This Privacy Policy explains how mineph collects, uses, stores, shares, and protects the personal information of players and visitors on the mineph platform. We are committed to handling your data responsibly, transparently, and in full compliance with the Philippine Data Privacy Act of 2012 (Republic Act No. 10173) and applicable PAGCOR regulations.
mineph collects personal information necessary for account registration, identity verification (KYC), financial transactions, and regulatory compliance. This includes your name, date of birth, government ID details, mobile number, email, and payment account information.
Your personal data is collected to operate your mineph account, process GCash and bank transactions, comply with PAGCOR and anti-money laundering requirements, provide customer support, and improve the platform. We do not sell personal data to third parties.
All personal data held by mineph is protected using 256-bit SSL encryption in transit and AES-256 encryption at rest. Access to personal data is restricted to authorised personnel on a strict need-to-know basis. Security measures are reviewed regularly in line with Philippine NPC guidelines.
mineph shares personal data only with payment processors (GCash, PayMaya, banks), identity verification service providers, PAGCOR where required by law, and Philippine government authorities under lawful order. Third-party processors are contractually bound to handle data only as instructed by mineph.
Under the Philippine Data Privacy Act (RA 10173), you have the right to access, correct, object to, and request erasure of your personal data held by mineph, subject to our regulatory and legal retention obligations. Requests are submitted to our Data Protection Officer.
Player account and transaction data is retained for a minimum of five (5) years following account closure, as required under Philippine anti-money laundering law and PAGCOR licence conditions. Data no longer required is securely deleted using NPC-compliant disposal methods.
mineph recognises that your personal information is yours. We are committed to processing it fairly, lawfully, and transparently — in strict accordance with Republic Act No. 10173, the Data Privacy Act of 2012 (DPA), its Implementing Rules and Regulations, and the issuances of the National Privacy Commission (NPC) of the Philippines. As a PAGCOR-licensed operator, mineph also processes personal data as required by our regulatory obligations under Philippine gaming law. This Policy tells you exactly what we do with your data and what rights you have over it.
This Privacy Policy ("Policy") applies to all personal information processed by mineph ("mineph," "we," "our," or "us") in connection with your use of the mineph online casino platform, accessible at mineph.app (the "Platform"), including all games, sports betting, account management, and financial services offered thereon.
This Policy applies to all individuals whose personal data mineph processes, including registered players, prospective registrants, and visitors to the Platform. It covers personal information collected online through the Platform and in connection with our customer support, KYC verification, and payment processing activities.
By registering an account on the mineph Platform or by continuing to use the Platform after the effective date of this Policy, you acknowledge that you have read, understood, and accept the data processing practices described herein. If you do not accept this Policy, you must not use the Platform.
For the purposes of the Data Privacy Act of 2012, mineph is the Personal Information Controller in respect of all personal data collected and processed through the Platform. mineph is registered with the National Privacy Commission of the Philippines as required by the DPA and its Implementing Rules and Regulations.
Where mineph engages third-party service providers — such as payment processors, KYC verification vendors, or cloud infrastructure providers — to process personal data on its behalf, those providers act as Personal Information Processors and are bound by data processing agreements that impose obligations equivalent to those applicable to mineph under the DPA.
Questions, requests, or complaints relating to data privacy at mineph should be directed to the Data Protection Officer (DPO) as described in Section 15 of this Policy.
mineph collects only the personal data that is necessary for the specific purposes described in Section 5 of this Policy. The categories of personal data we process are as follows:
| Category | Specific Data Elements |
|---|---|
| Identity Data | Full legal name, date of birth, nationality, gender, government-issued ID type and number (passport, driver's licence, SSS/UMID, PhilHealth ID, Voter's ID, Postal ID) |
| Contact Data | Philippine mobile number, email address, residential address (for enhanced due diligence where required) |
| Account Data | Username, hashed password, account registration date, account status, login timestamps, session duration, device identifiers used for login |
| Financial Data | GCash account number, PayMaya account number, bank account name and number (BPI, BDO, Metrobank), deposit and withdrawal history, transaction amounts in PHP, source of funds declarations where required |
| Gaming Data | Game history, bet amounts, win/loss records, game preferences, promotional offers claimed, bonus wagering progress |
| KYC / Verification Data | Photographs of government-issued ID documents, live selfie images submitted during identity verification, liveness check results, verification status and timestamps |
| Technical Data | IP address, browser type and version, device type and operating system, cookie identifiers, referring URL, pages viewed, time and duration of visits |
| Communications Data | Records of support tickets, live chat transcripts, email correspondence, and any other communications with mineph's support team |
| Responsible Gaming Data | Deposit limits set, session time limits, cooling-off periods, self-exclusion requests, and any responsible gaming assessments conducted |
mineph collects personal data through the following means:
You provide personal data to mineph directly when you register an account, complete the KYC verification process, make a deposit or withdrawal, contact our support team, submit a dispute, or respond to a responsible gaming self-assessment. The accuracy and completeness of this data is your responsibility; mineph relies on it for regulatory compliance and cannot be held responsible for consequences arising from inaccurate data you have provided.
