689ph Casino
Privacy Policy
This Privacy Policy explains how 689ph Casino collects, uses, stores, and protects your personal data in accordance with the Philippine Data Privacy Act of 2012 (Republic Act 10173) and PAGCOR's regulatory requirements.
How 689ph Protects Your Data
Six core privacy commitments that define how 689ph handles your personal information.
Philippine DPA Compliance
689ph processes personal data in accordance with Republic Act 10173, the Data Privacy Act of 2012, and its Implementing Rules and Regulations. Your data rights as a Filipino data subject are fully recognized and exercisable under this policy.
256-Bit SSL Encryption
All data transmitted between your device and the 689ph platform is encrypted using 256-bit SSL/TLS — the same standard used by major Philippine banks. Your login credentials, KYC documents, transaction data, and personal information are never transmitted in plain text.
No Sale of Personal Data
689ph does not sell, rent, or commercially license your personal data to third parties. Your information is shared only with service providers necessary to operate the platform, regulatory authorities as required by Philippine law, and payment processors for transaction execution.
Full Control Over Your Data
As a data subject under RA 10173, you have the right to access, correct, object, erase, and port your personal data held by 689ph. These rights are exercisable by contacting our Data Protection Officer. Requests are processed within 30 days of receipt.
Defined Retention Periods
689ph retains personal data only for as long as necessary to fulfill the purpose for which it was collected, or as required by Philippine law and PAGCOR regulations. Account data for active accounts, AML records, and KYC documents are retained per statutory requirements and no longer.
Breach Notification Commitment
In the event of a personal data breach that poses a real risk to affected individuals, 689ph will notify the National Privacy Commission (NPC) within 72 hours of discovery and will inform affected data subjects as required under RA 10173 and NPC Circular 16-03.
1 Introduction
689ph Casino ("689ph," "we," "us," or "our") is committed to protecting the privacy and security of personal data belonging to our users ("you," "data subject," or "player"). This Privacy Policy describes how 689ph collects, uses, discloses, stores, and protects personal information in connection with the 689ph online gaming platform, website, and related services (collectively, the "Platform").
This Privacy Policy is issued in compliance with Republic Act No. 10173, the Data Privacy Act of 2012 ("DPA"), its Implementing Rules and Regulations, and relevant issuances of the National Privacy Commission ("NPC") of the Philippines. It also reflects 689ph's obligations under PAGCOR's regulatory framework for online gaming operators.
This Privacy Policy applies to all personal data collected by 689ph through the Platform, including data collected during registration, KYC verification, gameplay, deposits, withdrawals, customer support interactions, and marketing communications. It applies to all users accessing the Platform from the Philippines or from other jurisdictions where Philippine data protection law applies.
By creating a 689ph account or using the Platform, you acknowledge that you have read, understood, and agree to the data processing practices described in this Privacy Policy. If you do not agree, you must not use the 689ph Platform.
2 Personal Data We Collect
689ph collects personal data that is adequate, relevant, and limited to what is necessary for the purposes described in this policy. The categories of personal data we collect include:
2.1 Identity & Registration Data
Identity Data collected when you register and verify your account:
- Full legal name (as it appears on your government-issued ID);
- Date of birth and age confirmation;
- Philippine mobile number (primary account identifier);
- Government-issued ID type, number, and expiry date;
- Facial photograph (selfie) submitted for KYC matching;
- Digital copies of government-issued ID documents (front and back);
- Residential address where required for regulatory compliance.
2.2 Financial & Transaction Data
Financial Data collected in connection with deposits, withdrawals, and gaming activity:
- GCash account number and registered mobile number;
- Maya (PayMaya) account details;
- Bank account numbers (BPI, BDO, and other Philippine banks);
- Transaction history including deposit amounts, timestamps, and references;
- Withdrawal requests, amounts, and processing status;
- Cryptocurrency wallet addresses (where USDT TRC20 is used);
- Account balance history and bonus transaction records.
