Your personal data belongs to you. This Privacy Policy explains exactly what information ezph collects, why we collect it, how we use it, who we may share it with, and the rights you hold over your own data under the laws of the Republic of the Philippines.
The Philippine Data Privacy Act of 2012 (Republic Act 10173) gives you meaningful rights over your personal information. ezph is legally obligated to honor every one of them. Here is what you are entitled to as an ezph account holder.
You have the right to be told clearly what personal data ezph collects about you, the purpose of that collection, and how it will be used — before or at the time of collection. This Privacy Policy is how ezph fulfills that obligation. It is written in plain English, not buried in impenetrable legal boilerplate.
You may request a copy of all personal data that ezph holds about you at any time. This includes your registration details, account activity records, transaction history, and any KYC documentation on file. Requests will be fulfilled within a reasonable period and at no charge for standard requests.
If any personal data held by ezph is inaccurate, incomplete, or out of date, you have the right to have it corrected. You may update many details directly through your account settings. For information that cannot be self-updated — such as your name or date of birth — contact ezph support with supporting documentation.
Subject to applicable legal and regulatory retention requirements — including PAGCOR's record-keeping obligations and anti-money laundering laws — you may request the deletion of your personal data from ezph's systems. Where deletion is not immediately possible due to legal obligations, ezph will inform you of the applicable retention period and restrict further processing in the interim.
You may object to the processing of your personal data for direct marketing purposes at any time. Once an objection is received, ezph will cease processing your data for that purpose without requiring justification from you. You may also object to processing based on legitimate interests where you believe that interest is overridden by your own privacy rights.
Where technically feasible and legally permissible, you may request that ezph provide your personal data in a structured, commonly used, and machine-readable format — allowing you to transmit that data to another service provider. This right applies to data you have provided to ezph directly and that is processed on the basis of your consent or a contract with you.
For the purposes of the Philippine Data Privacy Act of 2012 (Republic Act 10173) and its implementing rules, the data controller responsible for the personal information collected through the ezph platform is ezph, operator of the website located at ezph.asia.
ezph has appointed a Data Protection Officer (DPO) in accordance with the requirements of the National Privacy Commission. The DPO is responsible for overseeing ezph's compliance with the Data Privacy Act and may be contacted at the details set out in Section 15 of this Policy.
This Privacy Policy applies to all personal data processed by ezph in connection with the operation of the ezph platform and the provision of online gaming services to players in the Philippines and other jurisdictions where the platform is lawfully accessible.
This Privacy Policy applies to all personal data that ezph collects and processes in connection with:
This Policy does not apply to third-party websites, payment processors, or other services that may be linked from or integrated with the ezph platform. Those services operate under their own privacy policies, and ezph is not responsible for their data practices.
ezph collects personal data through several channels. The following table summarizes the categories of data collected and the context in which they are gathered.
| Category | Examples of Data | Collection Context |
|---|---|---|
| Identity Data | Full legal name, date of birth, nationality, government ID number | Account registration; KYC verification |
| Contact Data | Email address, Philippine mobile number, residential address | Account registration; account settings updates |
| Financial Data | GCash account reference, Maya account reference, bank account details (last 4 digits), transaction amounts and dates | Deposit and withdrawal processing; AML compliance |
| Gaming Activity Data | Games played, session duration, wager amounts, win/loss outcomes, responsible gaming tool settings | Platform use; responsible gaming monitoring; regulatory reporting |
| Technical Data | IP address, device type, operating system, browser type, session login times, geolocation (country/region level) | Platform access; fraud prevention; security monitoring |
| Communications Data | Support chat transcripts, email correspondence, complaint records | Customer support interactions; dispute resolution |
| KYC Documentation | Scanned government ID images (UMID, driver's license, SSS card, PhilHealth ID, passport), selfie verification images | Identity verification as required by PAGCOR and AML regulations |
| Marketing Preferences | Promotional opt-in status, bonus participation history, communication channel preferences | Account settings; promotional participation |
Most personal data held by ezph is data that you provide directly — through the registration form, the KYC verification process, when making deposits or requesting withdrawals, when contacting customer support, or when updating your account settings. You are not obligated to provide this data, but without it, ezph may not be able to provide you with some or all of the platform's services.
