identity data collected for those checks is stored under the retention windows listed here.
Versus Payment TermsPayment terms describe how DANA, OVO, GoPay and QRIS flows work. This policy describes what data those flows generate on your account file and how long we keep it.
Versus Bonus RulesBonus rules sit on the promo page. This policy only covers the eligibility data we record when you opt into a campaign, not the wagering mechanics themselves.
Versus Complaint PolicyComplaints handling is its own document. This page tells you how a privacy complaint is logged; the broader complaints policy tells you how lobby disputes are routed and escalated.
Versus Account ClosureClosure mechanics are on the account-help page. This policy clarifies what data survives a closure under Indonesian retention rules and what is purged at your request.
AT A GLANCE

What This Policy Page Gives You

These are the visible elements that define how this policy reads, not features of the lobby itself. We've laid the document out so you can scan for the...

Anchored Sections Each clause has its own anchor so you can deep-link...
Defined Terms Box Key terms used across the policy are defined once in...
Retention Summary A short retention summary sits near the top of the...
Rights Checklist Your rights — access, correction, deletion, objection — are listed...
Change Log Footer The foot of the page carries the dated change log...
Quiet Layout No promo banners, no lobby cross-sells inside the policy text...

Privacy Policy Questions

We collect your sign-in identifiers, the wallet reference you use for DANA, OVO, GoPay or QRIS, basic device data for fraud checks, and the session logs tied to your gameplay. Nothing outside those categories is taken at sign-up.

Retention follows Indonesian financial and gaming rules where local law requires it. Mandatory records are kept for the regulated period; non-mandatory data can be purged earlier if you request closure and deletion through the policy desk.

Yes. Send an access request through the privacy inbox and we'll prepare a copy of the account data on file. We confirm receipt the same business day and reply within the documented response window.

We share only with the processors needed to run your account — payment rails, fraud checks, identity verification — and only the fields they need. We don't sell account data, and we don't pass it to marketing networks.

Cookies sit in a separate notice with per-category toggles you control. This policy references that notice rather than duplicating it, so you adjust your preferences in one place and they apply across the lobby.

Material changes carry a fresh revision date at the foot of the page and are logged in the change-log block. Where a change affects your rights directly, we also flag it inside your account on next sign-in.

Route privacy complaints through the written-notice channel marked privacy, not lobby chat. The policy desk logs each complaint with a reference number you can quote, and we keep the audit trail attached to your file.