Can Poker Sites See Your Hole Cards? It Depends on One Architecture Question
The honest answer to this question makes people uncomfortable: **in the traditional online poker architecture, the platform doesn’t just *can* see your hole cards — it *must* know them, or it couldn’t deal at all.** The real question was never “can it?” but “who has access, and is anyone abusing it?”
The traditional architecture: your cards’ journey
On a typical online poker site, a hand works like this:
- The server generates a random deck order (at this moment, the full order sits in server memory)
- The server “deals” you two hole cards — in essence, sending plaintext data from its database to your client
- At showdown, the server has known the outcome all along; it merely reveals the script
Throughout this process your hole cards exist in: server memory, possibly logs, database snapshots, and anywhere a person with operations access can reach. Good platforms wrap those access points in permission controls and audit logs — but “controlled” and “nonexistent” are two different security classes. The historical superuser scandals were precisely internal access being abused.
The other architecture: the platform never sees your cards at all
Cryptographic dealing (mental poker) inverts the flow:
- The whole deck is encrypted in turn by every player’s browser — each adds a lock, so every card ends up with N locks on it
- Shuffling is likewise composed across everyone’s browsers, so no party knows the final order
- “Dealing” delivers ciphertext; recovering your two cards requires every other participant to hand over their key for exactly those cards, and those keys are sent only to you
- The relay server moves only ciphertext and signed messages the whole time — if it tried to peek, it would be looking at locked boxes
An analogy: a traditional site is a dealer who hands you cards face-down, but looked through the deck before dealing. Encrypted dealing is every card sealed in a box locked by all players together, with the key to your box mailed only to your home.
For the technical details, read the cryptography of mental poker. Fair Poker’s implementation adds two hardenings: hole-card decryption material lives on your device only for the duration of the current hand and is wiped when it ends, and all private messages are end-to-end encrypted so the relay cannot even see which keys went where.
How to tell which kind you’re playing on
Ask three questions:
- Does the platform’s documentation state clearly where the deck order is generated? (No answer = the server)
- Between generation and display, does any single party ever hold *all* the plaintext at once?
- Is there a public, independently runnable verifier that lets you re-check a hand?
If the answer to all three is no, the safety of your hole cards depends entirely on the operator’s internal governance — which you usually cannot evaluate. If you want to experience play where the platform is mathematically unable to see your cards, every Fair Poker hand can be verified by hand with the public verifier.