bisa Platform Privacy Notice

This page describes what we collect when you use bisa and how we keep that data protected. We collect information necessary to verify your identity, process your deposits via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, or e-wallet, settle your withdrawals, and prevent fraud. We do not sell your data to third parties, and we do not track you across other websites.

Our privacy policy reflects our commitment: your account information, payment history, and gaming activity remain confidential between you and bisa. We encrypt all sensitive data, limit internal access to those who need it, and delete inactive account data after a defined period. This notice explains our data practices in plain language—what we collect, why, who can access it, and what rights you have.

If you have questions about how we handle your data, reach out to our support team. We're transparent about our practices.

What Data We Collect on bisa

We collect information in three categories: account setup, payment processing, and gameplay activity.

Account Setup Information

When you register on bisa, we require your full name, email address, phone number, and date of birth. We use these details to verify your identity and prevent fraud. We also ask for your preferred language and country of residence. This information is mandatory—we cannot create a bisa account without it.

We collect your password (stored encrypted) and any security questions you set up. We do not ask for your ID number, passport, or physical address during signup. If your first withdrawal triggers verification, we may request a government-issued ID copy or proof of address at that time—but only as a one-time check.

Payment Information

When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, or e-wallet, we collect the amount, timestamp, and confirmation code from your e-wallet app. We do not store your wallet credentials—instead, we receive a token from the payment processor that represents your wallet without exposing the underlying account details.

For bank transfers through mobile banking, local payment, online payment, or e-wallet, we record your virtual-account reference number, the amount transferred, and the settlement timestamp. We do not store your full bank account number—only the masked identifier needed to match your deposit to your bisa balance. Your bank statement shows the transaction; your bisa history shows it too. Both records match.

We keep a complete record of every deposit and withdrawal in your account history. You can see this history anytime by logging into bisa and viewing your transaction ledger. This ledger is encrypted and visible only to you and our compliance team.

Gameplay Activity

We record every bet, spin, and match prediction you place on bisa—along with the outcome, settlement time, and balance change. We retain this data for 7 years to comply with regulations in our service regions, including Jakarta, Surabaya, Bandung, Medan, Semarang, and Yogyakarta. After 7 years, we delete gameplay records unless you have an active dispute or investigation tied to your account.

We also log your login history—timestamps, IP addresses, and device types. This data helps us detect unauthorized access and prevent account takeover.

What we do NOT collect: We do not use cookies to track you. We do not collect browsing history outside bisa. We do not use device identifiers to build a profile of your behavior on other apps or websites.

How We Use Your Data

We use the data we collect for five explicit purposes:

  • Identity verification: We confirm your name matches your deposit source (your mobile banking account, your local payment account, etc.) to prevent fraud.
  • Payment processing: We use your payment information to deposit funds and settle withdrawals. We cannot process payments without this data.
  • Regulatory compliance: We retain gameplay and account history to comply with gaming regulations in supported jurisdictions and to assist law enforcement if required by court order.
  • Fraud prevention: We analyze login patterns, deposit-and-withdrawal sequences, and gameplay behavior to detect and prevent fraud. If we spot anomalies, we may ask you to verify your identity.
  • Customer support: We use your account information to assist you with technical issues, withdrawal delays, or disputes. Our support team accesses your data only when you contact us.

We do not use your data for marketing. We do not send promotional emails or SMS unless you explicitly opt in. We do not sell your data, rent it, or share it with advertising networks.

Third-Party Data Processors on bisa

We work with third-party vendors to operate bisa. These vendors have access to limited data as necessary to perform their function:

  • Payment processors: online payment, e-wallet, mobile banking, local payment, online payment, and our banking partners (e-wallet, mobile banking, local payment, online payment) receive your transaction details. They process payments and return confirmation codes to us. They maintain their own privacy policies.
  • Cloud infrastructure: Our servers may sit outside your jurisdiction (likely in Southeast Asia or nearby regions). Our cloud provider stores encrypted backups of your account data and has contractual obligations to protect it.
  • Identity verification: For first-withdrawal verification, we may use a third-party ID-verification service. This service compares your submitted ID copy against government databases and returns a pass/fail result. We do not retain copies of your ID documents longer than necessary.
  • Fraud-detection services: We use algorithmic fraud-detection systems (provided by third-party vendors) to flag suspicious activity. These systems analyze your transactions but do not access your personal name or contact details—only anonymized transaction patterns.

