1. Who We Are
Betwise ("we", "us") is the data controller for information collected through the Betwise platform. We are based in Tbilisi, Georgia, and comply with the Law of Georgia on Personal Data Protection. For users in the EU/EEA, we also strive to align with GDPR principles.
2. Information We Collect
- Account data: first name, last name, email address, Georgian phone number, hashed password, and preferred language.
- Authentication data: if you sign in with Google, we receive your Google email, name and profile picture.
- Payment data: when you top up your wallet, a licensed Georgian payment provider processes your card. We store only the transaction reference, amount, status and timestamp — never your card number, CVV or bank credentials.
- Usage data: which picks you unlock, which games you view, wallet balance history, and your email-verification status.
- Technical data: IP address, browser user-agent, and timestamps used for rate-limiting, fraud detection and debugging.
- Email communications: we send password-reset, email-verification and purchase-confirmation messages to the address on your account.
3. How We Use Your Data
- to create and secure your account;
- to process wallet top-ups and unlock transactions;
- to show you your purchase history and unlocked picks;
- to send transactional emails (verification, password reset, receipts);
- to protect the service from abuse (rate-limiting, fraud checks);
- to generate aggregated, non-identifying usage reports.
We do not sell your personal data and we do not use it for targeted advertising.
4. Legal Basis
We process your data on the basis of: (a) performance of our contract with you (providing the wallet, unlocks, and account features); (b) our legitimate interest in operating a secure platform; and (c) your consent, where required (e.g. optional communications).
5. Third-Party Processors
To deliver the service we rely on a small number of carefully selected third-party processors. These include a licensed Georgian payment provider (for wallet top-ups), Google Sign-In (only if you choose to use it), and infrastructure partners used for hosting, email delivery, and sports-data feeds. We share only the minimum data necessary, and no personal information is sent to sports-data providers.
6. Cookies & Local Storage
We use strictly necessary cookies for authentication (session tokens) and to remember your language preference. We do not use tracking or advertising cookies.
7. Data Retention
Account data is kept for as long as your account is active. When you delete your account, we remove personal identifiers within 30 days; aggregated, anonymised transaction records may be retained for accounting and legal compliance for up to 6 years, as required by Georgian tax law.
8. Your Rights
Under Georgian and EU data-protection law, you have the right to:
- access a copy of the personal data we hold about you;
- correct inaccurate data (directly on your profile page);
- request deletion of your account and data;
- object to certain processing;
- lodge a complaint with the Personal Data Protection Service of Georgia.
9. Security
Passwords are stored using industry-standard hashing. All traffic is encrypted in transit via HTTPS. Payment card details never touch our servers. Administrative access to the database is restricted and audited.
10. Children
The Platform is not intended for users under 18. If we learn that we have collected data from a minor, we will delete it promptly.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be announced on the Platform. The "Effective" date at the top of this page always reflects the most recent version.