pgphaa Privacy Policy

Privacy at a Glance

The cards below summarize the most important aspects of how pgphaa handles your personal data. These summaries are for convenience only – the full legal text in each numbered section below governs in all cases.

1. Introduction and Scope

pgphaa ("pgphaa," "we," "us," or "our") is committed to protecting the privacy and personal data of all individuals who use the pgphaa online gaming platform ("Platform"). This Privacy Policy ("Policy") describes how pgphaa collects, uses, stores, discloses, and otherwise processes personal data in connection with your use of the Platform and any related services.

This Policy applies to all users of the pgphaa Platform, including registered players, prospective players who browse the Platform without registering, and individuals who contact pgphaa's customer support team. By accessing or using the pgphaa Platform, you acknowledge that you have read and understood this Policy and consent to the processing of your personal data as described herein.

pgphaa operates in compliance with Republic Act No. 10173, also known as the Data Privacy Act of 2012 ("DPA"), and its Implementing Rules and Regulations, as administered by the National Privacy Commission ("NPC") of the Philippines. Where applicable, pgphaa also observes the data protection guidelines issued by PAGCOR in connection with online gaming operations.

2. Personal Data We Collect

pgphaa collects personal data that is necessary to provide the Services, comply with legal and regulatory obligations, and maintain the security and integrity of the Platform. The categories of personal data we collect include:

2.1 Registration and Account Data

When you create a pgphaa account, we collect the information you provide during the registration process, including:

• Full legal name;
• Date of birth (to verify the 21+ age requirement);
• Email address;
• Mobile phone number;
• Residential address (city, province, postal code);
• Username and encrypted password.

2.2 Identity Verification (KYC) Data

To comply with anti-money laundering (AML) regulations and PAGCOR requirements, pgphaa may collect:

• Copies of government-issued identification documents (e.g., SSS ID, UMID, PhilHealth ID, driver's license, passport);
• Proof of address documents (e.g., utility bills, bank statements);
• Selfie photographs for identity verification purposes;
• Source of funds declarations where required by regulation.

2.3 Financial and Transaction Data

• Deposit and withdrawal transaction records;
• Payment method details (e.g., GCash account reference, PayMaya account reference, bank account details – stored in tokenized or masked form);
• Account balance history;
• Bonus and promotion redemption records.

2.4 Gaming Activity Data

• Game session logs, including games played, bets placed, and outcomes;
• Responsible gaming tool settings (deposit limits, session limits, self-exclusion status);
• Bonus wagering progress.

2.5 Technical and Device Data

• IP address and approximate geographic location;
• Device type, operating system, and browser type;
• Session timestamps and duration;
• Cookies and similar tracking technologies (see Section 8).

2.6 Communications Data

• Records of communications between you and pgphaa customer support, including live chat transcripts and email correspondence;
• Feedback and survey responses you voluntarily submit.

3. Legal Basis for Processing

pgphaa processes your personal data on the following legal bases under the Data Privacy Act of 2012:

4. How pgphaa Uses Your Personal Data

pgphaa uses the personal data we collect for the following purposes:

4.1 Account Operations

To create and maintain your pgphaa account, authenticate your identity when you log in, process deposits and withdrawals, apply bonuses and promotions, and provide customer support.

4.2 Regulatory Compliance

To comply with our obligations under Philippine law, including the Data Privacy Act of 2012, the Anti-Money Laundering Act (AMLA), PAGCOR licensing requirements, and any other applicable regulations. This includes verifying your age (21+), verifying your identity, monitoring transactions for suspicious activity, and reporting to regulatory authorities where required.

4.3 Fraud Prevention and Security

To detect, investigate, and prevent fraudulent activity, multi-accounting, bonus abuse, money laundering, and other prohibited conduct. pgphaa uses automated systems and manual review processes for this purpose.

4.4 Responsible Gaming

To monitor gaming activity for signs of problem gambling, enforce responsible gaming limits set by players, process self-exclusion requests, and comply with PAGCOR's responsible gaming requirements.

4.5 Platform Improvement

To analyze how players use the pgphaa Platform, identify technical issues, improve game performance, and develop new features. This analysis is conducted on aggregated or anonymized data where possible.

4.6 Marketing Communications

With your consent, to send you information about pgphaa promotions, new games, and special offers via email or SMS. You may withdraw your consent to marketing communications at any time by contacting pgphaa support or using the unsubscribe option in any marketing email.

5. Disclosure of Personal Data

pgphaa may share your personal data with the following categories of recipients, strictly on a need-to-know basis and subject to appropriate data protection safeguards:

5.1 Payment Service Providers

pgphaa shares transaction data with payment processors (including GCash, PayMaya, and Philippine banking partners) to facilitate deposits and withdrawals. These providers process your data only as necessary to complete the transaction and are bound by their own privacy policies and applicable financial regulations.

5.2 Identity Verification Providers

pgphaa uses third-party KYC and identity verification service providers to assist with the verification of player identities and documents. These providers are contractually bound to process your data only for verification purposes and to maintain appropriate security standards.