2.3 Gaming & Behavioral Data
Behavioral Data generated through your use of the Platform:
- Game session data including games played, bet amounts, and outcomes;
- Session duration, frequency, and timing patterns;
- Game preferences and lobby navigation behavior;
- Bonus usage, wagering activity, and promotion redemption history;
- Responsible gaming tool settings (deposit limits, session limits, self-exclusion status).
2.4 Technical & Device Data
Technical Data collected automatically through your device and browser:
- IP address and geolocation data (country/region level);
- Device type, model, operating system, and browser version;
- Login timestamps, session tokens, and authentication logs;
- Cookies and similar tracking technologies (see Section 10);
- Error logs and platform performance data.
2.5 Communications Data
Records of your communications with 689ph, including live chat transcripts, support ticket history, email correspondence, and any information you voluntarily provide to our support team.
3 How We Collect Your Data
689ph collects personal data through the following mechanisms:
- Direct collection: Information you provide when registering, completing KYC, making deposits or withdrawals, contacting support, or updating account settings;
- Automated collection: Technical and behavioral data collected automatically through cookies, session tracking, and platform analytics when you use the Platform;
- Third-party payment processors: Transaction confirmation data received from GCash, Maya, BPI, BDO, and other payment partners when you initiate financial transactions;
- Identity verification providers: KYC confirmation data from third-party identity verification service providers used to authenticate government-issued documents;
- Regulatory sources: Information received from PAGCOR or other Philippine regulatory bodies in connection with compliance obligations;
- Fraud and risk monitoring systems: Aggregated risk signals and fraud indicators generated by third-party fraud prevention tools integrated into the Platform.
4 How We Use Your Personal Data
689ph uses personal data for the following specified and legitimate purposes:
| Purpose | Data Categories Used | Legal Basis |
|---|---|---|
| Account registration & authentication | Identity, Technical | Contract performance |
| KYC identity & age verification (21+) | Identity, KYC documents | Legal obligation (PAGCOR, RA 10173) |
| Processing deposits & withdrawals | Financial, Identity | Contract performance |
| Game provision & platform operation | Behavioral, Technical | Contract performance |
| AML monitoring & fraud prevention | Financial, Identity, Technical | Legal obligation (AMLC, PAGCOR) |
| Responsible gaming & player protection | Behavioral, Identity | Legal obligation (PAGCOR) |
| Customer support & dispute resolution | Communications, Identity, Financial | Contract performance, Legitimate interest |
| Platform security & abuse prevention | Technical, Identity, Behavioral | Legitimate interest |
| Direct marketing (with consent) | Identity, Behavioral | Consent (opt-in only) |
| Platform improvement & analytics | Technical, Behavioral (anonymized) | Legitimate interest |
| Regulatory reporting to PAGCOR & AMLC | Identity, Financial | Legal obligation |
5 Legal Basis for Processing
Under the Data Privacy Act of 2012 and its Implementing Rules, 689ph relies on the following lawful bases for processing personal data:
- Performance of a contract: Processing necessary to open and maintain your account, execute deposits and withdrawals, and provide gaming services as agreed in the 689ph Terms & Conditions;
- Compliance with a legal obligation: Processing required under PAGCOR's licensing requirements, Republic Act 9160 (Anti-Money Laundering Act), the Data Privacy Act of 2012, and other applicable Philippine laws and regulations, including mandatory KYC and AML transaction monitoring;
- Legitimate interests: Processing for fraud prevention, platform security, dispute resolution, and anonymized analytics, where 689ph's legitimate business interests do not override your fundamental rights and freedoms as a data subject;
- Consent: Processing for direct marketing, optional platform features, and any other processing activities for which 689ph has obtained your explicit consent. Consent may be withdrawn at any time without affecting the lawfulness of prior processing.
