This Privacy Policy explains what personal information phphone collects, why we collect it, how we use and protect it, and what rights you have as a phphone player in the Philippines. We take your privacy seriously — here's exactly what that means in practice.
phphone ("phphone," "we," "us," "our") is committed to protecting the privacy and personal data of all persons who interact with the phphone platform, including visitors to phphone.vip, registered account holders, and former players whose data we retain pursuant to regulatory obligations.
This Privacy Policy applies to all personal data processed by phphone in connection with the operation of phphone.vip, including the casino games lobby, sports betting platform, bingo section, payment processing systems, customer support communications, and any other features or services offered through the phphone platform.
This Policy is issued in compliance with Republic Act No. 10173, otherwise known as the Data Privacy Act of 2012 of the Philippines (the "DPA"), its Implementing Rules and Regulations, and the issuances of the National Privacy Commission (NPC). Where phphone processes personal data of individuals in other jurisdictions, applicable data protection laws of those jurisdictions may also apply.
This Privacy Policy should be read in conjunction with phphone's Terms & Conditions, which govern the overall relationship between phphone and its registered players. In the event of any conflict between this Privacy Policy and the Terms & Conditions on matters relating to personal data, this Privacy Policy prevails.
For the purposes of the Data Privacy Act of 2012 and this Privacy Policy, phphone acts as the Personal Information Controller (PIC) in respect of all personal data collected and processed through the phphone platform. As PIC, phphone is responsible for determining the purposes and means of processing your personal information.
phphone has appointed a Data Protection Officer (DPO) who is responsible for overseeing compliance with this Policy and with the Data Privacy Act. The DPO can be contacted through the details provided in Section 15 of this Policy.
phphone collects personal information in the following categories, depending on the nature of your interaction with the platform:
| Category | Specific Data Points | When Collected |
|---|---|---|
| Registration Data | Mobile number or email address, chosen username, password (stored in hashed form only), date of birth, preferred currency (PHP) | Account creation |
| Identity Verification (KYC) | Full legal name, date of birth, nationality, government-issued ID type and number, ID expiry date, ID document images, selfie photograph | Before first withdrawal; upon regulatory request |
| Financial Data | GCash-registered mobile number, Maya account details, bank account number and bank name (BPI/BDO/Metrobank), transaction reference numbers, USDT wallet address | Deposit and withdrawal processing |
| Support Communications | Messages, chat transcripts, email correspondence, screenshots or attachments you provide, support ticket records | When you contact phphone support |
| Responsible Gaming Data | Deposit limits set, session time preferences, self-exclusion requests and durations | When you configure responsible gaming settings |
| Category | Specific Data Points | Purpose |
|---|---|---|
| Device & Technical Data | IP address, device type and model, operating system and version, browser type and version, mobile network operator (Smart, Globe, DITO) | Security, fraud detection, platform optimisation |
| Usage Data | Pages visited on phphone.vip, games played and game session durations, bet amounts and outcomes, login timestamps, session lengths, navigation paths | Platform improvement, responsible gaming monitoring, fraud detection |
| Transaction Logs | Full transaction history including all deposits, withdrawals, bets placed, wins, and bonus activity with timestamps | Account management, regulatory compliance, dispute resolution |
| Cookie & Tracking Data | Session cookies, preference cookies, analytics identifiers (see Section 7) | Platform functionality, security, analytics |
phphone uses your personal data for the following purposes. Each purpose is linked to a lawful processing basis described in Section 5:
Under the Data Privacy Act of 2012, phphone processes your personal data on the following legal bases:
| Processing Purpose | Legal Basis |
|---|---|
| Account registration and management | Contract performance — necessary to provide the phphone service |
| Payment processing (deposits & withdrawals) | Contract performance — necessary to fulfil your transaction requests |
| KYC identity verification | Legal obligation — PAGCOR regulations and AML Act requirements |
| AML monitoring and reporting | Legal obligation — Anti-Money Laundering Act (RA 9160 as amended) |
| Responsible gaming administration | Contract performance + legitimate interest in player welfare |
| Fraud detection and platform security | Legitimate interest — protecting players, phphone, and the platform |
| Customer support | Contract performance — resolving issues relating to your account |
| Regulatory compliance and legal proceedings | Legal obligation — compliance with applicable Philippine law |
| Promotional communications | Consent — you may withdraw at any time via account settings |
| Platform analytics and improvement | Legitimate interest — improving platform quality using anonymised data |
phphone does not share your personal data with third parties except in the following circumstances, each of which is governed by appropriate data processing agreements or legal obligations:
To process your GCash, Maya, BPI, BDO, and other payment method transactions, phphone shares the minimum necessary financial data with the relevant payment processors. These processors act as subcontractors to phphone and are contractually bound to handle your data only for transaction processing purposes and in compliance with applicable data protection laws.
