phaaa Casino Privacy Policy

phaaa ("we," "us," or "our") is committed to protecting the privacy and personal data of every player who uses the phaaa online gaming platform (the "Platform"). This Privacy Policy describes how phaaa collects, uses, stores, shares, and protects your personal information when you access or use our services.

This policy is issued in compliance with Republic Act No. 10173, also known as the Data Privacy Act of 2012, and its Implementing Rules and Regulations, as enforced by the National Privacy Commission (NPC) of the Philippines. It applies to all personal data processed by phaaa in connection with the Platform, regardless of whether you are accessing phaaa from Manila, Cebu, Davao, Quezon City, or anywhere else in the Philippines.

By registering an account or using the phaaa Platform, you acknowledge that you have read and understood this Privacy Policy and consent to the collection and processing of your personal data as described herein.

For the purposes of the Data Privacy Act of 2012 and this Privacy Policy, phaaa acts as the Personal Information Controller in respect of the personal data you provide when using the Platform. Our designated Data Protection Officer (DPO) can be contacted at [email protected] for any privacy-related enquiries, requests, or complaints.

phaaa collects the following categories of personal data:

• Identity Data: Full legal name, date of birth, gender, nationality, and government-issued ID details (e.g., Philippine passport, SSS ID, UMID, driver's license).
• Contact Data: Email address, mobile number, and residential address (including city, province, and postal code).
• Financial Data: Payment method details (e.g., GCash account number, BDO or BPI account details, PayMaya credentials), transaction history, deposit and withdrawal records.
• Account Data: Username, encrypted password, account preferences, bonus history, and gaming activity records.
• Technical Data: IP address, device type, browser type and version, operating system, time zone, and session logs.
• Usage Data: Pages visited, games played, session duration, click-through patterns, and feature interactions on the Platform.
• Communications Data: Records of your correspondence with phaaa support, including live chat transcripts, emails, and feedback submissions.
• Responsible Gaming Data: Self-exclusion requests, deposit limit settings, cooling-off period activations, and any problem gambling disclosures you make to us.

phaaa collects your personal data through the following means:

• Direct Interactions: When you register an account, complete KYC verification, make a deposit or withdrawal, contact our support team, or respond to a survey or promotion.
• Automated Technologies: When you use the Platform, we automatically collect Technical Data and Usage Data through cookies, web beacons, server logs, and similar tracking technologies.
• Third-Party Sources: We may receive data about you from identity verification providers, payment processors (e.g., GCash, PayMaya, BDO, BPI), fraud prevention services, and analytics partners, where permitted by law.

phaaa uses your personal data for the following purposes:

• To create, verify, and manage your phaaa account.
• To process deposits, withdrawals, and other financial transactions.
• To conduct KYC and anti-money laundering (AML) checks as required by applicable regulations.
• To provide customer support and respond to your enquiries.
• To personalize your gaming experience and deliver relevant promotions (where you have consented to marketing communications).
• To detect, investigate, and prevent fraud, cheating, and other prohibited conduct.
• To comply with our legal and regulatory obligations, including reporting to PAGCOR and other competent authorities.
• To operate and improve the Platform, including through analytics and performance monitoring.
• To administer responsible gaming tools and respond to self-exclusion or limit requests.

phaaa processes your personal data on the following legal bases under the Data Privacy Act of 2012:

• Contractual Necessity: Processing is necessary to perform our contract with you (i.e., to provide the phaaa gaming services you have registered for).
• Legal Obligation: Processing is required to comply with applicable laws and regulations, including KYC, AML, and PAGCOR reporting obligations.
• Legitimate Interests: Processing is necessary for phaaa's legitimate interests, such as fraud prevention, platform security, and service improvement, provided these interests are not overridden by your rights.
• Consent: Where we rely on your consent (e.g., for marketing communications or the processing of sensitive personal information), you may withdraw that consent at any time by contacting us or updating your account preferences.

phaaa does not sell, rent, or trade your personal data. We may share your data with the following categories of recipients, strictly on a need-to-know basis:

• Payment Processors: GCash, PayMaya, BDO, BPI, Metrobank, and other payment service providers, to process your financial transactions.
• Identity Verification Providers: Third-party KYC and AML service providers who assist us in verifying your identity and complying with regulatory requirements.
• Technology Partners: Cloud hosting providers, game software suppliers, and IT service providers who support the operation of the Platform, all of whom are bound by confidentiality obligations.
• Regulatory Authorities: PAGCOR, the National Privacy Commission, the Anti-Money Laundering Council (AMLC), and other competent Philippine authorities, where disclosure is required by law.
• Professional Advisers: Lawyers, auditors, and accountants, where necessary for legal or compliance purposes.

phaaa uses cookies and similar tracking technologies to enhance your experience on the Platform. The types of cookies we use include:

• Strictly Necessary Cookies: Essential for the Platform to function correctly, including session management and security features. These cannot be disabled.
• Performance Cookies: Collect anonymized data about how players use the Platform, helping us identify and fix issues and improve performance.
• Functional Cookies: Remember your preferences (e.g., language, game settings) to provide a more personalized experience.
• Analytics Cookies: Used to understand aggregate usage patterns and improve the Platform's content and features.

