gptotoPrivacy Policy

This page describes what we collect when you use gptoto and how we keep that data protected. We take privacy seriously because your personal information—email, payment details, identity documents—is essential to operating our platform safely and complying with regulations. When you register on gptoto, deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet, or play any game category (Liga 1 betting, live-dealer tables, slots), we collect and process data according to the practices outlined here.

Our gptoto servers are located outside Indonesia. This means your data may be stored and processed internationally, subject to the privacy protections we describe below. By using gptoto, you consent to this international data transfer. We comply with applicable data-protection laws to the extent feasible, though we cannot guarantee full compliance with every jurisdiction's framework because gptoto operates globally.

We encourage you to read this policy carefully. If you have questions about how we use your data, contact our support team through the help portal on gptoto.

What Data We Collect on gptoto

Account Registration Data

We collect your email address, phone number, full name, date of birth, residential address, and chosen username during registration on gptoto. We also store your password (encrypted), security questions, and any profile picture you upload. This information is mandatory to create your account and verify your identity.

Payment and Financial Data

When you deposit on gptoto via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank virtual accounts (mobile banking, local payment, online payment, e-wallet), we collect transaction records, payment amounts, and payment-method metadata. We do not store full credit card numbers or bank account numbers in plain text; we use tokenization and encryption. However, we do retain transaction history linked to your account for accounting and verification purposes.

Identity Verification: We collect identity documents (passport, national ID, driver's license) and proof-of-address documents (utility bills, lease agreements) as part of our know-your-customer (KYC) process on gptoto. These documents are scanned and stored securely.

Gameplay and Session Data

We log every action you take on gptoto: games you play, bets you place, outcomes, session duration, device information, and IP address. This data helps us prevent fraud, investigate disputes, and improve our platform. We also track your balance history, deposits, withdrawals, and bonus usage.

Cookies and Tracking

When you visit gptoto via web browser, we place cookies on your device to remember your login, language preference, and browsing behavior. We use these cookies to enhance your experience and analyze platform usage. Third-party analytics tools on gptoto may also set cookies to track user flows. You can disable cookies in your browser settings, though doing so may reduce functionality on gptoto.

How We Use Your Data on gptoto

We use the data we collect on gptoto for several purposes:

  • Account Management: We verify your identity, process deposits and withdrawals, and manage your account balance and transaction history.
  • Compliance: We use your information to comply with anti-money-laundering (AML) regulations, know-your-customer (KYC) requirements, and local gaming laws. We may share data with regulatory authorities if required by law.
  • Fraud Prevention: We analyze gameplay patterns, IP addresses, and payment methods to detect suspicious activity. If we suspect fraud, we may freeze your account and investigate.
  • Customer Support: We use your data to respond to your support requests, resolve disputes, and improve our customer service.
  • Marketing (Optional): If you opt in, we may send you promotional emails about new games, bonuses, or Liga 1 / Piala AFF betting updates. You can unsubscribe at any time.
  • Platform Improvement: We analyze aggregated user behavior to optimize gptoto's performance, fix bugs, and design new features.

Third Parties and Data Sharing on gptoto

We share your data with third parties only when necessary:

  • Payment Processors: DANA, e-wallet, mobile banking, local payment, online payment, and our bank partners (e-wallet, mobile banking, local payment, online payment) receive transaction data to process your deposits and withdrawals.
  • Fraud Detection Services: We share anonymized behavioral data with fraud-detection vendors to improve security on gptoto.
  • Legal Authorities: We disclose data if required by court order, government request, or applicable law.

We do not sell your personal data to advertisers or third-party marketers. We do not share your data with other gaming platforms without your explicit consent. Our service partners (hosting providers, customer-support software) have signed data-protection agreements with us to ensure they handle your information securely.

International Data Transfer: Our gptoto servers are located outside Indonesia. By using gptoto, you consent to your data being stored and processed internationally. We apply industry-standard security measures, but we cannot guarantee protection equivalent to Indonesian law.

Your Rights on gptoto

Depending on your jurisdiction, you may have certain rights regarding your data:

  • Access: You can request a copy of the personal data we hold about you on gptoto. Contact our support team to initiate this request.
  • Correction: If your information is inaccurate, you can update it through your account settings on gptoto or request our help.
  • Deletion: You can request account closure on gptoto. We will delete your data after a retention period required for legal compliance.
  • Opt-Out: You can opt out of marketing communications by clicking "Unsubscribe" in our promotional emails or adjusting your preferences on gptoto.

To exercise these rights, contact our support team through the help portal on gptoto. We will respond within a reasonable timeframe, typically 14–30 days depending on the request.

Data Retention on gptoto

We retain your personal data for as long as your gptoto account is active. After account closure, we keep records for at least five years to comply with AML and accounting regulations. Payment transaction records are retained for seven years. Identity documents are retained for the duration of your account plus three years thereafter. We delete cookies after they expire (typically one year) unless you reset them earlier.

Security Measures on gptoto

We use encryption (SSL/TLS) to protect data transmitted between your device and our gptoto servers. We store sensitive data (passwords, payment tokens, identity documents) in encrypted formats. Our staff can access your data only on a need-to-know basis, and we regularly audit our security practices. However, no online system is completely secure. If you suspect a data breach on gptoto, notify us immediately through our support team.

Contact Us on gptoto

If you have concerns about your privacy on gptoto or wish to exercise your data rights, contact us through the help portal on our website. You can also reach out if you notice unauthorized access to your account or believe your data has been misused. Our support team, available in English, will assist you and escalate your concern to our data-protection officer if necessary.

This privacy policy applies to all gptoto services—football sportsbook (Liga 1, Piala AFF, Champions League), live-dealer tables, slot games, card games, and esports markets. We may update this policy from time to time. If we make material changes, we will notify you by email or through an announcement on gptoto. Continued use of gptoto after an update constitutes your acceptance of the revised policy.