Start — keristoto in in a few minutes Ready.

keristoto Account Security Football Betting with DANA & e-wallet Banking

Account security on keristoto starts the moment you sign up. We ask for your email, a password, and basic identity information—then we verify your phone number and request KYC documents (ID card, selfie, proof of address). Once approved, you can link a payment method: mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, or a bank virtual account (online payment, e-wallet, mobile banking, local payment). This flow takes time because we take it seriously.

Open an account
keristoto featured game showcase

Account Security

Game
Category
Live Table / Card
RTP
high
high

We protect your account with encryption, two-factor authentication, and withdrawal review. Every login is logged. Every deposit and withdrawal is recorded. If we detect unusual activity—a login from a new device, a large withdrawal, a password change—we pause and ask you to verify. This friction exists for a reason: it stops unauthorized access before it becomes a problem.

keristoto Verification and KYC

Verification happens in stages. First, we confirm your email by sending a link; you click it within 24 hours. Next, we ask for your phone number and send a one-time code via SMS. Then comes KYC: you upload a photo of your ID (national ID card, passport, or driver's license), a selfie holding your ID, and proof of address (utility bill, bank statement, or rental agreement dated within the last three months). Our team reviews these documents within one business day.

Why do we ask for so much? Because we are required to by law in every jurisdiction where we operate. KYC (Know Your Customer) rules exist to prevent money laundering and fraud. We store these documents encrypted and separate from your account login credentials. You can request a copy of your KYC file at any time through your account settings.

keristoto account verification dashboard showing KYC document upload interface

Verification is not a barrier—it is a shield. It protects you, and it protects us. On keristoto, we verify once and trust thereafter.

keristoto editorial team

Two-Factor Authentication on keristoto

Once your account is verified, we recommend enabling two-factor authentication (2FA). You have two options: SMS-based (we send a code to your phone each time you log in from a new device) or authenticator app (you use an app like Google Authenticator or Authy to generate codes). SMS is simpler; authenticator app is more secure because it does not rely on your phone carrier.

2FA is optional but strongly encouraged, especially if you use keristoto during Liga 1 season or major tournaments like Piala AFF or Champions League—times when account takeover attempts spike. If you enable 2FA and lose access to your phone, we can help you recover your account, but the process takes longer. Store your backup codes in a safe place.

2FA setup checklist

  • Go to Account Settings → Security → Two-Factor Authentication
  • Choose SMS or authenticator app
  • Complete the verification step (we send a test code)
  • Save your backup codes in a password manager or safe location
  • Test login from a new device to confirm 2FA works

Password Reset and Account Recovery

If you forget your password, click "Forgot password?" on the login page. We send a reset link to your registered email. The link expires after one hour. Click it, set a new password (minimum 12 characters, mix of uppercase, lowercase, numbers, and symbols), and log in again. If you do not have access to your email, contact our support team with proof of identity (the same documents you uploaded during KYC). Recovery takes 2–5 business days.

If you suspect someone else has accessed your account, change your password immediately and enable 2FA if you have not already. Then contact support. We will review your account activity, flag suspicious transactions, and help you secure it. Do not wait—the sooner you report it, the faster we can act.

Withdrawal Review and Settlement

When you request a withdrawal, we review it before processing. This review typically takes a few hours during business hours. We check: Does the withdrawal amount match your account balance? Is the destination account in your name? Have you made any large deposits or unusual bets in the last 24 hours? If everything looks normal, we approve it. If something seems off, we contact you to verify.

Withdrawals go to the same payment method you used to deposit. If you deposited via DANA, your withdrawal goes back to e-wallet. If you used a mobile banking virtual account, it goes back to local payment. This rule prevents fraud and money laundering. Once we approve your withdrawal, the payment processor (online payment, e-wallet, mobile banking, etc.) handles the transfer. Settlement times vary: e-wallets like local payment and online payment typically settle within subject to verification; bank transfers may take 1–2 business days.

keristoto withdrawal confirmation screen showing payment method and settlement timeline

Data Privacy and Encryption

We encrypt all data in transit (using SSL/TLS) and at rest (using AES-256). Your password is hashed, not stored in plain text. Your payment information is tokenized—we never store your full card number or bank account number. Your personal data (name, ID number, address) is encrypted and accessible only to authorized staff members who need it for account verification or support.

We do not sell your data. We do not share it with third parties except as required by law (e.g., if a court orders us to disclose information, or if we are required to report suspicious activity to financial regulators). You can request a copy of all data we hold about you by submitting a data access request through your account settings. We will provide it within 30 days.

On keristoto, your data is yours. We hold it in trust, encrypt it, and protect it as if it were our own.

keristoto security policy

Device Management and Login History

You can see all devices logged into your keristoto account by going to Account Settings → Active Sessions. Each entry shows the device type (mobile, desktop, tablet), the browser or app, the IP address, and the last login time. If you see a device you do not recognize, click "Log out" to end that session immediately. The next time that device tries to access your account, it will need to log in again.

We also keep a login history (last 30 days) showing every successful and failed login attempt. If you see failed attempts from unfamiliar locations, your password may have been compromised. Change it immediately and enable 2FA. If the suspicious activity continues, contact support.

Payment Method Security

On keristoto, we accept e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, and bank virtual accounts (local payment, online payment, e-wallet, mobile banking). Each payment method has its own security layer. E-wallets use PIN or biometric verification. Bank transfers use one-time passwords (OTP). local payment uses dynamic QR codes that expire after a few minutes. We do not store your payment credentials—we only store a token that lets us request a transaction on your behalf.

If you link a new payment method, we verify it with a small test deposit (usually under our welcome offer). You confirm the amount in your payment app, and we record the token. From then on, deposits and withdrawals use that token. If you want to remove a payment method, go to Account Settings → Payment Methods and click "Remove." Future transactions cannot use that method.

Support and Account Help

If you have questions about your account security, payment methods, or withdrawal status, contact our support team. We offer chat (available during business hours), email (response within 24 hours), and phone support in Indonesian and English. We never ask for your password or full payment details over chat or email. If someone claiming to be from keristoto asks for these, it is a scam—report it to us immediately.

Our support team can help you reset your password, recover a locked account, dispute a transaction, or update your KYC information. We can also help you understand your account activity, review your betting history, or check your withdrawal status. We are here to help you use keristoto safely and confidently.

FAQ

Common questions about accounts and security

Help
Terms

Full terms of service and user agreement

Legal
Privacy

How we collect, use, and protect your data

Policy
Legal

Regulatory information and compliance notices

Info
Open account

Start the verification and account setup process

New

Account Security on keristoto: A Summary

Account security on keristoto is built in layers. Verification (email, phone, KYC) confirms you are who you say you are. Encryption and tokenization protect your data and payment information. Two-factor authentication, password reset, and device management give you control. Withdrawal review and settlement tracking ensure your money reaches the right place. Support is available to help you recover access, report fraud, or answer questions.

We take these steps because we operate in a regulated industry and because your trust matters. On keristoto, security is not a feature—it is a commitment. Use it, and use it well.