When you access the mineph Platform, certain technical data is collected automatically by our servers and analytics infrastructure. This includes your IP address, device information, browser characteristics, session timestamps, and browsing behaviour within the Platform. This data is used for security monitoring, fraud detection, and platform performance optimisation.
mineph may receive personal data about you from third parties in the following circumstances: from payment providers (GCash, PayMaya, BPI, BDO, Metrobank) in connection with deposit and withdrawal transaction confirmation; from identity verification service providers in connection with KYC processing; and from PAGCOR or Philippine government authorities in connection with regulatory compliance enquiries or investigations.
mineph processes your personal data only for specific, legitimate purposes and only where a lawful basis under the Data Privacy Act of 2012 exists for doing so. The following table sets out our primary processing activities:
| Processing Purpose | Lawful Basis (RA 10173) |
|---|---|
| Account registration and management | Performance of contract (Terms & Conditions) |
| KYC identity and age verification | Legal obligation (PAGCOR licence conditions, AMLA) |
| Processing deposits and withdrawals in PHP | Performance of contract |
| Anti-money laundering monitoring and reporting | Legal obligation (RA 9160, AMLA) |
| Fraud detection and platform security | Legitimate interest of mineph and protection of other players |
| Customer support and dispute resolution | Performance of contract; legitimate interest |
| Responsible gaming monitoring and tools | Legal obligation (PAGCOR responsible gaming requirements) |
| Sending transactional communications (deposit confirmations, security alerts) | Performance of contract |
| Sending promotional communications and bonuses | Consent (you may withdraw at any time) |
| Platform analytics and product improvement | Legitimate interest (using anonymised/aggregated data where possible) |
| Compliance with PAGCOR reporting requirements | Legal obligation |
To process your GCash, PayMaya, BPI, BDO, and Metrobank transactions, mineph shares the minimum personal and financial data necessary with the relevant payment service provider to complete the transaction. These providers are bound by their own privacy policies and Philippine financial regulations.
mineph engages accredited third-party KYC verification providers to conduct identity and age verification in compliance with PAGCOR requirements. The KYC provider processes your government ID images and selfie photographs solely for the purpose of verification and as authorised by mineph. KYC providers are contractually bound by data processing agreements.
mineph is required by law to share certain personal and financial data with PAGCOR as part of its licence obligations. Under the Anti-Money Laundering Act (RA 9160) and related legislation, mineph may also be required to report specific transactions or player data to the Anti-Money Laundering Council (AMLC) and other Philippine government agencies. Such disclosures are made without notice to the data subject where legally required.
mineph will disclose personal data to Philippine law enforcement authorities, courts, or other public bodies where required to do so by a lawful order, subpoena, or warrant, or where we believe in good faith that disclosure is necessary to prevent fraud, protect the rights and safety of mineph or other players, or comply with applicable law.
mineph uses cloud computing and infrastructure services to operate the Platform. Where these services involve the processing of personal data, providers act as Personal Information Processors under data processing agreements that require them to process data only on mineph's instructions and to implement appropriate security measures.
mineph operates primarily within the Philippines and processes personal data on infrastructure located within Philippine data centres where practicable. Where the use of third-party service providers involves the transfer of personal data outside the Philippines — for example, where a KYC verification provider or cloud infrastructure provider operates processing facilities in another jurisdiction — mineph ensures that such transfers comply with Section 21 of the Data Privacy Act and the NPC's rules on cross-border data transfers.
Such transfers are made only where: (a) the recipient country has been assessed as providing adequate protection equivalent to the DPA; (b) appropriate contractual safeguards are in place, including standard contractual clauses approved by or equivalent to those recognised by the NPC; or (c) the transfer is necessary for the performance of your contract with mineph or for legal compliance purposes.
mineph retains personal data only for as long as is necessary for the purposes for which it was collected, and in any event for no shorter than the minimum periods required by applicable Philippine law and PAGCOR regulations. The primary retention obligations are as follows:
| Data Category | Minimum Retention Period | Legal Basis |
|---|---|---|
| Account and identity records | 5 years after account closure | PAGCOR licence conditions; AMLA |
| Financial transaction records | 5 years after transaction date | RA 9160 (AMLA) |
| KYC verification data | 5 years after account closure | PAGCOR licence conditions |
| Game and betting history | 3 years after account closure | PAGCOR licence conditions |
| Support communications | 3 years after resolution | Legitimate interest (dispute resolution) |
| Marketing consent records | Duration of consent + 3 years | NPC guidelines on consent records |
Upon expiry of the applicable retention period, personal data is securely deleted or anonymised using methods compliant with NPC guidelines on personal data disposal.