All third-party vendors sign data-protection agreements requiring them to encrypt your data, limit access, and delete data upon contract termination.

We at bisa believe your data belongs to you. We keep it secure, use it only for the purposes you consent to, and give you full visibility into what we store.

bisa Editorial Team

Your Rights on bisa

You have the right to access, correct, and delete your personal data. Here's how:

Access Your Data

Log into your bisa account and view your profile information, transaction history, and login history. All this data is available to you at any time. If you need data in a machine-readable format (such as a CSV export), contact our support team and we will provide it within 7 business days.

Correct Your Data

If your registered name, email, or phone number is incorrect, log into bisa, visit Account Settings, and update it. Changes take effect immediately. If you cannot change a field yourself, contact support and we will update it for you.

Delete Your Data

You can request account deletion at any time. If your account has no active disputes and your balance is zero, we will delete your account and all associated personal data within 30 days. Gameplay records older than 7 years are automatically deleted. We retain records tied to active disputes or withdrawals for as long as needed to resolve them.

Important: We cannot delete data required by law. Tax records, anti-money-laundering documentation, and fraud-investigation files may be retained beyond your deletion request if demanded by regulations.

Cookies & Tracking on bisa

We use cookies only to maintain your login session. When you log into bisa, we set a session cookie that expires when you log out or after 24 hours of inactivity. This cookie is essential—without it, you would need to re-enter your credentials every few seconds.

We do not use analytics cookies, tracking pixels, or third-party advertising pixels. We do not build behavioral profiles or track you across websites. If you visit bisa from Jakarta, Surabaya, or any other location, we do not record that location data separately—we only see it as part of your IP address during account verification.

If you disable cookies in your browser, bisa will not function properly. You will not be able to stay logged in or place bets.

Data Security & Breach Notification

We encrypt all bisa account data using 256-bit SSL. Your password is hashed (one-way encrypted) and cannot be recovered or viewed by our staff. Payment tokens are encrypted and isolated from your personal name. We perform regular security audits and penetration tests to identify vulnerabilities before attackers do.

If we discover a data breach affecting your account, we notify you by email and SMS within 72 hours of discovery. We will explain what data was compromised, what steps we've taken to secure it, and what you should do to protect yourself (such as changing your password or monitoring your bank account). We will not hide breaches—transparency is mandatory.

Jurisdiction & Data Transfer

Our servers may be located outside your jurisdiction. By using bisa, you consent to your data being transferred, stored, and processed in these locations. Our service is available only where local law permits. Users are responsible for verifying that their access and use comply with their jurisdiction's applicable law.

If you access bisa from multiple countries, we may see login attempts from different locations and IP addresses. This triggers our fraud-detection system, which may ask you to verify your identity. This is normal and protects your account.

Updates to Our bisa Privacy Policy

We may update this privacy notice from time to time to reflect changes in our practice or applicable law. When we make material changes—such as a change in how we use your data or who we share it with—we notify all active bisa users via email at least 30 days before the change takes effect. You have the right to object or close your account before the change applies.

Minor updates (clarifications, typo corrections, or administrative changes) do not require advance notice. We recommend reviewing this page periodically to stay informed of our current practices.

Contact Us About Your Privacy

If you have questions about this privacy policy, want to exercise your rights (access, correction, deletion), or believe your data has been mishandled, contact our support team. We respond to privacy inquiries within 7 business days. Include as much detail as possible—your account email, the specific data concerned, and the action you're requesting—so we can resolve your issue quickly and accurately.

Our services are available only where local law permits. Your continued use of bisa indicates your acceptance of this privacy policy. If you do not agree with our practices, you may close your account and request data deletion at any time.