Skip to main content
Legal

Privacy Policy

Last updated April 18, 2026

Thank you for choosing to be part of our community at Gamblish("Company", "we", "us", or "our"). We are committed to protecting your personal information and your right to privacy. If you have any questions or concerns about this policy, please contact us at support@gamblish.com.

This privacy policy applies to all information collected through our website, mobile applications, and any related services, sales, marketing, or events (collectively, the "Services"). Gamblish operates an online gaming platform offering casino games, sports betting, and peer-to-peer raffles. Given the regulated nature of online gambling, we take data protection particularly seriously.

What Information Do We Collect?

Information you provide directly

When you register for an account or use our Services, we collect:

  • Name, email address, and account credentials
  • Location data (country, city, postal code, coordinates) for jurisdictional compliance
  • Profile information (avatar selection, display preferences)
  • Payment information (processed securely by our payment partners, we do not store card numbers)
  • Currency preferences and wallet balance data
  • Communication preferences (notification opt-in/opt-out)

Information collected automatically

When you visit or use our Services, we automatically collect:

  • IP address, browser type, device information, and operating system
  • Session data, page interactions, and error reports (via Sentry)
  • Session replay data for debugging purposes, Sentry may record anonymized replays of user sessions when errors occur (sampled at 10% for normal sessions, 100% for error sessions)
  • Device tokens for push notification delivery (via Firebase Cloud Messaging)

Gaming activity data

As required by gambling regulations, we record:

  • All wagers, game outcomes, and transaction history
  • Game session data (duration, type, stakes)
  • Deposit and withdrawal history
  • Responsible gambling settings and self-exclusion status

How Do We Use Your Information?

We process your information for the following purposes:

  • Account management , To create and manage your account, verify your identity, and maintain account security.
  • Service delivery , To operate our gaming platform, process wagers, calculate outcomes, and manage your wallet balance.
  • Payment processing , To facilitate deposits, withdrawals, and refunds through our payment partners.
  • Regulatory compliance , To comply with gambling regulations, anti-money laundering (AML) laws, and know-your-customer (KYC) requirements.
  • Responsible gambling , To monitor gaming patterns, enforce self-exclusion, and provide player protection tools.
  • Error monitoring , To identify and fix technical issues using session replay and error tracking.
  • Communications , To send transactional emails (account confirmations, payment receipts) and, with your consent, promotional communications.
  • Security , To detect fraud, prevent unauthorized access, and protect the integrity of our games.

Who Do We Share Your Information With?

We share your information only with the following categories of third parties, and only as necessary to provide our Services:

  • Payment processors , Stripe (card payments and payouts), PayPal (deposits and withdrawals), MTN Mobile Money (mobile payments), Orange Money (mobile payments), and NowPayments (cryptocurrency transactions). These processors handle your payment data directly under their own privacy policies.
  • Error and performance monitoring , Sentry (error tracking, session replay). Sentry may process IP addresses, browser data, and anonymized session recordings to help us diagnose technical issues.
  • Push notifications , Firebase Cloud Messaging (FCM) processes device tokens to deliver notifications. You can disable notifications in your account preferences.
  • Email delivery , Resend processes your email address to deliver transactional communications on our behalf.
  • Database and hosting , Supabase (database hosting with PostgreSQL), Vercel (website hosting). Both process data under their respective privacy policies and data processing agreements.
  • Regulatory authorities , We may disclose information to gambling regulators, law enforcement, or other authorities as required by law.

We do not sell your personal information. We do not use your data for third-party advertising.

Data Retention

  • Account data , Retained for the duration of your account. Upon account deletion, data is soft-deleted and permanently purged after 30 days.
  • Transaction and gaming records , Retained for 7 years as required by gambling regulations and tax law.
  • Audit trail , Immutable records of account changes (profile updates, transactions, payments) are retained for regulatory compliance and are not subject to deletion requests.

Account Deletion

You may request account deletion at any time by clicking the DELETE ACCOUNT button in your profile settings. Upon deletion request, your account is immediately deactivated and your data is soft-deleted. After 30 days, all personal data is permanently purged from our active systems. Transaction history and audit records are retained for 7 years as required by law.

Data Security

We implement appropriate technical and organizational security measures including: TLS/HTTPS encryption for all data in transit, row-level security (RLS) policies on all database tables ensuring users can only access their own data, role-based access control (Test, User, Admin, Superuser), password hashing via industry-standard bcrypt, and HMAC-SHA256 signature verification on all payment and verification webhooks.

Your Privacy Rights

Depending on your jurisdiction, you may have the following rights:

  • Access , Request a copy of the personal data we hold about you.
  • Rectification , Request correction of inaccurate personal data.
  • Erasure , Request deletion of your personal data (subject to regulatory retention requirements for gambling records).
  • Restriction , Request restriction of processing in certain circumstances.
  • Portability , Request your data in a structured, machine-readable format.
  • Objection , Object to processing based on legitimate interests.
  • Withdraw consent , Where processing is based on consent, withdraw it at any time.

To exercise any of these rights, contact us at support@gamblish.com. We will respond within 30 days. Note that gambling regulations may require us to retain certain data even after an erasure request.

Minors

Our Services are strictly for adults. You must be at least 18 years of age (or the legal gambling age in your jurisdiction, whichever is higher) to use Gamblish. We do not knowingly collect personal information from minors. If we become aware that we have collected data from a person under the legal gambling age, we will deactivate the account and delete the data immediately. If you believe a minor is using our Services, please contact us at support@gamblish.com.

Data Breach Notification

In the event of a personal data breach, we will notify the applicable supervisory authority within 72 hours of becoming aware of it. If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly without undue delay.

Changes to This Policy

We may update this privacy policy from time to time. Material changes will be communicated via email or prominent notice on our website. The "Last updated" date at the top of this page indicates the most recent revision.

Contact Us

If you have questions about this policy or wish to exercise your privacy rights, contact our Data Protection Officer at support@gamblish.com. We will respond within 30 days.

Agent connected · 6 tools