sumbertoto Platform Privacy Notice
This page describes what we collect when you use sumbertoto and how we keep that data protected, with full transparency about third-party processors, your rights, and how to contact us about your information.
We at sumbertoto take data privacy seriously. Your personal information — email, name, phone, payment details, bet history, and account activity — is encrypted, stored securely, and never sold to marketers or data brokers. We collect only what we need to operate our platform safely, comply with financial regulations, and serve you reliably across Jakarta, Surabaya, Bandung, Medan, Semarang, and other supported regions.
Our sumbertoto privacy policy outlines exactly what we do with your data, who has access, how long we keep it, and what rights you have to request, modify, or delete your information. This policy applies to all sumbertoto members and visitors.
What Data We Collect on sumbertoto
When you create a sumbertoto account, we collect your full name, email address, phone number, and date of birth. These details are necessary for account creation, customer support, and regulatory compliance. During Know Your Customer (KYC) verification, we collect identity documents — national ID, passport, or driver's licence — to confirm your identity and prevent fraud and money laundering.
Our sumbertoto payment system collects transaction data: deposit method, amount, timestamp, and settlement status. We do not store full credit card numbers or full bank account details. Instead, our payment processors hold those sensitive fields; we receive only encrypted tokens for future transactions. This separation protects your financial information even if our sumbertoto servers are compromised.
During gameplay on sumbertoto, we log every bet, spin, and table session with timestamps, stake amounts, outcomes, and balance changes. This history serves multiple purposes: member account transparency, settlement audits, responsible engagement monitoring, and regulatory reporting. We also collect device information (IP address, browser type, operating system) for security monitoring and fraud detection.
If you use our referral program on sumbertoto, we collect the email or contact details of people you refer. We use this information only to send referral signup invitations and track referral conversions. Referred members have the option to opt out of future promotional emails in their account settings.
How We Use Your Data on sumbertoto
Our primary use of your sumbertoto data is to operate the platform — creating and securing your account, processing deposits and withdrawals, settling bets, and calculating cashback and tier progression. Your email and phone receive account notifications: login alerts, withdrawal confirmations, promotional offers (if you have opted in), and important security updates.
We use your data on sumbertoto for regulatory compliance and reporting. Our jurisdiction requires us to verify member identity and report certain large transactions to anti-money-laundering authorities. We maintain detailed bet and settlement records for audit purposes. This information is encrypted and accessed only by authorized compliance staff.
Analytics and platform improvement are secondary uses of sumbertoto data. We analyze aggregate gameplay patterns — which games are popular during Liga 1 seasons versus Idul Fitri periods, how often members withdraw, typical bet sizes — to optimize our platform features and promotional calendar. This analysis is performed on anonymized data; we do not link it back to individual members.
We use your sumbertoto data for fraud detection and security monitoring. If your account shows unusual activity — multiple failed login attempts, withdrawal to a new payment method, or bet patterns inconsistent with your history — our system flags it for review. This protects you from unauthorized access and protects sumbertoto from financial crimes.
Third-Party Processors on sumbertoto
We at sumbertoto do not operate in isolation. We work with trusted third-party processors for essential functions. Payment gateways for DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, and e-wallet transfer hold your transaction details during deposit and withdrawal. These processors are bound by data protection agreements and use industry-standard encryption.
Our cloud hosting provider on sumbertoto stores our databases and application servers. This provider has physical access to hardware but not to our application code or encryption keys. They perform regular backups and security audits. Our servers may sit outside Indonesia; your data in transit is encrypted, and our contracts require them to meet international data protection standards.
Email and SMS providers we use on sumbertoto send your notifications and password-reset codes. These are third-party tools, but they receive only necessary information — your email address or phone number and message content — not your account balance or bet history.
All third-party processors on sumbertoto are contractually required to use your data only for services we request, to maintain encryption and access controls, and to notify us of any data breaches. We do not allow them to use your information for their own marketing purposes.
Data location on sumbertoto
We at sumbertoto store your data across encrypted cloud servers in multiple regions. Your information is protected by encryption both in transit and at rest; your jurisdiction's location does not affect the security of your sumbertoto account.
