Privacy Policy

phdresm ("we", "us", "our") operates the online casino and sports betting platform accessible at phdresm.org (the "Platform"). As a platform serving Filipino players, phdresm takes its obligations under applicable Philippine data privacy laws — including the Data Privacy Act of 2012 (Republic Act No. 10173) and its Implementing Rules and Regulations — seriously.

This Privacy Policy applies to all personal information collected from individuals who visit, register on, or otherwise interact with the phdresm Platform, including players, prospective players, and general website visitors. It covers data collected through the website, any mobile-optimised versions of the Platform, and through our customer support channels.

This Privacy Policy should be read alongside our Terms & Conditions and Responsible Gaming Policy, both of which form part of the overall agreement between you and phdresm.

For the purposes of the Data Privacy Act of 2012 and this Privacy Policy, phdresm is the personal information controller responsible for the personal data collected through the Platform. phdresm determines the purposes and means of processing your personal information.

If you have any questions, concerns, or requests relating to your personal data, you may contact our Data Protection Officer (DPO) using the contact details provided in Section 15 of this Privacy Policy. phdresm has designated a DPO in accordance with the requirements of the National Privacy Commission (NPC) of the Philippines.

phdresm collects the following categories of personal information from players and visitors:

phdresm does not collect sensitive personal information (as defined under the Data Privacy Act) unless strictly required for regulatory compliance purposes, such as government-issued ID details for KYC verification. Where sensitive personal information is collected, it is handled with the highest level of care and protection.

phdresm collects personal information through the following means:

• Direct interactions: Information you provide when registering an account, completing KYC verification, making deposits or withdrawals, contacting our support team, or participating in promotions.
• Automated technologies: Technical and usage data collected automatically when you access the Platform, including through cookies, web beacons, pixel tags, and server logs. See Section 10 for more details on our cookie practices.
• Third-party sources: Identity verification data from KYC service providers; fraud and AML screening data from compliance partners; payment transaction data from GCash, PayMaya, and banking partners; and analytics data from platform analytics tools.
• Publicly available sources: In limited circumstances, phdresm may supplement your profile with information from publicly available sources for fraud prevention or regulatory compliance purposes.

phdresm uses your personal information for the following purposes:

• Account management: Creating and maintaining your phdresm account, verifying your identity and age, and managing your account settings and preferences.
• Platform operation: Processing your deposits and withdrawals, recording your gaming activity, calculating and crediting winnings, and administering bonuses and promotions.
• Legal and regulatory compliance: Fulfilling our obligations under PAGCOR guidelines, the Anti-Money Laundering Act (AMLA), the Data Privacy Act of 2012, and other applicable Philippine laws and regulations.
• Fraud prevention and security: Detecting, investigating, and preventing fraudulent transactions, money laundering, account takeovers, and other illegal or prohibited activities.
• Responsible gaming: Monitoring gaming patterns to identify potentially problematic behaviour, administering responsible gaming tools such as deposit limits and self-exclusion, and complying with responsible gaming obligations.
• Customer support: Responding to your enquiries, resolving disputes, and providing technical assistance.
• Marketing communications: Sending you promotional offers, bonus notifications, and platform updates — but only where you have provided your consent or where we have a legitimate interest in doing so. You may opt out of marketing communications at any time.
• Platform improvement: Analysing usage patterns to improve the Platform's features, performance, and user experience.

Under the Data Privacy Act of 2012, phdresm processes your personal information on the following legal bases:

• Contractual necessity: Processing required to perform our contract with you — i.e., to operate your account, process transactions, and deliver the gaming services you have signed up for.
• Legal obligation: Processing required to comply with applicable laws and regulations, including PAGCOR guidelines, AMLA obligations, and tax reporting requirements.
• Legitimate interests: Processing for fraud prevention, platform security, responsible gaming monitoring, and general platform improvement, where these interests are not overridden by your privacy rights.
• Consent: Processing for marketing communications and certain cookie-based tracking, where your explicit consent has been obtained. You may withdraw consent at any time without affecting the lawfulness of processing carried out before withdrawal.

phdresm does not sell your personal information to third parties. We may share your personal data with the following categories of recipients, strictly on a need-to-know basis and subject to appropriate data protection safeguards:

• KYC and identity verification providers: Third-party KYC service providers who verify your identity and age on our behalf.
• Payment processors: GCash, PayMaya, BPI, BDO, Metrobank, Visa, Mastercard, and 7-Eleven CliQQ, to process your deposits and withdrawals.
• Fraud and AML compliance partners: Screening services used to detect money laundering, fraud, and other prohibited activities as required under Philippine law.
• Game software providers: Third-party game developers whose games are hosted on the phdresm Platform, to the extent necessary for game operation and dispute resolution.
• Analytics and technology providers: Service providers who assist with platform analytics, security monitoring, and technical infrastructure, all operating under strict data processing agreements.
• Regulatory and law enforcement authorities: PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission (NPC), and other competent Philippine authorities, where disclosure is required by law or regulation.

All third-party service providers who process personal data on phdresm's behalf are bound by contractual data processing agreements that require them to handle your data securely and only for the purposes specified by phdresm.

phdresm retains your personal information for as long as necessary to fulfil the purposes for which it was collected, including for the purposes of satisfying any legal, regulatory, accounting, or reporting requirements.

