fisch Casino & Sportsbook Data Care

This page describes what we collect when you use fisch and how we keep that data protected. We at fisch take your privacy seriously — your account credentials, payment details, and betting history are encrypted and stored securely. We do not sell your data to third parties. We do not share your information with advertisers. We collect only what we need to operate our platform, verify your identity, process your deposits and withdrawals, and comply with local regulations.

Our privacy practices reflect our commitment to transparency. When you create an account on fisch, deposit via DANA or e-wallet, or withdraw your winnings, we handle your data according to the standards outlined below. We explain what we collect, why we collect it, how long we keep it, and what rights you have over your information.

If you have questions about how we handle your data, our support team is available in English during standard business hours. You can also contact us directly using the contact information at the end of this policy.

What data we collect on fisch

We collect data in three categories: account information, transaction data, and behavioral data. Our account information includes your email address, password (stored as an encrypted hash, never in plain text), full name, date of birth, national ID number, phone number, and residential address. We collect this during registration and KYC verification. We need this information to verify your identity, comply with anti-money-laundering regulations, and ensure you're accessing fisch from a supported jurisdiction.

Our transaction data includes every deposit, withdrawal, and bet you place on fisch. When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or direct bank transfer to mobile banking, local payment, online payment, or e-wallet, we record the amount, timestamp, payment method, and confirmation status. When you withdraw, we record the destination account, amount, and verification status. When you place a bet on Liga 1 football, a slot spin, or a Mobile Legends esports market, we log the bet amount, outcome, and payout. This data is encrypted and stored in our secure databases.

Our behavioral data includes your login history (timestamps and devices), which games you access, how long you play, and your push-notification preferences. We use this data to improve our platform — for example, if we notice that most players on mobile disable video notifications during Idul Fitri, we might adjust our default settings. We do not use this data to profile you for marketing or to sell to third parties.

Data we collect on fisch

  • Account information: email, password hash, name, ID number, phone, address.
  • Transaction data: deposits, withdrawals, bets, payouts, timestamps.
  • Behavioral data: login history, game preferences, notification settings.
  • Device data: IP address, browser type, operating system (Android / iOS).
  • Payment processor data: confirmation codes from mobile banking, local payment, online payment, etc.

How we use your data

We use your account information to verify your identity through KYC, process your deposits and withdrawals, and comply with Indonesian financial regulations. We use your transaction data to settle your bets, calculate your account balance, and generate your transaction history. We use your behavioral data to improve our platform — for example, to optimize mobile app performance, adjust push-notification timing, or identify and fix bugs.

We do not use your data for marketing purposes. We do not send you promotional emails or SMS messages unless you explicitly opt in. We do not share your data with advertisers, data brokers, or third-party marketers. We do share your data with payment processors (e-wallet, mobile banking, local payment, etc.) only to the extent necessary to process your deposits and withdrawals. We may share your data with law enforcement or regulatory authorities if required by law.

Data storage and security

We store your data in encrypted databases located in secure data centers. Your password is hashed using industry-standard algorithms; we never store it in plain text. Your bank account number and payment details are encrypted using AES-256 encryption. Your transaction history is logged and encrypted so that even if someone gained unauthorized access to our servers, they could not read your personal information.

We monitor our systems for unauthorized access attempts. If we detect suspicious activity — multiple failed login attempts, access from unusual locations, or unusual withdrawal patterns — we alert you via email and SMS. We may temporarily lock your account and ask you to verify your identity before allowing further transactions. This security measure protects you from account takeover.

Your data is encrypted at rest and in transit. We do not sell it, share it with advertisers, or use it for marketing. Your privacy is not a feature we added — it's built into how we operate.

fisch data protection team

Third-party processors

We use third-party services to operate fisch. Our payment processors (online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet) receive your payment information to process deposits and withdrawals. Our email service provider sends you account notifications and password-reset emails. Our analytics provider (anonymized, no personal data) helps us understand how players use our platform. Each third-party processor has signed a data-processing agreement with us, committing to the same privacy standards we maintain.

Our servers may sit outside your jurisdiction — for example, in Singapore or Malaysia. This means your data may be transferred across borders. However, we maintain the same encryption and security standards regardless of server location. Your data remains protected under our privacy policy and applicable Indonesian data-protection laws.

Your rights over your data

You have the right to access your data. You can view your account information, transaction history, and login history anytime in your fisch account dashboard. You have the right to correct your data — if your address or phone number changes, you can update it in your account settings. You have the right to request deletion of your data, subject to legal retention requirements. If you request account deletion, we will remove your personal information within 30 days, except for transaction records we're required to keep for anti-money-laundering compliance.

You have the right to data portability — we can export your account data in a standard format if you request it. You have the right to withdraw consent for non-essential data collection — for example, you can disable behavioral analytics while keeping your account active. To exercise any of these rights, contact our support team in English during standard business hours.

Our fisch privacy commitments

We at fisch commit to the following privacy standards. We will not sell your data to third parties. We will not share your information with advertisers or data brokers. We will not use your data for marketing purposes without your explicit consent. We will encrypt all sensitive data at rest and in transit. We will monitor our systems for unauthorized access and alert you if we detect suspicious activity. We will comply with all applicable data-protection laws in Indonesia and the jurisdictions where we operate.

We will retain your data only as long as necessary. Account information is kept for the duration of your account plus seven years for regulatory compliance. Transaction data is kept for seven years to comply with anti-money-laundering regulations. Behavioral data is kept for one year and then anonymized. If you request account deletion, we will remove your personal information within 30 days, except for transaction records required by law.