6 Sharing & Disclosure of Personal Data
689ph may share your personal data with the following categories of recipients:
- Payment processors: GCash, Maya, BPI, BDO, GrabPay, Coins.ph, and other payment service providers, solely to execute and confirm financial transactions on your account. Each processor is bound by its own privacy policy and applicable Philippine financial regulations;
- Identity verification providers: Third-party KYC and biometric verification service providers that assist in authenticating government-issued ID documents and performing facial matching, as required under PAGCOR and AML regulations;
- Game providers: JILI Games and other licensed game software providers receive session data necessary to deliver game outcomes, calculate RTPs, and detect cheating or collusion, under data processing agreements that restrict further use;
- Fraud and risk platforms: Third-party fraud detection and risk assessment providers that analyze technical and behavioral signals to identify account fraud, multi-accounting, and prohibited conduct;
- Regulatory authorities: PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission (NPC), and other Philippine government bodies, where disclosure is required or permitted by law, court order, or regulatory mandate. 689ph cooperates fully with all lawful regulatory requests;
- Professional advisors: Lawyers, auditors, and compliance consultants engaged by 689ph, subject to professional confidentiality obligations;
- Business transfers: In the event of a merger, acquisition, or sale of all or part of 689ph's business, personal data may be transferred to the acquiring entity subject to the same privacy protections described in this policy.
All third-party service providers with whom 689ph shares personal data are contractually required to process that data only as directed by 689ph, to maintain appropriate security standards, and to comply with applicable Philippine data protection laws.
7 Data Retention
689ph retains personal data for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by Philippine law. The following retention schedules apply:
| Data Category | Retention Period | Basis |
|---|---|---|
| KYC identity documents | 5 years after account closure | PAGCOR / RA 9160 (AMLA) |
| Financial transaction records | 5 years from transaction date | RA 9160 / AMLC requirement |
| Account registration data | Duration of account + 5 years | PAGCOR compliance |
| Gaming session records | 3 years from session date | Dispute resolution / PAGCOR |
| Support & communications records | 3 years from last interaction | Legitimate interest (disputes) |
| Marketing consent records | Until consent withdrawn + 1 year | DPA compliance (proof of consent) |
| Technical & access logs | 12 months | Security monitoring |
Upon expiry of applicable retention periods, 689ph will securely delete or anonymize personal data so that it can no longer be used to identify any individual. Where anonymized data is retained for analytics, it no longer constitutes personal data under RA 10173.
8 Data Security
689ph implements organizational and technical security measures designed to protect personal data against unauthorized access, disclosure, alteration, destruction, or accidental loss. These measures include:
- Encryption in transit: All data transmitted between users and the 689ph Platform is encrypted using TLS 1.2 or higher (256-bit SSL);
- Encryption at rest: Sensitive personal data, including KYC documents and financial information, is stored in encrypted form in 689ph's data infrastructure;
- Access controls: Personal data is accessible only to 689ph personnel and service providers who require it for legitimate operational purposes, governed by role-based access controls and least-privilege principles;
- Multi-factor authentication: Administrative access to systems holding personal data requires multi-factor authentication;
- Regular security assessments: 689ph conducts periodic security reviews and vulnerability assessments of its data infrastructure;
- Staff training: Personnel who handle personal data receive regular training on data protection obligations under RA 10173 and 689ph's internal security policies.
9 Your Data Subject Rights
As a data subject under Republic Act 10173, you have the following rights regarding your personal data held by 689ph. These rights may be exercised by submitting a written request to 689ph's Data Protection Officer (see Section 14).
Request a copy of the personal data 689ph holds about you, and information about how it is being processed.
Request correction of inaccurate or incomplete personal data held by 689ph.
Request deletion of personal data when it is no longer necessary, subject to retention obligations under Philippine law.
Object to processing based on legitimate interests or for direct marketing purposes. Objections to direct marketing take immediate effect.
Receive your personal data in a structured, commonly used, machine-readable format for transfer to another controller.
Request that 689ph restricts processing of your data where accuracy is contested or processing is unlawful but you oppose erasure.
Withdraw consent to marketing or other consent-based processing at any time, without affecting the lawfulness of prior processing.
File a complaint with the National Privacy Commission of the Philippines if you believe 689ph has violated your data privacy rights.
All data subject rights requests will be acknowledged within 5 business days and resolved within 30 calendar days of receipt. Where additional time is required, 689ph will notify you of the extended timeline and the reason for the delay. 689ph may require identity verification before fulfilling a rights request to prevent unauthorized disclosure.