• Active accounts: Personal data is retained for the duration of your account's active status plus a minimum of five (5) years after account closure, in accordance with PAGCOR and AMLA record-keeping requirements.
• Transaction records: Financial transaction records are retained for a minimum of five (5) years as required under the Anti-Money Laundering Act.
• KYC documents: Identity verification documents are retained for five (5) years after the end of the business relationship.
• Marketing data: Where processing is based on consent, data is retained until you withdraw your consent or for a maximum of three (3) years from the date of last interaction, whichever is earlier.
• Support communications: Customer support records are retained for three (3) years from the date of the interaction.

When personal data is no longer required, phdresm will securely delete or anonymise it in accordance with our data disposal procedures.

phdresm implements a comprehensive set of technical and organisational security measures to protect your personal information against unauthorised access, disclosure, alteration, or destruction. Our security measures include:

• 256-bit SSL/TLS encryption for all data transmitted between your device and the phdresm Platform.
• Encryption at rest for sensitive personal and financial data stored on our servers.
• Two-factor authentication (2FA) available for all player accounts to prevent unauthorised access.
• Real-time fraud detection systems that monitor transactions and login activity for suspicious patterns.
• Access controls ensuring that only authorised phdresm personnel can access personal data, on a strict need-to-know basis.
• Regular security audits and penetration testing conducted by independent cybersecurity specialists.
• Staff training on data privacy and security obligations under the Data Privacy Act of 2012.

phdresm uses cookies and similar tracking technologies to enhance your experience on the Platform, analyse usage patterns, and support security and fraud prevention functions. The following types of cookies are used:

• Strictly necessary cookies: Essential for the Platform to function correctly, including session management, login authentication, and security features. These cannot be disabled.
• Functional cookies: Remember your preferences such as language settings, preferred game categories, and display options to personalise your experience.
• Analytics cookies: Collect anonymised data about how visitors use the Platform to help us improve performance and user experience. Used only with your consent.
• Marketing cookies: Used to deliver relevant promotional content and measure the effectiveness of our marketing campaigns. Used only with your consent.

You can manage your cookie preferences through your browser settings. Please note that disabling certain cookies may affect the functionality of the phdresm Platform. For strictly necessary cookies, no consent is required as they are essential for the Platform to operate.

Under the Data Privacy Act of 2012, you have the following rights with respect to your personal information held by phdresm:

• Right to be informed: The right to know what personal information phdresm collects about you and how it is used — which is the purpose of this Privacy Policy.
• Right of access: The right to request a copy of the personal information phdresm holds about you.
• Right to rectification: The right to request correction of inaccurate or incomplete personal information.
• Right to erasure: The right to request deletion of your personal information, subject to our legal retention obligations.
• Right to object: The right to object to the processing of your personal information for direct marketing purposes or where processing is based on legitimate interests.
• Right to data portability: The right to receive your personal data in a structured, commonly used format and to transmit it to another controller.
• Right to lodge a complaint: The right to lodge a complaint with the National Privacy Commission (NPC) of the Philippines if you believe your data privacy rights have been violated.

To exercise any of these rights, please contact our Data Protection Officer using the details in Section 15. phdresm will respond to all verified requests within thirty (30) days. We may need to verify your identity before processing your request.

The phdresm Platform is strictly intended for adults aged 21 years and above, in accordance with Philippine gambling regulations. phdresm does not knowingly collect personal information from individuals under the age of 21.

If phdresm discovers that personal information has been collected from a person under 21 years of age, we will immediately close the relevant account, void any associated transactions, and securely delete the personal data in question. If you believe that a minor has registered on the phdresm Platform, please contact us immediately using the details in Section 15.

In the course of operating the phdresm Platform, your personal information may be transferred to and processed in countries other than the Philippines — for example, where our technology infrastructure providers or game software partners are located. Where such transfers occur, phdresm ensures that appropriate safeguards are in place to protect your personal information in accordance with the Data Privacy Act of 2012 and NPC guidelines on cross-border data transfers.

These safeguards may include contractual clauses approved by the NPC, adequacy decisions, or other legally recognised transfer mechanisms. By using the phdresm Platform, you acknowledge and consent to such transfers where necessary for the operation of the Platform.

phdresm reserves the right to update this Privacy Policy at any time to reflect changes in our data practices, applicable laws, or Platform features. Where changes are material, we will notify you by email or by posting a prominent notice on the Platform prior to the changes taking effect.

The "Last updated" date at the top of this page indicates when the Privacy Policy was most recently revised. We encourage you to review this Privacy Policy periodically to stay informed about how phdresm protects your personal information. Your continued use of the Platform after any update constitutes your acceptance of the revised Privacy Policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal information, please contact phdresm's Data Protection Officer:

• Live Chat: Available 24/7 directly on the phdresm Platform — the fastest way to reach our support team.
• Email: [email protected]

You also have the right to lodge a complaint with the National Privacy Commission of the Philippines if you believe your data privacy rights have been violated. phdresm takes all privacy complaints seriously and will investigate and respond to all verified complaints promptly.