mineph implements technical and organisational security measures appropriate to the nature of the personal data processed and the risks involved. These measures include, but are not limited to:
The mineph Platform uses cookies and similar tracking technologies to operate core Platform functionality, remember your preferences, maintain your authenticated session, and collect analytical data about how the Platform is used. The categories of cookies in use are as follows:
| Cookie Type | Purpose | Consent Required |
|---|---|---|
| Strictly Necessary | Session management, authentication, security tokens — cannot be disabled as they are essential for Platform operation | No (legitimate interest) |
| Functional | Remembering your language preference, preferred game lobby view, and responsible gaming settings | No (legitimate interest) |
| Analytical | Collecting anonymised usage statistics to understand how players navigate the Platform and identify areas for improvement | Yes (consent banner) |
| Marketing / Retargeting | mineph does not place third-party marketing or retargeting cookies on the Platform | N/A |
You may manage cookie preferences through your browser settings. Disabling strictly necessary cookies will impair the functionality of the Platform and may prevent you from accessing your Account.
Under Republic Act No. 10173 (the Data Privacy Act of 2012), you have the following rights in respect of the personal data mineph holds about you. These rights may be subject to limitations where mineph's legal and regulatory obligations require the continued processing or retention of your data.
Request a copy of the personal data mineph holds about you, together with information about how it is being processed.
Request the correction of inaccurate, incomplete, or outdated personal data held by mineph about you.
Request the deletion of personal data where processing is no longer necessary, subject to our legal and regulatory retention obligations.
Object to the processing of your personal data for direct marketing or on grounds relating to your particular situation where processing is based on legitimate interests.
Receive a structured, commonly used, machine-readable copy of personal data you provided to mineph based on your consent or a contract.
Lodge a complaint with the National Privacy Commission (NPC) of the Philippines if you believe mineph has breached your rights under the Data Privacy Act.
To exercise any of the above rights, submit a written request to the mineph Data Protection Officer at the contact details in Section 15. mineph will respond within 30 days of receiving a valid, verifiable request. Identity verification may be required before processing any data subject request to prevent unauthorised access to personal information.
mineph does not knowingly collect personal data from individuals under the age of 21. The mandatory KYC verification process — which requires government-issued Philippine photo identification — is the primary mechanism by which mineph verifies player age before permitting real-money activity.
If mineph becomes aware that it has inadvertently collected personal data from an individual under the age of 21, it will immediately close the associated account, return any deposited funds to the verified source account, delete the personal data collected, and report the incident to PAGCOR as required. If you believe that mineph has collected personal information from a person under 21 years of age, please contact the DPO at the contact details in Section 15 immediately.
mineph maintains a documented personal data breach response plan in accordance with NPC Circular 16-03. In the event of a personal data breach that is likely to result in a real risk of harm to affected data subjects, mineph will:
Notifications to affected players will be sent to the registered email address and mobile number on the Account and will clearly describe the nature of the breach, the categories of data affected, the likely consequences, and the measures mineph has taken or proposes to take in response.
mineph reserves the right to update this Privacy Policy from time to time to reflect changes in our data processing practices, applicable law, PAGCOR requirements, or NPC guidelines. Material changes — those that significantly affect your rights or the way we process your personal data — will be notified to registered players by email to the address on their Account at least 14 days before the changes take effect.
The effective date of the current version of this Policy is displayed at the top of this page. Your continued use of the mineph Platform after the effective date of an updated Policy constitutes your acknowledgement of the revised terms. If you object to any change, you may close your Account in accordance with the Terms & Conditions. The current version of this Policy is always accessible at mineph.app/privacy-policy.
mineph has designated a Data Protection Officer (DPO) as required under Section 21(c) of the Data Privacy Act of 2012. The DPO is responsible for overseeing mineph's compliance with the DPA, acting as the point of contact for data subjects exercising their rights, and liaising with the National Privacy Commission.
The DPO will acknowledge data subject requests within 5 business days and provide a substantive response within 30 days. Complex or high-volume requests may be extended by an additional 30 days with prior notice. If you are dissatisfied with mineph's response, you may file a complaint with the National Privacy Commission of the Philippines through its official channels.
mineph is a PAGCOR-regulated platform that treats your personal data with the same seriousness as your PHP balance. 500+ games, instant GCash payouts, and a privacy framework fully compliant with the Philippine Data Privacy Act.