ph265 Privacy Policy

This Privacy Policy (the "Policy") describes how ph265 (the "Platform", "we", "us", or "our") collects, uses, stores, discloses, and otherwise processes personal data relating to individuals who access or use the ph265 online gaming platform at ph265.club (the "Platform") and all associated services.

ph265 operates in the Philippines and is committed to processing personal data in a manner that is lawful, fair, and transparent, consistent with the obligations established by the Data Privacy Act of 2012 (Republic Act No. 10173) and its Implementing Rules and Regulations, as administered by the National Privacy Commission of the Philippines (NPC).

By registering an account on ph265, accessing the Platform, or otherwise providing personal data to us, you acknowledge that you have read and understood this Privacy Policy and consent to the processing of your personal data as described herein. If you do not agree with any part of this Policy, please discontinue use of the Platform immediately.

For purposes of applicable Philippine data privacy law, ph265 acts as the Personal Information Controller (PIC) in respect of all personal data collected from Members and visitors to the Platform. As PIC, ph265 determines the purposes and means by which personal data is processed, and is responsible for ensuring that processing is conducted lawfully and securely.

ph265 has appointed a Data Protection Officer (DPO) who is responsible for overseeing compliance with this Policy and with the requirements of the Data Privacy Act of 2012. Data subjects may contact the DPO directly using the contact information set out in Section 16 of this Policy.

Depending on how you interact with the ph265 Platform, we may collect the following categories of personal data:

• Identity Data: Full legal name, date of birth, gender, nationality, and copies of government-issued Philippine identification documents provided during KYC verification (e.g., PhilSys National ID, Passport, Driver's Licence, UMID, SSS ID, PRC ID).
• Contact Data: Philippine mobile number (in 09XX format), email address, and residential address as provided during registration or account update.
• Account Data: Username, hashed account password, security question responses, and account settings preferences.
• Financial Data: GCash account number, PayMaya details, bank account information (BPI, BDO, Metrobank, UnionBank), deposit and withdrawal transaction history, and account balance records.
• Gaming Activity Data: Game session logs, Wager history, game results, bonus credits claimed, VIP tier status, and responsible gaming settings.
• Technical Data: IP address, device type, operating system, browser type and version, mobile network operator, session timestamps, and login history.
• Communications Data: Records of communications between you and the ph265 customer support team, including live chat transcripts and support ticket history.
• Preferences Data: Game category preferences, marketing communication preferences, and language settings.

ph265 collects personal data through the following means:

1. Direct Collection: Information you provide when you register an account on ph265, complete KYC verification, submit a deposit or withdrawal request, contact our customer support team, or update your account settings.
2. Automated Collection: Technical data collected automatically when you access the Platform, including IP address, device identifiers, browser information, session data, and cookies. This data is collected to support Platform security, fraud detection, and service optimisation.
3. Third-Party Sources: Identity verification data obtained from licensed KYC service providers or credit reference agencies engaged by ph265 for the purposes of regulatory compliance. Financial data received from payment processors (e.g., GCash, PayMaya, BPI, BDO, Metrobank, UnionBank) when processing deposits and withdrawals.
4. Regulatory Sources: In limited circumstances, data may be obtained from regulatory bodies or law enforcement agencies pursuant to applicable legal requirements or court orders.

ph265 processes your personal data for the following specific, legitimate purposes:

1. Account Registration and Management: To create, maintain, verify, and administer your ph265 Member account, including authentication of your identity at login.
2. KYC and Age Verification: To verify that you meet the minimum age requirement of 21 years as mandated by PAGCOR's regulatory framework for online gaming in the Philippines, and to verify your identity in compliance with applicable anti-money laundering obligations.
3. Payment Processing: To process deposits, withdrawals, and related financial transactions through your chosen Philippine payment channel, and to maintain accurate records of all financial activity on your Account.
4. Service Provision: To provide access to the ph265 Platform's games, promotions, VIP programme, and customer support services.
5. Legal and Regulatory Compliance: To fulfil ph265's obligations under applicable Philippine law, including the Data Privacy Act of 2012, Anti-Money Laundering Act (AMLA), and PAGCOR licensing requirements.
6. Fraud Prevention and Security: To detect, investigate, and prevent fraudulent activity, unauthorised account access, multi-accounting, and other breaches of the ph265 Terms & Conditions.
7. Responsible Gaming: To monitor gaming behaviour patterns and apply the responsible gaming tools and interventions selected by the Member or required by applicable regulations.
8. Marketing Communications: Where you have provided consent, to send promotional offers, bonus notifications, and platform updates via SMS or other channels available through your Account settings. You may withdraw consent at any time.
9. Platform Improvement: To analyse aggregated, anonymised usage data to improve the performance, features, and user experience of the ph265 Platform.

