bearfish Privacy Policy

This page describes what data we collect when you use bearfish and how we keep that information protected. Our platform operates in supported jurisdictions, accepting users from Jakarta, Surabaya, Bandung, Medan, and other areas where local law permits online gaming and sports prediction services. We collect personal information only to verify your identity, process deposits and withdrawals via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, and bank transfers, and comply with anti-money-laundering regulations.

We do not sell your data to third parties, share it with advertisers, or use it for marketing purposes outside bearfish. Your personal information is encrypted at rest and in transit between your mobile device and our servers. This privacy policy explains what we collect, how we use it, and what rights you have regarding your data.

Our commitment is transparent data handling: you know what we collect, why we collect it, and how long we keep it.

What Data We Collect on bearfish

We collect the following information when you create a bearfish account and use our platform:

  • Identity information: Full name, date of birth, national ID number or passport number, and a photo of your identity document (national ID, passport, or driver's license).
  • Contact details: Email address and phone number. We use these to send account notifications, withdraw confirmations, and security alerts.
  • Payment information: When you deposit via QRIS, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank transfer, we receive confirmation of the transaction from your payment provider. We do not store your full card details, bank account numbers, or e-wallet credentials on our servers.
  • Account activity: Your prediction history, account balance, login timestamps, and device information (IP address, operating system, app version).
  • Support communications: If you contact our support team, we retain your message and our response for record-keeping and service improvement.

We do not collect your password in plain text—you create it and we store only an encrypted version. We do not ask for payment card details directly; your e-wallet app or bank handles authentication. We do not collect location data from your phone's GPS, though we may infer your approximate location from your IP address to verify you are in a jurisdiction where bearfish operates.

How We Use Your Data on bearfish

We use the information we collect for the following purposes:

  • Identity verification (KYC): We verify your identity before you can deposit or place predictions. This protects your account and complies with anti-money-laundering regulations.
  • Payment processing: We use your email and phone number to confirm deposits and withdrawals. We coordinate with payment providers (mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking) to process transactions securely.
  • Account security: We track login attempts and unusual account activity. If we detect suspicious activity, we may ask you to verify your identity or reset your password.
  • Customer support: We use your contact information to respond to your queries and resolve account issues.
  • Regulatory compliance: We retain records of deposits, withdrawals, and predictions to comply with local gaming regulations and tax reporting requirements.
  • Platform improvement: We analyze anonymized prediction patterns and user behavior to improve our bearfish mobile app and website performance.

We do not use your data to create marketing profiles, send promotional emails beyond account notifications, or share it with advertisers. Your information remains within bearfish systems unless required by law to disclose it to authorities.

Third-Party Data Processors on bearfish

We work with service providers who process data on our behalf. These include:

Payment processors
local payment, online payment, e-wallet, mobile banking, local payment, and banks (online payment, e-wallet, mobile banking, local payment) receive your transaction details to process deposits and withdrawals. They apply their own privacy policies.
Cloud hosting providers
Our servers may sit outside your jurisdiction. We use encrypted storage and access controls to protect your data on these platforms.
Email and SMS services
We use third-party providers to send password-reset links, deposit confirmations, and security alerts. These providers do not retain your messages after delivery.
Analytics platforms
We may use anonymized analytics tools to track app performance and user behavior. These tools do not receive personally identifiable information.

All third-party processors sign data-processing agreements requiring them to protect your information and use it only for the purposes we specify. We do not share your identity documents, payment details, or full personal information with third parties unless required by law or to process a transaction you have authorized.

Your Rights Regarding Data on bearfish

You have the right to request access to the personal data we hold about you. You can ask us to provide a copy of your identity information, account history, and any other records we maintain. You also have the right to request correction of inaccurate data—if your phone number or email address has changed, contact our support team to update your account.

You can request deletion of your bearfish account and associated personal data. However, we may retain KYC documents and transaction history for a legal minimum period to comply with anti-money-laundering regulations and tax reporting. After that period expires, we securely delete or anonymize your records. You can also opt out of non-essential communications (e.g., product updates) by adjusting your account notification settings.

