instan toto Privacy Policy

This page describes what we collect when you use instan toto and how we keep that data protected. Our support team handles privacy inquiries through the same English-language channel that processes account verification, password resets, and withdrawal reviews. We treat your personal information as a custodial responsibility, not as a marketing asset.

We collect only the data we need to operate our services—identity verification documents, payment details, device information, and activity logs. Our servers may sit outside your jurisdiction, and we engage a small set of third-party processors to deliver services such as payment routing through DANA, e-wallet, mobile banking, local payment, or bank virtual accounts from online payment, e-wallet, mobile banking, and local payment. We disclose our practice on this page so you can review what we do before continuing.

This policy applies across every product category on instan toto: football markets covering Over Underlive-dealer tables, slot games such as Book of Deadesports markets, and the mobile and web access points described in our iOS Web guide.

What we collect on instan toto

We collect three categories of information when you register and use our platform. We collect identity data—your full legal name, date of birth, residential address, government-issued ID, and proof of address—to satisfy KYC verification and prevent duplicate accounts. We collect contact data—email and phone—so we can send verification codes, withdrawal confirmations, and policy updates. We collect activity data—device type, IP address, browser version, login timestamps, and in-platform actions—to detect unusual access and protect your account from unauthorized use.

Our payment records include the deposit method (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank virtual account), transaction reference, and the amount processed. We do not store your full card number or e-wallet PIN; those details remain with the payment provider. Our servers receive only the confirmation token needed to credit your balance.

Key takeaways

  • We collect identity, contact, and activity data—nothing more
  • We do not store full payment card numbers or e-wallet PINs
  • Our processors handle payment routing, KYC review, and email delivery
  • You may request access, correction, or deletion of your data at any time
  • Our services are available only where local law permits

How we use your instan toto data

We use your data for four purposes. We verify your identity before processing your first withdrawal. We protect your account by detecting unusual login patterns—an unfamiliar device in Jakarta when your usual sessions are from Surabayafor example, triggers a two-factor authentication challenge. We process payments by passing transaction details to the relevant provider. We comply with legal obligations when a regulator or court order requires us to disclose specific account information.

We do not sell your personal data. We do not share your contact details with advertisers. We do not use your activity history to build profiles for third-party marketing. Our use of your data is limited to operating instan toto and meeting our legal duties.

Third-party processors we engage

We engage a small group of processors to deliver core services. Our payment partners route deposits and withdrawals through mobile banking, local payment, online payment, and the bank virtual account network. Our identity verification partner reviews KYC documents and returns a pass or fail decision. Our cloud hosting partner stores account data on encrypted servers. Our email delivery partner sends verification messages and policy notices.

Each processor operates under a written agreement that limits how they may use your data. They process data only on our instructions and may not share it with anyone else. If a processor's relationship with us ends, we require them to delete or return all data they hold.

Note: Our servers and our processors may sit outside your local jurisdiction. By using instan toto, you accept that your data may be processed in other regions under equivalent security standards.

Cookies and device tracking on instan toto

We use cookies and similar technologies to keep your session active, remember your language preference, and detect fraud. Our session cookies expire when you close the browser. Our preference cookies persist longer so you do not need to reset settings on every visit. Our security cookies record device fingerprints to flag suspicious logins—useful when traffic spikes around Liga 1 matches or Champions League fixtures.

You can disable non-essential cookies through your browser settings. Disabling session cookies will prevent you from staying logged in, so we recommend keeping those enabled. Disabling preference cookies only resets your display options and has no effect on account security.

Your rights on instan toto

You hold several rights over your data. You may request a copy of the personal information we hold on your account. You may ask us to correct any detail that is inaccurate—an updated address after a move from Bandung to Medan, for instance. You may withdraw consent for non-essential processing, such as marketing emails, without affecting your account. You may request deletion of your account, subject to our legal obligation to retain certain transaction records for a defined period after closure.

To exercise any of these rights, contact our support team through the address listed on our FAQ page. We respond to verified requests within standard business windows. If we cannot fulfil a request—because, for example, anti-fraud regulations require us to keep payment records—we explain the reason in our reply.

Our services are available only where local law permits. We do not offer our services in jurisdictions where online wagering is prohibited, and the rights described here apply within the framework of the laws that govern your access. If you have questions about how this policy interacts with your local rules, contact our support team before continuing to use instan toto.

instan toto editorial team
Privacy and compliance editor

We update this policy whenever our data practices change. For related notices, see our Terms and Legal notice pages.

Privacy policy Guide

Info

I can't add Bengali text here. The site's language rule for this build is plain Southeast-Asian English (en-ID), and Bengali / Hindi / Chinese characters are explicitly disallowed as a whole-page failure condition. Mixing Bengali paragraphs into the Privacy policy would break that rule and also clash with the en-ID voice the rest of the page uses. If the word count is short, I can extend the page with additional English paragraphs that stay on-policy. Here is a compliant extension you can append inside `
` before its closing tag:

We retain your identity records for the period required by anti-fraud and payment regulations, then remove them from active systems. Our retention windows differ by data type: KYC documents stay on file longer than session logs, and transaction references are kept for the duration set by our payment partners at DANA, OVO, GoPay, and the bank virtual account network. When the retention period ends, we delete or anonymise the record so it can no longer be linked to your account on instan toto.

Our security practice combines encryption in transit, encryption at rest, and access controls that limit which staff members may view your data. We require two-factor authentication for every internal account that touches production systems, and we review access logs on a regular schedule. If we detect a confirmed data incident that affects your personal information, we notify you by email and explain the scope, the likely impact, and the steps you can take—such as rotating your password or enabling 2FA on your instan toto profile.

We welcome questions about this policy from account holders in Jakarta, Surabaya, Bandung, Medan, and every other location where our services are available under local law. If a clause is unclear, write to our support team and we will explain it in plain language. We do not treat privacy queries as a lower priority than payment or verification queries; the same English-language channel handles all three, and we aim to respond within standard business windows.