10 Cookies & Tracking Technologies
689ph uses cookies and similar technologies on the Platform. Cookies are small text files stored on your device that help 689ph deliver and improve the Platform. The following categories of cookies are used:
- Strictly necessary cookies: Required for the Platform to function, including session management, authentication tokens, and security cookies. These cannot be disabled without impairing Platform functionality;
- Functional cookies: Remember your preferences and settings, such as display language and game lobby layout, to improve your experience on return visits;
- Analytical cookies: Collect anonymized data about how users navigate and interact with the Platform to help 689ph identify technical issues and improve user experience. 689ph uses privacy-respecting analytics tools that do not share data with third-party advertising networks;
- Security cookies: Used to detect fraudulent account activity, bot behavior, and suspicious session patterns as part of 689ph's fraud prevention obligations.
689ph does not use third-party advertising cookies or cross-site tracking technologies that would share your browsing behavior with external advertising platforms. You may manage cookie preferences through your browser settings. Disabling strictly necessary cookies may affect Platform functionality.
11 Minors & Age Restriction
If 689ph becomes aware that personal data has been collected from an individual who is under 21 years of age, 689ph will immediately close the associated account, delete all personal data collected from that individual, and return any deposited funds less any amounts already withdrawn, in accordance with the 689ph Terms & Conditions.
If you are a parent or guardian and believe that 689ph may have inadvertently collected data from a minor, please contact 689ph's Data Protection Officer immediately at the contact details provided in Section 14.
12 Cross-Border Data Transfers
689ph's primary data processing operations are conducted within the Philippines. Where personal data is transferred to service providers located outside the Philippines — for example, to game software providers, cloud infrastructure providers, or fraud detection platforms with regional data centers — 689ph ensures that such transfers are conducted in accordance with RA 10173 and NPC regulations governing cross-border data transfers.
Such transfers are made only where:
- The receiving jurisdiction has been assessed as providing adequate data protection standards;
- Contractual safeguards equivalent to RA 10173 requirements are in place between 689ph and the receiving entity; or
- The transfer is necessary for the performance of a contract to which you are a party (for example, routing a cryptocurrency transaction via a blockchain network).
In all cases, 689ph requires receiving parties outside the Philippines to maintain security standards and data handling practices consistent with this Privacy Policy and Philippine data protection law.
13 Changes to This Privacy Policy
689ph may update this Privacy Policy from time to time to reflect changes in our data processing practices, legal obligations, or regulatory requirements. When material changes are made — particularly changes that affect how personal data is used or shared — 689ph will:
- Update the "Last Updated" date at the top of this page;
- Display a notice on the 689ph Platform advising players of the change;
- Where the change significantly affects players' rights, send notification to registered mobile numbers where technically feasible.
Your continued use of the 689ph Platform after the effective date of an updated Privacy Policy constitutes acknowledgement of the changes. If you do not agree to the updated Privacy Policy, you should cease using the Platform and may request account closure in accordance with the 689ph Terms & Conditions.
14 Contact & Data Protection Officer
689ph has designated a Data Protection Officer ("DPO") as required under the Data Privacy Act of 2012. The DPO is responsible for overseeing 689ph's compliance with RA 10173, responding to data subject rights requests, and handling privacy-related inquiries and complaints.
To exercise your data subject rights, to submit a privacy inquiry or complaint, or to contact the 689ph DPO, please use the following channels:
-
Data Protection Officer — 689ph Casino:
Email: [email protected] (Subject: "Data Privacy Request – [Your Name]") - Live Chat Support: Available 24/7 directly on the 689ph Platform for general account and privacy inquiries.
All data privacy requests are acknowledged within 5 business days. If you are not satisfied with 689ph's response to a privacy request or complaint, you have the right to escalate the matter to the National Privacy Commission of the Philippines.
Confident in Our Privacy? Start Playing.
689ph protects your data under the Philippine Data Privacy Act. Create your account and enjoy JILI slots, live baccarat, bingo, and sports betting — safely, securely, and with full transparency about how your information is handled.
Must be 21+. PAGCOR monitored. By registering, you confirm you have read and agree to the Terms & Conditions and this Privacy Policy. Please gamble responsibly.