Privacy Policy – peso1 Online Casino Philippines

Important Notice: This Privacy Policy ("Policy") describes how peso1 ("peso1," "we," "us," "our"), the operator of peso1.org, collects, uses, stores, and protects the personal information of individuals ("you," "Player," "User") who access or use the peso1 platform. This Policy is issued in compliance with the Philippine Data Privacy Act of 2012 (Republic Act No. 10173) and its Implementing Rules and Regulations issued by the National Privacy Commission (NPC). By registering for a peso1 account or using any peso1 service, you acknowledge that you have read and understood this Privacy Policy.

01 Data Controller

For the purposes of the Philippine Data Privacy Act of 2012, peso1 is the Personal Information Controller (PIC) responsible for the personal data processed through the peso1 platform at peso1.org. peso1 determines the purposes and means by which personal data is collected and processed in connection with the operation of its online casino and sports betting services.

peso1 has designated a Data Protection Officer (DPO) who is responsible for overseeing compliance with data protection obligations, handling data subject requests, and serving as the primary point of contact for data privacy concerns. The DPO may be contacted at the details provided in Section 16 of this Policy.

02 Personal Data We Collect

peso1 collects the following categories of personal data in connection with the registration, operation, and management of player accounts:

Category	Specific Data Points
Identity Data	Full legal name, date of birth, nationality, government-issued ID number (PhilSys ID, Passport, Driver's License, SSS/UMID, or Voter's ID), and facial photograph as required for KYC.
Contact Data	Philippine mobile number (primary identifier), email address (if provided), and current residential address in the Philippines.
Financial Data	GCash account number, Maya account number, bank account details (BPI, BDO, Metrobank, or others where applicable), and transaction history associated with your peso1 wallet.
Transaction Data	Deposit amounts, withdrawal amounts, game wagers, winnings and losses, bonus issuances and redemptions, and complete peso1 wallet transaction history.
Technical Data	IP address, device identifier, browser type and version, operating system, screen resolution, session timestamps, login history, and approximate geolocation derived from IP address.
Behavioral Data	Game preferences, session duration, betting patterns, game categories accessed, feature usage within the peso1 platform, and customer support interaction records.
Communications Data	Records of live chat conversations with peso1 support, email correspondence, and any feedback or complaints submitted through the platform.

peso1 does not collect or process special categories of sensitive personal information (such as health data, religious beliefs, or political opinions) except where specifically required by PAGCOR regulations or Philippine anti-money laundering compliance obligations, and only to the minimum extent necessary for those purposes.

03 How We Collect Your Data

peso1 collects personal data through the following means:

Direct submission: Data you provide when creating a peso1 account, completing the KYC verification process, making deposits or withdrawals, contacting support, or updating your account profile.
Automated technical collection: Data collected automatically when you access peso1.org or the peso1 app, including IP address, device information, session data, and cookies or similar tracking technologies as described in Section 9.
Third-party payment processors: Financial verification data received from GCash, Maya, BPI, BDO, and other payment service providers in connection with deposit and withdrawal processing.
Identity verification services: Data received from authorized KYC and identity verification service providers used to validate government-issued identification documents submitted during account registration.
Regulatory sources: Data received from PAGCOR or other authorized regulatory bodies in connection with compliance screening, self-exclusion register checks, and problem gambling identification programs.

04 How We Use Your Personal Data

peso1 uses your personal data for the following specific, legitimate purposes:

Account creation and management: To register your peso1 account, verify your identity, manage your player profile, and maintain your account throughout your relationship with peso1.
Transaction processing: To process deposits from GCash, Maya, and other payment methods, credit winnings to your wallet, and execute withdrawal requests to your verified payment accounts.
KYC and regulatory compliance: To fulfill identity verification requirements mandated by PAGCOR and to comply with the Philippine Anti-Money Laundering Act (Republic Act No. 9160, as amended) and AMLA Council regulations.
Fraud prevention and platform security: To detect, investigate, and prevent fraudulent transactions, unauthorized account access, collusion, bonus abuse, and other activities that may harm the integrity of the peso1 platform.
Customer support: To respond to your inquiries, resolve disputes, process complaints, and provide assistance through peso1's 24/7 live chat and email support channels.
Responsible gaming: To monitor gaming patterns for indicators of problem gambling, enforce self-exclusion orders, apply deposit and loss limits, and support PAGCOR's responsible gaming requirements.
Platform improvement: To analyze aggregated, anonymized usage data to improve the peso1 user interface, game lobby, and overall player experience — without profiling individual players for commercial purposes.
Communications: To send you important account notifications, security alerts, transaction confirmations, and — where you have consented — promotional communications about peso1 offers and new game launches.

Marketing Communications: peso1 will only send you promotional emails or SMS messages if you have explicitly opted in during registration or subsequently through your account settings. You may withdraw your marketing consent at any time by updating your communication preferences in the peso1 account settings or by contacting support.

05 Legal Basis for Processing

Under the Philippine Data Privacy Act of 2012, peso1 processes your personal data on the following legal bases:

Contractual necessity: Processing required to perform the contract between peso1 and you as a registered player — specifically, to operate your account, process deposits and withdrawals, and deliver gaming services.
Legal obligation: Processing required to comply with peso1's legal and regulatory obligations under PAGCOR licensing conditions, the Philippine Anti-Money Laundering Act, the Philippine Data Privacy Act, and other applicable Philippine legislation.
Legitimate interests: Processing necessary for peso1's legitimate interests in maintaining platform security, preventing fraud, and improving our services — provided these interests do not override your fundamental data privacy rights.
Consent: Processing based on your freely given, specific, and informed consent — primarily for marketing communications. You may withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.

06 Data Sharing & Disclosure

peso1 does not sell, rent, or otherwise transfer your personal data to unrelated third parties for their own commercial purposes. We may share your personal data with the following categories of recipients only to the extent necessary and under appropriate data protection agreements:

Regulatory authorities: PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission (NPC), and other Philippine government agencies where disclosure is required by law, court order, or regulatory directive.
Payment service providers: GCash (GXchange Inc.), Maya (PayMaya Philippines Inc.), BPI, BDO, and other payment processors engaged solely to process your deposits and withdrawals.
KYC and identity verification providers: Authorized third-party identity verification services engaged to validate government-issued ID documents and perform liveness checks during KYC.
Game providers: Certified game studios (such as PG Soft, Jili Games, Pragmatic Play) may receive limited technical data (session tokens, game round identifiers) necessary for game delivery — but not your personally identifiable information.
Cloud and infrastructure providers: Trusted cloud infrastructure providers engaged under strict data processing agreements to host peso1 systems and data, subject to security standards consistent with this Policy.

Note: In the event of a merger, acquisition, or sale of all or substantially all of peso1's business assets, your personal data may be transferred to the successor entity, subject to the same privacy protections as described in this Policy. You will be notified of any such transfer.

07 Data Retention

peso1 retains your personal data only for as long as is necessary to fulfill the purposes for which it was collected, as set out below:

Data Category	Retention Period
Active account data	Retained for the duration of your active peso1 account plus a minimum of 5 years following account closure, as required by PAGCOR and AML regulations.
KYC documents	Retained for a minimum of 5 years from the date of submission, as mandated by the Philippine Anti-Money Laundering Act.
Transaction records	Retained for a minimum of 5 years from the transaction date, in accordance with AMLA compliance requirements and PAGCOR reporting obligations.
Customer support records	Retained for 3 years from the date of the last support interaction, to support dispute resolution.
Technical and log data	Retained for up to 12 months from collection, unless specific data is required for an ongoing security investigation or legal proceeding.
Marketing consent records	Retained for the duration of your active marketing consent plus 3 years to demonstrate compliance with consent requirements.

