yumetotoPrivacy Policy
This page describes what we collect when you use yumetoto and how we keep that data protected. We collect information necessary to operate our sportsbook, live-dealer platform, and payment processing. Your email, account details, and transaction history are stored securely and used only for account management, settlement, regulatory compliance, and fraud prevention.
We do not sell your personal data. We do not share it with third parties except where required by law, payment processors, or to comply with anti-money-laundering regulations. Our data centers are located outside Indonesia in regions with strong privacy protections. When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet, payment processors mobile bankingefly access your transaction data; we do not retain payment credentials.
You have the right to request your data, correct inaccuracies, and request deletion within legal limits. This policy applies to all users accessing yumetoto from supported jurisdictions. If you have privacy concerns, contact our support team.
What Data We Collect on yumetoto
When you open an account on yumetoto, we collect your email address, username, password (encrypted), and optional personal information (name, date of birth, national ID number). We collect this data only if you voluntarily provide it. Email is required; other fields become mandatory only when you request account verification for large withdrawals.
Our yumetoto platform logs your login timestamps, IP address, device type, and browser information. This helps us detect unauthorized access and prevent account takeover. We also record betting activity (markets selected, stakes placed, settlement outcomes) for dispute resolution and auditing. Transaction data (deposits, withdrawals, payment methods used) is stored for payment reconciliation and regulatory compliance.
We collect cookies and tracking pixels to remember your preferences, language selection, and login session. These are not used for advertising or third-party tracking. Our cookies expire after your session or persist for 30 days if you select "Remember me." You can disable cookies in your browser, but some yumetoto features may not work properly.
How We Use Your Data
We use your data for five core purposes. First, account management—processing deposits, withdrawals, and bet settlements. Second, legal compliance—verifying age, checking against sanctions lists, and complying with anti-money-laundering regulations. Third, fraud prevention—detecting suspicious login patterns, multiple accounts, and bonus abuse. Fourth, customer support—responding to your queries and resolving disputes. Fifth, service improvement—analyzing usage patterns to optimize our live-dealer studios, sportsbook markets, and payment flows.
Our yumetoto platform does not use your data for marketing unless you opt in. We do not send unsolicited promotional emails. If you receive marketing communication from us, it is because you enabled it in your account settings. You can disable marketing emails at any time by clicking the unsubscribe link or updating your preferences.
Data retention depends on purpose. Account data is retained for the life of your account plus 5 years after closure for regulatory records. Betting history is retained for 7 years. Payment data is retained per payment processor requirements (typically 3–7 years). We delete marketing opt-in preferences immediately upon your unsubscribe request.
Third Parties and Data Processors
We use third-party processors for specific functions. Payment processors (for DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet) access your transaction data mobile bankingefly to process deposits and withdrawals. Identity verification services access your national ID data to confirm your age and prevent duplicate accounts. Our hosting provider stores encrypted account data on servers outside Indonesia in jurisdictions with strong data protection laws.
Each processor is contractually obligated to protect your data and use it only for their specified function. We audit these relationships annually. If a processor is breached, we notify you within 30 days and provide guidance on protective measures. Our yumetoto privacy policy applies; the processor's policy is secondary.
Key data practices
- We collect email, account data, and transaction history—nothing more
- Payment processors handle card data directly; we do not retain it
- Data is encrypted in transit and at rest using industry standard protocols
- We do not sell or share your data with marketers or advertisers
- Cookies are for session management and preference storage only
Your Rights and Data Access on yumetoto
You have the right to request a copy of all data we hold about your yumetoto account. You can download your data in a portable format (CSV or JSON) via your account settings. You also have the right to correct inaccuracies in your profile (name, email, address). You can request deletion of your account and associated data; however, we retain transaction records for 5 years to comply with financial regulations.
If you believe we have misused your data or violated privacy law, you can file a complaint with your local data protection authority. We also accept privacy complaints directly; contact our support team with the subject line "Privacy Complaint." We respond to complaints within 30 days.
Our yumetoto platform is available in supported jurisdictions across Jakarta, Surabaya, Bandung, Medan, and Semarang. Data collected from users in different regions may be processed in different jurisdictions, but protection standards are uniform. Your data may be transferred outside Indonesia for processing; this does not reduce your privacy protections.
Security and Breach Notification
We employ encryption (TLS 1.2+), firewalls, and access controls to protect your data. Our servers are monitored 24/7 for intrusion attempts. We conduct annual security audits and penetration tests. Employees access your data only when necessary and are bound by confidentiality agreements.
In the unlikely event of a data breach affecting your personal information, we notify you by email within 30 days. We also inform relevant regulators and advise you of protective measures (password reset, account monitoring). We do not pay ransom or delay notification to cover up a breach. Transparency is our policy.
This privacy policy was last updated and applies to all users accessing yumetoto from supported jurisdictions. We review and update this policy annually. Material changes are announced in-app and via email. Continued use of yumetoto after a policy update constitutes acceptance of the updated terms.
Related pages
Jurisdiction and Policy Changes
Our privacy policy is governed by the law of the jurisdiction in which yumetoto is registered. We comply with GDPR, CCPA, and local Indonesian data protection guidelines where applicable. Our servers sit outside Indonesia in regions with strong privacy frameworks. Users in Jakarta, Surabaya, Bandung, Medan, Semarang, and other supported regions are protected equally under this policy.
We may update this policy to reflect changes in law, technology, or our practices. Updates are announced at least 30 days in advance via email and in-app notification. Your continued use of yumetoto after an update constitutes acceptance. You may request account deletion if you do not accept policy changes.
If you have questions about this privacy policy or how we handle your data on yumetoto, contact our support team. We respond to privacy inquiries within 24 hours. You can also request a copy of this policy in Indonesian or English at any time.