This Privacy Policy explains how phdrea collects, uses, stores, shares, and protects your personal information when you use the phdrea platform at phdrea.co. It is written in compliance with the Philippine Data Privacy Act of 2012 (Republic Act No. 10173).
Your Privacy Matters at phdrea: phdrea is committed to handling your personal information responsibly, lawfully, and transparently. This Policy applies to all personal data processed by phdrea in connection with your use of the phdrea.co platform, including account registration, deposits, gameplay, withdrawals, and customer support interactions. By using phdrea, you acknowledge that you have read and understood this Privacy Policy.
This Privacy Policy ("Policy") is issued by phdrea ("phdrea," "we," "us," "our") and governs the collection, processing, storage, use, and disclosure of personal data obtained from users ("you," "Player," "User") of the phdrea online gaming platform accessible at phdrea.co ("Platform").
phdrea operates as an online casino and sports betting service directed at adult players in the Philippines. In the course of providing these services, phdrea necessarily processes personal data relating to registered Players. This Policy sets out, clearly and completely, exactly what data is collected, why it is collected, how it is used, who it may be shared with, how long it is kept, and what rights you have over your own information.
This Policy is written in compliance with the Philippine Data Privacy Act of 2012 (Republic Act No. 10173) and its Implementing Rules and Regulations ("IRR"), as administered by the National Privacy Commission ("NPC") of the Philippines. Where applicable, this Policy also addresses compliance with anti-money laundering (AML) data obligations under the Philippine Anti-Money Laundering Act (AMLA).
This Policy should be read alongside phdrea's Terms & Conditions and Responsible Gaming Policy, both of which form part of the complete agreement between you and phdrea.
For the purposes of this Privacy Policy and applicable Philippine data privacy law, phdrea is the personal information controller ("PIC") responsible for the personal data of Players processed through the phdrea.co platform. As PIC, phdrea determines the purposes for which and the means by which personal data is processed.
phdrea has appointed a Data Protection Officer ("DPO") responsible for overseeing this Policy's implementation and serving as the primary point of contact for data privacy queries, subject access requests, and regulatory communications. Contact details for phdrea's DPO are provided in Section 15 of this Policy.
The National Privacy Commission of the Philippines has jurisdiction over data privacy complaints from Filipino data subjects. If you believe your data privacy rights under RA 10173 have been violated, you may file a complaint with the NPC through official NPC channels after first attempting resolution directly with phdrea.
phdrea collects personal data that is necessary, adequate, and not excessive in relation to the purposes for which it is processed. The categories of personal data collected from Players include:
| Data Category | Specific Data Points Collected |
|---|---|
| Identity Data | Full legal name, date of birth, gender, nationality, and copies of government-issued identification documents (e.g., PhilSys ID, Passport, Driver's License, UMID, SSS/GSIS ID). |
| Contact Data | Philippine mobile number (Smart, Globe, DITO, or other networks), email address, and any correspondence sent to phdrea support. |
| Account Data | Username, hashed password, account registration date, account status, security settings (including 2FA configuration), and account preferences. |
| Financial Data | GCash account reference, PayMaya/Maya account reference, bank account details (BPI, BDO, Metrobank) where provided, cryptocurrency wallet addresses, deposit and withdrawal transaction records, and account balance history. |
| Gaming Activity Data | Game history, bet records, wager amounts, outcomes, session durations, game type preferences, bonus participation records, and VIP program activity. |
| Technical Data | IP address, browser type and version, device type and identifiers, operating system, referring URLs, session timestamps, and cookies or similar tracking data. |
| KYC Verification Data | Selfie photographs submitted alongside identity documents during the KYC verification process, and the status and outcome of identity verification reviews. |
| Communications Data | Records of live chat conversations with phdrea support, emails sent to and from phdrea, and any feedback or complaint submissions. |
phdrea does not collect sensitive personal information as defined under RA 10173 (such as racial or ethnic origin, political opinions, religious beliefs, health data, or sexual orientation) unless specifically required by law or expressly provided by the Player for a specific and disclosed purpose.
phdrea collects personal data through the following means:
phdrea processes your personal data for the following specific, legitimate, and clearly defined purposes:
phdrea does not use your personal data for any purpose that is incompatible with those listed above without obtaining your prior consent or where otherwise permitted by Philippine law.
Under the Philippine Data Privacy Act, all processing of personal data must have a lawful basis. phdrea relies on the following lawful bases for processing your personal data:
phdrea does not sell, rent, or trade your personal data to unaffiliated third parties for their own marketing or commercial purposes. Personal data is shared with third parties only in the following circumstances and only to the extent necessary for the stated purpose:
No data selling: phdrea has never sold Player personal data to third parties and commits to maintaining this policy. If this position ever changes, affected Players will be notified in advance and given the opportunity to object.
