Cookie Notice
Same definitions, same retention windows. The cookie page expands the categories; this Privacy Policy is the parent document everything else points back to.
LEGAL REFERENCE
Our Privacy Policy, Written for You
This is the toto12 link Privacy Policy page. We've written it so you can see exactly what account details we collect when you open a lobby session, why...
Account dataCookie postureData retentionYour choicesIndonesia-aware
Policy Posture and Jurisdiction Wording
Our policy applies wherever local law permits you to hold a toto12 link account. We collect the basics needed to run your lobby — name, contact handle, payment reference for QRIS, DANA, OVO or GoPay top-ups, and the device fingerprint that keeps your session yours. We don't sell your data, and we don't pass it to marketing networks outside our brand. Retention
follows the supported-regions rule: identity records are kept for the period local Indonesian regulation requires, transaction logs sit for audit windows tied to your wallet provider, and inactive accounts are pruned on the schedule published below. If a clause conflicts with Indonesian statutory rules, the statutory rule wins.
Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.
TRUST MARKERS
How We Review This Policy
Editor on Record
Each policy revision is signed off by a named editor on our compliance side, not a generic legal box. You'll see the revision date at the foot of the page change whenever real wording shifts.
Quarterly Re-read
We re-read the policy every quarter against fresh Indonesian guidance. If wallet rules around QRIS, DANA, OVO or GoPay shift, the relevant clause is rewritten and dated, never silently patched.
Cross-team Sign-off
Product, payments and support all sign off before we publish a policy change. That stops a clause from making sense to lawyers but breaking the actual lobby flow you experience.
Plain-language Pass
After legal drafts a clause, our copy team rewrites it in the same voice you're reading now. The legal meaning is preserved; the sentence stops sounding like a contract.
Change Log Kept
We keep a simple change log so you can see what moved between versions. Older versions stay accessible on request through the privacy inbox for at least twelve months.
Independent Audit
An external reviewer checks our data handling against the policy text once a year. Findings that affect you are summarised in plain English and added to this page.
BENCHMARKED
Consistency Across Our Policy Pages
Terms of Use
Where Terms mention your data, the wording mirrors this policy exactly. We don't run two definitions of account data across the brand.
KYC Page
KYC describes which documents we ask for; this policy explains how long we hold them and who inside the team can open them.
Wallet Disclosures
Per-wallet notes for DANA, OVO, GoPay and QRIS reference this policy for retention and deletion rules rather than redefining them locally.
Marketing Preferences
Your opt-in choices live in account settings; this policy defines what those toggles actually change behind the scenes.
Complaints Flow
The complaints page sends privacy-tagged tickets straight to the desk named here, so escalation paths stay consistent.
Sibling Brand Pages
Any sibling property under our umbrella publishes a policy with the same backbone. Local clauses change; the data-handling spine does not.
AT A GLANCE
What This Policy Page Shows You
01
Last Updated Stamp
A clear revision date sits at the top so you know whether you're reading current wording. We don't backdate edits, and small typo fixes are noted separately from substantive changes.
02
Section Anchors
Each clause has its own anchor link, so you can share a specific paragraph with our support team instead of describing where in the page it sits.
03
Plain-English Summary
Above each dense clause, a short summary tells you the practical meaning. If summary and clause ever drift apart, the clause text is the one that binds.
04
Your Rights Block
A dedicated block lists what you can ask us to do — access, correct, export or delete — and how long each request usually takes once it reaches our desk.
05
Contact Card
The privacy contact card stays pinned in the sidebar on desktop and collapses cleanly on mobile so you never lose the inbox address while scrolling.
06
Version History
A small history widget lets you compare the current policy with the previous one, with changed lines highlighted instead of you re-reading the whole page.
Privacy Policy Questions We Get
It covers everything tied to your account: registration details, the wallet reference you link for QRIS, DANA, OVO or GoPay top-ups, session logs and any messages you send our support desk while signed in.
Identity fields are kept for the period Indonesian regulation requires, transaction logs sit inside the audit window your wallet provider sets, and inactive accounts are pruned on the schedule named in the retention clause above.
Yes. Use the in-account removal form or write to the privacy inbox. We confirm the request, settle any pending wallet balance, then clear identity fields and close the account on our side.
Only with processors we need to run the lobby — wallet partners for QRIS, DANA, OVO and GoPay, plus our hosting and fraud-check providers. We don't sell your data to marketing networks, ever.
The revision date at the top of the page changes whenever wording shifts, and substantive edits are summarised in the change log. Account-impacting changes also trigger an in-lobby notice when you next sign in.
This page is the parent document; the dedicated cookie notice expands the categories and lifetimes. Definitions and retention windows match across both, so you won't see two different answers.
Open the chat bubble and pick the Privacy topic, or email the privacy inbox directly. Either route reaches the same desk, and we keep a thread record so you can follow up without repeating yourself.