sorototo Platform Privacy Notice

This page describes what we collect when you use sorototo and how we keep that data protected. We are transparent about our data practices and committed to respecting your privacy within the bounds of applicable law and our operational needs.

We at sorototo recognize that your personal information is entrusted to us when you create an account, verify your identity, deposit funds via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank transfers, and engage with our sportsbook markets, live-dealer tables, and slot games. This notice outlines what we collect, why, how long we retain it, and your rights under your jurisdiction's data-protection framework.

Our services are available only where local law permits. Users are responsible for verifying that their access and use of sorototo comply with their own jurisdiction's regulations regarding online gaming and data privacy.

What We Collect on sorototo

We collect information in several categories. Account registration requires your email address, chosen username, and password. During identity verificationwe request government-issued identification (passport, national ID, or driving licence), proof of address (utility bill or bank statement), and a facial photograph for KYC matching. Payment data includes the bank account or e-wallet account number you link to sorototo, transaction history, and deposit and withdrawal records.

Behavioral data encompasses your login history, games you access (whether slots such as Aviator, Sweet Bonanza, Gates of Olympus, Fortune Tiger, or Mahjong Ways; live-dealer tables like blackjack, roulette, baccarat, or Dragon Tiger; sportsbook markets including Liga 1, Piala AFF, badminton, and MotoGP; or esports markets such as Mobile Legends, Free Fire, or PUBG Mobile), bet and play history, and account balance snapshots. We also collect device and connection data: IP address, browser type, operating system, device identifiers, and mobile app version if you use our PWA or native client.

Communication records include customer support tickets, chat logs, and email correspondence. Cookies and tracking are described below. We do not knowingly collect data from users under 18; if we discover such activity, we close the account and delete associated records.

How We Use Your Data

We use your data for account administration: setting up your sorototo account, processing deposits and withdrawals, resetting passwords, and handling account recovery requests. Regulatory compliance requires us to verify your identity, detect and prevent fraud, comply with anti-money-laundering (AML) rules, and report suspicious activity where legally mandated. We do not operate under a single gaming license; we respect each jurisdiction's restrictions and user responsibility for legal compliance.

Service improvement includes analyzing gameplay patterns to optimize game performance, studying withdrawal-flow friction points, and improving customer support response times during business hours. Marketing is limited to sending you promotional emails or push notifications about new games or features on sorototo if you opt in; we do not share your email with third-party advertisers without explicit consent.

Third-Party Processors and Data Sharing

We engage processors to deliver sorototo's services: Payment processors (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet) receive your account details and transaction data to process deposits and withdrawals. KYC vendors perform identity verification and document scanning. Cloud infrastructure providers host our servers (which may sit outside your jurisdiction); we contractually require them to meet industry-standard encryption and access controls. Customer support platforms store your support tickets and chat history.

We do not sell your personal data to third parties for marketing purposes. We may disclose data if required by court order, law enforcement request, or regulatory investigation. We may also share anonymized, aggregated gameplay statistics with game providers (such as data on Aviator or Sweet Bonanza player counts) to comply with licensing terms, but these disclosures do not identify you.

Key data-protection points

  • We encrypt your password using industry-standard hashing and do not store it in plain text.
  • Your account balance and transaction history are encrypted in transit (HTTPS) and at rest on secure servers.
  • KYC documents are retained for as long as your sorototo account is active, plus a legal hold period set by your jurisdiction.
  • You may request deletion of non-essential data; compliance depends on regulatory retention obligations.

Cookies and Tracking Technologies

sorototo uses cookies to keep you logged in, remember your game preferences, and detect suspicious login activity (e.g., unusual geographic origin or device). We use first-party cookies only; we do not partner with third-party analytics providers that track you across unrelated websites. Session cookies expire when you close your browser; persistent cookies (such as device fingerprint tokens) may remain for up to one year to speed up future logins.

If your browser or jurisdiction supports Do-Not-Track signals, we honor such requests to the extent practicable, though core functionality (fraud detection, session management) cannot be disabled. You may delete cookies from your browser settings; doing so may affect sorototo login persistence but will not harm your account data.

Your Rights and Access

Depending on your jurisdiction, you may have the right to access a copy of the data we hold about you on sorototo, rectify inaccurate data, erase non-essential data (subject to legal retention), restrict processing of specific data categories, and object to certain uses (such as direct marketing). To exercise these rights, contact our support team during business hours; we aim to respond within a specified window. Some requests may incur a processing fee if permitted by your jurisdiction's law.

Data breaches affecting your sorototo account will be disclosed to you and, where required, to your national data-protection authority within mandated timeframes. We maintain cyber-security practices including regular penetration testing, employee training, and incident-response protocols, though no system is entirely risk-free.

Data Retention

We retain account data (email, username, hashed password, KYC documents) for as long as your sorototo account remains active. After account closure, we keep records for a legal hold period (typically 5–7 years in jurisdictions with AML/CFT rules) to detect fraud or money-laundering patterns. Transaction logs are retained for at least 5 years to comply with financial-crime reporting obligations. Cookies and device fingerprints are purged after one year of inactivity.

Contact sorototo

If you have questions about this privacy notice, wish to exercise your rights, or suspect a data breach affecting your sorototo account, reach out to our support team via email or in-app messaging. We provide multilingual assistance during business hours and will handle your request with care. For disputes that cannot be resolved through support, you have the right to lodge a complaint with your national data-protection authority.

This privacy notice is subject to change at our discretion. We will notify you of material updates by email or by posting a notice on sorototo. Your continued use of our platform after an update indicates your acceptance of the revised notice.