phphone's platform integrates games from third-party providers including Pragmatic Play, JILI, PG Soft, and others. Game providers receive technical session data necessary to deliver the game experience (such as session tokens and bet data) but do not receive your personal identity information, GCash details, or KYC documents.
phphone is required by law to disclose player data to the following Philippine regulatory authorities where legally compelled to do so:
phphone may share limited personal data with lawyers, auditors, accountants, and other professional advisers engaged by phphone where necessary for the purpose of obtaining professional advice and services, subject to obligations of professional confidentiality.
In the event of a merger, acquisition, restructuring, or sale of all or substantially all of phphone's assets, your personal data may be transferred to the acquiring or successor entity. phphone will notify affected Players of any such transfer and will ensure that the successor entity is bound by privacy obligations at least equivalent to those set out in this Policy.
phphone uses cookies and similar tracking technologies on phphone.vip for the following purposes:
You can manage cookie preferences through your browser settings. Disabling strictly necessary or security cookies will impair platform functionality. Please note that phphone.vip does not use third-party advertising cookies or allow ad networks to set cookies on phphone.vip.
phphone retains personal data for as long as is necessary to fulfil the purposes described in this Policy, subject to the following minimum retention periods driven by legal and regulatory obligations:
| Data Category | Retention Period | Basis |
|---|---|---|
| Account registration data | Duration of account + 5 years post-closure | PAGCOR regulations; AML Act |
| KYC documents and identity verification records | 5 years from account closure or last transaction | AML Act (RA 9160 as amended); PAGCOR |
| Transaction records (deposits, withdrawals, bets) | 5 years from date of transaction | AML Act; PAGCOR audit requirements |
| Customer support records | 3 years from date of last interaction | Legitimate interest; dispute resolution |
| Security and fraud investigation logs | 3 years from date of incident | Legitimate interest; legal claims |
| Marketing consent records | Duration of consent + 2 years post-withdrawal | NPC guidance on consent records |
Upon expiry of the applicable retention period, phphone securely destroys or anonymises personal data in accordance with the NPC's guidelines on data disposal. Where data has been anonymised beyond re-identification, it may be retained indefinitely for statistical and analytics purposes.
phphone implements technical and organisational security measures designed to protect your personal data against unauthorised access, disclosure, alteration, loss, or destruction. These measures include, but are not limited to:
While phphone takes all reasonable steps to protect your personal data, no online platform can guarantee absolute security. You also have a role to play — maintaining the security of your phphone login credentials, enabling 2FA, and using secure networks (rather than public Wi-Fi) when accessing your phphone account significantly reduces your exposure to account-level security risks.
Under the Data Privacy Act of 2012, you have the following rights with respect to your personal data held by phphone. You can exercise any of these rights by contacting phphone's DPO using the details in Section 15:
You have the right to be informed about what personal data phphone collects, why we collect it, how we use it, and with whom we share it. This Privacy Policy is the primary means by which phphone fulfils this obligation.
You have the right to request a copy of the personal data phphone holds about you, together with information about how it is being processed. phphone will respond to access requests within thirty (30) days.
If any of the personal data phphone holds about you is inaccurate or incomplete, you have the right to request its correction. Account contact details can be updated directly through your phphone account settings.
In certain circumstances, you have the right to request deletion of your personal data. This right is subject to our legal obligations to retain data under Philippine AML and PAGCOR regulations, which take precedence during the mandatory retention periods in Section 8.
You have the right to object to processing of your personal data where that processing is based on phphone's legitimate interest. You also have the right to withdraw consent to marketing communications at any time via your phphone account settings.
If you believe phphone has processed your personal data in violation of the Data Privacy Act, you have the right to lodge a complaint with the National Privacy Commission (NPC) of the Philippines at privacy.gov.ph.
To exercise any of the above rights, please contact phphone's Data Protection Officer at [email protected] with the subject line "Data Privacy Request — [Your Registered Email or Mobile Number]." phphone will verify your identity before processing any data rights request to ensure requests are fulfilled only on behalf of the legitimate account holder.
phphone verifies player age during the mandatory KYC process. Any account discovered to belong to a person under 21 years of age will be immediately and permanently closed. All KYC documents submitted by or on behalf of persons under 21 will be securely deleted after confirmation of the account closure.
