63boss Privacy Policy

This Privacy Policy ("Policy") describes how 63boss ("the Company," "we," "us," or "our") collects, uses, stores, and protects the personal information of users ("you," "your," or "Player") who access or use the 63boss website, mobile platform, and all associated gaming services (collectively, the "Platform").

63boss is committed to protecting your privacy and handling your personal data with the highest standards of care, transparency, and security. This Policy has been prepared in compliance with the Philippine Data Privacy Act of 2012 (Republic Act No. 10173), its Implementing Rules and Regulations, and the applicable issuances of the National Privacy Commission (NPC).

By registering an account on the 63boss Platform, accessing our services, or otherwise providing us with your personal information, you acknowledge that you have read and understood this Privacy Policy and consent to the collection and processing of your personal data as described herein.

This Policy should be read alongside our Terms & Conditions and Responsible Gaming Policy, both of which form part of your overall agreement with 63boss.

63boss collects personal data through several channels and at various points during your use of the Platform. The categories of personal data we collect include the following:

2.1 Registration Data

When you create a 63boss account, we collect the information you provide during the registration process, including:

• Full legal name
• Date of birth (to verify you are 21 years of age or older)
• Residential address (including city, province, and postal code)
• Email address
• Mobile phone number
• Username and encrypted password
• Preferred currency (Philippine Peso / PHP)

2.2 Identity Verification (KYC) Data

To comply with Philippine Anti-Money Laundering Act (AMLA) requirements and PAGCOR regulations, we may collect:

• Government-issued photo ID (Philippine passport, driver's license, SSS/UMID card, PhilSys National ID, or PRC ID)
• Proof of residential address (utility bill, bank statement, or barangay certificate dated within 3 months)
• Selfie or live photo for facial verification purposes
• Proof of payment method ownership (e.g., screenshot of GCash or PayMaya account showing your registered name)

2.3 Financial Transaction Data

• Deposit and withdrawal amounts, dates, and methods
• GCash or PayMaya account reference numbers
• Bank account details (BPI, BDO, Metrobank, or other Philippine banks) where used for transactions
• Transaction history and account balance records

2.4 Gaming Activity Data

• Game session logs, including games played, stakes, wins, and losses
• Bonus and promotion usage history
• Responsible gaming tool settings (deposit limits, session limits, self-exclusion status)

2.5 Technical and Device Data

• IP address and approximate geolocation
• Device type, operating system, and browser information
• Session timestamps and duration
• Cookies and similar tracking technologies (see Section 6)

2.6 Communications Data

• Records of your communications with our customer support team
• Feedback, complaints, and dispute records
• Email and in-platform notification preferences

63boss uses the personal data we collect for the following specific purposes. We do not use your data for any purpose not listed here without first obtaining your explicit consent.

Under the Philippine Data Privacy Act of 2012, 63boss processes your personal data on the following legal bases:

• Contractual Necessity: Processing is necessary to perform our contract with you — specifically, to create and manage your account, process your transactions, and deliver gaming services as described in our Terms & Conditions.
• Legal Obligation: Processing is required to comply with applicable Philippine laws and regulations, including the Anti-Money Laundering Act (AMLA), PAGCOR licensing requirements, and National Privacy Commission regulations.
• Legitimate Interests: Processing is necessary for the legitimate interests of 63boss, including fraud prevention, platform security, responsible gaming monitoring, and improving our services — provided these interests are not overridden by your rights and freedoms.
• Consent: For certain processing activities — such as sending you marketing communications or using non-essential cookies — we rely on your freely given, specific, informed, and unambiguous consent. You may withdraw this consent at any time.

63boss does not sell, rent, or trade your personal data to third parties for commercial purposes. We may share your personal data with the following categories of recipients, strictly on a need-to-know basis and subject to appropriate data protection safeguards:

• Payment Service Providers: GCash, PayMaya, BPI, BDO, Metrobank, and other payment processors require certain personal and financial data to process your deposits and withdrawals. These providers are bound by their own privacy policies and applicable Philippine financial regulations.
• Identity Verification Partners: Third-party KYC and identity verification service providers who assist us in verifying your identity and complying with AML obligations. These providers process your data solely on our instructions.
• Game Software Providers: Our game content providers may receive anonymized or pseudonymized gaming activity data for the purpose of game performance monitoring and improvement. They do not receive your personally identifiable information.
• Regulatory Authorities: We are legally obligated to share certain data with the Philippine Amusement and Gaming Corporation (PAGCOR), the Anti-Money Laundering Council (AMLC), the National Privacy Commission (NPC), and other competent authorities upon lawful request or as required by applicable regulations.
• Law Enforcement: We may disclose personal data to law enforcement agencies, courts, or other government bodies where required by law, court order, or to protect the rights, property, or safety of 63boss, our players, or the public.
• Professional Advisors: Our legal counsel, auditors, and other professional advisors may access personal data on a strictly confidential basis where necessary to provide their services to 63boss.

