Reference

How pokemontoto Handles Your Personal Data

pokemontoto collects only the data we need to run your account securely and process deposits via DANA, OVO, GoPay and QRIS — nothing more.

Account data protected at restDANA, OVO, GoPay & QRIS transaction records securedData retained only as long as legally requiredYou may request deletion at any timeContact our privacy team via live chat
pokemontoto How pokemontoto Handles Your Personal Data
PRIVACY CONTACT PATHS

How to Reach Our Privacy Team

If you have a question about how your data is stored, want to correct inaccurate information or need to submit a deletion request, our privacy team is reachable through three direct channels. Whether you are in Makassar or anywhere else in Indonesia, responses to privacy requests are handled within 3 business days. For urgent account-security concerns, live chat gives you the fastest path to our team, available 07:00–23:00 WIB every day.

Team online

Live Chat

Open the chat widget inside your account dashboard and select 'Privacy Request' from the topic menu. Our team responds within one hour during operating hours of 07:00–23:00 WIB daily.

Email Privacy Request

Send your full name, registered email and the nature of your request to our privacy inbox. We acknowledge every email within 24 hours and resolve the request within 3 business days.

Account Settings Form

Log in, navigate to Settings → Privacy, and submit a data-access or deletion request directly from your account page. The form routes automatically to our data-protection team without needing external contact.

DATA HANDLING PRACTICES

Six Ways We Protect What You Share

Your account data does not sit in a single location. We apply layered security controls across storage, transmission and access points so that the information you provide when depositing via DANA or…

Encrypted Storage

All personally identifiable data — including your registered email, payment identifiers and account history — is stored using AES-256 encryption. Encryption keys are rotated on a scheduled basis and access is restricted to authorised personnel only.

Cookie Policy

We use session cookies to keep you logged in and analytics cookies to understand how you navigate the site. You can manage cookie preferences from the footer of any page; disabling analytics cookies does not affect your ability to deposit or withdraw.

Account Access Logs

Every login to your account is timestamped and linked to a device fingerprint. If an unfamiliar device attempts access, you receive an email alert and the session is held pending your confirmation, reducing the risk of unauthorised entry.

Data Retention Schedule

Transaction records linked to DANA, OVO, GoPay and QRIS payments are held for the period required by applicable financial regulations where local law permits. Once that period expires, records are permanently deleted from active and backup systems.

Third-Party Processor Limits

When your deposit travels through the GoPay or QRIS network, only the minimum data required to complete that payment is shared with the processor. We do not provide processors with your full account profile, browsing history or game activity.

Your Right to Correct and Delete

You may request a correction to any inaccurate data or ask us to delete your account records entirely. Deletion requests are processed within 7 business days, subject to any retention requirements that depend on local law.

Frequently Asked Questions About Your Privacy

These questions come from real account holders who wanted to understand how their personal data is used, stored and protected on pokemontoto. If your question is not covered below, reach our privacy team via live chat between 07:00 and 23:00 WIB or submit a request through the Settings → Privacy page in your account.

We collect your full name, email address, date of birth and the payment identifier for your chosen method — DANA, OVO, GoPay or QRIS. We also record device and session data to protect your account against unauthorised access.

We share data only with payment processors when needed to complete a transaction — for example, passing a QRIS reference to the network. We do not sell or rent your data to advertisers, data brokers or any unrelated third party.

Transaction records — including DANA deposits and OVO withdrawals — are kept for the period required by applicable financial regulations where local law permits. After that period, records are permanently removed from both active and backup storage.

Yes. Log in, go to Settings → Privacy and submit a data-access request, or contact our team via live chat. We will compile and deliver a copy of your data within 7 business days of receiving the request.

Submit a deletion request through Settings → Privacy or by emailing our privacy inbox. We process deletions within 7 business days, subject to any retention periods that depend on local law for financial records.

Only the minimum data needed to process your payment is shared with the GoPay or QRIS processor. Once the transaction completes, no additional profile data is transmitted, and payment references are retained only as long as regulations require.

You can correct basic details — such as your registered email — directly in Account Settings. For identity-linked corrections, contact our privacy team via live chat between 07:00 and 23:00 WIB, and we will verify and update the record within 3 business days.