blacktoto Platform Privacy Notice

This page describes what we collect when you use blacktoto and how we keep that data protected. We at blacktoto take privacy seriously—your personal information funds our Know Your Customer (KYC) process, payment settlement, and fraud prevention. We do not sell your data to third parties for marketing. We share information only with payment processors, compliance partners, and law enforcement where required by law.

Our data practices comply with international gaming regulations and data-protection standards applicable to online gambling platforms. We encrypt all sensitive information, store data on secured servers, and limit access to employees with legitimate business needs. Your data may be processed in multiple jurisdictions as part of our payment, verification, and platform operations.

If you have questions about your data on blacktoto, contact our privacy team at the address provided at the end of this notice. You may request access to your data, correction of inaccuracies, or deletion where permitted by law.

What Data We Collect on blacktoto

We collect your data in stages as you interact with blacktoto. At account opening, we collect your email, password, name, date of birth, and phone number. Before your first withdrawal, we request government-issued ID (passport, national ID, or driver's license) and proof of residence (utility bill, bank statement, or lease agreement). We also collect your payment method details (bank account or e-wallet information) when you fund your account via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet.

We track your gameplay activity on blacktoto—every sportsbook bet (Liga 1 Indonesia, Piala AFF, Champions League), live-dealer session, slot spin, and esports wager is logged with timestamps and outcomes. We record your account balance, deposit and withdrawal history, and login activity. This data helps us detect fraud, resolve disputes, and comply with gaming regulations.

We collect your device and network information when you access blacktoto. This includes your IP address, browser type, operating system, and device identifier. We use this to prevent unauthorized access and detect suspicious login patterns.

Cookies and tracking: We use cookies on blacktoto to remember your login status and preferences. We also use web analytics to understand how users interact with our platform—which games are popular, where users drop off, how many sessions occur during Liga 1 tournaments or Idul Fitri periods. This helps us improve blacktoto's user experience.

We may collect additional data during account verification, customer support interactions, or compliance investigations. If you contact our support team about a transaction, we record the conversation (email, live chat transcript, or call recording). If we investigate suspicious activity, we may collect additional information from third-party sources.

How We Use Your Data on blacktoto

We use your data primarily to deliver the blacktoto service. Your email and password authenticate your account. Your name and ID verify your identity for KYC compliance before withdrawals. Your payment method processes your deposits (via mobile banking, local payment, online payment, e-wallet, or bank transfer) and withdrawals.

We use your gameplay history to settle bets, calculate payouts, and detect cheating or fraud. We monitor for unusual patterns—rapid balance swings, multiple simultaneous logins, withdrawal requests to unfamiliar payment methods—and may freeze your account pending verification if we detect suspicious activity.

We share your data with third parties only as necessary:

  • 1
    Payment processorsProcessing

    Your payment method details are shared with mobile banking, local payment, online payment, e-wallet, mobile banking, local payment providers, and your bank (online payment, e-wallet, mobile banking, local payment) to process deposits and withdrawals. These entities follow their own privacy policies.

  • 2
    Compliance and fraud preventionVerification

    We share your identity and gameplay data with fraud-detection partners and gaming regulators to detect money laundering, match-fixing, and other illegal activity.

  • 3
    Law enforcementLegal requirement

    We disclose your data to law enforcement, regulators, or courts if required by legal process (subpoena, warrant, court order). We do not voluntarily share data with authorities.

  • 4
    Customer supportService

    Our support team accesses your account data (gameplay history, recent transactions, verification status) to resolve your inquiries and disputes.

Data retention: We retain your account data for at least five years after account closure to satisfy regulatory and tax requirements. Gameplay records are retained indefinitely for dispute resolution and audit purposes. You may request deletion of non-essential data (e.g., device logs, analytics cookies) by contacting our privacy team.

Your Rights and Our Commitments on blacktoto

We at blacktoto commit to transparency and your data rights. You may request access to all personal data we hold about you. We will provide a copy of your data within thirty days in machine-readable format. You may request correction of inaccurate information (e.g., if your registered address is outdated). You may request deletion of your data where retention is no longer necessary, except where legal or regulatory obligations require us to retain it.

We protect your data through encryption, access controls, and regular security audits. Our servers may be located in multiple jurisdictions outside Indonesia to support our global operations. Data transfers between jurisdictions are encrypted and comply with international data-protection standards. You acknowledge that data transferred outside your home jurisdiction may be subject to different legal protections—we undertake to maintain equivalent safeguards.

We do not use your data for automated decision-making or profiling without your consent. We do not sell your personal information to third parties for marketing or advertising. We may send you service-related communications (account notifications, payment confirmations, security alerts) and optional marketing emails about blacktoto promotions; you may unsubscribe from marketing emails at any time by clicking the unsubscribe link in the email.

If we experience a data breach, we will notify affected users within seventy-two hours and describe the breach, affected data, and protective measures we have taken. We maintain cyber-liability insurance to cover costs associated with data security incidents.

Our privacy practices may change if we update our service or legal obligations change. We will post changes to this notice and give you thirty days' notice of material changes. Continued use of blacktoto after notice constitutes acceptance of updated privacy terms.

If you have privacy concerns, contact our compliance team at the address below. If you believe we have violated your data rights, you may file a complaint with your local data-protection authority or gaming regulator. We undertake to respond to all privacy inquiries within thirty days.