You can manage your cookie preferences through your browser settings. Please note that disabling certain cookies may affect the functionality of the Platform.

phaaa retains your personal data for as long as your account is active and for a period thereafter as required by applicable law and regulatory obligations. Specifically:

• Account and Transaction Data: Retained for a minimum of 5 years following account closure, as required by AML regulations and PAGCOR licensing conditions.
• KYC Documents: Retained for the duration of your account and for 5 years after closure.
• Communications Data: Support correspondence is retained for up to 3 years.
• Technical and Usage Data: Retained for up to 2 years for security and analytics purposes.

When personal data is no longer required, phaaa will securely delete or anonymize it in accordance with our data retention schedule.

phaaa implements appropriate technical and organizational measures to protect your personal data against unauthorized access, disclosure, alteration, or destruction. Our security measures include:

• 256-bit SSL/TLS encryption for all data in transit.
• Encryption of sensitive data at rest, including financial information and identity documents.
• Role-based access controls limiting staff access to personal data on a strict need-to-know basis.
• Regular security audits, vulnerability assessments, and penetration testing.
• Multi-factor authentication for internal systems handling personal data.
• Staff training on data privacy and security obligations.

While phaaa takes all reasonable steps to protect your data, no online platform can guarantee absolute security. You are responsible for maintaining the confidentiality of your phaaa account credentials.

Under the Data Privacy Act of 2012, you have the following rights in relation to your personal data held by phaaa:

• Right to be Informed: The right to know how your personal data is being collected and processed.
• Right of Access: The right to request a copy of the personal data phaaa holds about you.
• Right to Rectification: The right to have inaccurate or incomplete personal data corrected.
• Right to Erasure: The right to request deletion of your personal data, subject to our legal retention obligations.
• Right to Object: The right to object to the processing of your personal data for direct marketing or where processing is based on legitimate interests.
• Right to Data Portability: The right to receive your personal data in a structured, commonly used format.
• Right to Lodge a Complaint: The right to file a complaint with the National Privacy Commission (NPC) if you believe your data privacy rights have been violated.

To exercise any of these rights, please contact our Data Protection Officer at [email protected]. We will respond to all verified requests within 15 business days.

The phaaa Platform is strictly intended for individuals who are 21 years of age or older, in accordance with Philippine gaming regulations. phaaa does not knowingly collect personal data from individuals under the age of 21. If we become aware that personal data has been collected from a person under 21, we will take immediate steps to delete that data and close the associated account.

If you believe a minor has registered on phaaa, please contact us immediately at [email protected].

phaaa primarily processes your personal data within the Philippines. Where it is necessary to transfer personal data to service providers or partners located outside the Philippines (for example, cloud infrastructure providers or game software suppliers), phaaa ensures that such transfers are conducted in compliance with the Data Privacy Act of 2012 and that appropriate safeguards are in place, including contractual data processing agreements that require the recipient to maintain standards of data protection equivalent to those required under Philippine law.

phaaa reserves the right to update or amend this Privacy Policy at any time. When material changes are made, we will notify registered players via email or a prominent notice on the Platform at least 7 days before the changes take effect. The "Effective Date" at the top of this page indicates when the current version came into force.

Your continued use of the phaaa Platform after the effective date of any amendment constitutes your acceptance of the revised Privacy Policy. We encourage you to review this page periodically to stay informed about how phaaa protects your data.

If you have any questions, concerns, or requests regarding this Privacy Policy or the way phaaa handles your personal data, please contact our Data Protection Officer:

• Email: [email protected]
• General Support: [email protected]
• Live Chat: Available 24/7 via the chat widget on the Platform.

If you are not satisfied with our response, you have the right to lodge a complaint with the National Privacy Commission (NPC) of the Philippines. For more information about your rights and how to file a complaint, visit the NPC's official channels.

For information about our gaming rules and player obligations, please review our Terms & Conditions. For responsible gaming support, visit our Responsible Gaming page.