Data Minimization
We ask for only what we need: name, email, phone, payment method. No unnecessary fields, no hidden data collection in the background.
We built data lotto around your trust. This privacy policy shows exactly how we handle your account details, payment information and personal data across every part of the...
data lotto operates in supported regions where local law permits. This policy governs how we collect, use and protect information you provide when you create an account, make deposits through DANA, OVO, GoPay or QRIS, play our games, or contact our support team. We comply with data protection standards applicable to our jurisdiction and your region. Your personal data — name, email,
phone number, payment details — stays encrypted and is never shared with third parties without your consent. We use cookies and analytics only to improve your lobby experience and detect fraud.
Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.
Send privacy concerns to our data protection team. We respond within 48 hours and can explain exactly how your information is stored, used or deleted.
Chat with our support agents during lobby hours. They can walk you through your privacy settings, data requests or account deletion options in real time.
Manage your privacy preferences directly in your account dashboard. Control what data we collect, opt out of marketing emails and request a full data export anytime.
All payment and personal data travels through bank-grade SSL encryption. Your DANA, OVO, GoPay and QRIS transactions are protected the same way your bank protects them.
We never sell your email, phone number or gaming history to advertisers or data brokers. Your information stays inside data lotto unless you explicitly consent otherwise.
Our security team runs monthly penetration tests and data audits. We log every access to your account and flag unusual activity before it reaches your funds.
We keep your account data for as long as your account is active. After deletion, we purge personal records within 30 days unless law requires longer storage.
Even though we operate in Indonesia, we follow GDPR principles for data minimization, consent and user rights. You can request, correct or delete your data anytime.
If a breach occurs, we notify affected users within 72 hours with details of what happened, what we're doing and what steps you should take to protect yourself.
We ask for only what we need: name, email, phone, payment method. No unnecessary fields, no hidden data collection in the background.
DANA, OVO, GoPay and QRIS details never touch our servers. Payment processing happens through encrypted third-party gateways you trust.
We use cookies only for session management and fraud detection. No tracking pixels, no cross-site profiling, no selling your browsing history.
You can download your data, correct errors, request deletion or opt out of marketing in seconds from your account settings dashboard.
If your data is compromised, we tell you within 72 hours with specifics: what was accessed, what we're doing and how to protect yourself.
Your gaming history, payment patterns and personal details are never sold to third parties, advertisers or data aggregators under any circumstance.
We operate in supported regions where local law permits. Your data is governed by the privacy laws of your jurisdiction and our data protection standards.