Reference

How suakatoto Protects Your Personal Data

Your personal data — name, contact details, account activity, and payment records from DANA, OVO, GoPay or QRIS — is collected only to operate your account and process…

No data sold to third partiesDANA, OVO, GoPay & QRIS transaction privacyAccount data encrypted at restRight to request deletion7-day privacy support access
suakatoto How suakatoto Protects Your Personal Data
PRIVACY CONTACT PATHS

How to Reach Our Privacy Team

We operate three dedicated channels for privacy-related enquiries — live chat, email and a callback request form inside your account dashboard. Our privacy support team is available every day from 08:00 to 24:00 WIB and responds to all formal data requests within 72 hours of receipt. For urgent account-security concerns, live chat is the fastest route.

Team online

Live Chat — Privacy Support

Open your account dashboard, select 'Help', then choose 'Privacy & Data'. Our agents are available 08:00–24:00 WIB, seven days a week, and can locate your data profile within minutes.

Email Request Channel

Send a formal data access, correction or deletion request to our privacy email address. Include your registered account ID and we will respond with a confirmation and status update within 72 hours.

In-Account Privacy Form

Log into suakatoto, navigate to Settings, then 'Privacy Controls'. From there you can download a summary of stored data, update consent preferences or submit a deletion request without contacting support directly.

DATA HANDLING STANDARDS

Six Ways We Keep Your Information Secure

Data security at suakatoto is built on layered controls — encryption, access restriction, regular audits and clear retention schedules.

Encryption at Rest and in Transit

All account data, including payment records for DANA, OVO, GoPay and QRIS transactions, is encrypted using AES-256 at rest and TLS 1.3 in transit, so your information is protected at every stage.

Cookie Usage and Consent

We use session cookies to keep your account logged in and analytics cookies to improve page performance. You can review and withdraw cookie consent at any time through the privacy settings panel in your account.

Account Security and Access Control

Your account login is protected by two-factor authentication. Our internal staff access your account data only when responding to a direct request or investigating a security event you have reported.

Data Retention Schedule

We retain identity verification documents for the period required by applicable financial regulation. Transaction logs tied to DANA, OVO, GoPay and QRIS payments are kept for the legally required minimum, then permanently deleted.

Who to Contact for Data Changes

Your dedicated point of contact for corrections, objections and deletion requests is our privacy support team, reachable via live chat (08:00–24:00 WIB), email or the in-account Privacy Controls form described above.

How to Request Your Data

Submit a Subject Access Request through Settings → Privacy Controls or by emailing our privacy address with your account ID. We will compile and deliver a structured summary of all data we hold within 14 calendar days.

Frequently Asked Privacy Questions

Below are the privacy questions we receive most often from account holders in Indonesia. If your question is not covered here, our privacy support team is available via live chat daily from 08:00 to 24:00 WIB and will respond to written email requests within 72 hours.

We collect your full name, date of birth, email address, phone number and the payment method details you provide — such as your DANA, OVO, GoPay or QRIS wallet ID — solely to verify your identity and process transactions securely.

We do not sell or rent your personal data. We share information only with payment processors required to complete DANA, OVO, GoPay or QRIS transactions, and with fraud-prevention services, all of whom are bound by data protection obligations.

Identity verification files are retained for the minimum period required by applicable financial regulation. Transaction records linked to DANA, OVO, GoPay and QRIS payments are stored for the legally required duration, then permanently deleted from our systems.

Yes. Submit a Subject Access Request via Settings → Privacy Controls in your account, or email our privacy team with your account ID. We will deliver a structured data summary within 14 calendar days of receiving your request.

Open the Privacy Controls panel inside your account settings and submit a deletion request, or contact our privacy team by email or live chat (08:00–24:00 WIB). We will confirm receipt and process the request within the timeframe required by local regulation, where local law permits.

We use essential session cookies to keep you logged in, and analytics cookies to measure page performance. You can review, adjust or withdraw cookie consent at any time through the privacy settings panel inside your suakatoto account dashboard.

All payment records are stored in an isolated environment encrypted with AES-256. Access is restricted to authorised operations staff, and payment wallet identifiers are never exposed in plain text in our databases or logs.