5.3 Regulatory and Law Enforcement Authorities

pgphaa may disclose personal data to PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission, or other government authorities where required by law, court order, or regulatory directive. pgphaa will notify affected players of such disclosures where legally permitted to do so.

5.4 Technology and Infrastructure Providers

pgphaa uses third-party cloud hosting, cybersecurity, and analytics service providers to operate the Platform. These providers act as data processors on behalf of pgphaa and are bound by data processing agreements that require them to maintain the confidentiality and security of your data.

5.5 Business Transfers

In the event of a merger, acquisition, or sale of all or substantially all of pgphaa's assets, your personal data may be transferred to the acquiring entity. pgphaa will notify affected players of any such transfer and the privacy practices of the acquiring entity prior to the transfer taking effect.

6. Data Security

pgphaa implements a range of technical and organizational security measures to protect your personal data against unauthorized access, disclosure, alteration, or destruction. These measures include:

• Encryption: All data transmitted between your device and the pgphaa Platform is encrypted using TLS (Transport Layer Security). Sensitive data at rest, including payment method references and identity documents, is encrypted using industry-standard algorithms.
• Access controls: Access to personal data within pgphaa is restricted to authorized personnel on a strict need-to-know basis. All staff with access to personal data are subject to confidentiality obligations.
• Two-factor authentication: pgphaa supports two-factor authentication (2FA) for player accounts and requires it for internal administrative access.
• Regular security assessments: pgphaa conducts regular vulnerability assessments and penetration testing of its Platform and infrastructure.
• Incident response: pgphaa maintains a data breach response plan. In the event of a personal data breach that poses a risk to your rights and freedoms, pgphaa will notify the National Privacy Commission and affected players within the timeframes required by the Data Privacy Act.

While pgphaa takes all reasonable steps to protect your personal data, no security system is completely impenetrable. You are responsible for maintaining the security of your pgphaa account credentials and for notifying pgphaa immediately if you suspect unauthorized access to your account.

7. Data Retention

pgphaa retains your personal data for as long as your account remains active and for a minimum period after account closure as required by applicable law and regulation. The following retention periods apply:

Upon expiry of the applicable retention period, pgphaa will securely delete or anonymize your personal data in accordance with its data disposal procedures.

8. Cookies and Tracking Technologies

pgphaa uses cookies and similar tracking technologies to operate the Platform, remember your preferences, analyze usage patterns, and support security functions. The types of cookies we use include:

• Strictly necessary cookies: Required for the Platform to function. These cannot be disabled without affecting core functionality (e.g., session authentication, security tokens).
• Functional cookies: Remember your preferences such as language settings and responsible gaming limits.
• Analytics cookies: Help pgphaa understand how players navigate the Platform so we can improve the user experience. Data collected is aggregated and does not identify individual players.

You may manage cookie preferences through your browser settings. Disabling strictly necessary cookies may prevent you from accessing certain features of the pgphaa Platform.

9. Your Data Privacy Rights

Under the Data Privacy Act of 2012, you have the following rights with respect to your personal data held by pgphaa:

• Right to be informed: You have the right to know what personal data pgphaa collects about you and how it is used – which is the purpose of this Policy.
• Right of access: You may request a copy of the personal data pgphaa holds about you at any time.
• Right to rectification: You may request correction of any inaccurate or incomplete personal data in your pgphaa account.
• Right to erasure: You may request deletion of your personal data, subject to pgphaa's legal retention obligations. Note that pgphaa cannot delete data it is required to retain under AMLA or PAGCOR regulations.
• Right to object: You may object to the processing of your personal data for direct marketing purposes at any time.
• Right to data portability: You may request a copy of your personal data in a structured, commonly used, machine-readable format.
• Right to lodge a complaint: If you believe pgphaa has violated your data privacy rights, you may lodge a complaint with the National Privacy Commission of the Philippines.

10. Minors and Age Restriction

The pgphaa Platform is strictly intended for individuals who are 21 years of age or older. pgphaa does not knowingly collect personal data from individuals under the age of 21. If pgphaa becomes aware that personal data has been collected from a minor, we will take immediate steps to delete that data and close the associated account.

If you are a parent or guardian and believe that a minor has registered on the pgphaa Platform, please contact pgphaa support immediately so that we can investigate and take appropriate action.

11. Changes to This Privacy Policy

pgphaa reserves the right to update this Privacy Policy at any time to reflect changes in our data processing practices, legal obligations, or Platform features. When we make material changes to this Policy, we will post the updated version on this page with a revised "Last Updated" date and, where appropriate, notify registered players via email or in-platform notification.

Your continued use of the pgphaa Platform following the posting of an updated Privacy Policy constitutes your acceptance of the changes. We encourage you to review this Policy periodically to stay informed about how pgphaa protects your personal data.

12. Contact and Data Protection Officer

If you have any questions, concerns, or requests relating to this Privacy Policy or pgphaa's data processing practices, please contact our Data Protection Officer:

• Email: [email protected]
• General Support: [email protected]
• Live Chat: Available 24/7 via the pgphaa Platform

pgphaa aims to respond to all data privacy inquiries within 15 business days. If you are not satisfied with pgphaa's response, you have the right to escalate your complaint to the National Privacy Commission of the Philippines.