cyktoto Platform Privacy Notice

This page describes what we collect when you use cyktoto and how we keep that data protected. We at cyktoto process personal information when you register an account, fund your wallet, place bets or play games, and withdraw winnings. Our collection practices follow industry-standard encryption (TLS 1.3), and we store sensitive data on servers with restricted access. This privacy notice applies to all cyktoto services: the mobile app (Android and iOS), the web browser interface, and any live-dealer or sportsbook experience you access through our platform.

We are committed to transparency about data handling. Our cyktoto platform does not sell personal information to third parties for marketing. We share data only with essential service providers (payment processors, fraud-detection systems, customer-support tools) and only when legally required or to fulfil your transaction. You have the right to access, correct, or request deletion of your cyktoto data; we process such requests within 30 days.

Payment data (your DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank account information) is handled by PCI-DSS-compliant payment processors. We ourselves do not store your full card numbers or bank credentials; we store only tokenised references that allow deposits and withdrawals without exposing raw account details. If you have questions about this policy, contact our support team via the in-app chat or email; response times are typically under 24 hours.

What Data We Collect on cyktoto

We at cyktoto collect the following information when you use our platform: (1) Account Registration: email address, phone number, username, government ID document (passport or national ID card), and proof of address. (2) Financial Information: payment method details (linked accounts, transaction history, withdrawal requests). (3) Gameplay Data: game titles you play, stakes placed, results, session timestamps, and your account balance history. (4) Device and Log Data: device type (Android/iOS/desktop), app version, IP address, browser type, and pages you visit. (5) Communication Data: support tickets you submit, feedback you provide, and any disputes you file.

Our cyktoto collection of government ID is mandatory for account verification (KYC compliance). We use this to confirm your identity and prevent underage play, fraud, and account takeover. ID photos are encrypted and retained for the duration of your account; we delete them within 90 days of account closure.

How We Use Your Data on cyktoto

We at cyktoto use your personal data for the following purposes: (1) Account Management: creating your account, verifying your identity, and managing your login sessions. (2) Payment Processing: processing deposits via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet, and fulfilling withdrawal requests. (3) Gameplay: delivering live-dealer tables, settling sportsbook bets (Liga 1, Piala AFF, esports), and crediting slot-game winnings to your account. (4) Fraud Prevention: detecting unusual login patterns, duplicate accounts, and unauthorized payment attempts. (5) Customer Support: responding to your questions and resolving disputes. (6) Legal Compliance: maintaining records required by law and responding to regulatory inquiries.

Our cyktoto platform does not use your data for targeted marketing without explicit consent. We may send transactional emails (deposit confirmations, withdrawal status, settlement notifications) regardless of marketing preferences. During special events (Idul Fitri, Idul Adha, Imlek, Nyepi, or major football tournaments like Piala Indonesia), we may send promotional notifications if you have opted in; you can disable these in account settings anytime.

Third-Party Processors and Data Sharing

We at cyktoto partner with several third-party service providers to operate our platform. Payment processors (e.g., Stripe, PayU, or regional processors) handle mobile banking, local payment, online payment, e-wallet, mobile banking, and local payment transactions; we share your account holder name and transaction amount with them but not your full account credentials. Fraud-detection services receive your IP address, device fingerprint, and login patterns to identify suspicious activity. Customer-support platforms store your chat history and support tickets for response and dispute resolution.

Our cyktoto analytics tools (Google Analytics, Mixpanel) receive anonymised, non-personal data about which games are popular and how users navigate the app. These tools do not receive your account ID or game-settlement details. All third-party contracts include strict confidentiality clauses; vendors are prohibited from using your data for their own marketing.

We do not share your data with social media platforms, advertisers, or data brokers. The only exception is when required by law (e.g., responding to lawful government requests or court orders). In such cases, we will notify you unless legally prohibited from doing so.

Your Rights Regarding Data on cyktoto

You have the following rights with respect to your personal data on cyktoto: (1) Access: you may request a copy of all personal information we hold about you. (2) Correction: you may update incorrect or incomplete information via your account settings or by contacting support. (3) Deletion: you may request deletion of your data (subject to legal retention obligations); we delete account data within 90 days of closure. (4) Data Portability: you may request your data in a portable format (e.g., CSV) for transfer to another platform. (5) Opt-Out: you may unsubscribe from promotional communications; transactional emails cannot be opted out.

To exercise these rights, contact our cyktoto support team via in-app chat, email, or phone. Provide proof of identity (government ID) with your request. We process requests within 30 days; complex requests (e.g., data portability for millions of gameplay records) may take up to 60 days. There is no charge for exercising these rights unless your request is manifestly unfounded or excessive, in which case we may charge a reasonable fee.

Cookies and Tracking on cyktoto

Our cyktoto website and mobile app use cookies and similar tracking technologies to enhance your experience. Essential cookies (session management, login persistence, fraud prevention) are required for cyktoto to function; you cannot disable these. Performance cookies track page load times and crash events to help us improve stability. Preference cookies remember your language selection and account settings. We use no third-party advertising cookies on cyktoto.

Most browsers allow you to disable cookies; however, doing so may impair cyktoto's functionality (e.g., you may be logged out frequently). The mobile app does not use traditional cookies but uses local storage for similar purposes; you can clear app cache via your device settings, though this will log you out.

How Long We Retain Data

We at cyktoto retain personal data according to the following schedule: Account registration data (email, phone, address) is retained for the duration of your account and 1 year after closure. Payment records and transaction history are retained for 7 years for regulatory and tax compliance. Gameplay logs (bets placed, results, balances) are retained for 3 years; you can access your complete number archive via your account. Government ID documents are deleted within 90 days of account closure. Support tickets and dispute records are retained for 2 years. Device logs and IP addresses are retained for 6 months. During active play on cyktoto, gameplay data and balance are retained indefinitely on our backend to support account recovery and dispute resolution.

Security Measures on cyktoto

We at cyktoto implement industry-standard security controls to protect your data. All data transmitted between your device and our servers is encrypted using TLS 1.3. Passwords are hashed using bcrypt or equivalent algorithms; we never store plaintext passwords. Payment information is tokenised and processed via PCI-DSS-compliant vendors. Our servers are located in data centres with 24/7 monitoring, redundant power, and automatic backups. Access to production data is restricted to authorised personnel and logged for audit purposes. We undergo quarterly security audits by third-party firms and penetration testing. However, no security system is perfect; if a breach occurs, we will notify affected users within 30 days and outline remediation steps.

Changes to Our cyktoto Privacy Policy

We at cyktoto may update this privacy notice from time to time to reflect changes in our practices, technology, or legal requirements. Material changes (e.g., new data sharing or longer retention) will be communicated to you via email and in-app notification at least 30 days before taking effect. Minor clarifications or updates to service providers may be posted without prior notice. Your continued use of cyktoto after updates take effect constitutes acceptance of the revised policy. We encourage you to review this page periodically to stay informed.

Contacting Us About Privacy

If you have questions, concerns, or requests regarding your data on cyktoto, please contact our privacy team. Use the in-app chat during your session (available 07:00–23:00 UTC+7), email our support address (listed on the contact page), or call our customer-support line. Include "Privacy Request" in your subject line so your inquiry is routed correctly. We will respond within 24 business hours. For escalated concerns that support cannot resolve, you may submit a formal data-protection request via registered mail to our registered office address (available in our terms of service). We are committed to resolving privacy concerns promptly and fairly.

Your trust is essential to cyktoto. We protect your data as if it were our own, and we remain transparent about how we handle it.