phophen Casino
Privacy Policy

1. Introduction & Scope

This Privacy Policy applies to all personal data collected, processed, and stored by phophen in connection with the operation of the phophen online gaming platform accessible at phophen.vip and all associated sub-domains and mobile interfaces.

phophen respects the privacy of every individual who visits our website or creates an account on our platform. This document is intended to provide full transparency regarding our data practices and to ensure that Filipino players — and all other users of the phophen platform — can make informed decisions about sharing their personal information with us.

By registering a phophen account, making a deposit, or continuing to use the platform after this Privacy Policy has been published or updated, you acknowledge that you have read and understood this document and consent to the data practices described herein.

2. Data Controller

For the purposes of applicable data protection legislation, including the Philippine Data Privacy Act of 2012 (Republic Act No. 10173) and its implementing rules and regulations, phophen is the data controller responsible for the personal data of players using the phophen platform.

phophen's designated Data Protection Officer (DPO) can be contacted at: [email protected] with the subject line "Data Privacy Inquiry." phophen aims to respond to all data privacy inquiries within 5 business days.

3. Data We Collect

phophen collects the following categories of personal data from players:

3.1 Registration & Identity Data

• Full legal name as it appears on a government-issued ID
• Date of birth (used to verify the 21+ age requirement)
• Email address and mobile phone number
• Residential address (city, province, and postal code)
• Username and encrypted password
• Nationality and country of residence

3.2 Identity Verification (KYC) Data

• Scanned or photographed copies of government-issued identification documents (e.g., PhilSys National ID, driver's license, passport, SSS ID, UMID)
• Selfie photographs taken at the time of identity verification
• Proof of address documents (e.g., utility bills, bank statements) where required for enhanced verification

3.3 Financial Data

• GCash mobile number or PayMaya account identifier linked to your phophen account
• Bank account details (account name, bank name, account number) for withdrawal processing
• Transaction history including deposits, withdrawals, bonus credits, and bet records
• Source of funds declarations where required for large transactions under AML regulations

3.4 Technical & Usage Data

• IP address and approximate geographic location at the time of login
• Device type, operating system, browser type, and version
• Pages visited on the phophen platform, time spent, and navigation paths
• Game history, session duration, and betting patterns (used for responsible gaming monitoring)
• Communication logs including live chat transcripts and support email content

3.5 Marketing Preferences

• Email and SMS marketing opt-in or opt-out status
• Preferred communication language and promotional interests (where provided voluntarily)

4. How We Collect Your Data

phophen collects personal data through the following means:

• Directly from you — when you register an account, complete KYC verification, make a deposit or withdrawal request, contact support, or update your profile settings.
• Automatically — when you use the phophen platform, our servers and analytics tools automatically record technical and usage data including IP addresses, session data, and device information.
• From third-party verification providers — when phophen uses licensed identity verification service providers to confirm the authenticity of documents submitted during KYC.
• From payment processors — GCash, PayMaya (Maya), and banking partners may share transaction confirmation data with phophen to match deposits and withdrawals to the correct player accounts.

5. How We Use Your Personal Data

phophen processes player personal data for the following purposes:

• Account management: Creating, maintaining, and operating your phophen player account, including login authentication and session management.
• Age and identity verification: Confirming that you meet the 21+ age requirement and that your identity is genuine, as required by Philippine gaming regulations.
• Payment processing: Facilitating GCash and PayMaya deposits, bank transfers, and cryptocurrency transactions linked to your phophen account.
• Anti-money laundering (AML) compliance: Monitoring transaction patterns and fulfilling mandatory AML screening obligations under Philippine law.
• Fraud prevention and security: Detecting and investigating suspicious account activity, unauthorized login attempts, bonus abuse, and other fraudulent behavior.
• Responsible gaming: Monitoring gaming patterns to identify indicators of problem gambling and to apply player-requested self-restriction tools.
• Customer support: Responding to inquiries, resolving disputes, and maintaining records of support interactions for quality assurance purposes.
• Platform improvement: Analyzing aggregate usage data to improve the phophen platform, optimize game loading performance, and enhance the overall player experience.
• Marketing communications: Sending promotional emails and SMS messages to players who have opted in to receive phophen marketing — subject to unsubscribe rights at any time.
• Legal compliance: Meeting obligations under applicable Philippine law, regulatory requirements, and lawful orders from government authorities.

6. Legal Basis for Processing

phophen processes personal data based on the following legal grounds under the Philippine Data Privacy Act of 2012 (RA 10173):

• Consent: Where you have given explicit consent, such as opting in to marketing communications.
• Contract performance: Processing necessary to fulfill the phophen player agreement, including account management and payment processing.
• Legal obligation: Processing required to comply with applicable Philippine law, including AML obligations, KYC requirements, and regulatory reporting.
• Legitimate interest: Processing necessary for fraud prevention, platform security, and responsible gaming monitoring — where these interests are not overridden by player privacy rights.

