roslotPrivacy Policy

Indonesia's digital payments ecosystem has expanded rapidly, with major e-wallets and banking channels now processing millions of transactions daily. This page describes what we collect when you use roslot and how we keep that data protected. Our commitment is straightforward: we collect only the information necessary to operate our service, verify your identity as required by law, and process your deposits and withdrawals.

We at roslot handle personal data with care. Your account information—email, phone, identity documents, payment details—is encrypted in transit and at rest, stored on servers with restricted access, and never shared with third parties except where required by legal obligation or to process your transactions. This policy outlines exactly what we collect, why we collect it, and your rights over that data.

If you have questions about our data practices or wish to exercise your privacy rights, our support team can assist you at any time.

What We Collect and Why

We collect information in three categories: what you provide directly, what our systems record automatically, and what we receive from third-party verification services.

You provide directly to roslot:

  • Email address and phone number (for account creation and verification).
  • Full name, date of birth, and government-issued identity number (for Know Your Customer compliance).
  • Proof of address (government-issued bill, lease agreement, or official correspondence).
  • Payment details: bank account number or e-wallet identifier (DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment account information).
  • Password and security answers (for account authentication).

Our roslot systems automatically record:

  • IP address, browser type, device model, and operating system.
  • Login times, session duration, and pages accessed.
  • All wagers, deposits, withdrawals, and settlement outcomes with timestamps.
  • Account balance history and transaction details.

Why We Collect Identity Information

We collect identity documents and proof of address because regulators in our operating jurisdictions require Know Your Customer verification. This protects against money laundering, fraud, and use of accounts for illicit purposes.

How We Use Your Data on roslot

We use the data we collect from you for specific, legitimate purposes:

  • Account management: creating your roslot account, resetting passwords, enabling two-factor authentication, and account recovery.
  • Regulatory compliance: verifying your identity, detecting and preventing fraud, and reporting to authorities where legally required.
  • Payment processing: facilitating deposits via online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, and other methods, and processing withdrawals to your chosen destination.
  • Service delivery: processing wagers, settling outcomes, managing your account balance, and providing customer support.
  • Fraud detection: analyzing patterns to identify unauthorized access, account compromise, or suspicious financial flows.
  • Operational improvement: analyzing aggregate data (never individual user data) to enhance platform stability and user experience.

We do not use your data for marketing, profiling, or any purpose outside this list. We do not sell your data to third parties. We do not use your identity information for any purpose except compliance and account verification on roslot.

Data Storage and International Transfer

Our roslot servers may be located outside your jurisdiction. This means your data may be stored and processed in countries other than Indonesia, potentially in data centers operated by cloud providers like AWS, Google Cloud, or Azure. These international transfers are necessary for roslot to operate reliably; we select partners with strong data protection standards and contractual guarantees.

Even if your data is stored outside Indonesia, we maintain the same security standards applied within Indonesia. All data is encrypted using industry-standard protocols, access is restricted to authorized personnel, and we comply with GDPR and similar international frameworks where applicable. You retain all your rights under Indonesian law regardless of where your data is physically stored.

Note: We do not voluntarily disclose user data to foreign governments. If we receive a legal request from a foreign authority, we require that the request comply with applicable Indonesian law before disclosure.

Third-Party Service Providers on roslot

We engage third parties to provide specific services on roslot. These processors are bound by contract to protect your data with the same standards we apply:

  • Payment processors: facilitate deposits and withdrawals, verify payment transactions, and prevent fraud.
  • Identity verification providers: confirm your government ID and proof of address against official databases.
  • Email service providers: deliver account notifications, verification codes, and support responses.
  • Cloud infrastructure providers: host our servers, databases, and backups.
  • Analytics services: track aggregate platform metrics (never individual user behavior).

Each third party is contractually required to use your data only for their specific function and to maintain security standards at least equal to roslot's own. We audit these processors regularly to ensure compliance. You have the right to know which processors we use; contact our support team for the current list.

Your Rights and Data Requests on roslot

You have the right to request access to all data we hold about you on roslot. Contact our support team with your request, and we will provide a complete export of your account data, transaction history, and any documents you submitted. Typical processing time is 5-10 business days.

You have the right to request correction of inaccurate data. If you believe your name, email, phone, or other personal information is incorrect in our roslot records, notify our support team and we will update it.

