At phgolden, protecting your personal information is a core responsibility — not just a compliance requirement. This Privacy Policy explains exactly what data we collect, how we use it, who we share it with, and how you can exercise your rights as a phgolden player in the Philippines.
All data transmitted between your device and phgolden's servers is protected by 256-bit SSL/TLS encryption — the same standard used by Philippine banks. Your login credentials, payment details, and personal information are never transmitted in plain text.
phgolden players in the Philippines have the right to access, correct, and request deletion of their personal data under the Data Privacy Act of 2012 (Republic Act 10173). These rights are exercisable at any time via live chat support.
phgolden does not sell, rent, or trade your personal information to third-party advertisers or data brokers. Your data is used only for the purposes described in this Privacy Policy and as required by PAGCOR regulatory obligations.
phgolden's data handling practices comply with the Data Privacy Act of 2012 (RA 10173) and its Implementing Rules and Regulations, overseen by the National Privacy Commission (NPC) of the Philippines.
phgolden retains personal data only as long as necessary for the purposes described in this policy or as required by Philippine law and PAGCOR regulations. Data no longer required for these purposes is securely deleted or anonymized.
phgolden will only send you promotional communications if you have opted in during registration or subsequently. You can withdraw your marketing consent at any time through your account settings or by contacting our support team.
This Privacy Policy ("Policy") describes how phgolden ("phgolden," "we," "us," or "our"), the operator of the online gaming platform accessible at phgolden.win, collects, processes, stores, shares, and protects the personal information of players, registered account holders, and visitors ("you" or "Player") in connection with the use of our platform and services.
phgolden is committed to responsible data stewardship. As a PAGCOR-regulated online gaming platform serving Filipino players — from Metro Manila and Cebu to Davao and every province in between — we operate under the Data Privacy Act of 2012 (Republic Act No. 10173) and its Implementing Rules and Regulations, as overseen by the National Privacy Commission (NPC) of the Philippines.
By registering a phgolden account, accessing our platform, or using any of our services, you acknowledge that you have read, understood, and agree to the collection and processing of your personal information as described in this Policy. If you do not agree to this Policy, please do not register an account or use our services.
This Policy should be read alongside phgolden's Terms & Conditions. Capitalized terms not defined in this Policy have the meanings assigned to them in the Terms & Conditions available at phgolden.win/terms-conditions.
For the purposes of the Data Privacy Act of 2012, phgolden is the Personal Information Controller (PIC) in respect of all personal data collected from players using the phgolden platform. phgolden determines the purposes and means of processing your personal data.
phgolden has appointed a Data Protection Officer (DPO) responsible for overseeing compliance with data privacy obligations and serving as the primary point of contact for data subject enquiries and complaints. Contact details for the phgolden DPO are set out in Section 16 of this Policy.
phgolden collects the following categories of personal data from players:
phgolden collects personal data through the following means:
| Collection Method | Data Collected |
|---|---|
| Account Registration | Name, email, mobile number, date of birth, address, and chosen password |
| KYC Verification | ID document scans, selfie photographs, address confirmation documents |
| Payment Processing | Transaction amounts, payment method identifiers, deposit/withdrawal records |
| Platform Use | Gameplay history, betting activity, session data, balance history |
| Technical Systems | IP address, device fingerprint, browser type, cookie identifiers |
| Support Interactions | Live chat transcripts, email messages, complaint records |
| Third-Party Verification | Identity confirmation data from KYC service providers where applicable |
phgolden does not collect sensitive personal information — as defined under the Data Privacy Act of 2012 — except to the extent that identity documents submitted during KYC verification may contain such information (e.g., government ID numbers). Such data is handled with heightened security controls and retained only for the minimum period required by law.
phgolden processes your personal data for the following purposes, each supported by a lawful basis under the Data Privacy Act of 2012:
We process registration data to create and manage your phgolden account, authenticate your identity at login, and maintain your account security. The legal basis is the performance of the contract between you and phgolden (i.e., the Terms & Conditions).
We process identity documentation to verify that you meet the 21+ minimum age requirement imposed by PAGCOR and to comply with our obligations under the Anti-Money Laundering Act and relevant BSP regulations. The legal basis is compliance with a legal obligation.
