ariestoto Privacy Policy

We collect minimal data necessary to verify your account and process transactions—not a comprehensive profile of your behaviour. This page describes what we collect when you use ariestoto and how we keep that data protected under consistent security standards.

Our approach prioritizes account security over detailed profiling. We collect your email, government ID, proof of address, and gaming activity only because banking regulations and anti-money-laundering (AML) law require verification. We do not sell user data or build marketing profiles for resale.

Services on ariestoto are available only where local law permits. Your data is handled according to applicable privacy laws in jurisdictions where we operate, including supported regions across Indonesia. We employ encryption, access controls, and regular security audits to protect your information.

What Data We Collect on ariestoto

When you create an account on ariestoto, we collect your email address, full name, date of birth, government-issued ID number, and proof of address (e.g., utility bill, bank statement). These details are required for Know-Your-Customer (KYC) verification and comply with Indonesian banking and anti-money-laundering regulations. Without this verification, we cannot process deposits or withdrawals.

We also collect gaming activity data: your login history, stake amounts, game selections, and withdrawal requests. This data helps us detect fraud patterns, prevent bonus abuse, and identify accounts using automated tools or bots. We do not collect biometric data, precise geolocation beyond your registration jurisdiction, or browsing history across unrelated websites.

Payment Data and Third Parties

When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or direct bank transfer (mobile banking, local payment, online payment, e-wallet), we receive transaction confirmations containing only your account number, transaction amount, and timestamp. We do not receive your full banking credentials or payment method details; those remain encrypted within your payment provider's system.

We share account verification data with third-party compliance processors and AML service providers who help us verify identity documents and check for sanctions-list matches. These processors operate under confidentiality agreements and are prohibited from using your data for marketing or secondary purposes.

How We Use Your Data on ariestoto

We use your data for four core purposes: account verification (confirming your identity and eligibility), transaction processing (enabling deposits and withdrawals), fraud prevention (detecting unusual account behaviour and bonus abuse), and legal compliance (satisfying anti-money-laundering and gaming regulations). We do not use your data for targeted advertising, credit scoring, or profiling beyond these essential functions.

During regional events—Liga 1 seasons, Piala Indonesia tournaments, Idul Fitri and Idul Adha holidays, or Imlek celebrations—we may review account activity for unusual patterns or systematic bonus exploitation. This review is automated; we flag accounts for manual investigation only if our systems detect high-risk behaviour.

  • Account verification: We confirm your ID, check for duplicate accounts, and verify your address against official records.
  • Fraud detection: We monitor for automated betting, impossible win rates, rapid withdrawal cycles, and bonus trigger patterns that suggest account abuse.
  • Compliance: We report suspicious transactions to relevant authorities and maintain records for regulatory audits.
  • Customer support: We access your account history to resolve disputes, recover lost credentials, and assist with withdrawal issues.
Note: We do not share your personal data with marketing partners, advertisers, or data brokers. Your account remains private to ariestoto and our essential third-party processors only.

Your Rights and Data Access on ariestoto

You have the right to request a copy of all personal data we hold about you. To do so, contact our support team via email or live chat with a request for data access. We compile your data and provide it within 14 business days. You also have the right to request correction of inaccurate information—for example, if your registered address is outdated or your name is misspelled—and we update your account immediately upon verification.

You have the right to request deletion of your account and associated data once your balance reaches zero and any pending disputes are resolved. We retain some data for legal compliance (transaction records for 3–5 years per banking law) but remove your personal identifiers and KYC documents upon account closure, subject to regulatory retention requirements.

We at ariestoto treat your data as a security obligation, not a revenue opportunity. Encryption, access controls, and regular audits protect your information throughout its lifecycle on our platform.

ariestoto Data Protection Team

Cookies and Tracking on ariestoto

We use session cookies to maintain your login state and remember your game preferences. These cookies expire when you log out and contain no personal identifiers. We do not use tracking cookies, analytics pixels, or third-party cookies to follow your activity across unrelated websites.

Our servers may sit outside your jurisdiction; data transfers between our systems comply with encryption standards and data protection agreements. If you reside in Jakarta, Surabaya, Bandung, Medan, or Semarang, your account data may be processed on international servers with security standards equivalent to or exceeding local requirements.

Data Retention and Security on ariestoto

We retain personal identification data (ID number, address) for the duration of your account plus 3 years after closure, as required by Indonesian banking law. Gaming activity records and transaction history are retained for 5 years for audit and compliance purposes. After these periods expire, we securely delete your data or anonymize it for statistical purposes.

Your account password is encrypted using industry-standard algorithms; even our support staff cannot access your plaintext password. We enforce two-factor authentication (2FA) options and regularly audit access logs to detect unauthorized system activity. If we discover a data breach, we notify affected account holders within 48 hours and assist with account recovery.

Summary: Your Data Privacy on ariestoto

We collect only the data necessary to verify your identity, process transactions, and comply with banking law. We use your data strictly for account security, fraud prevention, and legal compliance—never for marketing or resale. You have the right to access, correct, and delete your data subject to regulatory retention requirements.

We employ encryption, access controls, and regular security audits to protect your information. We do not share your data with advertisers, brokers, or unrelated third parties. Our support team operates in English and regional languages during standard business hours; you can request data access or privacy concerns to be addressed within 14 business days.

Services on ariestoto are available only where local law permits. If you have questions about your data, how it is used, or your privacy rights, contact our support team at any time. We undertake to respond to all privacy inquiries within 24 hours during business hours.