maeltoto Privacy Policy

This page describes what we collect when you use maeltoto and how we keep that data protected. We at maeltoto collect personal information—email address, verified identity documents, payment method details, and transaction history—to open your account, process deposits and withdrawals, verify your identity under know-your-customer (KYC) regulations, and detect fraud.

Our commitment is to handle your data with encryption, limit access to authorized staff, and never sell your information to third parties for marketing purposes. We use your data only to deliver maeltoto services—sportsbook markets on Liga 1 Indonesia and international tournaments, live-dealer tables, slot games, and esports coverage—and to comply with legal obligations in your jurisdiction.

When you access maeltoto from Jakarta, Surabaya, Bandung, Medan, or elsewhere, our servers process your data according to this policy. We describe what information we collect, how we use it, how long we retain it, your rights regarding your data, and how you can contact us if you have privacy questions.

What Data We Collect on maeltoto

We at maeltoto collect several categories of information when you register and use our platform. First, we collect your email address and a password you create. Second, during KYC verification, we collect a government-issued ID scan (passport, national ID, or driver's license), a selfie image for liveness verification, and your full name. Third, we collect payment method information—your bank account number or e-wallet account identifier, linked to a payment processor (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or your bank: mobile banking, local payment, online payment, e-wallet).

Fourth, we collect transaction logs: every deposit, withdrawal, entry placement, and settlement on maeltoto is recorded with timestamp, amount, odds, and outcome. Fifth, we collect device and connection data: IP address, browser type, operating system, and app version. Sixth, we collect interaction data: which markets you browse, how long you spend on different sections, and which payment methods you use. We use all of this data to deliver maeltoto services, prevent fraud, and comply with legal obligations.

How We Use Your Data on maeltoto

We at maeltoto use your email to send account notifications—password reset links, deposit confirmations, withdrawal approvals, entry settlement notifications, and important policy updates. We use your name and ID to verify your identity and comply with KYC regulations in your jurisdiction. We use your payment method information to process deposits and withdrawals and to match withdrawal destinations against your verified identity (a fraud-prevention measure).

We use your transaction logs to calculate your account balance, settle entries, and detect suspicious patterns (multiple rapid withdrawals, entries placed seconds before kickoff, identical entry patterns from multiple accounts). We use your device and connection data to detect account takeover attempts and to maintain maeltoto's technical infrastructure. We use your interaction data to improve our platform—to understand which markets are most viewed, where users spend time, and which payment methods are preferred.

Data retention: We at maeltoto retain your account data indefinitely (for account recovery and history), your ID and KYC documents for 7 years (for legal compliance), and your transaction logs for 7 years (for tax and regulatory review). Cookies and device identifiers are retained for 1 year.

Third-Party Data Processors

We at maeltoto work with third-party service providers who process your data on our behalf. Our payment gateway processors (handling mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, and bank routing) receive your payment method details and transaction amounts to execute deposits and withdrawals. These processors are contractually bound to use your data only for payment processing and to maintain data security standards equivalent to our own.

Our hosting provider may store your data on servers located outside Indonesia—potentially in Singapore, Australia, or other jurisdictions. Our email provider sends account notifications and support replies. Our analytics provider aggregates interaction data (without personal identifiers) to help us understand user behaviour. We do not authorize these providers to use your data for marketing, reselling, or any purpose beyond delivering maeltoto services.

Your Rights Regarding Your Data on maeltoto

You have the right to access your data: you can download your transaction history, view your verified identity information, and request a full copy of data we hold about you. You have the right to correct inaccurate data—if your name or payment method details change, update them in your account settings or contact our support team. You have the right to request deletion of non-essential data (interaction logs, device identifiers) after your account is closed, though we retain transaction logs and KYC documents for legal compliance.

You have the right to opt out of non-essential communications: you can disable marketing emails and promotional notifications in your account settings. You retain the right to withdraw consent for specific data uses—for example, you can disable interaction tracking for platform improvement (though this may affect your experience). You have the right to lodge a complaint with your regional data protection authority if you believe we mishandled your data.

Email address: Used for account recovery, deposit/withdrawal confirmation, and entry settlement notifications. We do not share your email with third parties outside our payment and email providers.
KYC documents (ID scan, selfie): Stored encrypted in a separate database from your account credentials. Retained for 7 years for legal compliance. Never shared for marketing purposes.
Payment method details: Tokenized and stored separately from login credentials. Shared with payment processors only to execute transactions you initiate.

Cookies and Tracking on maeltoto

When you access maeltoto via web browser, we use cookies to maintain your login session, remember your language and interface preferences, and track your interaction within the platform. These are first-party cookies (set by maeltoto itself, not by third parties). You can disable cookies in your browser settings, but doing so will log you out and disable some features.

We also use server-side session tokens (stored on our servers, not on your device) to track your current activity—which markets you're browsing, which entries you're viewing—to prevent session hijacking and to maintain a smooth user experience. We do not use third-party tracking cookies or cross-site tracking. We do not embed social-media pixels or analytics pixels that track you across other websites.

Data Security and Encryption

We at maeltoto encrypt all data transmission between your device and our servers using SSL/TLS protocols (HTTPS). Your password is hashed (not stored in plain text) using industry-standard algorithms. Your payment method details are tokenized—we store a token reference, not the actual card or bank account number. Your KYC documents (ID scan, selfie) are stored encrypted in a separate database, isolated from your account login credentials.

Our infrastructure includes firewalls, intrusion detection, and regular security audits. We do not store backups of your payment details or passwords. In the event of a data breach affecting personal information, we notify you within 72 hours and provide guidance on account recovery and password reset. We maintain cyber liability insurance to cover recovery costs.

Our Commitments and Your Control on maeltoto

We at maeltoto commit to transparency about how we use your data. This privacy policy is not a legal template—it describes our actual practices. We do not sell your email address to marketing firms. We do not lease your transaction history to third-party advertisers. We do not use your verified identity for identity-verification services offered to other companies. Your data exists solely to deliver maeltoto services and to comply with laws in your jurisdiction.

You have control over your data. You can request a data export at any time via our support team. You can delete your account and request deletion of non-essential data (though transaction logs and KYC documents are retained for 7 years per legal requirements). You can change your password, enable two-factor authentication, and review your login history to detect unauthorized access. If you believe your account has been compromised, contact our support team immediately and we will assist with account recovery.

Questions about this privacy policy, requests to access or delete your data, or concerns about how we handle your information can be directed to our support team via in-app chat or email. We acknowledge data-related inquiries within 2 hours during business hours and provide substantive responses within 5 business days. For formal data-subject requests (access, deletion, portability), we comply within 30 days as required by applicable privacy law.