phdraem is committed to protecting the personal data of every player and visitor on our platform. This Privacy Policy explains what information we collect, why we collect it, how it is used and stored, who it may be shared with, and what rights you hold as a data subject under the Philippine Data Privacy Act of 2012 (Republic Act No. 10173). Please read this Policy carefully alongside our Terms & Conditions.
For the purposes of the Philippine Data Privacy Act of 2012 (RA 10173) and its Implementing Rules and Regulations, the data controller responsible for the personal information collected through the phdraem platform (accessible at phdraem.one) is phdraem, the operating entity behind the platform.
As the data controller, phdraem determines the means and purposes for which personal data is processed. We are responsible for ensuring that all processing activities carried out on behalf of phdraem comply with applicable data protection law. Inquiries regarding data protection matters may be directed to our Data Protection Officer using the contact details in Section 15.
phdraem operates the online casino platform at phdraem.one, serving players across the Philippines. The platform is operated in compliance with PAGCOR's regulatory framework and the Philippine Data Privacy Act. All data processing activities described in this Policy are conducted under that regulatory context.
This Privacy Policy applies to all personal data collected and processed by phdraem in connection with:
This Policy does not apply to third-party websites, payment processors, or game providers whose services are accessible via the phdraem platform. Those entities operate under their own separate privacy policies, and phdraem does not control or accept responsibility for their data handling practices.
phdraem collects the minimum personal data necessary to operate the platform lawfully and to provide you with a safe, functional, and compliant casino experience. The categories of personal data we collect are as follows:
| Category | Specific Data Elements | Collection Point |
|---|---|---|
| Identity Data | Full legal name, date of birth, nationality, gender | Account registration; KYC verification |
| Contact Data | Philippine mobile number, email address (if provided) | Account registration |
| Verification Data | Government-issued Philippine ID type and number, ID document images, facial verification data (where applicable) | KYC process prior to first withdrawal |
| Financial Data | GCash number, PayMaya number, bank account details (BDO, BPI, Metrobank), USDT wallet address, transaction history | Cashier / payment processing |
| Gaming Data | Game activity logs, wager history, win/loss records, session durations, bonus usage, responsible gaming settings | Automatically generated during platform use |
| Technical Data | IP address, device type, operating system, browser type, carrier, screen resolution, session tokens | Automatically collected on platform access |
| Communications Data | Live chat transcripts, support emails, submitted feedback, survey responses | Support interactions; surveys |
| Marketing Preferences | Promotional opt-in/opt-out status, notification preferences, VIP tier and points history | Account settings; promotional interactions |
phdraem does not collect sensitive personal information as defined under RA 10173 (such as health data, religious beliefs, or political affiliations) unless such information is voluntarily disclosed by you in the context of a responsible gaming application or a support interaction where it is directly relevant.
The majority of personal data phdraem holds is provided directly by you during: (a) the account registration process, where you submit your mobile number, chosen password, and date of birth; (b) the KYC verification process, where you upload a government-issued Philippine identification document; (c) cashier transactions, where payment method details are submitted; and (d) communications with the phdraem support team via live chat or email.
When you access phdraem.one or the phdraem mobile application, certain technical and gaming data is collected automatically through server logs, session tracking, and cookies. This includes your IP address, device identifiers, browser characteristics, pages visited, games launched, session duration, and in-game activity. This data is essential to platform security, fraud prevention, and compliance with PAGCOR's record-keeping requirements.
phdraem may receive limited personal data from third-party sources in specific circumstances, including: (a) payment processors confirming the status and details of deposit and withdrawal transactions; (b) identity verification service providers used to support the KYC process; and (c) PAGCOR or law enforcement authorities in the context of regulatory compliance or fraud investigation.
phdraem processes personal data for the following specific, legitimate purposes:
Under the Philippine Data Privacy Act, phdraem processes personal data on the following legal bases:
You may withdraw your consent for marketing communications and non-essential cookies at any time through your phdraem Account settings. Withdrawal of consent does not affect processing carried out on other legal bases, such as contractual necessity or legal obligation, and does not entitle you to deletion of data that phdraem is legally required to retain.
phdraem does not sell, rent, or trade your personal data to third parties for commercial purposes. Personal data is shared only in the following circumstances, and only to the extent necessary:
phdraem does not sell personal data. phdraem does not share personal data with advertisers or marketing data brokers. phdraem does not disclose Account information to other players. phdraem does not share data with unrelated third parties without a specific lawful basis for doing so.
phdraem retains personal data only for as long as is necessary to fulfil the purposes for which it was collected, unless a longer retention period is required or permitted by applicable law.
Upon expiry of the applicable retention period, personal data is securely deleted or anonymised in accordance with phdraem's data destruction procedures.
phdraem implements appropriate technical and organisational security measures to protect personal data against unauthorised access, disclosure, alteration, loss, or destruction. These measures include, but are not limited to:
While phdraem takes all reasonable measures to protect your personal data, no security system is completely impenetrable. In the event of a personal data breach that is likely to adversely affect your rights and freedoms, phdraem will notify you and the National Privacy Commission in accordance with the breach notification requirements under RA 10173.
phdraem uses cookies and similar tracking technologies (such as session tokens and local storage) on the phdraem.one website and mobile application to ensure core platform functionality, maintain your session state, and support security and analytics purposes.
| Cookie Type | Purpose | Basis | Duration |
|---|---|---|---|
| Strictly Necessary | Session authentication, login state, CSRF protection, security tokens. The platform cannot function without these. | Contractual / Legal Obligation | Session |
| Functional | Remembering your language, game preferences, lobby layout, and responsible gaming settings between sessions. | Legitimate Interest | Up to 12 months |
| Analytics | Anonymised usage statistics — page views, game launch counts, navigation paths — used to improve the platform experience. | Consent | Up to 12 months |
| Security & Fraud | Device fingerprinting signals used to detect account takeover attempts, multiple account creation, and abnormal session behaviour. | Legitimate Interest | Up to 30 days |
Strictly necessary cookies cannot be disabled, as they are essential for the phdraem platform to function. Consent-based analytics cookies may be declined or withdrawn through the phdraem cookie settings panel or through your browser's privacy settings. Note that disabling functional cookies may affect your experience — for example, your game preferences may not be remembered between sessions.