Upon expiry of the applicable retention period, personal data will be securely deleted or rendered permanently anonymous in a manner that prevents re-identification. Requests for early deletion are subject to our legal obligations to retain certain data categories as described above.

08 Security Measures

peso1 implements a comprehensive set of technical and organizational security measures designed to protect your personal data against unauthorized access, disclosure, alteration, or destruction:

256-bit SSL/TLS encryption for all data transmitted between your device and peso1 servers, including all game traffic, transaction data, and login sessions.
Encryption at rest for all sensitive personal data, KYC documents, and financial records stored in peso1 systems.
Multi-factor authentication (MFA) requirements for all peso1 internal administrative access, in addition to optional two-factor authentication for player accounts.
Regular third-party penetration testing and vulnerability assessments of peso1 platform infrastructure.
Role-based access controls ensuring that peso1 staff can only access personal data to the extent strictly required for their operational role.
Comprehensive security incident response procedures, including a data breach notification protocol as described in Section 13.

While peso1 applies industry-standard security measures, no internet-based service can guarantee absolute security. Players are encouraged to protect their own account security by using a strong, unique password for their peso1 account, enabling two-factor authentication, and never sharing login credentials with any third party.

09 Cookies & Tracking Technologies

peso1 uses cookies and similar tracking technologies on peso1.org and in the peso1 mobile application to enable platform functionality, maintain your session state, and analyze aggregate usage patterns. The following types of cookies are used:

Strictly necessary cookies: Required for the peso1 platform to function. These include session authentication tokens, wallet state management, and security tokens. These cannot be disabled without breaking platform functionality.
Functional cookies: Remember your preferences such as language settings, game lobby layout, and "Remember Me" login status to improve your experience across sessions.
Analytics cookies: Collect anonymized, aggregated data about how players navigate and use the peso1 platform, helping us identify areas for improvement. Individual players are not identified in analytics reports.

peso1 does not use third-party advertising or behaviorally targeted marketing cookies. You may manage cookie preferences through your browser settings; however, disabling strictly necessary cookies will prevent certain peso1 platform features from functioning correctly.

10 Your Data Subject Rights

Under the Philippine Data Privacy Act of 2012, you have the following rights with respect to your personal data held by peso1. To exercise any of these rights, please contact the peso1 Data Protection Officer using the details in Section 16:

Right to Access

Request a copy of the personal data peso1 holds about you, the purposes of processing, and the categories of data involved.

Right to Correction

Request correction of inaccurate, incomplete, or outdated personal data held in your peso1 account or KYC records.

Right to Erasure

Request deletion of your personal data where it is no longer necessary, subject to peso1's legal retention obligations under PAGCOR and AML regulations.

Right to Object

Object to processing of your personal data for marketing communications or where processing is based on legitimate interests that you believe are overridden by your rights.

Right to Block or Restrict

Request a temporary restriction on the processing of your data while a dispute about its accuracy or lawfulness is being resolved.

Right to Complain

Lodge a complaint with the Philippine National Privacy Commission (NPC) if you believe peso1 has processed your data in violation of the Data Privacy Act of 2012.

peso1 will respond to all verified data subject requests within fifteen (15) business days of receipt. Where a request cannot be fulfilled in full due to conflicting legal obligations, peso1 will explain the specific legal basis for the limitation in writing.

11 Minors & Age Restrictions

The peso1 platform is strictly restricted to individuals who are twenty-one (21) years of age or older, as required by PAGCOR regulations governing online gaming in the Philippines. peso1 does not knowingly collect personal data from individuals under the age of 21.

As part of the KYC process, peso1 verifies the age of all registered players using government-issued Philippine identification. Any account found to belong to an individual under the age of 21 will be immediately and permanently terminated. All funds associated with an under-age account will be handled in accordance with peso1's underage player policy.

If you have reason to believe that personal data from a minor has been submitted to peso1 without appropriate parental consent, please contact our Data Protection Officer immediately using the contact details in Section 16 so that the data can be deleted promptly.

