Summary: phpclub collects personal data to operate your account, verify your identity, process transactions, and comply with Philippine gaming and anti-money laundering regulations. We do not sell your data. You have the right to access, correct, and request deletion of your data at any time by contacting our support team.
01 Introduction
phpclub ("we," "us," "our," or "the Platform") is committed to protecting the privacy and personal data of all individuals who use our online gaming platform at phpclub.app. This Privacy Policy describes how phpclub collects, uses, stores, shares, and protects your personal information in connection with your use of our website, mobile application, and related services.
This Privacy Policy is issued in compliance with the Philippine Data Privacy Act of 2012 (Republic Act No. 10173), its Implementing Rules and Regulations, and the issuances of the National Privacy Commission (NPC). It applies to all personal data processed by phpclub in connection with the provision of our gaming services to players based in the Philippines and elsewhere.
By registering for a phpclub account or continuing to use the Platform, you acknowledge that you have read and understood this Privacy Policy and consent to the collection and processing of your personal data as described herein. If you do not agree with any part of this Privacy Policy, you should discontinue use of the Platform and may request account closure in accordance with our Terms & Conditions.
02 Data Controller
For the purposes of the Philippine Data Privacy Act of 2012, phpclub is the Personal Information Controller in respect of the personal data collected through the Platform. This means phpclub determines the purposes and means by which your personal data is processed.
phpclub has designated a Data Protection Officer (DPO) responsible for overseeing compliance with applicable data privacy laws and this Privacy Policy. If you have any questions or concerns about how phpclub processes your personal data, you may contact our DPO using the details provided in Section 14 of this Policy.
Data Protection Officer: phpclub Data Privacy Office
Email: [email protected]
Platform: phpclub.app
03 Personal Data We Collect
phpclub collects the following categories of personal data in connection with the operation of the Platform and the provision of gaming services:
| Category | Examples | Purpose |
|---|---|---|
| Identity Data | Full legal name, date of birth, government-issued ID number, nationality | Account registration, KYC verification, age verification (21+) |
| Contact Data | Email address, mobile number, residential address (city, province) | Account communications, support, transaction notifications |
| Financial Data | GCash number, PayMaya account, BPI/BDO/Metrobank account details, transaction history | Processing deposits and withdrawals, fraud prevention, AMLA compliance |
| Gaming Data | Bet history, game activity, session duration, wagering patterns | Game operation, responsible gaming monitoring, regulatory reporting |
| Technical Data | IP address, device type, browser type, operating system, login timestamps | Platform security, fraud detection, service improvement |
| Communications Data | Support chat logs, email correspondence, feedback submissions | Customer support, dispute resolution, service quality improvement |
phpclub does not intentionally collect sensitive personal information (as defined under RA 10173) unless strictly required for regulatory compliance purposes, such as government-issued identification for KYC verification. Where sensitive personal information is collected, it is handled with the highest level of care and security.
04 How We Collect Your Data
phpclub collects personal data through the following means:
- Direct Collection: Information you provide when registering for a phpclub account, completing KYC verification, making deposits or withdrawals, contacting customer support, or participating in promotions;
- Automated Collection: Technical data collected automatically when you access the Platform, including through cookies, web beacons, log files, and similar tracking technologies (see Section 10);
- Third-Party Sources: Identity and fraud-screening data from KYC verification service providers; payment data from GCash, PayMaya, BPI, BDO, Metrobank, and other payment processors; and publicly available information used for fraud prevention purposes;
- Regulatory Sources: Information received from PAGCOR or other regulatory authorities in connection with licensing, compliance, or investigation requirements.
05 How We Use Your Personal Data
phpclub uses your personal data for the following purposes:
- Account Management: To create, maintain, and manage your phpclub account, including processing your registration, verifying your identity and age (21+ requirement), and managing your account settings;
- Service Delivery: To provide access to phpclub games, process bets and wagers, calculate and pay out winnings, and deliver the full range of phpclub gaming services;
- Financial Transactions: To process deposits and withdrawals through your chosen payment method (GCash, PayMaya, BPI, BDO, Metrobank, etc.) and to maintain accurate financial records;
- Regulatory Compliance: To comply with PAGCOR licensing requirements, the Anti-Money Laundering Act (AMLA), the Philippine Data Privacy Act, and other applicable laws and regulations, including mandatory reporting obligations;
- Fraud Prevention and Security: To detect, investigate, and prevent fraudulent activity, money laundering, unauthorized account access, and other prohibited conduct on the Platform;
- Responsible Gaming: To monitor gaming activity for signs of problem gambling, enforce self-exclusion requests, and administer responsible gaming tools available on phpclub;
- Customer Support: To respond to your inquiries, resolve disputes, and provide technical assistance;
- Marketing Communications: To send you promotional offers, bonus notifications, and platform updates where you have consented to receive such communications. You may opt out at any time;
- Platform Improvement: To analyze usage patterns, conduct research, and improve the functionality, security, and user experience of the phpclub platform.
