LEGAL REFERENCE

Your Privacy Matters to Us

We've built wisdom toto around your trust. This privacy policy shows exactly how we handle your account details, payment information and personal data across every part of our...

Data ProtectionSecure PaymentsTransparent PracticesYour Control
wisdom toto Your Privacy Matters to Us

How We Protect Your Information

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

HELP CHANNELS

Questions About Your Privacy

Team online

Email Support

Reach our privacy team at [email protected] with any questions about how we handle your data, your rights, or how to request information about your account.

Live Chat

Open the chat widget in your account dashboard to speak with our support team about privacy concerns, data requests or account security in real time.

Account Settings

Visit your account settings page to review what personal information we hold, update your preferences and manage how your data is used across the platform.

REVIEW SIGNALS

Why Your Data Is Safe With Us

Encryption Standard

All data transmitted between your device and our servers uses TLS 1.2 or higher encryption, the same standard banks use to protect financial transactions.

Regular Security Audits

We conduct third-party security assessments annually to identify and fix vulnerabilities before they become risks to your account or payment information.

Payment Processor Compliance

DANA, OVO, GoPay and QRIS transactions flow through PCI-DSS compliant payment gateways that meet the highest standards for financial data protection.

Limited Data Retention

We keep your personal information only as long as needed to run your account and comply with local regulations. Deleted data is purged from our active systems within 90 days.

Staff Access Controls

Only authorised team members can access your personal data, and only when necessary to resolve your support request or investigate a security concern.

Breach Notification

If we discover unauthorised access to your account or personal information, we notify you within 48 hours and provide clear steps to secure your account.

How Our Policy Compares

Transparent Data Use
We list exactly what data we collect and why, with no hidden clauses or vague language buried in footnotes.
No Third-Party Sales
Your personal information is never sold to advertisers, data brokers or marketing firms — period.
Indonesia-Focused
Our policy reflects the laws and payment systems Indonesians use: DANA, OVO, GoPay and QRIS are built into our data handling.
Easy Data Requests
You can request a copy of all data we hold about you, and we'll deliver it within 14 days in a readable format.
Account Deletion
Close your account anytime, and we'll delete your personal data from active systems within 30 days of your request.
Plain Language
This policy is written in clear English, not legal jargon — so you actually understand what we're doing with your information.
Regular Updates
When we change how we handle your data, we notify you by email at least 30 days before the change takes effect.

What Shapes Our Privacy Approach

Account-First Design

Every feature we build starts with the question: how do we protect the person using this? Your account security comes before feature speed.

Local Payment Integration

DANA, OVO, GoPay and QRIS are woven into our platform from the ground up, so your payment data never leaves unnecessary systems.

Minimal Data Collection

We ask for only the information we need to run your account and process your transactions — nothing extra, nothing speculative.

Audit Trail Logging

Every login, payment and account change is logged so you can review your activity history and spot anything unusual immediately.

Session Security

Your session expires after 30 minutes of inactivity, and you can log out from all devices at once if you suspect unauthorised access.

Transparent Cookies

We use cookies only to keep you logged in and remember your preferences — no tracking pixels, no ad networks, no hidden analytics.

Privacy Questions Answered

We collect your name, email, phone number, date of birth and payment details to set up your account and process DANA, OVO, GoPay and QRIS transactions. We also log your IP address and device type for security purposes. We never ask for unnecessary information like your mother's maiden name or social media profiles.

We delete your personal information from active systems within 30 days of your account closure request. Some data may be retained in backup systems for up to 90 days for disaster recovery, but it's not accessible for any other purpose. After 90 days, all traces are permanently removed.

Yes. Log into your account, go to Settings > Privacy > Download My Data, and we'll prepare a file with everything we hold about you — your profile, transaction history, login records and preferences. We'll email it to you within 14 days in a standard format you can open anywhere.

We share data only with payment processors (DANA, OVO, GoPay, QRIS) to complete your transactions, and with law enforcement if legally required. We never sell your data to advertisers, data brokers or marketing firms. Our payment partners are bound by strict confidentiality agreements.

We monitor our systems 24/7 for intrusions. If we detect unauthorised access to your account or personal data, we notify you by email within 48 hours, explain what happened, and provide steps to secure your account. We also file a report with relevant authorities where required by law.

Your DANA, OVO, GoPay and QRIS details are encrypted with TLS 1.2 and processed through PCI-DSS compliant payment gateways. We never store full card numbers or wallet credentials on our servers — only a token that lets us process future transactions securely.

Yes. We use cookies only for login sessions and preferences — no ad tracking or analytics pixels. You can disable non-essential cookies in your browser settings without losing access to your account. Essential session cookies cannot be disabled, or you won't be able to log in.