ph53 Casino Privacy Policy

1 Introduction

ph53 ("ph53," "we," "us," or "our") operates the online gaming platform accessible at ph53.one (the "Platform"). We take the privacy of our players seriously and are committed to handling your personal information responsibly, transparently, and in full compliance with the Philippine Data Privacy Act of 2012 (Republic Act No. 10173) and its Implementing Rules and Regulations, as enforced by the National Privacy Commission (NPC).

This Privacy Policy ("Policy") describes how ph53 collects, uses, stores, shares, and protects personal data obtained from players, visitors, and any other individuals who interact with the ph53 Platform. It also explains the rights you have over your personal data and how to exercise them.

By registering on ph53, accessing the Platform, or otherwise providing your personal information to us, you acknowledge that you have read and understood this Policy and consent to the processing of your personal data as described herein. If you do not agree with this Policy, please do not use the ph53 Platform.

This Policy should be read alongside the ph53 Terms & Conditions, which govern your overall use of the Platform and are incorporated herein by reference.

2 Data Controller

For the purposes of the Philippine Data Privacy Act of 2012, ph53 acts as the Personal Information Controller (PIC) in respect of the personal data collected through the Platform. As PIC, ph53 determines the purposes and means of processing your personal data and is responsible for ensuring that such processing complies with applicable data protection law.

Where ph53 engages third-party service providers to process personal data on its behalf — such as payment processors, KYC verification providers, and cloud infrastructure providers — those parties act as Personal Information Processors (PIPs) and are contractually bound to process data only in accordance with ph53's instructions and applicable law.

ph53 has designated a Data Protection Officer (DPO) who is responsible for overseeing compliance with this Policy and applicable data protection legislation. You may contact the ph53 DPO at the contact details provided in Section 14 of this Policy.

3 Personal Data We Collect

ph53 collects the following categories of personal data from players and Platform users:

• Identity Data: Full legal name, date of birth, nationality, and government-issued identification number (e.g., PhilSys ID number, passport number, driver's license number, UMID, SSS ID, or voter's ID number).
• Contact Data: Philippine mobile number, email address, and residential address (including barangay, city/municipality, province, and postal code).
• Account Data: ph53 username, account creation date, account status, login history, and session activity logs.
• Financial Data: GCash mobile number, PayMaya / Maya account details, bank account name and number (for bank transfer withdrawals), transaction history including deposits, withdrawals, and wager records.
• KYC Verification Data: Copies or images of government-issued identification documents and proof of address documents submitted during the identity verification process.
• Technical Data: IP address, device type, operating system, browser type and version, screen resolution, and device identifiers.
• Usage Data: Pages visited on the ph53 Platform, games played, time spent on the Platform, click-through data, and search queries within the Platform.
• Communications Data: Records of your communications with ph53 support, including live chat transcripts and email correspondence.
• Responsible Gaming Data: Deposit limits, session time settings, cooling-off periods, and self-exclusion records where applicable.

ph53 does not intentionally collect sensitive personal information beyond what is strictly necessary for identity verification and regulatory compliance. Where sensitive information is collected (such as a copy of a government ID), it is handled with the highest level of security and access controls.

4 How We Collect Your Data

ph53 collects personal data through the following means:

• Direct Collection: Information you provide when registering for a ph53 account, completing KYC verification, making a deposit or withdrawal, contacting ph53 support, or participating in promotions.
• Automated Collection: Technical and usage data collected automatically when you access the ph53 Platform, through server logs, cookies, and similar tracking technologies (see Section 8).
• Third-Party Sources: Identity verification data from KYC service providers; fraud and risk signals from payment processors; and, where applicable, information from PAGCOR or other regulatory bodies in connection with compliance obligations.

ph53 does not purchase personal data from data brokers or any other commercial data sources. All personal data collected by ph53 is obtained directly from the data subject or from service providers engaged by ph53 for specific operational purposes.

5 How We Use Your Personal Data

ph53 uses the personal data it collects for the following purposes:

• Account Management: To create, maintain, and administer your ph53 player account, including processing login requests and managing account settings.
• Identity Verification (KYC): To verify your identity and age in compliance with PAGCOR regulations and anti-money laundering (AML) obligations under the Philippine Anti-Money Laundering Act (AMLA) and its amendments.
• Payment Processing: To process deposits and withdrawals via GCash, PayMaya, bank transfer, and debit card, and to maintain accurate financial records of all transactions.
• Game Provision: To deliver the games, live dealer tables, and other gaming services available on the ph53 Platform.
• Customer Support: To respond to your enquiries, resolve disputes, and provide assistance through ph53's live chat and email support channels.
• Fraud Prevention and Security: To detect, investigate, and prevent fraudulent activity, money laundering, bonus abuse, and other prohibited conduct on the Platform.
• Regulatory Compliance: To comply with applicable Philippine laws and regulations, including PAGCOR licensing requirements, AMLA reporting obligations, and NPC data protection requirements.
• Responsible Gaming: To administer deposit limits, session time reminders, cooling-off periods, and self-exclusion requests, and to identify players who may be exhibiting signs of problem gambling.
• Marketing Communications: To send you promotional offers, bonus notifications, and platform updates — but only where you have opted in to receive such communications. You may opt out at any time.
• Platform Improvement: To analyse usage patterns, identify technical issues, and improve the ph53 Platform's performance, design, and game offering.