We process financial transaction data to facilitate GCash deposits, PayMaya deposits, bank transfers (BPI, BDO, Metrobank), InstaPay and PESONet transactions, and all associated withdrawals. The legal basis is performance of the contract and compliance with financial regulatory requirements.
phgolden is required by PAGCOR regulations and the Philippines' Anti-Money Laundering Act (AMLA) to monitor transactions, report suspicious activity to the Anti-Money Laundering Council (AMLC), and maintain transaction records for specified periods. The legal basis is compliance with legal obligations applicable to phgolden.
We process gameplay and account activity data to identify patterns associated with problem gambling, apply responsible gaming tools you have activated, and provide support to players showing signs of gambling-related harm. The legal basis is legitimate interest in player welfare and regulatory compliance.
We use anonymized and aggregated gameplay and technical data to analyze platform performance, improve game offerings, detect fraud, and optimize the user experience. The legal basis is legitimate interest. Individual players are not identifiable in these analyses.
With your consent, phgolden may send you promotional emails or SMS messages about bonuses, new games, and special offers. You may withdraw consent at any time. The legal basis for marketing communications is consent.
phgolden does not sell, rent, or trade your personal data to third parties for commercial purposes. We share personal data only in the circumstances described below, and only to the extent necessary for each purpose:
phgolden discloses player data to PAGCOR and other Philippine regulatory bodies (including the AMLC and NPC) as required by law and the terms of our gaming licence. Such disclosures are mandatory and not subject to player objection.
Transaction data is shared with payment processors including GCash (GXI), PayMaya (Maya Bank), and partner Philippine banks (BPI, BDO, Metrobank) solely to execute deposit and withdrawal transactions. These providers process data under their own privacy policies and applicable Philippine banking regulations.
Certain gameplay data is shared with phgolden's licensed game providers (including live dealer studio operators) to the extent necessary to operate games, verify outcomes, and investigate disputes. All game providers operate under contractual data processing agreements with phgolden.
Identity documents submitted for KYC are processed by phgolden's contracted identity verification partners. These partners are bound by confidentiality obligations and Philippine data privacy requirements and are prohibited from using your data for any purpose other than identity verification for phgolden.
phgolden may disclose personal data to law enforcement agencies, courts, or other government bodies where required by Philippine law, pursuant to valid legal process, or where phgolden has a good-faith belief that disclosure is necessary to prevent fraud, illegal activity, or imminent harm.
✅ No Sale of Data: phgolden does not and will never sell, licence, or otherwise transfer your personal information to third-party advertisers, data brokers, or marketing companies. Your data is not a commercial product.
Certain phgolden service providers — particularly game software developers and live dealer studio operators based outside the Philippines — may process player data in jurisdictions other than the Philippines. phgolden ensures that any cross-border transfer of personal data is conducted only to countries or organizations that provide an adequate level of data protection, or under appropriate contractual safeguards consistent with Section 21 of the Data Privacy Act of 2012.
Where personal data is transferred outside the Philippines, phgolden imposes contractual data protection obligations on the receiving party equivalent to those required under Philippine law, and ensures that transfers are limited to data strictly necessary for the relevant service.
phgolden retains your personal data for the following periods, after which data is securely deleted, anonymized, or archived in accordance with applicable law:
| Data Category | Retention Period | Basis |
|---|---|---|
| Account registration data | Duration of account + 5 years after closure | PAGCOR regulatory requirement |
| KYC identity documents | Duration of account + 5 years after closure | AMLA and PAGCOR requirement |
| Financial transaction records | 5 years from transaction date | AMLA requirement |
| Gameplay activity logs | 3 years from last activity | Dispute resolution and auditing |
| Support communications | 3 years from interaction date | Legitimate interest (quality, compliance) |
| Marketing consent records | Until consent is withdrawn + 1 year | Compliance with Data Privacy Act |
| Technical and device logs | 12 months from collection | Security monitoring and fraud prevention |
Upon expiry of the applicable retention period, phgolden will securely delete or irreversibly anonymize your personal data unless a longer retention period is required by applicable law or by an active regulatory investigation.
phgolden implements a multi-layered security framework to protect your personal data against unauthorized access, loss, misuse, disclosure, alteration, or destruction. Key security measures include:
While phgolden maintains robust security controls, no internet-based platform can guarantee absolute security against all threats. Players are responsible for maintaining the confidentiality of their own login credentials and for promptly reporting any unauthorized account access to phgolden's support team.
phgolden uses cookies and similar tracking technologies to operate the platform, personalize your experience, and analyze site performance. A cookie is a small text file stored on your device when you visit phgolden.win.
