phpear Privacy Policy

1. Introduction

1.1 phpear operates the online gaming platform accessible at phpear.app, offering casino games, slots, bingo, and related services to players in the Philippines. As a data controller, phpear is responsible for the personal data you provide to us and the data we collect about you during your use of the platform.

1.2 This Privacy Policy applies to all personal data processed by phpear in connection with the phpear platform, including data collected through account registration, gameplay, customer support interactions, and marketing communications.

1.3 phpear processes personal data in compliance with Republic Act No. 10173 (Data Privacy Act of 2012), its Implementing Rules and Regulations, and the issuances of the National Privacy Commission (NPC) of the Philippines.

1.4 By registering an account on phpear or continuing to use the platform, you acknowledge that you have read and understood this Privacy Policy and consent to the processing of your personal data as described herein.

2. Personal Data We Collect

2.1 phpear collects the following categories of personal data:

2.1.1 Identity & Contact Data

• Full legal name as it appears on your government-issued ID;
• Date of birth (to verify you are 21 years of age or older);
• Residential address (barangay, city/municipality, province, region);
• Email address and mobile number;
• Government-issued ID type and number (e.g., PhilSys National ID, UMID, passport, driver's licence).

2.1.2 Financial Data

• GCash or PayMaya / Maya account details (mobile number linked to e-wallet);
• Philippine bank account details (bank name, account number) for withdrawal processing;
• Debit card details where applicable (card number is tokenised and never stored in plain text);
• Transaction history including deposits, withdrawals, and wager records.

2.1.3 Technical & Usage Data

• IP address and approximate geolocation;
• Device type, operating system, and browser information;
• Login timestamps and session duration;
• Game history, betting patterns, and platform interaction logs;
• Cookie identifiers and similar tracking technologies.

2.1.4 Communications Data

• Records of your communications with phpear customer support (live chat transcripts, email correspondence);
• Feedback, survey responses, and promotional opt-in preferences.

3. How We Collect Your Data

3.1 phpear collects personal data through the following means:

• Direct collection: Information you provide when registering an account, completing KYC verification, making a deposit or withdrawal, contacting customer support, or participating in promotions;
• Automated collection: Technical data collected automatically when you access the phpear platform, including through cookies, web beacons, and server logs;
• Third-party sources: Identity verification data from KYC service providers; fraud detection signals from payment processors; and, where applicable, publicly available information used to verify your identity or detect prohibited conduct.

3.2 phpear does not purchase personal data lists from third-party data brokers.

4. How We Use Your Personal Data

4.1 phpear uses your personal data for the following purposes:

4.2 phpear will not use your personal data for any purpose incompatible with those listed above without first obtaining your explicit consent or as otherwise required by law.

5. Legal Basis for Processing

5.1 phpear processes your personal data on the following legal bases under the Data Privacy Act of 2012:

• Contractual necessity: Processing required to fulfil our obligations under your account agreement, including processing deposits, withdrawals, and game transactions;
• Legal obligation: Processing required to comply with Philippine law, including KYC/AML obligations under Republic Act No. 9160 (Anti-Money Laundering Act) and PAGCOR regulatory requirements;
• Legitimate interests: Processing necessary for fraud prevention, platform security, and responsible gaming monitoring, where these interests are not overridden by your data protection rights;
• Consent: Processing for marketing communications and non-essential cookies, where you have given explicit, freely withdrawable consent.

6. Data Sharing & Disclosure

6.1 phpear does not sell, rent, or trade your personal data. We may share your data only in the following circumstances:

• Service providers: Third-party vendors who assist phpear in operating the platform, including KYC verification providers, payment processors (GCash, Maya, Philippine banks), cloud hosting providers, and customer support tools. These parties are contractually bound to process your data only on phpear's instructions and in accordance with applicable law;
• Regulatory authorities: PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission, and other Philippine government agencies where disclosure is required by law or court order;
• Law enforcement: Philippine law enforcement agencies where phpear is legally compelled to disclose information in connection with a criminal investigation;
• Business transfers: In the event of a merger, acquisition, or sale of phpear's business assets, your personal data may be transferred to the acquiring entity, subject to equivalent data protection obligations.

6.2 phpear does not transfer personal data outside the Philippines except where necessary to operate the platform (e.g., cloud infrastructure) and only where adequate data protection safeguards are in place.