06 Legal Basis for Processing
phpclub processes your personal data on the following legal bases under the Philippine Data Privacy Act of 2012:
- Consent: Where you have given your explicit consent to the processing of your personal data for a specific purpose, such as receiving marketing communications or the processing of sensitive personal information for KYC purposes;
- Contractual Necessity: Where processing is necessary for the performance of the contract between you and phpclub — specifically, the Terms & Conditions governing your use of the Platform — including account management, game operation, and payment processing;
- Legal Obligation: Where processing is required to comply with a legal obligation applicable to phpclub, including PAGCOR regulatory requirements, AMLA reporting obligations, and NPC data privacy compliance;
- Legitimate Interests: Where processing is necessary for phpclub's legitimate interests, including fraud prevention, platform security, and service improvement, provided that such interests are not overridden by your rights and interests as a data subject.
07 Data Sharing & Disclosure
phpclub does not sell, rent, or trade your personal data to third parties for commercial purposes. phpclub may share your personal data with the following categories of recipients only to the extent necessary for the purposes described in this Privacy Policy:
- Regulatory Authorities: PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission (NPC), and other Philippine government agencies where disclosure is required by law or regulatory obligation;
- Payment Processors: GCash, PayMaya, BPI, BDO, Metrobank, and other payment service providers engaged to process your deposits and withdrawals. These providers process your data under their own privacy policies and applicable financial regulations;
- KYC and Identity Verification Providers: Third-party service providers engaged by phpclub to perform identity verification, age verification, and fraud screening in connection with your account registration and ongoing compliance obligations;
- Technology and Infrastructure Providers: Cloud hosting, data storage, cybersecurity, and platform technology providers who process data on phpclub's behalf under strict data processing agreements and confidentiality obligations;
- Law Enforcement: Philippine law enforcement agencies where phpclub is legally required or permitted to disclose personal data in connection with the investigation or prosecution of criminal activity;
- Professional Advisers: Legal counsel, auditors, and compliance consultants engaged by phpclub, subject to professional confidentiality obligations.
Important: All third parties with whom phpclub shares personal data are required to handle that data in accordance with applicable Philippine data privacy laws and phpclub's data protection standards. phpclub does not authorize any third party to use your personal data for their own independent marketing or commercial purposes.
08 Data Retention
phpclub retains your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable Philippine law and regulatory obligations. The following general retention periods apply:
- Account Data: Retained for the duration of your phpclub account and for a minimum of five (5) years following account closure, in accordance with PAGCOR licensing requirements and AMLA record-keeping obligations;
- Financial Transaction Records: Retained for a minimum of five (5) years from the date of the transaction, as required under the Anti-Money Laundering Act;
- KYC and Identity Verification Documents: Retained for the duration of your account and for a minimum of five (5) years following account closure;
- Gaming Activity Records: Retained for a minimum of three (3) years from the date of the relevant gaming session;
- Customer Support Communications: Retained for a minimum of two (2) years from the date of the communication;
- Technical and Log Data: Retained for up to twelve (12) months from the date of collection, unless a longer retention period is required for security or fraud investigation purposes.
Upon expiry of the applicable retention period, phpclub will securely delete or anonymize your personal data in accordance with its data disposal procedures, unless retention is required by a specific legal obligation or ongoing regulatory investigation.
09 Data Security
phpclub implements appropriate technical and organizational security measures to protect your personal data against unauthorized access, accidental loss, destruction, alteration, or disclosure. These measures include:
- Encryption: All data transmitted between your device and phpclub's servers is encrypted using industry-standard Transport Layer Security (TLS) protocols. Sensitive data at rest is encrypted using AES-256 encryption;
- Access Controls: Access to personal data is restricted to phpclub personnel and authorized third parties who have a legitimate need to access it for the purposes described in this Privacy Policy. All access is logged and monitored;
- Secure Infrastructure: phpclub's platform is hosted on secure, certified cloud infrastructure with regular security audits, vulnerability assessments, and penetration testing;
- Two-Factor Authentication: phpclub offers two-factor authentication (2FA) for player accounts to provide an additional layer of security against unauthorized access;
- Staff Training: All phpclub personnel with access to personal data receive regular data privacy and security training;
- Incident Response: phpclub maintains a data breach response plan. In the event of a personal data breach that poses a risk to your rights and freedoms, phpclub will notify the NPC and affected data subjects in accordance with the requirements of the Data Privacy Act.