6 Legal Basis for Processing

Under the Philippine Data Privacy Act of 2012, ph53 processes your personal data on the following legal bases:

• Contractual Necessity: Processing required to perform the contract between you and ph53 — i.e., to operate your account, process payments, and deliver gaming services.
• Legal Obligation: Processing required to comply with applicable Philippine law, including PAGCOR regulations, AMLA obligations, and NPC requirements.
• Legitimate Interests: Processing necessary for ph53's legitimate business interests, including fraud prevention, platform security, and responsible gaming monitoring, where those interests are not overridden by your data protection rights.
• Consent: Processing based on your freely given, specific, informed, and unambiguous consent — primarily for marketing communications. You may withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.

7 Data Sharing & Disclosure

ph53 does not sell, rent, or trade your personal data to any third party for commercial purposes. ph53 shares personal data only in the following circumstances:

• Service Providers (PIPs): ph53 engages third-party service providers to perform specific functions on its behalf, including KYC verification providers, payment processors (GCash, PayMaya, Philippine banks), cloud hosting providers, and customer support platform providers. These providers are contractually bound to process your data only as instructed by ph53 and in compliance with applicable data protection law.
• Regulatory Authorities: ph53 may disclose personal data to PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission (NPC), or other Philippine government authorities where required by law, court order, or regulatory directive.
• Game Providers: Certain technical data (such as session tokens and game round identifiers) may be shared with certified game providers to facilitate gameplay. Game providers do not receive your full identity or financial data.
• Business Transfers: In the event of a merger, acquisition, or sale of all or substantially all of ph53's assets, your personal data may be transferred to the acquiring entity, subject to the same data protection obligations set out in this Policy.

All third-party service providers engaged by ph53 are required to implement appropriate technical and organisational security measures to protect your personal data and are prohibited from using it for any purpose other than the specific service they provide to ph53.

8 Cookies & Tracking Technologies

ph53 uses cookies and similar tracking technologies to enhance your experience on the Platform, maintain session security, and gather usage analytics. The following categories of cookies are used:

• Strictly Necessary Cookies: Essential for the Platform to function correctly. These include session authentication cookies that keep you logged in during your visit and security tokens that protect against cross-site request forgery. These cookies cannot be disabled without impairing Platform functionality.
• Functional Cookies: Used to remember your preferences, such as your preferred language, display settings, and responsible gaming configurations. These cookies improve your experience but are not strictly required for the Platform to operate.
• Analytics Cookies: Used to collect aggregated, anonymised data about how players use the ph53 Platform — including which pages are visited most frequently, how long sessions last, and which games are most popular. This data helps ph53 improve the Platform. Analytics data is not linked to your individual identity.
• Security Cookies: Used to detect and prevent fraudulent activity, including identifying unusual login patterns, multiple account creation attempts, and suspicious transaction behaviour.

You may manage cookie preferences through your browser settings. Please note that disabling strictly necessary cookies will prevent you from logging in to your ph53 account. ph53 does not use third-party advertising cookies or behavioural tracking cookies for the purpose of serving targeted advertisements on external websites.

9 Data Retention

ph53 retains personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable Philippine law. The following retention periods apply:

• Active Account Data: Retained for the duration of your ph53 account and for a period of five (5) years following account closure, in compliance with PAGCOR record-keeping requirements and AMLA obligations.
• KYC Verification Documents: Retained for a minimum of five (5) years from the date of submission, or longer if required by applicable AML regulations or ongoing regulatory investigations.
• Financial Transaction Records: Retained for a minimum of five (5) years from the date of each transaction, in compliance with AMLA and PAGCOR requirements.
• Customer Support Communications: Retained for three (3) years from the date of the last communication, to support dispute resolution and quality assurance.
• Technical and Usage Logs: Retained for twelve (12) months from the date of collection, after which they are anonymised or deleted.
• Marketing Consent Records: Retained for the duration of your consent and for three (3) years following withdrawal of consent, to demonstrate compliance with consent requirements.

Upon expiry of the applicable retention period, ph53 will securely delete or anonymise your personal data in accordance with its data disposal procedures. Where data cannot be immediately deleted due to technical constraints, it will be isolated from active processing until deletion is completed.