When you access the ezph platform, certain technical data is collected automatically by our servers and analytics systems. This includes your IP address, the device and browser you are using, the pages you visit within the platform, session timestamps, and error logs. This data is used for security monitoring, fraud detection, platform optimization, and regulatory compliance purposes.
ezph may receive personal data about you from third parties in limited circumstances. This includes confirmation data from payment processors (such as GCash, Maya, or partner banks) confirming that a deposit or withdrawal has been processed, and identity verification data from third-party KYC service providers where used to assist in the verification process.
ezph uses personal data only for legitimate, specified purposes. The primary purposes for which your personal data is processed are as follows:
Under the Philippine Data Privacy Act, personal data may only be processed if there is a lawful basis for doing so. ezph relies on the following legal bases for processing your personal information:
ezph does not sell, rent, or commercially trade your personal data to third parties under any circumstances. Personal data is shared only in the following limited and necessary circumstances:
ezph engages carefully selected third-party service providers to assist in the operation of the platform. These include payment processing partners (GCash, Maya, BPI, BDO, Metrobank, and others), KYC and identity verification service providers, cloud infrastructure and hosting providers, and customer support platform providers. All such providers are bound by contractual obligations to handle your personal data only as instructed by ezph, to maintain appropriate security standards, and to delete or return data upon termination of the service relationship.
ezph is legally required to share certain information with PAGCOR and other Philippine regulatory bodies in connection with its gaming license, anti-money laundering obligations, and applicable reporting requirements. Such disclosures are made pursuant to legal obligation and ezph is in many cases legally prohibited from informing you when a regulatory disclosure has been made.
ezph may disclose personal data to Philippine law enforcement agencies, courts, or other government authorities where required by a valid legal order, warrant, or other lawful process. ezph will use reasonable efforts to notify you of any such demand prior to disclosure where legally permitted to do so.
In the event of a merger, acquisition, asset sale, or other corporate restructuring involving ezph, personal data held about platform users may be transferred to the acquiring or successor entity as part of the transaction. In such circumstances, ezph will take reasonable steps to ensure that your privacy rights continue to be respected under any new controlling entity and will notify registered users of any material change in data controllership.
The ezph platform uses cookies and similar tracking technologies to support the operation of the platform and to collect analytical data about how users interact with it. Cookies are small text files stored by your browser on your device when you access the ezph website.
You may manage cookie preferences through your browser settings. Note that disabling strictly necessary cookies will impair or prevent your ability to use the ezph platform. Disabling functional or analytical cookies will not prevent you from using the platform but may affect your experience.
ezph retains personal data only for as long as necessary to fulfill the purposes for which it was collected, subject to any longer retention periods required by law or regulation.
For active accounts, personal data is retained throughout the duration of your relationship with ezph and for a period of at least five (5) years following account closure, in accordance with PAGCOR's record-keeping requirements and the Anti-Money Laundering Act's transaction record retention obligations.
KYC documentation — including copies of government-issued identification documents — is retained for the period required by PAGCOR regulations, which currently mandate retention for a minimum of five (5) years from the date of submission or account closure, whichever is later.
Communications data, including customer support transcripts and complaint records, is retained for a minimum of three (3) years from the date of the most recent interaction, to support dispute resolution processes.
Where personal data is retained solely for legal or regulatory compliance purposes and is no longer required for operational purposes, access to that data will be restricted within ezph's systems to personnel with a specific need for access.
ezph implements technical and organizational security measures designed to protect your personal data from unauthorized access, disclosure, alteration, and destruction. These measures include:
The ezph platform's primary infrastructure is located within or operated in connection with service providers that may process data outside the Philippines. Where personal data is transferred outside the Philippines, ezph takes steps to ensure that appropriate safeguards are in place to protect your data to a standard equivalent to that required under the Philippine Data Privacy Act.
Safeguards used for international transfers include contractual clauses that impose data protection obligations on recipient organizations and, where applicable, transfers only to jurisdictions recognized as providing an adequate level of data protection. ezph will not transfer your personal data internationally where adequate safeguards cannot be established.
