Reference

Your Rights and Our Legal Commitments

balaptoto operates under a clear legal framework designed to protect your account, your data, and your transactions — whether you deposit via DANA, OVO, GoPay, or QRIS.

Jurisdiction-aware policyDANA, OVO, GoPay, QRIS coveredData retention standardsAccount security protocolsUser rights clearly stated
balaptoto Your Rights and Our Legal Commitments
LEGAL CONTACT PATHS

How to Reach Us on Legal Matters

Our support team handles legal enquiries, account rights requests, and policy clarification seven days a week from 08:00 to 23:00 WIB.

Live Chat Available daily from 08:00 to 23:00 WIB. Start a chat session from the help icon on any page to submit a legal query or account rights request directly to our compliance team.
Email Support Send detailed legal or data-deletion requests to our support address. We acknowledge every email within four hours during operating hours and resolve legal queries within one business day.
Account Help Centre Log into your account, navigate to Settings, then Help Centre, and select 'Legal & Privacy' to submit a structured request form — the fastest path for data-access or correction submissions.
ACCOUNT SECURITY STANDARDS

How We Protect Your Data and Account

We apply industry-standard encryption to every account session and every transaction processed through DANA, OVO, GoPay, and QRIS.

Session Encryption

Every account session on balaptoto is encrypted end-to-end using TLS 1.3. This applies on mobile browsers, the Android app, and desktop — your login credentials are never transmitted in plain text.

Cookie Policy

We use functional and analytics cookies only. We do not sell cookie data to third parties. You can manage cookie preferences from the footer of any page without affecting your account login state.

Data Retention Period

Account data is retained for the period required by applicable law, typically 24 months post-closure. After that window, personal identifiers are anonymised unless a legal hold requires otherwise.

Payment Data Isolation

We never store your DANA, OVO, GoPay, or QRIS credentials on our servers. Each payment is tokenised by the provider, and only a masked transaction reference is kept in your account history.

Right to Correction

You can request a correction to any personal data we hold via Settings > Help Centre > Legal & Privacy. Our team processes correction requests within three business days and confirms the update by email.

Account Closure & Deletion

To close your account and request data deletion, contact support via live chat or email. We complete account closures within 48 hours and send a written confirmation to your registered email address.

Answers to Your Legal and Policy Questions

These are the questions we receive most often about our legal terms, data practices, and account rights. If your question is not here, reach our compliance support team via live chat between 08:00 and 23:00 WIB.

Access to balaptoto depends on local law. We encourage every prospective account holder to review the regulations applicable in their region before opening an account. We do not make eligibility determinations on behalf of individual users.

We collect your name, email address, date of birth, and a government-issued ID reference for verification. Payment data from DANA, OVO, GoPay, and QRIS is handled by those providers directly and is not stored on our servers.

We retain your account data for the period required by applicable law — typically 24 months after closure. After that window, personal identifiers are anonymised. You will receive written confirmation once deletion is complete.

Yes. Log into your account, go to Settings, then Help Centre, and select 'Legal & Privacy' to submit a data-access request. We fulfil requests within five business days and deliver the data to your registered email address.

Submit a correction request via Settings > Help Centre > Legal & Privacy, or contact live chat support. Our compliance team processes corrections within three business days and confirms the change by email to your registered address.

We share data only with payment processors such as DANA, OVO, GoPay, and QRIS as required to complete transactions, and with identity verification services as required by applicable law. We do not sell personal data to advertisers.

We notify you by email to your registered address at least seven days before any material change to our terms takes effect. You can also view the current version of our terms at any time from the footer link on every page.