Cookies and Tracking on sumbertoto
Our sumbertoto website uses cookies — small text files stored on your device — to remember your login state, preferences, and session activity. These cookies improve your experience by reducing repeated login prompts and remembering your language and time-zone settings. You can disable cookies in your browser settings, though this may limit platform functionality.
We do not use third-party tracking cookies on sumbertoto for advertising purposes. We do not share your browsing data with social media platforms or ad networks. Our analytics tool (used to measure overall website traffic and performance) does not identify you personally; it groups you with other visitors.
If you access sumbertoto via mobile app, we may collect app crash reports and feature-usage statistics to improve stability and user experience. These reports do not contain your personal information unless you explicitly attach it to a support ticket.
Your Rights and Data Requests on sumbertoto
You have the right to access all personal data we hold about you on sumbertoto. Submit a request via our support email, and we will provide a complete export of your account information, bet history, and profile data within 14 days. You can also download recent account summaries directly from your sumbertoto account settings anytime.
You can request correction of inaccurate information on sumbertoto — for example, if your email or phone number has changed. Update these details directly in your account settings, or contact our support team for assistance. We process corrections immediately to maintain accurate records.
You have the right to request deletion of your sumbertoto account and associated data. Submit a deletion request to our support team. We will close your account, disable login, and mark your personal data for removal within 30 days. We may retain anonymized records (bet counts, tier history without identifiers) for compliance and analytics, but your name, email, phone, and payment details will be deleted.
You can manage communication preferences on sumbertoto. Promotional emails and SMS are optional; you can opt out in your account settings or by clicking the unsubscribe link in any promotional message. Account notifications (security alerts, withdrawal confirmations) remain active regardless to protect your account.
Data Retention on sumbertoto
We retain your sumbertoto account and profile data indefinitely while your account is active. Once you request account deletion, we delete or anonymize this data within 30 days as described above. Your bet and transaction history is retained for five years after your last activity on sumbertoto to support audit, dispute resolution, and regulatory compliance.
Payment processor data (transaction records with banks and payment providers) follows their own retention policies. mobile banking, local payment, online payment, e-wallet, mobile banking, and Indonesian banks typically retain transaction records for seven years for tax and anti-money-laundering purposes. This retention is beyond our control but is standard practice across the financial industry.
Cookies and session data on sumbertoto are deleted when you log out or after 90 days of inactivity. IP logs and device information used for fraud detection are retained for 12 months, then deleted unless an active investigation or legal hold is in place.
Security and Compliance on sumbertoto
We at sumbertoto use industry-standard encryption (TLS 1.2+) for all data in transit. Your password is salted and hashed before storage; we never store plaintext passwords and cannot retrieve them, even internally. Two-factor authentication adds an additional security layer: even if someone obtains your password, they cannot access your account without your phone confirmation.
Our sumbertoto infrastructure undergoes regular security audits. We conduct penetration testing annually, monitor our systems 24/7 for suspicious activity, and maintain incident response protocols for any data breaches. If we discover unauthorized access to sumbertoto member information, we notify affected members and relevant authorities within legal timeframes.
We comply with applicable gaming regulations and data protection laws in jurisdictions where sumbertoto operates. Our compliance team reviews data-handling practices regularly, documents our processes, and maintains audit trails. We do not process sumbertoto data outside encrypted channels or share it beyond contracted third parties without member consent.
Your sumbertoto account security depends on your actions too. Use a strong, unique password; enable two-factor authentication; and never share your login credentials. If you suspect unauthorized access, contact our support team immediately so we can freeze your account and reset your credentials.
Contact Us About Privacy on sumbertoto
If you have questions about our privacy practices on sumbertoto, wish to submit a data request, or want to report a privacy concern, contact our support team via live chat (available during business hours) or email. Include your account name and a clear description of your request. We respond to privacy inquiries within 14 days.
For urgent security concerns — such as suspected account compromise or unauthorized transactions — contact our support team immediately. We operate monitoring and response protocols 24/7 to handle security incidents.
Our sumbertoto privacy policy is reviewed and updated annually. We will notify members of material changes via email. This notice was last updated in 2024 and applies to all current and former sumbertoto members in supported jurisdictions.