Privacy Policy – jililo Casino Philippines 2026

Section 1

Definitions

In this Privacy Policy, the following terms carry the meanings set out below:

"jililo" / "we" / "us" / "our"

The online casino platform operating at jililo.vip, licensed by PAGCOR to provide online gambling services to eligible Philippine residents.

"Personal Data"

Any information from which a living individual can be identified, directly or indirectly, including name, date of birth, Philippine mobile number, email address, government ID details, IP address, and financial account information.

"Sensitive Personal Information"

As defined in RA 10173 — personal data about an individual's race, ethnic origin, marital status, age, color, religious, philosophical or political affiliations, health, education, genetic or sexual life, judicial records, and government-issued identification numbers.

"Data Subject"

You — any individual whose personal data is collected and processed by jililo.

"Processing"

Any operation performed on personal data, including collection, recording, storage, use, disclosure, erasure, or destruction.

"Data Protection Officer" (DPO)

The designated jililo officer responsible for ensuring compliance with RA 10173 and this Privacy Policy, and the primary contact for data subject rights requests and privacy inquiries.

"NPC"

The National Privacy Commission of the Philippines — the independent government body responsible for administering and enforcing the Data Privacy Act of 2012.

"AMLC"

The Anti-Money Laundering Council of the Philippines — the government body responsible for enforcing the Anti-Money Laundering Act (RA 9160) and related legislation, to which jililo may be required to disclose certain financial transaction data.

Section 2

About This Policy

This Privacy Policy describes how jililo Casino collects, uses, stores, discloses, and protects the personal data of individuals who access or register on jililo.vip. It applies to all jililo players, prospective players, visitors to the website, and individuals who contact jililo through any channel.

This Policy is issued pursuant to jililo's obligations as a personal information controller under the Data Privacy Act of 2012 (Republic Act 10173) and its Implementing Rules and Regulations (IRR), and in compliance with PAGCOR's licensing requirements regarding player data management.

By registering a jililo account or by otherwise providing personal data to jililo, you acknowledge that you have read and understood this Privacy Policy and you consent to the processing of your personal data as described herein. This consent is sought in accordance with Section 12 of RA 10173.

Consent and Withdrawal

Your consent to this Privacy Policy is freely given, specific, and informed. You have the right to withdraw consent at any time by contacting jililo's Data Protection Officer. Note that withdrawal of consent may affect our ability to continue providing certain services to you, as some data processing is required for the performance of your account contract or for our compliance with Philippine legal obligations.

Section 3

Data We Collect

jililo collects the following categories of personal data from players and site visitors:

Data Category	Specific Data Points	Purpose
Identity Data	Full legal name, date of birth, gender, nationality, government-issued ID type and number (e.g., PhilSys ID, passport, UMID, driver's license)	Account registration, KYC/AML compliance, age verification (21+), PAGCOR reporting
Contact Data	Philippine mobile number (Globe/Smart/DITO), email address, residential address	Account communications, OTP delivery, support, regulatory notifications
Financial Data	GCash account number, Maya account, BDO/BPI/Metrobank account details, USDT wallet address, Coins.ph identifier, transaction history	Payment processing, withdrawal verification, AML monitoring, AMLC reporting where required
Gaming Data	Game history, bet amounts, win/loss records, session duration, game preferences, bonus usage, responsible gaming tool settings	Service delivery, responsible gaming monitoring, fraud detection, regulatory reporting
Technical Data	IP address, device type and OS, browser type and version, screen resolution, session timestamps, login history	Security monitoring, fraud prevention, platform optimization, PAGCOR audit logs
Communications Data	Live chat transcripts, email correspondence, support tickets, feedback submissions	Customer service delivery, dispute resolution, quality improvement

Section 4

How We Collect Data

jililo collects personal data through the following methods:

Direct Provision: Information you provide when registering your Account, completing KYC verification, making deposits or withdrawals, or contacting jililo support.
Automated Collection: Technical data collected automatically when you access jililo.vip, including via cookies, web beacons, server logs, and similar tracking technologies described in Section 10.
Payment Processors: Transaction data received from GCash, Maya, BDO, BPI, Metrobank, and other payment processors when you deposit or withdraw funds.
Identity Verification Services: Data returned from third-party KYC verification providers used to validate government-issued ID documents submitted during Account verification.
Game Providers: Session and gameplay data received from certified game content providers whose software is integrated into the jililo platform.
Publicly Available Sources: Where necessary for fraud prevention or AML compliance, jililo may supplement player data with information from publicly available Philippine government databases.

