Reference

Your Rights and Our Legal Commitments

koytoto operates under a clear legal framework so you always know where you stand — from account creation and data handling to payment transactions processed through DANA, OVO…

Jurisdiction-Aware TermsDANA, OVO, GoPay & QRIS CoveredData Retention PolicyAccount Security StandardsContact Path for Legal Requests
koytoto Your Rights and Our Legal Commitments
LEGAL CONTACT PATHS

Reach Us for Any Legal or Policy Matter

If you have a question about our terms, a data request or a policy clarification, our support team is available around the clock. You can reach us through live chat directly from your account dashboard, by email at [email protected], or via WhatsApp for urgent account-level queries. Players in Denpasar and across Indonesia can expect a first response within one hour during peak hours and within four hours overnight.

Team online

Live Chat Support

Access live chat from your account dashboard any time — available 24 hours, seven days a week. Legal queries are routed to a dedicated compliance agent, not a general queue, so responses are relevant and specific.

Email — [email protected]

Send formal data requests, account closure notices or terms disputes to [email protected]. We acknowledge every email within two hours and deliver a substantive written reply within five Indonesian business days.

WhatsApp Channel

For urgent account-security or legal concerns, our WhatsApp line is staffed from 08:00 to 24:00 WIB. Share your registered account number and the nature of your request to skip the initial verification step.

ACCOUNT & DATA STANDARDS

How koytoto Handles Your Data and Security

We apply industry-standard encryption to every account session and every payment instruction — whether you are depositing via QRIS or withdrawing to your OVO wallet.

Data Encryption

All account sessions run over TLS 1.3 encryption. Payment instructions sent through DANA, OVO, GoPay or QRIS are encrypted end-to-end before they reach the payment rail, so your financial data never travels in plain text.

Cookie Policy

We use functional cookies to keep your session active and analytical cookies to measure page performance. You can manage cookie preferences in your account settings at any time; disabling analytics cookies does not affect your ability to transact.

Account Security Controls

Two-factor authentication is available for all accounts and strongly recommended. If you suspect unauthorised access, freeze your account instantly from the security tab — no need to contact support first; the freeze takes effect within seconds.

Data Retention Period

We retain account records for five years from the date of last activity, in line with standard financial-services practice. After that period, data is anonymised rather than deleted, so aggregate analytics remain valid while your personal details are removed.

Your Right to Access

You may request a machine-readable export of every data point we hold on your account — transaction history, login logs and profile details — by emailing [email protected]. We deliver the export within seven calendar days, free of charge.

Deletion and Account Closure

To close your account and request data deletion, email [email protected] with your account ID and the subject line 'Account Closure Request'. We process closures within three business days and confirm deletion by return email.

Common Questions About Our Legal Terms

The questions below cover what we hear most from people reading our legal pages — from data rights and cookie controls to payment disputes and account closure. If your question is not answered here, our legal team at [email protected] will respond within five business days.

Indonesian law is the primary reference for all account activity. Whether participation is available to you depends on local law in your specific region. Our terms reflect this and are updated whenever regulatory conditions change in Indonesia.

Email [email protected] with the subject 'Data Export Request' and include your registered account ID. We deliver a machine-readable export of your transaction history, login records and profile data within seven calendar days at no charge.

Yes. All payment instructions — including those processed via DANA, OVO, GoPay and QRIS — are encrypted before transmission and stored under access-controlled conditions. We audit server access quarterly and do not share payment data with third parties.

Yes. Contact our support team via live chat or email [email protected] within 14 days of the transaction date. Provide your account ID and the transaction reference number. Our compliance team reviews disputes and responds with a written decision within five business days.

Send an email to [email protected] with the subject 'Account Closure Request' and your account ID. We process closures within three business days, confirm the deletion by return email, and anonymise any retained aggregate data.

We use functional cookies for session management and analytical cookies for performance measurement. You can review and adjust cookie preferences in your account settings. Turning off analytical cookies has no effect on your ability to deposit or withdraw.

We send an email notification to your registered address before any update to our terms takes effect. The date of the most recent revision is displayed at the bottom of every legal page so you can verify the version you are reading at any time.