ph265 processes personal data only where a lawful basis for processing exists under the Data Privacy Act of 2012. The applicable legal bases for ph265's processing activities are as follows:

1. Consent (Section 12(a), DPA 2012): Where you have provided clear, specific, and informed consent to a particular processing activity — for example, receiving marketing communications from ph265. You may withdraw consent at any time without affecting the lawfulness of processing prior to withdrawal.
2. Contractual Necessity (Section 12(b), DPA 2012): Where processing is necessary for the performance of the contract between you and ph265 — specifically, the ph265 Terms & Conditions that you accepted on registration. This covers account management, game provision, and payment processing.
3. Legal Obligation (Section 12(c), DPA 2012): Where processing is required to comply with a legal obligation to which ph265 is subject, including KYC obligations, anti-money laundering reporting requirements, and data retention mandates.
4. Legitimate Interests (Section 12(f), DPA 2012): Where processing is necessary for the purposes of the legitimate interests pursued by ph265, such as fraud detection, platform security, and service improvement, provided such interests are not overridden by your fundamental rights and freedoms.

ph265 does not sell, rent, or share personal data for commercial gain. Personal data may be disclosed to third parties only in the following limited circumstances:

1. Payment Processors: Financial data necessary to process your deposit or withdrawal is shared with your chosen payment provider (GCash, PayMaya, BPI, BDO, Metrobank, or UnionBank). These providers process your data as independent Personal Information Controllers subject to their own privacy policies and applicable Philippine financial regulations.
2. KYC Service Providers: Identity data submitted during account verification may be shared with licensed KYC and identity verification service providers engaged by ph265 solely for the purpose of verifying your identity in compliance with PAGCOR and AMLA requirements.
3. Game Content Providers: Game session data (but not financial or identity data) may be shared with ph265's licensed game content providers, such as JILI Gaming, solely for the purposes of game delivery, RNG auditing, and dispute resolution.
4. Regulatory Authorities: ph265 will disclose personal data to PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission, or other competent Philippine authorities where required by law, court order, or regulatory direction.
5. Professional Advisors: Personal data may be disclosed to ph265's legal, accounting, or audit advisors where strictly necessary and subject to professional confidentiality obligations.

Where personal data is transferred to or processed by service providers located outside the Philippines, ph265 ensures that adequate safeguards are in place to protect your personal data to a standard equivalent to that required under the Data Privacy Act of 2012. Such safeguards may include contractual data processing agreements incorporating standard data protection clauses, or reliance on a determination by the National Privacy Commission that the recipient country provides an adequate level of data protection.

Where the primary data processing infrastructure of ph265 is located within the Philippines, all personal data remains subject to Philippine data privacy law. Any offshore processing is disclosed in this Policy and conducted only with appropriate protective measures in place.

ph265 retains personal data only for as long as is necessary for the purposes for which it was collected or as required by applicable law. The following general retention periods apply:

1. Active Account Data: Personal data associated with an active ph265 Account is retained for the duration of the Member's Account and for a period of five (5) years following permanent Account closure, in compliance with applicable Philippine financial record-keeping and anti-money laundering obligations.
2. Transaction Records: Financial transaction records, including deposit and withdrawal history, are retained for a minimum of five (5) years from the date of the transaction in accordance with AMLC reporting requirements.
3. KYC Documents: Identity documents submitted for KYC verification are retained for the period specified by applicable PAGCOR and AMLC regulations, which is currently five (5) years following the end of the business relationship.
4. Support Communications: Customer support records are retained for a period of three (3) years to support dispute resolution and regulatory inquiries.
5. Technical Logs: Server and access logs are retained for a period of twelve (12) months for security monitoring and fraud investigation purposes.

