gajahmadatoto Platform Privacy Notice

This page describes what we collect when you use gajahmadatoto and how we keep that data protected. We collect personal information only to operate our platform, verify your identity, process your payments, and provide customer support. We do not sell your data to marketers, and we do not share it with unrelated third parties.

Our gajahmadatoto privacy practices comply with standard data-protection principles. Your information travels over encrypted connections, is stored on secured servers, and is accessed only by authorised staff members and trusted payment processors. When you create an account, fund it, or request a withdrawal, you generate records that we retain for regulatory and dispute-resolution purposes.

Read this page to understand what gajahmadatoto collects, how we use it, and what rights you have over your personal data.

What We Collect on gajahmadatoto

When you open an account on gajahmadatoto, we collect your email address, phone number, full name, and date of birth. We also collect your IP address, device type, and browser information to detect suspicious login patterns and prevent fraud. We do not collect your location data unless you explicitly enable it.

Before you withdraw funds, we ask you to upload identity documents—your national ID (KTP) or passport and a selfie holding your ID. We use these to verify your identity matches your account profile. We store a record of successful verification but do not permanently retain the original photos. We delete uploaded images within 90 days of successful verification.

When you deposit or withdraw funds on gajahmadatoto, we collect transaction data: the amount, payment method (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet), timestamp, and confirmation status. We do not store your e-wallet credentials or bank account numbers—payment processors handle those. When you play games, we record your bets, settlements, and game history so we can resolve disputes and comply with regulations.

How We Use Your Data on gajahmadatoto

We use your email and phone to verify account ownership and send account notifications (login alerts, password resets, withdrawal confirmations). We use your identity documents to comply with Know Your Customer (KYC) regulations and prevent money laundering. We use your transaction history to track your deposits, withdrawals, and game activity—so we can answer your questions, resolve disputes, and produce account statements.

We use your IP address and device information to detect account takeover attempts. If we see a login from an unusual location or device, we may flag it or ask for additional verification. We use your game history and betting patterns to detect abuse—such as multiple accounts from the same person, or coordinated betting designed to manipulate odds. This protects gajahmadatoto and legitimate players.

We do not use your gajahmadatoto data for marketing without your consent. We do not sell your email address or phone number to advertisers. If you request, we can opt you out of promotional emails while keeping your account active.

Third-Party Data Processors on gajahmadatoto

Our gajahmadatoto platform relies on payment processors—your bank (mobile banking, local payment, online payment, e-wallet) or e-wallet provider (mobile banking, local payment, online payment, e-wallet, mobile banking). When you deposit or withdraw, we share your transaction amount and verification status with them, but we do not share your ID photo or full personal profile. Payment processors operate under their own privacy policies and are bound by their data-protection obligations.

We may also share anonymised transaction data (no names or IDs) with regulators if required by law. We host our servers in data centres outside Indonesia; this means your data may be stored on servers physically located in other countries. However, we control access to your data regardless of where it is stored. We do not grant foreign governments direct access to gajahmadatoto user data unless compelled by valid legal process.

We treat your gajahmadatoto data as a trust—we collect it only to serve you, and we defend it against unauthorised access with encryption and access controls.

Your Rights Regarding gajahmadatoto Data

You have the right to request a copy of all personal data gajahmadatoto holds about you. Contact our support team, and we provide it within five business days. You can request corrections if you believe your name, email, or phone number is wrong—we update it and confirm the change.

You have the right to delete your gajahmadatoto account. When you request deletion, we close your account, forfeit any remaining bonus funds, and pay out your cash balance. We do not immediately delete transaction records—we retain them for two years to comply with financial regulations and resolve disputes. After two years, transaction data is securely erased. Your identity documents are deleted within 90 days of account closure.

You can opt out of promotional emails at any time by clicking the unsubscribe link in any email or requesting it from our support team. Opting out does not affect your account status or access to gajahmadatoto services.

Security Practices and Cookies on gajahmadatoto

We at gajahmadatoto encrypt all communication between your device and our servers using TLS/SSL protocols. Your password is hashed using industry-standard cryptographic algorithms—we do not store it in plain text. Our servers are protected by firewalls, intrusion detection, and regular security audits.

We use cookies to keep you logged into gajahmadatoto and to remember your preferences (such as language or timezone). Cookies do not contain sensitive data—only session tokens and non-identifying preferences. You can disable cookies in your browser settings, but doing so may make gajahmadatoto difficult to use. We also use cookies to detect fraud and prevent account takeover.

Data Breach Notification on gajahmadatoto

In the unlikely event that gajahmadatoto experiences a data breach, we notify affected users within 24 hours via email. We also notify relevant regulators as required by law. Our notification explains what data was exposed, what steps we are taking to contain the breach, and what steps you should take to protect yourself (such as changing your password).

Contact Us and Policy Updates

If you have questions about how gajahmadatoto handles your data, contact our support team via email or in-app messaging. We respond during business hours in English and Bahasa Indonesia. You can also request a copy of this privacy policy in writing.

We may update this privacy policy to reflect changes in how gajahmadatoto operates or to comply with new regulations. If we make material changes, we notify you via email at least 14 days before the change takes effect. Continued use of gajahmadatoto after the notice period constitutes acceptance of the updated policy. Your data rights remain unchanged—we do not retroactively apply unfavourable privacy changes to existing accounts.

Our gajahmadatoto commitment to privacy is straightforward: we collect only what we need, we protect it with encryption and access controls, we do not sell it, and we give you rights over it. If our practices ever conflict with this commitment, contact us immediately so we can address your concern.

• Data Collection: Email, phone, name, date of birth, ID documents (temporary), transaction history, IP address.
• Data Use: Account verification, payment processing, dispute resolution, fraud detection, regulatory compliance.
• Data Sharing: Payment processors only; no sale to marketers; no sharing with unrelated third parties.
• Your Rights: Access, correct, delete, opt-out of marketing.
• Security: TLS/SSL encryption, hashed passwords, firewalls, regular audits.