If you believe we have mishandled your data or violated this privacy policy, contact our support team. We will investigate your concern and respond within a reasonable timeframe. You also have the right to lodge a complaint with your local data-protection authority if you are unsatisfied with our response.

Cookies and Tracking on bearfish

Our bearfish mobile app and website use cookies and similar tracking technologies to keep you logged in, remember your preferences, and analyze platform usage. Session cookies expire when you close the app or browser; persistent cookies remain on your device until you manually delete them or they expire (typically 30 days).

We do not use cookies to track your activity across other websites or apps. We do not share cookie data with advertisers or third-party marketers. You can disable cookies in your browser settings, but this may limit functionality (e.g., you may need to log in again each session).

We at bearfish handle your data with care: encrypted storage, minimal collection, no third-party sharing, and transparent retention policies.

bearfish team

How Long We Keep Your Data on bearfish

We retain identity documents (KYC information) for as long as your bearfish account is active, plus a legal minimum period (typically 5 to 7 years) to comply with anti-money-laundering and tax regulations. After that period, we securely delete or anonymize your documents.

We retain account activity logs (logins, predictions, deposit and withdrawal records) for regulatory and tax purposes. If you close your bearfish account, we maintain these records for the legal minimum period, then delete them. Contact information (email, phone) is retained while your account is active; after account closure, we delete it unless we are legally required to keep it.

Support communications and chat logs are retained for 12 months to resolve disputes and improve our service. After 12 months, we delete them unless a dispute is ongoing or they are needed for legal or regulatory purposes.

International Data Transfers and Jurisdiction

Our bearfish servers may be located outside your country. By using bearfish, you consent to your data being transferred to and stored on servers outside your jurisdiction. We use encryption and access controls to protect your information regardless of where it is stored. We comply with data-protection laws in the jurisdictions where we operate.

If your local law requires data to remain within your country, you may not be able to use bearfish. Contact our support team to clarify data-residency requirements in your jurisdiction before creating an account.

Changes to This bearfish Privacy Policy

We may update this privacy policy periodically to reflect changes in our practices, technology, or regulations. If we make material changes (e.g., expanding data collection or third-party sharing), we will notify you via email at least 30 days before the changes take effect. Your continued use of bearfish after the notification date constitutes acceptance of the updated policy.

We recommend reviewing this policy regularly to stay informed about how we handle your data. Your latest account login will show the date this policy was last updated.

Contact Us About Privacy on bearfish

If you have questions about this privacy policy, how we use your data, or your rights regarding your personal information, contact our support team. We are available during standard business hours in English. You can reach us via email through the contact form on bearfish.id or by replying to any notification email we send you.

For data-access requests, account deletion, or privacy complaints, include the subject line "Privacy Request" in your message so our team prioritizes your inquiry. We will respond within 30 days or inform you if your request requires additional time to process.

Collection
KYC, contact, payment data
Protection
Encryption, secure servers
Retention
Legal minimums, then deletion
Rights
Access, correct, delete

Summary: Your Privacy on bearfish

We at bearfish collect minimal personal information: your identity (for KYC verification), contact details (for account notifications), and payment data (for transaction processing). We do not sell your data, share it with advertisers, or use it for marketing outside bearfish. Our encryption protects your information in transit and at rest on our servers.

We retain KYC documents and transaction records for legal minimum periods (typically 5 to 7 years) to comply with anti-money-laundering and tax regulations. After those periods expire, we securely delete or anonymize your records. You have the right to request access to your data, correct inaccuracies, and request deletion (subject to legal retention requirements). You can also opt out of non-essential communications by adjusting your account settings.

This privacy policy applies to all bearfish users, regardless of which payment method you use (QRIS, e-wallet, mobile banking, local payment, online payment, e-wallet, mobile banking, local payment, online payment, e-wallet). Our services are available only where local law permits. If you have questions about data privacy, account security, or your rights regarding personal information, contact our support team. We respond to privacy inquiries within 30 days and are committed to transparent, lawful handling of your data.