You can manage cookie preferences through your browser settings. Most modern browsers allow you to view, block, or delete cookies. Blocking strictly necessary cookies will impair your ability to log in and use phgolden's services. Analytics and functional cookies can be disabled without affecting core platform functionality.
Note: phgolden does not use third-party advertising cookies or behavioral profiling cookies for targeted advertising purposes. Our cookie usage is limited to operational, security, and internal analytics functions.
Under the Data Privacy Act of 2012 (Republic Act No. 10173) and its Implementing Rules and Regulations, all phgolden players have the following rights with respect to their personal data:
You have the right to be told what personal data phgolden collects about you, why it is collected, how it is used, and who it is shared with — which is the primary purpose of this Privacy Policy.
You have the right to request a copy of the personal data phgolden holds about you. Access requests can be submitted via live chat support. phgolden will respond within 15 business days.
If any personal data phgolden holds about you is inaccurate, incomplete, or outdated, you have the right to request correction. Some corrections (e.g., legal name) require supporting documentation.
You may request deletion of your personal data where it is no longer necessary for phgolden's purposes and where no legal obligation requires its retention. Requests are subject to PAGCOR and AMLA retention requirements.
You have the right to object to phgolden processing your personal data for direct marketing or profiling purposes. Marketing opt-out can be exercised instantly via your account settings.
If you believe phgolden has breached your data privacy rights, you may file a complaint with the National Privacy Commission (NPC) of the Philippines, which is the regulatory authority for data privacy in the Philippines.
To exercise any of the rights listed above, please contact phgolden's Data Protection Officer through live chat support or via email at the address listed in Section 16. We may need to verify your identity before processing a data rights request.
phgolden's services are strictly limited to individuals who are 21 years of age or older, as required by PAGCOR's regulatory framework. phgolden does not knowingly collect personal data from individuals under 21 years of age.
If phgolden discovers that a registered account belongs to a person under 21 years of age, or if personal data has been collected from a minor, that account will be immediately suspended, all collected data will be deleted in accordance with applicable law, and the matter may be reported to PAGCOR and relevant Philippine authorities.
Parents and guardians are advised to implement device-level parental controls to prevent minors from accessing phgolden or any other online gaming platform. If you become aware that a minor has registered a phgolden account or has accessed your account, please contact phgolden's support team immediately.
phgolden may send promotional communications — including bonus offers, new game announcements, and special promotions relevant to Filipino players — by email or SMS to registered players who have opted in to receive such communications.
Marketing communications are sent only with your explicit consent, obtained during registration or subsequently through your account settings. You may withdraw your marketing consent at any time by:
Withdrawal of marketing consent does not affect the delivery of transactional communications — such as deposit confirmations, withdrawal notifications, account security alerts, and required compliance communications — which are sent regardless of marketing preferences as they relate to the operation of your account.
In the event of a personal data breach that is likely to result in a real risk of serious harm to affected players, phgolden will comply with the notification requirements of the Data Privacy Act of 2012, including:
phgolden maintains an incident response team and documented breach response procedures to ensure timely and effective handling of any data security incidents.
phgolden reserves the right to update or amend this Privacy Policy at any time to reflect changes in our data practices, applicable Philippine law, PAGCOR requirements, or NPC guidance. Material changes to this Policy will be communicated to registered players via:
The "Last Updated" date at the top of this Policy reflects the most recent revision. Your continued use of phgolden's services after the effective date of a revised Privacy Policy constitutes your acceptance of the updated terms. If you do not accept the revised Policy, you should close your account before the effective date.
If you have any questions about this Privacy Policy, wish to exercise a data subject right, or have a privacy complaint regarding phgolden's data handling practices, please contact our Data Protection Officer through the following channels:
phgolden aims to acknowledge all data privacy enquiries within 48 hours and to provide a substantive response within 15 business days, in accordance with NPC guidelines.
If you are not satisfied with phgolden's response to your privacy concern, you have the right to lodge a complaint with the National Privacy Commission of the Philippines. Information about how to file an NPC complaint is available through the NPC's official channels.
Effective Date: This Privacy Policy is effective as of January 1, 2026 and supersedes all previous versions of phgolden's Privacy Policy.
Your privacy and security are built into every part of the phgolden platform. Join over 500,000 Filipino players on a PAGCOR-regulated casino that takes data protection seriously. 21+ only.
⚠️ 21+ Only · Gambling can be addictive · Play Responsibly · PAGCOR Regulated