10 Data Security

ph53 implements a comprehensive set of technical and organisational security measures to protect your personal data against unauthorised access, disclosure, alteration, loss, or destruction. These measures include:

• Encryption in Transit: All data transmitted between your device and the ph53 Platform is encrypted using TLS 1.2 or higher (HTTPS). ph53 does not permit unencrypted HTTP connections to the Platform.
• Encryption at Rest: Sensitive personal data stored in ph53's databases — including KYC documents and financial records — is encrypted at rest using industry-standard AES-256 encryption.
• Access Controls: Access to personal data is restricted on a strict need-to-know basis. ph53 staff are granted access only to the data necessary to perform their specific job functions. All access is logged and subject to regular audit.
• Two-Factor Authentication: ph53 supports and encourages the use of two-factor authentication (2FA) for player accounts to provide an additional layer of protection against unauthorised access.
• Penetration Testing: ph53 conducts regular security assessments and penetration tests to identify and remediate vulnerabilities in the Platform's infrastructure and application code.
• Incident Response: ph53 maintains a documented data breach response procedure. In the event of a personal data breach that poses a risk to your rights and freedoms, ph53 will notify the National Privacy Commission (NPC) within 72 hours of becoming aware of the breach, and will notify affected players without undue delay.

While ph53 takes all reasonable steps to protect your personal data, no online platform can guarantee absolute security. You are responsible for maintaining the confidentiality of your ph53 login credentials and for notifying ph53 support immediately if you suspect unauthorised access to your account.

11 Your Data Protection Rights

Under the Philippine Data Privacy Act of 2012, you have the following rights in respect of your personal data held by ph53:

• Right to Be Informed: The right to be informed of how your personal data is collected, used, stored, and shared — which is the primary purpose of this Privacy Policy.
• Right of Access: The right to request a copy of the personal data ph53 holds about you, along with information about how it is being processed.
• Right to Rectification: The right to request correction of any inaccurate or incomplete personal data ph53 holds about you. You may update certain account details directly from your ph53 account settings.
• Right to Erasure: The right to request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, subject to ph53's legal retention obligations under PAGCOR and AMLA regulations.
• Right to Object: The right to object to the processing of your personal data for direct marketing purposes. You may opt out of marketing communications at any time by contacting ph53 support or using the unsubscribe link in any marketing email.
• Right to Data Portability: The right to receive a copy of your personal data in a structured, commonly used, machine-readable format, where technically feasible.
• Right to Lodge a Complaint: The right to lodge a complaint with the National Privacy Commission (NPC) if you believe ph53 has processed your personal data in violation of the Data Privacy Act of 2012.

To exercise any of the above rights, please contact the ph53 Data Protection Officer using the contact details in Section 14. ph53 will respond to all data subject requests within thirty (30) days of receipt. Where a request is complex or involves a large volume of data, ph53 may extend this period by a further thirty (30) days, with prior notice to you.

ph53 will not charge a fee for processing data subject requests unless the request is manifestly unfounded or excessive, in which case a reasonable administrative fee may apply.

12 Children's Privacy

The ph53 Platform is strictly intended for individuals aged 21 years and above, in compliance with the minimum age requirement for casino-style gambling under Philippine law and PAGCOR regulations. ph53 does not knowingly collect personal data from individuals under the age of 21.

If ph53 becomes aware that personal data has been collected from a person under 21 years of age, it will immediately suspend the associated account, delete the personal data in question, and — where applicable — return any deposited funds to the original payment method after deducting applicable processing fees.

If you are a parent or guardian and believe that your child under the age of 21 has registered on ph53 or provided personal data to ph53, please contact our support team immediately using the contact details in Section 14 so that we can take prompt action.

13 Updates to This Privacy Policy

ph53 reserves the right to update or amend this Privacy Policy at any time to reflect changes in our data processing practices, applicable Philippine law, or PAGCOR regulatory requirements. The "Last Updated" date at the top of this page will be revised whenever a material change is made.

Where changes are material — meaning they significantly affect how ph53 processes your personal data or your rights under this Policy — ph53 will notify registered players via email or an in-platform notification at least seven (7) days before the changes take effect. For non-material changes, such as clarifications of existing language, the updated Policy will be posted on this page without prior notice.

Your continued use of the ph53 Platform after the effective date of any amendment constitutes your acknowledgement of the updated Policy. If you do not agree with the revised Policy, you must cease using ph53 and may request account closure by contacting our support team.

14 Contact Us

If you have any questions, concerns, or requests relating to this Privacy Policy or ph53's handling of your personal data, please contact the ph53 Data Protection Officer through any of the following channels:

• Live Chat: Available 24/7 from within your ph53 account after login — the fastest way to reach our team.
• Email: [email protected] — for formal data subject requests, please include "Data Privacy Request" in the subject line.

ph53's Data Protection Officer will acknowledge receipt of your request within 48 hours and provide a substantive response within 30 days. For complex requests, we will keep you informed of progress throughout the process.

If you are not satisfied with ph53's response to your data privacy concern, you have the right to escalate your complaint to the National Privacy Commission (NPC) of the Philippines, which is the supervisory authority responsible for enforcing the Data Privacy Act of 2012.