While phpclub takes all reasonable steps to protect your personal data, no online platform can guarantee absolute security. You are responsible for maintaining the confidentiality of your phpclub account credentials and for notifying phpclub immediately if you suspect unauthorized access to your account.
10 Cookies & Tracking Technologies
phpclub uses cookies and similar tracking technologies to operate and improve the Platform. A cookie is a small text file placed on your device when you visit phpclub. The following types of cookies are used:
- Strictly Necessary Cookies: Essential for the operation of the phpclub platform, including maintaining your login session, remembering your account preferences, and enabling secure transactions. These cookies cannot be disabled without affecting Platform functionality;
- Performance and Analytics Cookies: Used to collect anonymized information about how players use phpclub, including pages visited, time spent on the Platform, and error messages. This data helps phpclub improve the user experience;
- Functionality Cookies: Used to remember your preferences and settings, such as your preferred language and display options, to provide a more personalized experience on phpclub;
- Security Cookies: Used to detect and prevent fraudulent activity, unauthorized account access, and other security threats on the Platform.
You can manage your cookie preferences through your browser settings. Please note that disabling certain cookies may affect the functionality of the phpclub platform. phpclub does not use third-party advertising cookies or share cookie data with external advertising networks.
11 Your Rights as a Data Subject
Under the Philippine Data Privacy Act of 2012, you have the following rights in relation to your personal data held by phpclub:
Right to Access
Request a copy of the personal data phpclub holds about you, including information on how it is being processed.
Right to Rectification
Request correction of any inaccurate or incomplete personal data phpclub holds about you.
Right to Erasure
Request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, subject to legal retention obligations.
Right to Object
Object to the processing of your personal data for direct marketing purposes or where processing is based on phpclub's legitimate interests.
Right to Data Portability
Request a copy of your personal data in a structured, commonly used, machine-readable format for transfer to another service provider.
Right to Restriction
Request that phpclub restrict the processing of your personal data in certain circumstances, such as while a rectification request is being assessed.
To exercise any of these rights, please contact phpclub's Data Protection Officer using the contact details in Section 14. phpclub will respond to all verified data subject requests within fifteen (15) business days of receipt, in accordance with NPC guidelines. phpclub may request proof of identity before processing any data subject request.
If you are not satisfied with phpclub's response to your data subject request, you have the right to lodge a complaint with the National Privacy Commission (NPC) of the Philippines.
12 Children's Privacy & Age Restriction
21+ Only: phpclub is strictly for individuals aged 21 years and above. phpclub does not knowingly collect personal data from individuals under the age of 21. This requirement is mandated by Philippine law and PAGCOR regulations governing online gaming.
phpclub employs mandatory age verification procedures during the registration process to prevent underage individuals from accessing the Platform. If phpclub becomes aware that personal data has been collected from an individual under the age of 21, it will take immediate steps to delete that data and close the associated account.
If you are a parent or guardian and believe that your child under the age of 21 has registered with phpclub or provided personal data to the Platform, please contact our support team immediately using the details in Section 14. phpclub will investigate and take appropriate action promptly.
13 Changes to This Privacy Policy
phpclub reserves the right to update or amend this Privacy Policy at any time to reflect changes in our data processing practices, applicable Philippine law, or NPC guidance. When material changes are made, phpclub will notify registered players via email or a prominent notice on the Platform at least seven (7) days before the changes take effect, where practicable.
The "Last Updated" date at the top of this Privacy Policy indicates when it was most recently revised. Your continued use of phpclub following the effective date of any amendment constitutes your acknowledgment of the revised Privacy Policy. We encourage you to review this page periodically to stay informed about how phpclub protects your personal data.
If you do not agree with any changes to this Privacy Policy, you should discontinue use of the Platform and may request account closure in accordance with the phpclub Terms & Conditions.
14 Contact Us & Complaints
If you have any questions, concerns, or requests regarding this Privacy Policy or the way phpclub processes your personal data, please contact our Data Protection Officer or customer support team. We are committed to addressing all privacy-related inquiries promptly and transparently.
phpclub Data Protection Officer
Email: [email protected]
Response Time: Within 15 business days
General Customer Support
Email: [email protected]
Support Hours: 24 hours a day, 7 days a week
If you are not satisfied with phpclub's response to your privacy concern, you have the right to file a complaint with the National Privacy Commission (NPC) of the Philippines. The NPC is the government body responsible for administering and implementing the Data Privacy Act of 2012 and ensuring compliance by personal information controllers operating in the Philippines.
For more information about your rights and phpclub's responsible gaming commitments, please visit our Responsible Gaming page or our About Us page.