63boss uses cookies and similar tracking technologies to operate the Platform, remember your preferences, analyze usage patterns, and deliver a personalized gaming experience. The following types of cookies are used on the 63boss Platform:

• Strictly Necessary Cookies: These cookies are essential for the Platform to function correctly. They enable core features such as account login, session management, and security. These cookies cannot be disabled without affecting Platform functionality.
• Functional Cookies: These cookies remember your preferences and settings — such as your preferred language, display settings, and responsible gaming tool configurations — to provide a more personalized experience.
• Analytics Cookies: We use anonymized analytics data to understand how players use the Platform, which games are most popular, and where technical issues occur. This helps us improve the Platform over time. Analytics data is aggregated and does not identify individual players.
• Marketing Cookies: With your consent, we may use cookies to deliver relevant promotional content about 63boss offers and games. You can opt out of marketing cookies at any time through your browser settings or our cookie preference center.

63boss retains your personal data only for as long as is necessary to fulfill the purposes for which it was collected, or as required by applicable Philippine law and regulatory obligations. The following retention periods apply:

Upon expiry of the applicable retention period, personal data is securely deleted or anonymized in accordance with our internal data disposal procedures. Where data is anonymized rather than deleted, the resulting anonymized data may be retained indefinitely for statistical and analytical purposes.

63boss implements a comprehensive set of technical and organizational security measures to protect your personal data against unauthorized access, disclosure, alteration, loss, or destruction. Our security framework includes:

• 256-bit SSL/TLS Encryption: All data transmitted between your device and 63boss servers is encrypted using industry-standard SSL/TLS protocols, ensuring that your personal and financial information cannot be intercepted in transit.
• Encrypted Data Storage: Sensitive personal data, including KYC documents and financial records, is stored in encrypted form on secure servers with restricted access controls.
• Access Controls: Access to personal data is strictly limited to 63boss personnel who require it to perform their job functions. All staff with access to personal data are subject to confidentiality obligations and regular data protection training.
• Multi-Factor Authentication: Administrative access to systems containing personal data requires multi-factor authentication to prevent unauthorized access.
• Regular Security Audits: 63boss conducts regular internal and third-party security audits and penetration testing to identify and remediate vulnerabilities in our systems.
• Incident Response: We maintain a documented data breach response procedure. In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the National Privacy Commission and affected players within the timeframes required by the Data Privacy Act.

Under the Philippine Data Privacy Act of 2012, you have the following rights with respect to your personal data held by 63boss. You may exercise any of these rights by contacting our Data Protection Officer at the details provided in Section 14.

The 63boss Platform is strictly intended for adults aged 21 years and above, in accordance with Philippine gaming regulations. We do not knowingly collect personal data from individuals under the age of 21.

If you are under 21 years of age, you are not permitted to register an account, access the Platform, or use any of the services offered by 63boss. If you are a parent or guardian and believe that a minor has provided personal data to 63boss, please contact us immediately at [email protected] so that we can take appropriate action, including deletion of the relevant data and closure of any account created in violation of our age requirements.

63boss primarily stores and processes your personal data on servers located within the Philippines or in jurisdictions that provide an adequate level of data protection as recognized by the National Privacy Commission.

In certain circumstances, your personal data may be transferred to, or accessed by, service providers or partners located outside the Philippines — for example, where we use internationally hosted cloud infrastructure or third-party software platforms. Where such transfers occur, 63boss ensures that appropriate safeguards are in place, including:

• Contractual clauses that require the recipient to protect your personal data to standards equivalent to those required under Philippine law.
• Transfers only to jurisdictions with data protection laws recognized as adequate by the NPC or equivalent regulatory bodies.
• Binding corporate rules or other approved transfer mechanisms where applicable.

By using the 63boss Platform, you acknowledge and consent to the transfer of your personal data as described in this section, subject always to the protections described above.

The 63boss Platform may contain links to third-party websites or services — for example, links to payment provider portals or regulatory authority websites. This Privacy Policy applies solely to the 63boss Platform and does not extend to any third-party websites or services.

63boss is not responsible for the privacy practices, content, or security of any third-party websites. We encourage you to review the privacy policies of any third-party services you access through links on the 63boss Platform before providing them with your personal information.

63boss reserves the right to update or amend this Privacy Policy at any time to reflect changes in our data processing practices, applicable law, or regulatory requirements. The "Last Updated" date at the top of this page will be revised whenever material changes are made.

Where changes are significant, we will notify registered players via email or an in-platform notification prior to the changes taking effect. We encourage you to review this Policy periodically to stay informed about how we protect your personal data.

If you have any questions, concerns, or requests relating to this Privacy Policy or the processing of your personal data by 63boss, please contact our Data Protection Officer (DPO) using the details below. Our DPO is responsible for overseeing 63boss's compliance with the Philippine Data Privacy Act and this Policy.

If you are not satisfied with our response to your privacy inquiry, or if you believe that 63boss has violated your rights under the Philippine Data Privacy Act, you have the right to lodge a complaint with the National Privacy Commission (NPC) of the Philippines. The NPC is the independent government body responsible for administering and implementing the Data Privacy Act of 2012.