As an ezph account holder and data subject under the Philippine Data Privacy Act, you have the following rights in relation to your personal data:
The right to be provided with clear information about the processing of your personal data — including the identity of the data controller, the purposes of processing, and the categories of data involved. This Privacy Policy is the primary mechanism through which ezph fulfills this obligation.
The right to request a copy of all personal data held about you by ezph. Requests will be fulfilled within 30 days of receipt, subject to identity verification. Contact the DPO at the details in Section 15.
The right to have inaccurate personal data corrected. Many fields may be updated directly through your account settings. For changes to core identity data, contact support with supporting documentation.
The right to request deletion of your personal data. This right is subject to legal retention obligations. Where deletion cannot be carried out immediately, ezph will restrict processing and inform you of the applicable timeline.
The right to object to processing based on legitimate interests or direct marketing. Objections to direct marketing will be honored immediately and without requirement for justification. Other objections will be assessed on their merits.
The right to receive data you have provided to ezph in a structured, machine-readable format for transfer to another service. This right applies to data processed by automated means on the basis of consent or contract.
Where processing is based on your consent — primarily marketing communications — you may withdraw that consent at any time without affecting the lawfulness of processing carried out before withdrawal. Update your preferences through account settings or contact support.
To exercise any of the above rights, please submit a written request to the ezph Data Protection Officer using the contact details provided in Section 15 of this Policy. ezph will respond to all valid requests within 30 days. Where a request is complex or numerous, this period may be extended by a further 30 days — you will be informed of any extension within the initial 30-day period.
The ezph platform is strictly limited to adults who are 21 years of age or older, in compliance with PAGCOR regulations. ezph does not knowingly collect or process personal data from individuals under the age of 21.
All account registrations include a declaration of age, and ezph conducts age verification through its KYC process. Where ezph becomes aware that personal data has been provided by an individual under the age of 21 — whether through discovery during the KYC process, a complaint, or other means — the account will be suspended immediately, all associated data will be flagged for review, and any deposited funds will be returned to the originating payment method after the identity of the legitimate owner is established.
If you are aware of or suspect that a person under 21 has created an ezph account, please contact ezph support immediately so that appropriate action can be taken.
If you have a concern about how ezph handles your personal data, you are encouraged to first raise the matter directly with the ezph Data Protection Officer using the contact details in Section 15. ezph will investigate all privacy complaints promptly and will respond within 30 days of receipt of a written complaint.
If you are not satisfied with ezph's response to your complaint, or if you believe that ezph has processed your personal data in violation of the Philippine Data Privacy Act, you have the right to lodge a complaint with the National Privacy Commission (NPC) of the Philippines. The NPC is the independent government body responsible for enforcing the Data Privacy Act and investigating complaints from data subjects.
Information about how to file a complaint with the NPC is available through the NPC's official communications and publications. ezph will cooperate fully with any investigation conducted by the NPC.
ezph may update this Privacy Policy from time to time to reflect changes in law, regulatory requirements, the services offered on the platform, or our data processing practices. Updated versions will be published on this page with a revised effective date.
Where amendments to this Policy are material — meaning they significantly affect your rights or the way we process your personal data — ezph will notify registered users via email or in-platform notification prior to the revised Policy taking effect. The notification will describe the nature of the changes and the effective date.
Your continued use of the ezph platform after the effective date of any revised Privacy Policy constitutes your acknowledgment of the changes. If you do not accept the revised Policy, you should discontinue use of the platform and contact ezph to request account closure in accordance with the Terms and Conditions.
For all privacy-related queries, data subject access requests, or complaints, please contact the ezph Data Protection Officer using the following details:
Please include your full name, registered email address, and a description of your request or concern in all communications to the DPO. For access and rectification requests, ezph may ask you to provide proof of identity before fulfilling the request, to ensure that personal data is not disclosed to unauthorized parties.
This Privacy Policy is one of several documents that govern your use of the ezph platform. The full picture of your rights and obligations is found across all of them.
Existing players may access all account features via ezph Login. All use of the platform is governed by the ezph Terms & Conditions and this Privacy Policy. 21+ only.
Play Responsibly. Online gaming is strictly for adults 21 years and above. Gambling involves financial risk. Only play with money you can afford to lose. For support, visit our Responsible Gaming page. 21+ only.