linktoto Platform Privacy Notice

This page describes what we collect when you use linktoto and how we keep that data protected. We collect personal information during account setup, KYC verification, payment processing, and gameplay. We encrypt all data in transit and at rest, store it on secure servers, and share it only with payment processors, fraud-prevention services, and legal authorities where required by law.

Our privacy practices are designed around one principle: we collect only what we need to operate our service, verify your identity, process your payments, and comply with applicable law. We do not sell your data to advertisers or data brokers. We do not use your information for marketing beyond account notifications. We do not track your behaviour across other websites.

If you have questions about how we handle your data, how to access or delete your information, or how to exercise your privacy rights, contact our support team via the channels listed at the end of this page.

What data we collect on linktoto

We collect data in four categories. Identity data includes your full name, date of birth, government-issued ID number (KTP, passport, or equivalent), and a photograph of your face. Address data includes your residential address and proof of address (utility bill, bank statement, or rental agreement dated within 3 months). Payment data includes your payment method (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet account details), transaction history, and deposit/withdrawal records. Account data includes your email address, phone number, password (hashed, never stored in plain text), login history, two-factor authentication settings, and account security logs.

We also collect gameplay data: wagers placed, markets selected, settlement outcomes, account balance history, and support interactions. This data is logged for your own records, for dispute resolution, and for fraud detection. We do not collect data about your behaviour outside linktoto—we do not track your browsing history, location data (except as required for payment processing), or device identifiers beyond what is necessary to operate your account.

How we use your data on linktoto

• Account verification: We use your identity and address data to verify that you are who you claim to be and that you meet eligibility requirements under applicable law. This verification is mandatory before you can fund your account or place wagers.
• Payment processing: We use your payment data to process deposits and withdrawals. Payment information is handled by certified third-party processors (Stripe, PayPal, or equivalent) and is never stored on our servers in plain text.
• Fraud prevention: We use your account data, gameplay patterns, and payment history to detect suspicious activity. If we detect potential fraud, we may freeze your account pending investigation.
• Legal compliance: We use your data to comply with anti-money-laundering (AML) regulations, know-your-customer (KYC) requirements, and tax reporting obligations in jurisdictions where we operate.
• Customer support: We use your account data to resolve disputes, answer questions, and investigate complaints. Support interactions are logged and retained for quality assurance and training.

Third parties and data sharing on linktoto

We share your data with third parties only in specific circumstances. Payment processors (Stripe, PayPal, or equivalent) receive your payment information to process deposits and withdrawals. Fraud-prevention services receive your account data, IP address, and device information to detect suspicious activity. These services operate under strict data-processing agreements and are prohibited from using your data for any purpose other than fraud detection.

We share data with legal authorities only when required by law—for example, if we receive a court order, a subpoena, or a request from a government agency investigating financial crime. We do not voluntarily share data with law enforcement. If we receive a legal request for your data, we will notify you unless we are legally prohibited from doing so.

We do not share your data with other gaming platforms, advertisers, or data brokers. We do not sell your data. We do not use your data to build marketing lists or to target you with ads on other websites.

Data retention and deletion on linktoto

We retain your data for as long as your account is active, plus a retention period after account closure. Identity and address data are retained for 7 years to comply with AML and tax regulations. Payment data is retained for 7 years for audit and dispute resolution. Gameplay data is retained for 3 years for dispute resolution and fraud investigation. Account security logs are retained for 2 years.

If you request account closure, we will delete your account data within 30 days, except where we are required by law to retain it. You can request deletion of specific data categories (e.g., marketing preferences, optional profile information) at any time by contacting our support team. We will process deletion requests within 30 days unless legal or regulatory requirements prevent deletion.

Security and data protection on linktoto

We use industry-standard encryption (TLS 1.2 or higher) for all data in transit between your device and our servers. All data at rest is encrypted using AES-256 encryption. Our servers are located in secure data centres with 24/7 physical security, redundant power systems, and automated backup. We conduct regular security audits and penetration testing to identify and fix vulnerabilities.

Your password is hashed using bcrypt and is never stored in plain text. We do not have access to your password, and we cannot retrieve it if you forget it. If you forget your password, you can reset it via email or phone verification. Two-factor authentication is optional but recommended; if enabled, each login requires a one-time code sent to your phone.

If we discover a data breach, we will notify affected users and relevant authorities within the timeframes required by law (typically 72 hours). We will provide details about what data was compromised, what steps we are taking to secure it, and what steps you should take to protect yourself.

Cookies and tracking on linktoto

We use cookies to maintain your login session, remember your preferences, and prevent fraud. Session cookies expire when you close your browser. Preference cookies (e.g., language, theme) persist for 1 year. We do not use cookies for tracking or profiling. We do not use third-party cookies for advertising or analytics.

You can disable cookies in your browser settings, but doing so may prevent linktoto from functioning properly. We do not use pixel tags, web beacons, or other tracking technologies beyond cookies.

Data location and international transfers on linktoto

Our servers may be located outside your jurisdiction. If you are located in the European Union, your data may be transferred to servers outside the EU. By using linktoto, you consent to such transfers. We implement standard contractual clauses and other safeguards to protect your data during international transfers.

Contact us about privacy on linktoto

If you have questions about our privacy practices, want to exercise your privacy rights, or wish to report a privacy concern, contact our support team. Live chat is available 24/7. Phone support runs 9 a.m. to 9 p.m. Jakarta time, Monday through Saturday. Email is available around the clock. For privacy-specific inquiries, email our data protection officer at the address listed in your account settings. We will respond to privacy requests within 30 days.

If you are not satisfied with our response, you may file a complaint with your local data protection authority or regulatory body. We are committed to working with you to resolve any privacy concerns.

Related pages