This Privacy Policy explains how p65 collects, uses, stores, and protects the personal data of players and visitors on the p65 platform. It applies to all p65 services at p65.one and is governed by the Philippine Data Privacy Act of 2012.
Our Privacy Commitments at a Glance
p65 processes personal data in full compliance with Republic Act No. 10173 (Data Privacy Act of 2012) and its implementing rules. Your rights as a data subject under Philippine law are respected and actively upheld.
p65 collects personal data only to the extent required to operate the Platform, fulfil regulatory obligations under PAGCOR, and provide you with gaming and payment services. We do not collect data beyond what is needed for these defined purposes.
As a p65 player and Philippine resident, you have the right to access, correct, delete, and object to the processing of your personal data. You may exercise these rights at any time by contacting p65 through the channels listed in this Privacy Policy.
As a PAGCOR-licensed operator, p65 is obligated to share certain player data with PAGCOR and, where required by law, with the Anti-Money Laundering Council (AMLC) and other Philippine regulatory authorities. Such disclosures are conducted only within the bounds of applicable law.
p65 does not sell, rent, or trade your personal data to third parties for their own marketing or commercial purposes. Data shared with third parties is limited to what is necessary for service delivery, regulatory compliance, and platform operations.
Personal data held by p65 is stored using industry-standard encryption. Access to player data within p65's systems is restricted on a need-to-know basis with role-based access controls and audit logging in place.
p65 ("we", "our", "us", "p65") is committed to protecting the privacy and personal data of all individuals who access and use the p65 online gaming platform at p65.one ("Platform"). This Privacy Policy ("Policy") sets out how p65 collects, processes, stores, shares, and protects personal data in connection with the Platform and its associated services.
This Policy is issued in compliance with Republic Act No. 10173, the Data Privacy Act of 2012 ("DPA"), its Implementing Rules and Regulations, and relevant issuances of the National Privacy Commission ("NPC") of the Philippines. p65 also processes data in accordance with its obligations as a PAGCOR-licensed online gaming operator.
By registering for or using the p65 Platform, you acknowledge that you have read and understood this Privacy Policy and consent to the collection and processing of your personal data as described herein. If you do not accept this Policy, you should not register for or use the Platform.
Note: This Policy should be read alongside the p65 Terms & Conditions, which govern your use of the Platform. The Terms & Conditions contain additional provisions relating to account management, security, and player obligations that are relevant to the handling of your data.
For the purposes of the Data Privacy Act of 2012 and this Privacy Policy, the data controller for personal data processed in connection with the p65 Platform is p65, the operator of p65.one. As data controller, p65 determines the purposes and means by which your personal data is processed, and is responsible for ensuring that processing is conducted lawfully, fairly, and transparently.
p65 has appointed a Data Protection Officer ("DPO") as required under the DPA. The DPO is responsible for overseeing compliance with this Policy, handling data subject requests, and serving as the point of contact for the National Privacy Commission. Contact details for the DPO are set out in Section 16 of this Policy.
p65 collects the following categories of personal data in connection with the operation of the Platform:
| Category | Data Elements | When Collected |
|---|---|---|
| Identity Data | Full legal name, date of birth, nationality, government-issued ID number and type | Registration & KYC verification |
| Contact Data | Philippine mobile number, email address, residential address | Registration |
| Financial Data | GCash/Maya account reference, bank account details, transaction history, deposit and withdrawal records | Payment processing |
| KYC Documents | Scanned/photographed copies of government-issued ID, proof of address, source-of-funds documentation where required | KYC verification |
| Gaming Activity | Bet history, game sessions, win/loss records, bonus participation, wagering progress | Throughout active account use |
| Technical Data | IP address, device type, browser type and version, operating system, session timestamps, login history | Platform access and sessions |
| Responsible Gaming Data | Deposit limits set, self-exclusion status, cool-off periods, session time settings | When tools are activated |
| Communications Data | Support chat transcripts, email correspondence, feedback submissions | When contacting support |
Sensitive Personal Information: Government-issued ID numbers and copies are classified as sensitive personal information under the DPA. p65 processes this data solely for the purposes of age and identity verification as required by PAGCOR regulations, and stores it with enhanced security controls.
p65 collects personal data through the following means:
Data provided directly by you when registering for a p65 Account, completing KYC verification, making deposits or withdrawals, contacting support, activating Responsible Gaming Tools, responding to surveys, or otherwise interacting with the Platform.