Our privacy policy may change as we update our platform or respond to new regulations. We will notify you of material changes via email at least 30 days before they take effect. Your continued use of fisch after a policy change constitutes acceptance of the new terms. If you have questions about our privacy practices, contact our support team. Our services are available only where local law permits. Users are responsible for verifying that access and use comply with their own jurisdiction's law.

Trust and fairness at fisch

Platform security layers

We protect every transaction on fisch through multiple security layers. Your login credentials are encrypted using TLS 1.3, the same protocol used by banks and payment processors worldwide. When you enter your password on mobile or desktop, it travels through a secure tunnel to our servers; we never log the password itself, only a cryptographic hash that we compare during login. If someone tries to guess your password, our system locks the account after three failed attempts and sends you a security alert via email and SMS.

We store your personal data — name, ID number, bank account, deposit and withdrawal history — in encrypted databases isolated from our public-facing servers. Our developers cannot access your data without logging into an audit trail; every access is tracked and reviewed quarterly by our compliance team. We use role-based access control, meaning a customer-service representative can see your withdrawal status but cannot touch your password or bank details. Only senior security staff with two-factor authentication can access the master encryption keys.

When you request a withdrawal, we verify your identity a second time before processing payment. We match your account name to your bank account name, confirm that your withdrawal amount doesn't exceed your balance, and run anti-money-laundering checks on your destination account. This verification window typically completes within 1-2 hours during business hours, longer on weekends or holidays like Idul Adha. We publish this standard on our Terms & Conditions page so you know what to expect.

Game fairness and RTP

Every game we offer on fisch — slot machines like Aviator, Sweet Bonanza, Gates of Olympus, Fortune Tiger, and Mahjong Ways — uses a certified random-number generator (RNG) audited by third-party fairness teams. Our RNG generates results without bias toward any particular outcome. Each spin or draw is independent; your previous result does not influence the next one. We do not adjust odds based on your account balance, deposit history, play frequency, or time of day. The payout structure for each game is fixed and published in the game rules before you place your first bet.

RTP (return-to-player) is a percentage describing, over time, how much of all bets we return to players as winnings. For our slot games, RTP typically ranges from 94-non-specific info, meaning if all players together wagered one million rupiah on slots over a month, we'd return roughly 940,000-our welcome offer in total winnings. This is a long-term statistical average and does not guarantee any individual player's return. Some players win more, some lose — that's the nature of games of chance. We publish our RTP percentages in the game rules; they are certified by independent auditors and do not change.

Our live-dealer games — blackjack, roulette, baccarat, Dragon Tiger — differ from RNG-based slots. In live games, a real dealer or croupier operates in a professional studio; outcomes depend on physical randomness (card shuffle, hand movement, ball spin), not software. We stream these games in high-definition video from our studios so you see every action in real time. The fairness here is transparency: you watch the entire process unfold on camera, and you can verify that the outcome matches what you observed.

KYC verification process

KYC stands for "Know Your Customer." We require KYC because Indonesian financial regulations require platforms like fisch to verify the identity of users who deposit money. KYC protects you (it prevents account takeover and fraud) and protects fisch (it ensures we're not facilitating money laundering or sanctions violations). When you register on fisch, we ask for your email, a secure password, your full name, date of birth, and your national ID number. You then upload a photo of your national ID (KTP) and a selfie holding that ID.

We use automated image recognition to verify that your ID is genuine — checking security features, reading your name and ID number, and comparing them to your account registration data. If the system flags anything as unclear, a human reviewer manually inspects your images. Most KYC approvals happen within subject to verification; some may take up to 24 hours if we need manual review. Once approved, you can deposit and play. If your KYC is rejected, we explain why in an email and offer you the chance to resubmit with clearer images.

We accept KTP (national ID), SIM (driver's license), and passport as valid documents for Indonesian residents. For non-residents, we accept international passports and, in some cases, national IDs from neighboring countries. If you cannot provide any of these, our support team — reachable in English — can guide you through alternative verification paths. After KYC is approved, you can withdraw your winnings anytime, subject to our standard verification window (1-2 hours during business days). We do not ask for KYC a second time unless we detect suspicious activity on your account or an unusually large withdrawal that triggers our compliance systems.

User feedback and review channels

We at fisch encourage all account holders to share their experience. You can leave feedback directly in your account settings, or contact our support team via email or chat. We monitor player reviews on independent sites and take constructive criticism seriously. If a player reports a privacy concern — say, an unexpected email, a login from an unfamiliar device, or a data breach — we investigate immediately. We check our server logs, verify the incident, and either confirm it was an error (and take corrective action) or explain what happened and how we prevented harm.

We do not pay for positive reviews, and we do not delete negative ones. What we do is respond publicly to complaints with facts. If a player says their data was exposed, we check our security logs and explain what happened — was it a phishing attempt, a weak password, or an actual breach? We provide evidence and explain the steps we took to prevent recurrence. This transparency builds trust; we accept that not every player will have a perfect experience, and we learn from issues rather than hiding them.

You can file a formal complaint through our official support system if you feel your privacy was violated. We have a dispute resolution process outlined in our Terms & ConditionsIf you remain unsatisfied after our investigation, the complaint can be escalated to an independent arbitrator or to the relevant data-protection authority in your jurisdiction. This process is rarely needed, but we have it in place because your privacy rights matter. Your confidence in fisch is worth more than any single dispute; we invest in protecting your data fairly and transparently.

Contact and support

If you have questions about our privacy practices, how we handle your data, or how to exercise your rights, contact our support team. We respond in English during standard business hours. You can also reach out to our data protection officer directly for privacy-specific concerns.

Our services are available only where local law permits. Users are responsible for verifying that access and use comply with their own jurisdiction's law. This privacy policy is effective as of the date listed at the bottom of our website. We may update this policy periodically; material changes will be communicated via email at least 30 days in advance.