You have the right to request deletion of your account and associated data. However, we may be required to retain certain information for regulatory compliance, fraud prevention, and dispute resolution. Specifically, we retain transaction records, payment details, and identity verification documents for at least 5 years as required by Indonesian financial regulations. After this period, we delete data that is no longer necessary for legal or operational purposes.

You have the right to object to specific processing. For example, if you object to our use of your data for fraud detection, contact our support team to discuss alternatives, though we may be unable to accommodate the request if it prevents us from operating legally.

Cookies and Tracking on roslot

Our roslot platform uses cookies to maintain your session, remember your login, and track aggregate usage patterns. A cookie is a small text file stored on your device that allows our servers to recognize you and maintain your account state without requiring you to re-enter your password on every page.

We use two types of cookies:

  • Essential cookies: required for the roslot platform to function (login, session management, security).
  • Analytics cookies: track aggregate metrics such as page visits, device types, and time spent on the platform. These cookies never identify individual users.

You can disable cookies in your browser settings; however, disabling essential cookies may prevent roslot from functioning correctly. We do not use third-party tracking pixels or behavioral advertising; we do not sell data to advertisers.

Security Measures on roslot

We protect your data using multiple security layers:

  • Encryption in transit: all communications use TLS 1.2 protocol, preventing interception on public networks.
  • Encryption at rest: data stored on our roslot servers is encrypted using AES-256, preventing unauthorized access even if storage devices are stolen.
  • Access controls: only authorized staff can access your personal data, and access is logged and audited.
  • Password security: we store passwords using bcrypt hashing, not in plaintext; even our staff cannot recover your original password.
  • Two-factor authentication: optional on roslot but strongly recommended for accounts holding balances.

Despite these measures, no system is perfectly secure. If you suspect your roslot account has been compromised, change your password immediately and contact our support team.

Children and Data Protection on roslot

Our roslot service is not directed at children under 18 years old. We do not knowingly collect data from minors. If we discover that a minor has opened a roslot account, we will suspend and close the account and delete associated data, except where we are required to retain records by law (such as transaction records for tax or regulatory purposes).

Policy Updates and Contact on roslot

We may update this privacy policy from time to time to reflect operational changes, legal requirements, or service improvements. Changes become effective 30 days after we notify you via email. Continued use of roslot after 30 days constitutes acceptance of the updated policy. If any change is material—such as a new category of data collection or a new third-party processor—we will provide prominent notification and may require explicit consent.

If you have questions about this privacy policy, your data on roslot, or wish to exercise your rights, contact our support team via email or in-app messaging. We respond to privacy inquiries within one business day. Our support staff can clarify our practices, process data access requests, and escalate concerns to our data protection officer if necessary.

Summary of Our Commitments

We at roslot commit to:

  • Collect only data necessary for operating our service and complying with law.
  • Encrypt your data in transit and at rest using industry-standard cryptography.
  • Restrict access to your data to authorized staff and third-party processors under contract.
  • Not sell, rent, or share your personal data with third parties for marketing or profiling.
  • Respond to your privacy requests within one business day.
  • Maintain security standards even when your data is processed or stored outside Indonesia.
  • Notify you promptly if we discover unauthorized access to your data.

Your privacy matters to us. We recognize that you entrust us with sensitive information—your financial details, identity documents, and activity history. We treat that trust seriously and maintain robust safeguards to protect your data throughout its lifecycle on roslot.

Trust, Fairness, and Security on roslot

Platform security layers

Our roslot platform operates behind multiple security boundaries. Externally, all communications between your device and our servers use TLS 1.2 encryption, the same standard employed by banks, government agencies, and secure platforms worldwide. This encryption means that even if someone monitors your network traffic—whether on public WiFi or through your Internet Service Provider—they cannot read your passwords, payment details, or session tokens.

Internally, we segment our network into zones: a public-facing application layer where users interact with roslot, a secured API layer where requests are validated and authenticated, and a database layer containing encrypted user data. These zones are isolated and cannot directly communicate; all traffic flows through firewalls and intrusion detection systems that block unauthorized access.

Data at rest on our roslot servers is encrypted using AES-256, a symmetric cipher considered secure against brute-force attacks for decades. Even if an attacker obtained a physical hard drive from our data center, they would see encrypted bytes and would be unable to read the plaintext data without the encryption key. Encryption keys are stored separately from encrypted data, further reducing exposure.