Some of phdrea's third-party service providers — particularly game software developers, certain KYC verification platforms, and cloud infrastructure providers — may be located outside the Philippines. Where personal data is transferred to a country outside the Philippines, phdrea ensures that such transfers comply with the requirements of RA 10173 and its IRR, including:
You may request information about specific international transfers affecting your personal data by contacting phdrea's Data Protection Officer at the details provided in Section 15.
phdrea retains personal data only for as long as is necessary to fulfill the purposes for which it was collected, or as required by applicable Philippine law. The following general retention periods apply:
At the end of the applicable retention period, personal data is securely deleted or anonymized such that it can no longer be linked to any individual.
phdrea implements appropriate technical and organizational security measures to protect your personal data against unauthorized access, loss, destruction, alteration, or disclosure. Our security measures include, but are not limited to:
While phdrea takes all reasonable steps to protect your personal data, no security system is completely impenetrable. You are responsible for maintaining the security and confidentiality of your own Account credentials. phdrea strongly recommends enabling two-factor authentication (2FA) on your phdrea Account.
phdrea uses cookies and similar tracking technologies (collectively, "Cookies") on the phdrea.co platform to enable the functioning of the service, improve performance, and analyze usage patterns. Cookies are small text files placed on your device when you access the phdrea website.
phdrea uses the following categories of Cookies:
phdrea does not use third-party advertising Cookies or serve interest-based advertisements through the phdrea platform. You may manage Cookie preferences through your browser settings. Disabling strictly necessary Cookies may prevent you from logging in or using core platform features.
Under the Philippine Data Privacy Act of 2012, you have the following rights with respect to your personal data processed by phdrea. These rights may be exercised by contacting phdrea's Data Protection Officer as described in Section 15:
The right to be informed of how your personal data is being collected and processed — which is the purpose of this Privacy Policy.
The right to request a copy of your personal data held by phdrea and information about how it is being processed.
The right to request correction of inaccurate or incomplete personal data. You may also update certain details directly through your Account settings.
The right to request deletion of your personal data where it is no longer necessary, subject to legal retention obligations under AMLA and PAGCOR regulations.
The right to object to processing based on legitimate interests, including direct marketing. Objections to marketing communications take effect immediately upon receipt.
The right to receive a copy of your personal data in a structured, commonly used, machine-readable format for transfer to another controller where technically feasible.
The right to claim compensation for damages suffered as a result of inaccurate, incomplete, outdated, or unlawfully obtained personal data under RA 10173.
The right to file a complaint with the National Privacy Commission (NPC) of the Philippines if you believe phdrea has violated your data privacy rights under RA 10173.
phdrea will respond to all rights requests within thirty (30) days of receipt. Where a request is complex or numerous, phdrea may extend this period by a further thirty (30) days, with notification to you of the extension and the reasons for it. phdrea may request proof of identity before processing any rights request to prevent unauthorized access to personal data.
The phdrea platform is strictly intended for adults aged 21 years and over. phdrea does not knowingly collect personal data from individuals under the age of 21. If phdrea discovers or has reasonable grounds to believe that personal data of a person under 21 has been collected, that data will be deleted from our systems and the associated Account will be closed in accordance with our Terms & Conditions.
If you are a parent or guardian and believe that your child under the age of 21 has accessed the phdrea platform or submitted personal data to phdrea, please contact our support team immediately at [email protected] so that we can investigate and take appropriate action.
phdrea may update this Privacy Policy from time to time to reflect changes in applicable law, our data processing practices, or the features and services offered on the phdrea platform. The "Last Updated" date at the top of this Policy indicates when the most recent revision was made.
Where material changes are made to this Policy — particularly changes that affect how your personal data is used or your rights in relation to it — phdrea will notify you by email to your registered address and/or through a prominent notice on the phdrea platform, at least fourteen (14) days before the changes take effect. For non-material updates, continued use of the platform following the update constitutes acknowledgment of the revised Policy.
We encourage you to review this Policy periodically. Archived versions of previous Privacy Policies are available on request by contacting phdrea's Data Protection Officer.
For all privacy-related enquiries, subject access requests, data rights exercises, or to raise a data privacy concern, please contact phdrea through the following channels:
Data Protection Officer (DPO) — phdrea
Email: [email protected] (Subject: "Data Privacy Request – [Your Account ID]")
Live Chat: Available 24/7 from your phdrea Account dashboard. Average response under 5 minutes.
Response time for formal DPO requests: Within 30 calendar days of receipt.
If you are not satisfied with phdrea's response to your data privacy concern, you have the right to escalate your complaint to the National Privacy Commission of the Philippines (NPC) through official NPC channels.
This Privacy Policy was last reviewed and updated in January 2026. The English-language version is the authoritative version. Any translation provided for informational purposes is subordinate to the English text in the event of any conflict.
A plain-language summary of the six core data privacy commitments phdrea makes to every Filipino player.
phdrea processes all Player data in compliance with the Philippine Data Privacy Act of 2012 (RA 10173). A dedicated Data Protection Officer oversees compliance and handles all data privacy requests from Filipino players.
phdrea has never sold, rented, or traded Player personal data to third parties for commercial marketing. Your data is shared only with service providers directly involved in operating the phdrea platform — and only to the extent necessary.
Personal data stored on phdrea's systems is protected using current encryption standards. Passwords are stored in hashed form and are never stored or transmitted in plain text. TLS encryption protects all data in transit.
phdrea honors all data subject rights under the Philippine Data Privacy Act — including the rights to access, rectify, erase, object, and port your data. All rights requests are processed within 30 calendar days.
phdrea keeps personal data only as long as legally required or operationally necessary — no longer. Data held for AMLA compliance is retained for 5 years. All other data has clearly defined deletion schedules.
In the event of a data breach affecting your personal information, phdrea commits to notifying the NPC within 72 hours and notifying affected Players promptly — with full transparency about what happened, what data was affected, and what steps phdrea is taking.
phdrea is built on transparency — fair games, fast GCash payouts, honest bonus terms, and data privacy you can verify. Register today and experience the difference. 21+ only.