mamatoto Casino & Sportsbook Data Care
When you download mamatoto on Android or access it through Safari on your iPhone, we collect specific information to verify your account and process your transactions securely. This page explains what data we gather, how we protect it, and what rights you have over your information.
Our approach to your data is straightforward: we collect only what we need to run our service, we encrypt it in transit and at rest, and we do not sell it to advertisers. We share data with payment processors and banking partners only where necessary to complete your deposit or withdrawal. Indonesian banking law requires us to retain transaction records for compliance purposes, and we follow those requirements precisely.
If you have questions about your data or how we handle it on mamatoto, our support team can explain your rights in plain language.
What we collect when you use mamatoto
Account registration data
We at mamatoto collect your email address, phone number, full name, and date of birth when you register. These are required to verify your identity and set up your account. We also collect your chosen password, which we hash and never store in plain text. Your phone number is tied to account security—password resets, two-factor verification, and security notifications all go to your registered number. Keep your phone number current in your account settings.
Mobile device and session data
Our mamatoto service is mobile-first, so we collect data specific to your device. On Android, we log your device model, operating system version, and unique device identifier so we can troubleshoot app crashes and deliver push notifications to the right device. On iOS, we collect your device type and browser version through standard browser headers. We also log your login sessions—the timestamp you accessed mamatoto, which app or browser you used, and your approximate geographic location based on your IP address. This helps us detect suspicious access (e.g., a login from a different country minutes apart) and protect your account from fraud.
Payment and transaction data
When you deposit using DANA, e-wallet, mobile banking, local payment, online payment, or bank transfer via e-wallet, mobile banking, local payment, online payment, and e-wallet, we collect the transaction details: amount, payment method, timestamp, and settlement status. We store these for seven years as required by Indonesian banking law. We never store your payment method credentials (your mobile banking PIN, bank password, etc.)—payment processors handle those securely on their own systems. We store only the reference we need to link your deposit to your mamatoto balance.
Gameplay and betting activity
We at mamatoto log every action you take—games played, bets placed, amounts wagered, results, and time stamps. We use this data to calculate your account balance, settle payouts, and detect patterns that might indicate fraud or problem behaviour. This history is encrypted and accessible only to you and our compliance team.
Push notifications and app analytics
Our mamatoto Android app and iOS browser can send you push notifications about game openings, withdrawal status, and account alerts. We track whether you tap these notifications to improve their relevance. You can disable notifications entirely in your phone's settings or in your mamatoto account preferences. We also collect app usage analytics—which screens you visit, how long you spend in games, and which features you use—to identify bugs and improve the user experience. This data is anonymised and aggregated; we do not link it to your identity.
Our data protection and user rights on mamatoto
How we protect your data
We at mamatoto encrypt all data in transit using HTTPS with certificate pinning, meaning your phone verifies it is speaking to mamatoto's genuine servers before sending any data. At rest, we encrypt sensitive fields (passwords, payment references, identity documents) using AES-256. Our servers are located in secure data centres with access controls, monitoring, and backup systems. We conduct annual security audits and penetration tests to identify vulnerabilities.
Third parties and data sharing
We share data with the following categories of processors only as needed: payment providers (DANA, e-wallet, etc.) receive transaction details to process deposits; banks (mobile banking, local payment, online payment, e-wallet) receive withdrawal requests and your account details; identity verification services receive your KYC documents to confirm your identity; compliance services receive transaction history to meet anti-money-laundering obligations. We do not share your data with advertisers, data brokers, or marketing partners. All processors sign data protection agreements committing them to the same security standards we use.
Your rights and data access
We at mamatoto give you the following rights: you may request a copy of all your personal data we hold; you may correct inaccurate information (email, phone, name); you may request deletion of data, subject to legal retention requirements (we must keep transaction records for seven years); you may withdraw consent to certain processing (e.g., analytics cookies). To exercise these rights, contact our support team with your request.
Cookies and tracking on mamatoto
Our mamatoto browser experience uses essential cookies to keep you logged in and secure your session. We do not use advertising or tracking cookies. If you block all cookies, you may not be able to use mamatoto—you will need to allow essential cookies to register and access your account.
This privacy policy applies to all mamatoto services. We may update it at any time; changes take effect immediately upon posting. Continued use of mamatoto after an update means you accept the new terms. If you have concerns about privacy, contact us. Our service is available only where local law permits—users in Jakarta, Surabaya, Bandung, Medan, and supported regions may access mamatoto where applicable law allows.