Definitions
Terms like account data, processor, retention window and wallet identifier carry the same meaning here as on our terms and cookie pages, so you don't decode jargon twice.
This is the privacy policy page for pirototo. Here we set out, in plain English, what personal data we collect when you open an account with us, why...
We collect only the account data we need to run pirototo for you: your registered name, contact details, verification documents where local law permits, session logs, and the wallet identifiers you link for DANA, OVO, GoPay or QRIS payouts. We process this lawfully under contract performance and legitimate interest within supported regions of Indonesia. You can request access, correction, export or erasure
of your records at any time by writing to our privacy desk. We retain transaction records for the period Indonesian financial rules require, then delete or anonymise them. We never sell your data to third parties, and any processor we use is bound by written confidentiality terms before they touch a single field of your account.
Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.
Write to our privacy team for any data access, correction or erasure request tied to your pirototo account. We acknowledge within one business day and respond fully within thirty.
Sign in and open the privacy panel to file a structured data request. The form routes straight to our reviewer queue and timestamps your submission for the audit trail.
Our chat agents handle policy clarifications around the clock. Ask about cookie settings, retention windows or marketing preferences and they'll route deeper queries to the privacy reviewer on duty.
Our compliance team revisits this document every quarter against current Indonesian data rules. Any wording change is logged with a revision date so you can track what shifted between versions.
A named data protection lead signs off every published version of this policy. That person owns your requests end-to-end and is reachable through the privacy desk address listed above.
Before any vendor sees pirototo account data, we run a written assessment covering security posture, retention defaults and sub-processor lists. Vendors that fail the check do not get connected.
Account fields, document uploads and wallet references travel over TLS and sit encrypted on our storage layer. Decryption keys are held separately from the database that holds your records.
Every internal lookup against your pirototo profile is logged with staff identifier and timestamp. We audit those logs monthly and act on any access that lacks a documented support ticket reason.
If a security incident touches your data, we follow a written notification plan with defined hours-to-disclosure. You hear from us by registered email and through an in-account banner the next time you sign in.
Terms like account data, processor, retention window and wallet identifier carry the same meaning here as on our terms and cookie pages, so you don't decode jargon twice.
The retention table on this page matches the schedule referenced in our terms of use. Where Indonesian financial law sets a minimum, that figure governs across every policy document.
The privacy desk email, in-account form and chat path shown here are the same routes named in our terms and KYC notices, so you never chase a dead address.
Every sibling policy carries a visible last-updated stamp. When one moves, the others are reviewed in the same cycle to keep cross-references aligned and accurate.
The contract and legitimate-interest grounds cited here are repeated verbatim in our cookie and marketing notices, so the basis you agreed to does not shift between screens.
Our processor list lives in one shared annex linked from this policy and from the cookie notice. Update one, the other reflects it within the same publishing window.
Access, correction, export, erasure and objection rights are written identically across pages. Whichever policy you land on first, the rights paragraph reads the same way.