7. Cookies & Tracking Technologies

7.1 phpear uses cookies and similar tracking technologies to operate and improve the platform. The following types of cookies are used:

• Strictly necessary cookies: Essential for the platform to function, including session management and security tokens. These cannot be disabled;
• Functional cookies: Remember your preferences such as language settings and game display options;
• Analytics cookies: Help phpear understand how players use the platform so we can improve performance and user experience. Data collected is aggregated and anonymised where possible;
• Marketing cookies: Used only with your consent to deliver relevant promotional content within the phpear platform.

7.2 You can manage or disable non-essential cookies through your browser settings. Note that disabling certain cookies may affect the functionality of the phpear platform. phpear does not use third-party advertising networks or cross-site tracking cookies.

8. Data Retention

8.1 phpear retains your personal data for as long as your account remains active and for a period thereafter as required by applicable law and legitimate business purposes. The following retention periods apply:

• Account and identity data: Retained for the duration of your account and for a minimum of five (5) years after account closure, as required under Philippine AML regulations;
• Transaction records: Retained for a minimum of five (5) years from the date of each transaction;
• Customer support records: Retained for three (3) years from the date of the last interaction;
• Marketing preferences: Retained until you withdraw consent or close your account;
• Technical and usage logs: Retained for up to twelve (12) months, after which they are anonymised or deleted.

8.2 Upon expiry of the applicable retention period, phpear will securely delete or anonymise your personal data in accordance with its data disposal procedures.

9. Your Data Rights

9.1 Under the Data Privacy Act of 2012, you have the following rights with respect to your personal data held by phpear:

• Right to be informed: The right to know what personal data phpear holds about you and how it is being processed;
• Right of access: The right to request a copy of the personal data phpear holds about you;
• Right to rectification: The right to have inaccurate or incomplete personal data corrected;
• Right to erasure: The right to request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, subject to phpear's legal retention obligations;
• Right to object: The right to object to the processing of your personal data for direct marketing purposes or where processing is based on legitimate interests;
• Right to data portability: The right to receive your personal data in a structured, commonly used format;
• Right to lodge a complaint: The right to file a complaint with the National Privacy Commission if you believe phpear has violated your data privacy rights.

9.2 To exercise any of the above rights, please contact phpear's Data Protection Officer using the details in Section 13. phpear will respond to all verified data rights requests within fifteen (15) business days.

10. Data Security

10.1 phpear implements appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure. These measures include:

• Transport Layer Security (TLS/SSL) encryption for all data transmitted between your device and the phpear platform;
• Encryption of sensitive data at rest, including financial information and government ID details;
• Role-based access controls limiting employee access to personal data on a need-to-know basis;
• Regular security assessments and penetration testing of the phpear platform;
• Multi-factor authentication for administrative access to phpear systems;
• Incident response procedures aligned with NPC breach notification requirements.

10.2 While phpear takes all reasonable steps to protect your data, no online platform can guarantee absolute security. You are responsible for maintaining the confidentiality of your phpear account credentials. If you suspect your account has been compromised, contact phpear support immediately.

10.3 In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, phpear will notify the National Privacy Commission within seventy-two (72) hours of becoming aware of the breach, and will notify affected players without undue delay.

11. Children's Privacy

11.1 The phpear platform is strictly restricted to individuals aged 21 years and above. phpear does not knowingly collect personal data from anyone under the age of 21.

11.2 If phpear discovers that personal data has been collected from a person under 21 years of age, the associated account will be immediately closed, all data will be deleted, and the matter will be reported to PAGCOR in accordance with its underage gambling reporting obligations.

11.3 If you are a parent or guardian and believe your child has registered on the phpear platform, please contact our support team immediately so we can take appropriate action.

12. Updates to This Privacy Policy

12.1 phpear may update this Privacy Policy from time to time to reflect changes in our data processing practices, applicable law, or platform features. The updated policy will be posted on this page with a revised "Last Updated" date.

12.2 Where changes are material, phpear will notify registered players via email or in-platform notification at least seven (7) days before the changes take effect. Your continued use of the phpear platform after the effective date of any changes constitutes your acceptance of the revised Privacy Policy.

12.3 We encourage you to review this page periodically to stay informed about how phpear protects your personal data.

13. Contact Us & Data Protection Officer

13.1 phpear has appointed a Data Protection Officer (DPO) in accordance with the requirements of the Data Privacy Act of 2012. If you have any questions, concerns, or requests relating to this Privacy Policy or the processing of your personal data, please contact:

13.2 If you are not satisfied with phpear's response to your data privacy concern, you have the right to lodge a complaint with the National Privacy Commission of the Philippines (NPC). Information on how to file a complaint is available through the NPC's official government channels.