7. Data Sharing & Disclosure

phophen does not sell, rent, or lease player personal data to third parties for commercial marketing purposes. phophen may share player data with the following categories of recipients under appropriate data protection agreements:

• Identity verification providers: Licensed KYC service providers who process identity documents on phophen's behalf under binding data processing agreements.
• Payment processors: GCash (G-Xchange Inc.), PayMaya (Maya Philippines Inc.), and Philippine banking partners who process transactions linked to your account.
• Game software providers: Third-party game studios may receive anonymized session data necessary to resolve technical disputes about game outcomes.
• Fraud prevention services: Specialist providers who assist phophen in detecting and investigating fraudulent account activity.
• Regulatory and law enforcement authorities: phophen will disclose player data to PAGCOR, the Anti-Money Laundering Council (AMLC), or other Philippine government agencies where required by law, court order, or legitimate regulatory investigation.

8. Cookies & Tracking Technologies

The phophen platform uses cookies and similar tracking technologies to deliver and improve its services. The categories of cookies used by phophen are:

• Strictly Necessary Cookies: Required for the platform to function. These maintain your login session, remember your language preference, and ensure security tokens remain valid. These cookies cannot be disabled without impairing platform functionality.
• Analytical Cookies: Used to understand how players navigate the phophen platform — including which pages are visited most frequently and where players encounter difficulties. This data is used in aggregate and is not linked to individual player identities for marketing purposes.
• Functional Cookies: Remember preferences such as your chosen display settings or the last game category you browsed to provide a more personalized experience on return visits.

phophen does not deploy third-party advertising cookies or allow external advertisers to place tracking technologies on the phophen platform. You may adjust your browser settings to block or delete cookies at any time, but doing so may affect the functionality of the phophen login and gameplay experience.

9. Data Retention

phophen retains personal data for the following periods:

• Active accounts: Personal data is retained for the duration of an active phophen account and for a minimum of 5 years following account closure, as required by Philippine AML regulations.
• KYC documents: Identity verification documents are retained for a minimum of 5 years from the date of verification or account closure, whichever is later.
• Transaction records: Financial transaction logs are retained for a minimum of 5 years to comply with AMLC reporting obligations.
• Support communications: Live chat transcripts and email correspondence are retained for 2 years for quality assurance and dispute resolution purposes.
• Marketing data: Marketing preference records are retained until you withdraw consent or for 2 years following account closure, whichever occurs first.

Upon expiry of the applicable retention period, phophen will securely delete or anonymize personal data in accordance with its data disposal procedures.

10. Data Security

phophen implements the following technical and organizational security measures to protect player personal data:

• 128-bit SSL/TLS encryption for all data transmitted between player devices and phophen servers.
• Encrypted storage of passwords using industry-standard hashing algorithms — phophen staff cannot view your password in plain text.
• Access controls limiting internal access to personal data to authorized phophen personnel with a documented business need.
• Regular security audits and penetration testing of the phophen platform infrastructure.
• Multi-factor authentication requirements for phophen internal systems that handle player data.

11. Your Data Protection Rights

Under the Philippine Data Privacy Act of 2012 (RA 10173), phophen players have the following rights with respect to their personal data:

• Right to be Informed: The right to know what personal data phophen collects, how it is used, and with whom it is shared — as documented in this Privacy Policy.
• Right to Access: The right to request a copy of the personal data phophen holds about you. Requests will be fulfilled within 15 business days.
• Right to Correction: The right to request correction of inaccurate or incomplete personal data held in your phophen account.
• Right to Erasure: The right to request deletion of your personal data, subject to phophen's legal data retention obligations (such as AML record-keeping requirements).
• Right to Object: The right to object to specific types of data processing, including direct marketing. Opt-out from marketing communications is available at any time.
• Right to Data Portability: The right to receive a copy of certain personal data in a structured, machine-readable format.
• Right to Lodge a Complaint: The right to file a complaint with the National Privacy Commission (NPC) of the Philippines if you believe phophen has violated your data privacy rights.

To exercise any of the above rights, contact phophen's Data Protection Officer at [email protected] with the subject line "Data Privacy Rights Request." phophen will respond within 15 business days and may require identity verification before processing your request.

12. Children's Privacy

phophen's services are strictly for individuals aged 21 years and older. phophen does not knowingly collect personal data from persons under 21 years of age. If phophen discovers that personal data has been collected from a person under 21, that data will be deleted immediately and the associated account closed. Parents or guardians who believe their child has registered at phophen should contact [email protected] immediately.

13. International Data Transfers

phophen's primary servers are located in jurisdictions with established data protection frameworks. Where phophen uses third-party service providers (such as KYC verification platforms or game software providers) that process data outside the Philippines, phophen ensures that appropriate safeguards are in place — including standard contractual clauses and data processing agreements — to provide a level of protection equivalent to that afforded under Philippine law.

14. Changes to This Privacy Policy

phophen reserves the right to update this Privacy Policy at any time. Material changes will be communicated to registered players via email notification and/or a prominent notice on the phophen platform at least 7 days before the updated policy takes effect. The date at the top of this document reflects the date of the most recent revision. Continued use of the phophen platform after the effective date of a revised Privacy Policy constitutes acceptance of the updated terms.

15. Contact & Complaints

For any questions, concerns, or requests related to this Privacy Policy or phophen's handling of your personal data, please contact:

• Data Protection Officer — phophen: [email protected] (Subject: "Data Privacy Inquiry")
• Live Chat: Available 24/7 on the phophen platform for immediate support queries.

If you are not satisfied with phophen's response to a data privacy complaint, you have the right to escalate the matter to the National Privacy Commission (NPC) of the Philippines, the government body responsible for enforcing RA 10173.