If phphone becomes aware that it has inadvertently collected personal data from a person under 21 years of age prior to KYC verification, that data will be securely deleted as soon as the underage status is confirmed, and the matter will be reviewed in accordance with phphone's internal child protection procedures.
If you are a parent or guardian and believe that a person under your care has registered a phphone account, please contact phphone support immediately at [email protected] or via 24/7 live chat. phphone will prioritise such reports and will act on confirmed underage accounts within 24 hours of a verified report.
phphone's primary operations serve Filipino players. Some of phphone's technology infrastructure, game providers, and payment processors may process data in jurisdictions outside the Philippines, including in other parts of Asia and in cloud computing regions operated by major providers.
Where phphone transfers personal data outside the Philippines, such transfers are carried out in compliance with the Data Privacy Act of 2012 and the NPC's rules on cross-border data transfers. Specifically, phphone ensures that:
The phphone platform integrates third-party services including game software providers, payment processors, and customer communications tools. While phphone selects third-party service providers carefully and binds them to appropriate data protection obligations, phphone is not responsible for the independent privacy practices of third-party platforms.
In particular, please note the following:
phphone may update this Privacy Policy from time to time to reflect changes in our data processing practices, changes in applicable law (including NPC issuances), or changes in the phphone platform's features and services. Where changes to this Policy are material — meaning they could reasonably be expected to affect your rights or the manner in which your data is processed — phphone will provide advance notice of at least fourteen (14) days via a prominent notice on phphone.vip prior to the amended Policy taking effect.
For non-material amendments, such as corrections to typographical errors, clarifications that do not change the substance of existing provisions, or updates necessitated by minor regulatory changes, the revised Policy will take effect on the date it is published without prior notice.
The version number and effective date at the top of this Policy will always reflect the current version. Previous versions of the phphone Privacy Policy are archived and available on request by contacting phphone's DPO. Your continued use of phphone following the effective date of any updated Policy constitutes your acknowledgement of the updated terms.
For any questions about this Privacy Policy, to exercise your data rights under Section 10, to report a suspected privacy incident, or to submit a formal privacy complaint, please contact phphone's Data Protection Officer through the following channels:
phphone commits to acknowledging all formal privacy requests within seventy-two (72) hours and providing a substantive response within thirty (30) calendar days. Where a request requires additional time to process — for example, due to the volume or complexity of data involved — phphone will notify you of the extended timeline within the initial 30-day response window.
If you are not satisfied with phphone's response to your privacy request or complaint, you have the right to lodge a complaint directly with the National Privacy Commission of the Philippines (NPC) at privacy.gov.ph. The NPC is the independent regulatory authority responsible for enforcing the Data Privacy Act of 2012.
phphone does not sell, rent, or share your personal information with advertisers, data brokers, or any third party for commercial marketing purposes. Your GCash number, ID documents, and transaction history stay within phphone and its regulated service partners only.
phphone complies with Republic Act No. 10173, the Data Privacy Act of 2012. A dedicated Data Protection Officer oversees compliance. You can exercise your data rights — access, correction, erasure, objection — by contacting the DPO at any time.
KYC documents and payment information are encrypted at rest. All traffic between your device and phphone.vip is secured with TLS encryption. Passwords are hashed, never stored in readable form. Your data is protected at every layer of the platform stack.
When you deposit or withdraw via GCash, Maya, BPI, or BDO, phphone receives only the transaction confirmation data needed to credit or debit your account — not your banking login credentials, full card numbers, or banking passwords. Payment data minimisation is a core phphone principle.
phphone only sends promotional communications — bonus offers, new game alerts, event announcements — to players who have explicitly opted in. You can withdraw marketing consent at any time through your account settings or by contacting support, with no effect on your account status or payment services.
If a security incident occurs that affects your personal data and poses a real risk to your rights, phphone is committed to notifying the National Privacy Commission and affected players within 72 hours — not weeks. Transparency in security incidents is non-negotiable at phphone.
Your privacy matters. phphone handles your personal data lawfully, transparently, and with your rights under Philippine law front and centre. Ready to experience the Philippines' most complete online casino? Register in under 2 minutes, deposit from ₱100 via GCash or Maya, and explore 500+ games, live casino tables, and PBA sports betting.
21+ only. Gambling involves financial risk. Play responsibly. By registering you confirm acceptance of phphone's Privacy Policy and Terms & Conditions.