As a data subject under the Philippine Data Privacy Act of 2012, you have the following rights in relation to the personal data phdraem holds about you. You may exercise these rights by contacting phdraem's Data Protection Officer using the contact details in Section 15.
The right to be informed of the existence of processing of your personal data and the details of that processing — fulfilled by this Privacy Policy.
The right to request a copy of the personal data phdraem holds about you, along with information on how it is processed. Requests will be fulfilled within 15 business days.
The right to request correction of inaccurate or incomplete personal data held about you. Contact support or update directly in your Account settings where the field is editable.
The right to request deletion of personal data that is no longer necessary, subject to phdraem's legal obligations to retain certain data under PAGCOR regulations and AML law.
The right to object to processing carried out on the basis of legitimate interests, including direct marketing. Withdrawal of marketing consent is effective immediately upon submission.
The right to receive personal data you have provided to phdraem in a structured, commonly used, machine-readable format where technically feasible.
The right to be indemnified for any damages sustained as a result of inaccurate, incomplete, outdated, false, unlawfully obtained, or unauthorised use of your personal data.
The right to lodge a complaint with the National Privacy Commission (NPC) if you believe phdraem has violated your data privacy rights. NPC contact information is publicly available at privacy.gov.ph.
phdraem will respond to all data subject requests within fifteen (15) business days of receipt. Complex requests may require additional time, in which case we will notify you of the extended timeline. We may require identity verification before processing a data subject request to prevent unauthorised access to another person's data.
The phdraem platform is strictly restricted to individuals aged 21 years and above. phdraem does not knowingly collect personal data from persons under the age of 21. The 21+ age requirement is enforced through the KYC identity verification process required before any withdrawal is processed.
If phdraem discovers, or has reasonable grounds to believe, that personal data has been collected from a person under the age of 21, the relevant Account will be immediately suspended, all associated personal data will be deleted or anonymised to the extent not required to be retained for regulatory purposes, and the matter will be referred to PAGCOR in accordance with regulatory obligations.
If you are under 21 years of age, you must not register an Account on phdraem or access any real-money gaming features. If a person under 21 has accessed your device and used phdraem, contact our support team immediately so we can take appropriate action to protect the minor and secure your Account.
Some of the third-party service providers engaged by phdraem — including game providers, cloud infrastructure providers, and technology partners — may be located outside the Philippines. Where personal data is transferred to processors or sub-processors outside the Philippines, phdraem ensures that appropriate safeguards are in place, including:
phdraem does not transfer personal data to jurisdictions that cannot provide an adequate level of protection without first implementing the safeguards described above. For information about specific cross-border transfer arrangements, contact the Data Protection Officer at the address in Section 15.
phdraem reserves the right to update or amend this Privacy Policy at any time to reflect changes in our data processing practices, legal obligations, or platform features. Material changes to this Policy will be communicated to registered Players via the phdraem platform notification system and/or via SMS to the registered mobile number at least seven (7) days prior to the effective date of the change.
The "Last Updated" date displayed at the top of this page reflects the most recent revision. We encourage you to review this Policy periodically to remain informed about how phdraem handles your personal data. Continued use of the phdraem platform following any update constitutes acceptance of the revised Policy.
Previous versions of this Privacy Policy are available on request by contacting the Data Protection Officer. For material changes, phdraem will maintain a summary of the key changes introduced in the most recent update.
If you have any questions, concerns, or requests regarding this Privacy Policy or the personal data phdraem holds about you, you may contact us through the following channels. All data privacy inquiries are handled by the phdraem Data Protection Officer, who is responsible for ensuring compliance with RA 10173.
If you believe your data privacy rights have been violated and phdraem has not adequately addressed your concern, you have the right to lodge a formal complaint with the National Privacy Commission of the Philippines (NPC). The NPC is the independent regulatory body responsible for enforcing RA 10173. Contact details for the NPC are publicly available through official Philippine government information channels.
These six cards summarise phdraem's core data privacy commitments in plain language. For full legal detail, refer to the relevant sections of the Policy above.
phdraem does not sell, rent, or trade personal data to third parties for commercial purposes. Data is shared only with service providers who need it to operate the platform — and only under binding confidentiality obligations.
All connections to phdraem use TLS 1.3. Sensitive data including ID documents and payment details is encrypted at rest with AES-256. Passwords are never stored in recoverable form — only as hashed credentials.
phdraem processes all personal data in accordance with RA 10173 — the Philippine Data Privacy Act of 2012. A designated Data Protection Officer oversees compliance across all data processing activities on the platform.
phdraem does not hold personal data indefinitely. Retention periods are defined per data category, with the minimum necessary applied. Data is securely deleted or anonymised at the end of each retention period.
phdraem sends promotional communications only with your consent. You can opt out of marketing messages at any time through your Account settings. Opt-out is processed immediately and does not affect your access to the platform.
Access, correction, deletion, portability, objection, and complaint rights are all supported under RA 10173. Requests are handled by phdraem's Data Protection Officer and responded to within 15 business days.
phdraem is built to protect your personal data at every step — from registration through to withdrawal. If you've reviewed the Policy and you're ready to play, the phdraem Casino lobby is waiting. New accounts take under two minutes to set up. Players must be 21 or older.