Technical and usage data collected automatically when you access the Platform, including through cookies, log files, device fingerprinting, and session tracking technology. This data is collected to support Platform security, fraud detection, and service optimization.
p65 may receive personal data about you from third-party identity verification providers engaged for KYC purposes, payment processors processing your deposits and withdrawals, and in limited cases from public registers where required for anti-money laundering compliance. All third-party data sources used by p65 are engaged under data processing agreements that require them to handle data in accordance with applicable law.
p65 processes your personal data for the following defined purposes:
Under the Data Privacy Act of 2012, p65 processes your personal data on the following legal bases:
| Legal Basis | Processing Activities |
|---|---|
| Contractual Necessity | Processing required to create and manage your Account, deliver gaming services, process payments, and fulfil p65's obligations under the Terms & Conditions you accepted at registration. |
| Legal Obligation | Processing required to comply with PAGCOR regulatory requirements, KYC obligations, Anti-Money Laundering Act obligations, PAGCOR reporting requirements, NPC requirements, and other applicable Philippine law. |
| Legitimate Interests | Processing for fraud prevention, Platform security, account abuse detection, and improvement of Platform services — where such interests are not overridden by your rights and interests as a data subject. |
| Consent | Marketing communications, analytics cookies, and optional data processing activities where consent is the applicable basis. You may withdraw consent at any time without affecting the lawfulness of prior processing. |
p65 does not sell your personal data. Data is shared only with the following categories of recipients, strictly to the extent necessary for the purposes described in this Policy:
p65 is required to share player data with PAGCOR as part of its licensing and regulatory reporting obligations. Transaction data meeting applicable reporting thresholds must be reported to the Anti-Money Laundering Council (AMLC) under the Anti-Money Laundering Act. p65 will comply with any lawful order, subpoena, or directive from Philippine law enforcement or regulatory bodies.
p65 engages third-party service providers to support Platform operations. These include identity verification and KYC service providers, payment processors (GCash, Maya, BPI, BDO, and other payment networks), game studio software providers (who may receive session data to resolve game disputes), cloud hosting and infrastructure providers, and fraud detection technology providers. All such providers are engaged under data processing agreements requiring compliance with the DPA and limiting their use of data to the agreed service purpose.
p65 does not share your personal data with third parties for their own marketing purposes. Where p65 engages marketing technology providers, they act as data processors under p65's instruction and are prohibited from using your data independently.
Self-Exclusion Sharing: Where a player activates a self-exclusion on p65, p65 may share that exclusion record with PAGCOR's responsible gaming registry if required under PAGCOR regulations, to prevent the excluded player from accessing other licensed gaming platforms during the exclusion period.
Some of p65's third-party service providers — including certain game studio data systems and cloud infrastructure components — may be located or operate servers in countries other than the Philippines. Where personal data is transferred outside the Philippines, p65 ensures that appropriate safeguards are in place to provide a level of data protection consistent with the requirements of the Data Privacy Act of 2012 and NPC guidelines on cross-border data transfers.
Such safeguards may include contractual data transfer agreements incorporating standard contractual clauses approved by the NPC, or transfers to entities operating in jurisdictions recognized as providing adequate data protection. p65 does not transfer personal data internationally beyond what is necessary for the delivery of its gaming and payment services.
p65 retains personal data for as long as necessary to fulfil the purposes for which it was collected, including to satisfy applicable legal, regulatory, accounting, and reporting requirements. The following retention periods apply:
| Data Category | Retention Period | Reason |
|---|---|---|
| Account & Identity Data | 5 years after account closure | PAGCOR regulatory obligation; AML compliance |
| KYC Documents | 5 years after account closure | Anti-Money Laundering Act requirements |
| Financial / Transaction Records | 5 years after transaction date | AML Act; PAGCOR reporting; Philippine tax law |
| Gaming Activity Records | 3 years after account closure | Dispute resolution; PAGCOR audit requirements |
| Support Communications | 2 years from last interaction | Service quality; complaint resolution reference |
| Technical / Log Data | 12 months rolling | Security monitoring; fraud investigation |
| Self-Exclusion Records | Minimum duration of exclusion + 5 years | Responsible gaming compliance; regulatory record |
| Marketing Preferences | Until account closure or opt-out | Consent management |
Following the applicable retention period, personal data is securely deleted or anonymized in a manner that prevents re-identification, unless further retention is required by a specific legal obligation or regulatory direction.
p65 implements technical and organizational security measures designed to protect personal data against unauthorized access, loss, destruction, alteration, and unlawful processing. These measures include:
Your responsibility: While p65 implements robust security measures on the Platform side, the security of your p65 Account also depends on you maintaining the confidentiality of your login credentials. Use a strong, unique password for your p65 Account and enable two-factor authentication. Do not share your credentials or OTP codes with anyone.