Access to production systems on roslot is restricted to authorized staff and follows the principle of least privilege: each person has access only to the systems necessary for their specific role. All access is logged with timestamps and reviewed weekly for anomalies. Multi-factor authentication is required for all staff access to production environments on roslot.

Game fairness and RTP

Return to Player (RTP) is a statistical measure used in gaming to describe the percentage of total wagers returned to players over very large sample sizes. For our algorithmic games on roslot—such as slot machines (Aviator, Sweet Bonanza, Gates of Olympus, Fortune Tiger, Mahjong Ways)—the RTP is fixed and audited by independent third-party testing laboratories. For example, a slot game on roslot might have an, meaning that over millions of spins, non-specific info of all money wagered is returned to players, while non-specific info represents the house margin.

These RTP percentages are not adjustable, time-dependent, or player-dependent. An individual's RTP does not improve or degrade based on their account history, balance, or frequency of play. The same RTP applies to all players across all times and devices on roslot. This is verified through certified RNG testing and regular audits by independent third parties.

Outcome-based games on roslot—such as football betting (Liga 1, Piala AFF, Champions League), esports markets (Mobile Legends, Free Fire), and other sports—operate differently. Outcomes are determined by actual competitive play and verified against official results published by tournament operators. We do not generate these outcomes; we verify them. Fairness in these categories depends on the integrity of the official data source and our verification process.

Live-dealer games on roslot (blackjack, roulette, baccarat, Dragon Tiger) use certified RNG for card and wheel outcomes. The fairness of these games is verified through RNG certification and regular surveillance audits of dealer conduct. No member of staff can manipulate individual outcomes, and audit trails prevent retroactive changes to results.

KYC verification process

Know Your Customer (KYC) verification is a regulatory requirement in all jurisdictions where roslot operates. The purpose is to prevent money laundering, fraud, and financing of illicit activities. Regulators require that gaming and sportsbook platforms verify user identity before processing deposits and withdrawals. This creates an auditable record linking financial transactions to verified individuals and prevents accounts from being used as conduits for illicit proceeds.

Our roslot KYC process operates in two tiers. Basic KYC consists of email and phone number confirmation, completed within minutes. This allows immediate account access and permits browsing and small wagers. Enhanced KYC is required when withdrawing above a regulatory threshold (which varies by jurisdiction) or when our fraud-detection systems flag unusual activity.

Enhanced KYC on roslot requires upload of a government-issued identity document (Indonesian national identity card, passport, driving license, resident permit, or student ID) and a selfie showing the user's face alongside the document. Our verification team uses facial recognition software and manual inspection to confirm the document photo matches the selfie. This process typically completes within a few hours to one business day.

We accept expired documents if the photo and ID number are legible. We do not reject users based on document quality alone; our team requests recapture if a submission is unclear. Once verified, your account on roslot remains verified indefinitely unless unusual activity triggers re-verification. Your identity documents are stored encrypted and are not shared with third parties except where required by law enforcement or regulatory bodies.

User feedback and review channels

We do not publish a centralized rating or review score on our roslot website, nor do we claim endorsements from specific third-party platforms. Instead, we collect user feedback through in-app surveys, email to our support team, and our official social media channels. This feedback is reviewed monthly by our product and compliance teams to identify trends, recurring issues, and improvement opportunities.

Users seeking independent reviews of roslot may search community forums, esports and gaming communities, sportsbook review aggregators, and third-party review sites covering platforms in Southeast Asia. These sources aggregate real user experiences—both positive and critical—and can provide useful context when evaluating whether roslot aligns with your preferences and needs. We do not control any third-party review platform, but we encourage users to read diverse feedback before deciding whether to use roslot.

When reading reviews, prioritize specific, detailed feedback over generic statements. A review describing a concrete experience (for example, "I placed a bet on a Liga 1 match via the roslot app, the settlement was correct, and my QRIS withdrawal arrived within 2 hours") provides meaningful information. In contrast, vague praise ("Amazing platform!") or unsourced complaints ("Rigged!") may be promotional content, competitor sabotage, or unsubstantiated claims lacking verifiable detail.

roslot welcomes comparison against competitors in the market. We believe that strong data security, fair game mechanics, transparent policies, and responsive support are competitive advantages. Users who value these qualities often choose to stay with roslot; those with negative experiences are free to migrate to other platforms. We view departing users' feedback as important signals for service improvement and incorporate this feedback into our development roadmap.