12 Cross-Border Data Transfers

Some of peso1's third-party service providers — including cloud infrastructure providers and certain game studios — may process or store data on servers located outside the Philippines. Where personal data is transferred outside the Philippines, peso1 ensures that appropriate safeguards are in place to protect your data to a standard consistent with the Philippine Data Privacy Act of 2012.

Such safeguards include: contractual data processing agreements that bind recipient parties to data protection standards equivalent to those required under Philippine law; verification that recipient countries maintain adequate data protection frameworks; and, where applicable, implementation of standard contractual clauses approved by the National Privacy Commission.

By using the peso1 platform, you acknowledge and consent to the transfer of your personal data to countries outside the Philippines for the purposes described in this Policy, subject to the safeguards described above.

13 Data Breach Protocol

In the event that peso1 becomes aware of a personal data breach that is likely to result in a risk to the rights and freedoms of affected players, peso1 will:

Notify the Philippine National Privacy Commission (NPC) within seventy-two (72) hours of becoming aware of the breach, as required by the Data Privacy Act of 2012 and NPC Circular No. 16-03.
Notify affected players directly, without undue delay, where the breach is likely to result in a high risk to their rights — including compromised account credentials, financial data, or identity documents.
Provide affected players with a clear description of the nature of the breach, the categories and approximate number of records affected, the likely consequences of the breach, and the measures taken or proposed to address it.
Implement immediate containment and remediation measures, including forced password resets, temporary account security enhancements, and coordination with affected payment service providers where financial data is involved.

14 Third-Party Services & Links

The peso1 platform integrates with third-party services — primarily payment processors (GCash, Maya, BPI, BDO) and game providers — that are necessary for platform operation. These third-party services operate under their own privacy policies, which govern the personal data they independently collect from you during your interactions with their services.

peso1 is not responsible for the privacy practices of third-party service providers. Before using any third-party payment service integrated with peso1 (such as GCash or Maya), you are encouraged to review the applicable privacy policy of that service provider. peso1's Privacy Policy covers only the personal data collected and processed by peso1 directly through the peso1 platform.

15 Changes to This Privacy Policy

peso1 reserves the right to update or revise this Privacy Policy at any time to reflect changes in our data processing practices, applicable Philippine law, or PAGCOR regulatory requirements. When material changes are made to this Policy, peso1 will notify active account holders via their registered email address or through a prominent in-platform notification, with at least seven (7) days' notice before the revised Policy takes effect.

The "Effective Date" displayed at the top of this document indicates when the current version of the Privacy Policy entered into force. Your continued use of the peso1 platform after the effective date of any revised Policy constitutes your acceptance of the changes. We encourage you to review this Policy periodically to stay informed of how peso1 protects your personal information.

16 Contact Us & Data Protection Officer

If you have questions, concerns, or requests regarding this Privacy Policy or the handling of your personal data by peso1, please contact the peso1 Data Protection Officer using the following channels:

Live Chat Support: Available 24/7 from within your logged-in peso1 account. For urgent data privacy concerns such as suspected unauthorized access, live chat is the fastest channel.
Email: [email protected] — note that this address is displayed as plain text and is not a clickable link. Please include "Data Privacy Request" in your subject line, along with your registered mobile number for identity verification.
Website: peso1.org — additional information about peso1's data privacy practices is available through the FAQ and Terms & Conditions pages accessible from the website footer.

Response Time: peso1 will acknowledge all formal data subject requests within five (5) business days and will provide a full substantive response within fifteen (15) business days. If additional time is required due to complexity, peso1 will inform you within the initial 15-day period and provide an expected completion date.

NPC Complaints: If you are not satisfied with peso1's response to your data privacy concern, you have the right to file a complaint with the Philippine National Privacy Commission at privacy.gov.ph.

peso1 Privacy Policy

Data Privacy Act Compliance

Minimal, Purposeful Collection

256-bit SSL Encryption

No Sale of Personal Data

Your Rights, Clearly Explained

Transparent Retention Periods