Cookies are small text files placed on your device when you access the p65 Platform. p65 uses cookies and similar technologies (including local storage and session identifiers) to operate the Platform, maintain your login session, detect fraud, and improve Platform performance.
| Cookie Type | Purpose | Can Be Disabled? |
|---|---|---|
| Strictly Necessary | Login session management, security tokens, fraud detection, load balancing | No — required for Platform to function |
| Functional | Remembering your preferences (language, game settings, UI choices) | Yes — may limit some features |
| Analytics | Aggregated usage statistics to understand how players use the Platform and improve the experience | Yes — via cookie preferences |
| Marketing | Tracking promotional campaign performance (p65 internal only — no third-party ad networks) | Yes — requires opt-in consent |
You may manage cookie preferences through your browser settings or through the p65 cookie preference tool accessible from the Platform. Note that disabling strictly necessary cookies will impair or prevent your ability to use the Platform. p65 does not use cookies to serve third-party advertising on behalf of external advertisers.
Under the Data Privacy Act of 2012, you have the following rights with respect to your personal data held by p65. These rights may be exercised by submitting a written request to p65's Data Protection Officer using the contact details in Section 16.
p65 will respond to data subject rights requests within 15 days of receipt. Where a request is complex or involves a large volume of data, this period may be extended by a further 15 days, with notification provided to you. p65 will not charge a fee for exercising your rights except in cases of manifestly unfounded or excessive requests, where a reasonable fee may be applied.
Please note that certain rights are subject to limitations under the DPA — for example, the right to erasure may be limited where p65 has a legal obligation to retain data under PAGCOR regulations or the Anti-Money Laundering Act.
The p65 Platform is strictly restricted to individuals aged 21 years and above. p65 does not knowingly collect personal data from persons under 21 years of age. Where p65 determines that personal data has been collected from a person under 21 — whether through age misrepresentation during registration or any other means — p65 will promptly close the associated Account, return any cash balance to the depositing payment method where verifiable, and delete the collected personal data to the extent permitted by applicable law and regulatory obligations.
If you are a parent or guardian and believe that a person under 21 has registered for a p65 Account, please contact p65's Data Protection Officer immediately using the contact details in Section 16 of this Policy.
p65 may send you promotional communications including bonus offers, new game announcements, and promotional events via SMS to your registered Philippine mobile number and/or email. Marketing communications from p65 are sent only to registered players who have opted in to receiving them or where p65 has a legitimate interest in communicating with existing players about services similar to those already used, subject to your right to opt out.
You may opt out of marketing communications at any time by updating your notification preferences from within your p65 Account dashboard, or by contacting p65 support. Opting out of marketing communications does not affect transactional communications relating to your Account, including payment confirmations, security alerts, KYC requests, and responsible gaming notifications — these will continue to be sent as they are necessary for account management.
p65 does not share your personal data with third-party marketers and does not engage in behavioral advertising using data from third-party sources.
In the event of a personal data breach that poses a real risk of serious harm to affected data subjects, p65 will notify the National Privacy Commission within 72 hours of becoming aware of the breach, as required under the Data Privacy Act of 2012 and NPC Circular 16-03.
Where a breach is likely to result in a high risk to the rights and freedoms of affected data subjects — including risk to financial accounts, identity theft, or loss of sensitive personal information — p65 will also notify affected players directly, through the contact details registered to their p65 Account, as soon as is reasonably practicable.
Breach notifications to affected players will include: a description of the nature of the breach, the categories and approximate number of records involved, the likely consequences of the breach, the measures p65 has taken or proposes to take to address the breach, and practical steps players can take to protect themselves. p65 maintains a documented incident response procedure for managing personal data breaches.
p65 reviews this Privacy Policy on a regular basis and reserves the right to update it to reflect changes in applicable law, PAGCOR regulatory requirements, NPC guidance, or p65's data processing practices. Material changes to this Policy will be communicated to registered players via SMS and/or email notification at least seven (7) days prior to the change taking effect, except where a change is required urgently by law or regulatory direction.
The current effective version of this Privacy Policy is always accessible at p65.one/privacy-policy. The version number and effective date at the top of the Policy will reflect any updates. Continued use of the Platform following the effective date of any update to this Policy constitutes your acceptance of the updated Policy.
If you have questions or concerns about any change to this Privacy Policy, please contact p65's Data Protection Officer before the change takes effect. Contact details are provided in Section 16.
To exercise your data subject rights, submit a data privacy inquiry, report a suspected data breach, or raise any concern about how p65 handles your personal data, please contact p65's Data Protection Officer:
p65 will acknowledge receipt of data subject requests within 3 business days and will respond substantively within 15 days. This Privacy Policy was last reviewed and updated on 1 January 2026.
p65 is built on transparency, Philippine law compliance, and genuine respect for your personal data. Play on a PAGCOR-licensed platform where your information is handled responsibly.
PAGCOR-licensed · Data Privacy Act 2012 compliant · 21+ only · GCash & Maya accepted