rumatoto Privacy Policy
This page describes what data we collect when you use rumatoto and how we keep that data protected. We at rumatoto take your privacy seriously. We do not sell your personal information to third parties, and we encrypt all sensitive data—including your identity documents, payment details, and betting history—in secure servers.
When you open a rumatoto account, deposit via DANA or e-wallet, place wagers on Liga 1 or Champions League fixtures, or withdraw winnings to your mobile banking virtual account, you share information with us. We use that information solely to verify your identity, process your transactions, settle your wagers, and provide customer support in English and Bahasa Indonesia.
Our privacy policy complies with applicable data protection law in your jurisdiction. If you have questions about how we handle your data or wish to exercise your privacy rights, contact our support team. We respond within five business days.
What Data We Collect at rumatoto
We at rumatoto collect information in three categories: registration data, transaction data, and interaction data.
Registration data includes your full name, email address, phone number, date of birth, and a secure password. You provide this when you open your account. We store this data in encrypted form on our servers.
Transaction data includes deposits, withdrawals, wagers, and settlement outcomes. When you deposit via QRIS, e-wallet, mobile banking, local payment, or a online payment virtual account, we record the amount, timestamp, and payment method. When you place a wager on a Liga 1 match or live-dealer roulette game, we record your stake, the odds, and the outcome. When you request a withdrawal, we record the amount and destination payment method. All transaction data is retained for compliance and dispute resolution.
Interaction data includes your login times, pages visited, games played, support tickets submitted, and device information (browser type, operating system, IP address). We collect this to improve our platform, troubleshoot technical issues, and detect fraud. This data helps us understand how rumatoto is used and where we can enhance the experience.
Identity Verification and KYC on rumatoto
Before your first withdrawal, we at rumatoto require identity verification (Know Your Customer). You must provide a government-issued ID (KTP, passport, or driver's licence), your full name and address as shown on that ID, and a recent selfie or liveness video confirming you match your ID photo.
On rumatoto, identity verification protects both you and us. It ensures funds go to the rightful account holder and prevents fraud and money laundering.
We store your identity documents in encrypted, access-restricted servers. Only authorised compliance staff view them, and only to verify your identity. We do not use your identity photos for any purpose beyond verification. Once verified, your verification status remains active for future withdrawals; we do not re-verify for routine requests unless we detect suspicious activity.
Third-Party Processors and Data Sharing on rumatoto
We at rumatoto work with third-party payment processors to handle deposits and withdrawals. When you transfer funds via e-wallet, mobile banking, or local payment, those e-wallet providers process your transaction and receive your payment details. When you use a online payment, e-wallet, mobile banking, or local payment virtual account, those banks process your transfer. We do not control how those third parties handle your data—their privacy policies govern their use. We recommend reviewing their privacy statements.
- Payment processors
- online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, and bank partners receive transaction data to process transfers. They may retain your data per their own privacy policies.
- Support contractors
- We may use third-party contractors to provide multilingual support via email and chat. These contractors sign confidentiality agreements and access only the minimum data needed to assist you.
- Hosting and analytics
- Our servers and analytics platforms may be located outside your country. Your data may transit international borders during processing. We apply encryption and legal safeguards to protect it.
- Legal and regulatory authorities
- If required by law, we may disclose your data to government agencies, law enforcement, or financial regulators acting under legal process.
Cookies and Tracking on rumatoto
We at rumatoto use cookies and similar tracking technologies to remember your login state, language preference, and betting history so you do not need to re-enter information every time you visit. Cookies are small files stored on your device. You can disable cookies in your browser settings, though some rumatoto features may not work correctly if you do.
We also use analytics tools to track how many users visit rumatoto, which pages they spend time on, and which games are most popular. This information is anonymised and does not identify individual users. We use it to improve platform performance and user experience.
Your Rights Regarding Your Data on rumatoto
You have the right to request access to your personal data. Contact our support team and we will provide a copy of all data we hold about you within 15 business days. You also have the right to request corrections if any data is inaccurate. If you believe your data is incorrect—for example, if your registered address is outdated—email us and we will update it promptly.
You may request deletion of your account and associated data in certain circumstances. If you close your account, we retain your transaction history and identity documents for a minimum of five years to comply with financial regulations. We cannot delete this data before the retention period expires. However, we do stop using your data for marketing or analytics purposes once you close your account.
How We Secure Your Data on rumatoto
We at rumatoto use industry-standard encryption (TLS/SSL) to protect data in transit between your browser or app and our servers. All sensitive data—passwords, identity documents, payment details—is encrypted at rest in our databases. Access to your data is restricted to authorised staff on a need-to-know basis. Our servers have firewalls, intrusion detection systems, and regular security audits.
We cannot guarantee absolute security—no system is completely immune to breaches. If we detect unauthorised access to your account or a data breach affecting rumatoto users, we will notify you by email and provide guidance on protecting your account. We also maintain cyber insurance to cover potential data loss incidents.
Data Retention and Jurisdiction on rumatoto
We at rumatoto retain your data for as long as your account is active plus a minimum of five years after closure to comply with financial and anti-money-laundering regulations. Transaction records, including deposits, withdrawals, and wagers placed on Liga 1 or Piala AFF matches, are retained for the full five-year period to support audit trails and dispute resolution.
Our servers are located outside your country in some cases. Your data may be transferred to, stored in, and processed in jurisdictions other than where you are located. By using rumatoto, you consent to this cross-border data transfer. We apply the same security and privacy protections regardless of server location.
We at rumatoto comply with privacy law in your jurisdiction. If you are located in a region with strict data protection regulations (such as the European Union), we apply additional safeguards including data protection impact assessments and contractual guarantees with our processors. If applicable law in your jurisdiction differs from our standard practices, we will adapt our policy to comply.