At the end of the applicable retention period, personal data is securely deleted, anonymised, or destroyed in a manner that prevents reconstruction or recovery.

ph265 implements technical and organisational security measures designed to protect your personal data against unauthorised access, accidental loss, alteration, disclosure, or destruction. These measures include:

1. Encryption: All data transmitted between your device and ph265 servers is encrypted using 256-bit SSL/TLS protocols. Sensitive data stored in ph265's systems is encrypted at rest.
2. Access Controls: Access to personal data is restricted to ph265 personnel and authorised third-party processors who have a legitimate need to access such data. All access is logged and subject to periodic review.
3. Password Hashing: Account passwords are never stored in plaintext. ph265 uses industry-standard cryptographic hashing algorithms to protect stored password credentials.
4. Two-Factor Authentication: Members may enable two-factor authentication (2FA) on their Accounts as an additional layer of protection against unauthorised access.
5. Penetration Testing: ph265's systems are subject to regular security assessments and penetration testing to identify and remediate vulnerabilities.
6. Breach Response: ph265 maintains a documented data breach response plan. In the event of a personal data breach that poses a real risk to data subjects, ph265 will notify the NPC within 72 hours of becoming aware of the breach, and will notify affected Members where required under applicable law.

ph265 uses cookies and similar tracking technologies on the Platform for the following purposes:

1. Essential Cookies: Strictly necessary for the operation of the Platform, including maintaining your logged-in session state and security tokens. These cookies cannot be disabled without impairing Platform functionality.
2. Functional Cookies: Used to remember your preferences and settings, such as language settings and game category preferences, to provide a more personalised experience on returning visits.
3. Analytical Cookies: Used to collect anonymised data about how Members interact with the Platform, including pages visited and session duration. This data is used solely to improve Platform performance and user experience. ph265 does not use third-party analytics platforms that would transfer your data to external parties.
4. Security Cookies: Used to detect fraudulent activity, bot traffic, and security threats by analysing session behaviour patterns.

You may control cookie settings through your browser preferences. Note that disabling essential cookies may prevent you from logging in to or using certain features of the ph265 Platform.

Under the Data Privacy Act of 2012, you have the following enforceable rights with respect to personal data held by ph265:

To exercise any of the rights above, please contact the ph265 Data Protection Officer using the contact details provided in Section 16. ph265 will respond to all verified data subject requests within fifteen (15) business days of receipt.

The ph265 Platform is strictly intended for use by adults aged twenty-one (21) years and above, in accordance with PAGCOR's minimum age requirements for online gaming participation in the Philippines. ph265 does not knowingly collect personal data from individuals under the age of 21.

If ph265 discovers or is notified that personal data has been collected from a person under the age of 21, the relevant Account will be immediately suspended, all data associated with the Account will be securely deleted, and any funds associated with the Account will be handled in accordance with applicable law and PAGCOR requirements.

Parents or guardians who believe that a minor has registered or used a ph265 Account should contact ph265 customer support immediately. ph265 will investigate and take appropriate remedial action without undue delay.

The ph265 Platform integrates with third-party payment and gaming services to deliver its full range of features. These third-party providers — including GCash, PayMaya, BPI, BDO, Metrobank, UnionBank, and JILI Gaming — are independent Personal Information Controllers subject to their own privacy policies and data processing practices.

ph265 is not responsible for the privacy practices of independent third-party service providers. Before using any third-party service integrated with ph265, Members are encouraged to review the applicable third-party privacy policy to understand how their personal data is handled beyond the ph265 Platform.

ph265 engages all third-party data processors under written data processing agreements that impose data protection obligations consistent with the Data Privacy Act of 2012 and require processors to implement appropriate security measures.

ph265 reserves the right to update or amend this Privacy Policy at any time to reflect changes in legal requirements, regulatory guidance, Platform features, or our data processing practices. When material changes are made to this Policy, ph265 will provide advance notice to all registered Members via their registered mobile number or by displaying a prominent notice on the Platform.

The updated Privacy Policy will specify the date on which the changes take effect. Continued use of the ph265 Platform after the effective date of any amendment constitutes acknowledgement of the updated Policy. If you do not agree with the updated Policy, you must cease using the Platform and request Account closure before the effective date of the changes.

This Privacy Policy was last reviewed and updated on 1 January 2026. ph265 recommends that all Members review this Policy periodically.

For any questions, concerns, or requests relating to this Privacy Policy or the processing of your personal data by ph265, please contact the ph265 Data Protection Officer through the following channel:

If you are not satisfied with ph265's response to your privacy concern, you have the right to lodge a complaint directly with the National Privacy Commission (NPC) of the Philippines, which is the competent supervisory authority for data privacy matters in the Philippines.

For additional information about your rights and ph265's data practices, please also review the Terms & Conditions and Responsible Gaming pages.