Section 5

Legal Basis for Processing

jililo processes personal data on the following legal bases as provided under Section 12 and Section 13 of the Data Privacy Act of 2012:

Contractual Necessity: Processing necessary for the performance of the contract between you and jililo — specifically the account registration agreement and the provision of gaming services.
Legal Obligation: Processing required to comply with jililo's legal obligations under Philippine law, including PAGCOR licensing requirements, the Anti-Money Laundering Act (RA 9160), the Terrorism Financing Prevention and Suppression Act (RA 10168), and the Data Privacy Act itself.
Consent: Processing based on your freely given, specific, and informed consent for purposes such as marketing communications, optional personalization features, and any processing not covered by the above bases.
Legitimate Interests: Processing necessary for jililo's legitimate interests in operating a secure, fair, and sustainable gaming platform, where such interests are not overridden by your interests or fundamental rights — including fraud detection, platform security, and responsible gaming monitoring.

Section 6

How We Use Your Data

jililo uses collected personal data for the following specific purposes:

Account Registration and Management: Creating and maintaining your jililo Account, authenticating your identity at login, and managing your account settings and preferences.
Age and Identity Verification: Confirming that you are 21 years of age or older and that your identity matches the details on file, as required by PAGCOR for all licensed operators.
Payment Processing: Processing deposits and withdrawals via GCash, Maya, bank transfer, and other supported Philippine payment methods, and reconciling transactions.
AML and Fraud Compliance: Monitoring transactions and gameplay for activity that may constitute money laundering, terrorism financing, or fraud, and reporting to the AMLC, PAGCOR, or other competent Philippine authorities where required by law.
Customer Support: Responding to your support queries, resolving disputes, and communicating important Account-related information.
Responsible Gaming: Monitoring gameplay patterns to identify potential problem gambling behavior, enforcing self-exclusion and limit-setting requests, and delivering responsible gaming tools and communications.
Platform Improvement: Analyzing anonymized and aggregated usage data to improve the jililo platform's performance, game selection, user experience, and mobile optimization.
Security and Fraud Prevention: Detecting and preventing unauthorized Account access, chargebacks, bonus abuse, and other fraudulent activity.
Marketing Communications: Sending promotional offers, bonus announcements, and event notifications where you have provided consent or where we have a legitimate interest. You may opt out of marketing communications at any time via your Account Settings or by contacting support.
Regulatory Reporting: Providing required reports, player data, and transaction records to PAGCOR, the AMLC, the NPC, and other Philippine government authorities as required by law.

Section 7

Disclosure to Third Parties

7.1 Categories of Recipients. jililo may disclose your personal data to the following categories of third parties for the purposes described in this Policy:

Payment Service Providers: GCash (G-Xchange Inc.), Maya (Voyager Innovations Inc.), BDO Unibank, Bank of the Philippine Islands, Metrobank, and other payment processors required to execute your financial transactions.
KYC and Identity Verification Providers: Third-party service providers used to verify government-issued identification documents submitted for Account verification.
Game Content Providers: Certified game studios (including PG Soft, Pragmatic Play, Jili Games, and others) whose platforms receive limited session and player identifier data necessary to deliver game services.
IT and Hosting Providers: Cloud infrastructure and data hosting providers whose services underpin jililo's technical operations, subject to data processing agreements that bind them to RA 10173 standards.
Regulatory and Law Enforcement Authorities: PAGCOR, the AMLC, the National Privacy Commission, the Bureau of Internal Revenue (BIR), and other competent Philippine government authorities when legally required.
Professional Advisers: Legal counsel, auditors, and financial advisers, where disclosure is necessary for professional advice relating to jililo's business operations, subject to professional confidentiality obligations.

7.2 No Sale of Data. jililo does not sell, rent, license, or trade your personal data to any third party for their independent commercial purposes. Any third-party access to your personal data is strictly limited to the purposes described in this Policy.

7.3 Third-Party Data Processors. All third parties who process personal data on jililo's behalf are engaged under written data processing agreements that impose obligations consistent with RA 10173 and require appropriate technical and organizational security measures.

Section 8

International Data Transfers

jililo's primary data processing operations are conducted within the Philippines. However, certain service providers — particularly game content providers and cloud infrastructure partners — may process data in data centers located outside the Philippines.

Where personal data is transferred outside the Philippines, jililo ensures that appropriate safeguards are in place as required by the NPC, including:

Data processing agreements with contractual clauses that provide data protection standards equivalent to RA 10173;
Transfers only to jurisdictions that have been recognized by the NPC as providing adequate levels of data protection; or
The transfer being necessary for the performance of your Account contract (e.g., delivering live casino game streams from certified studios outside the Philippines).

You may request information about specific international data transfers affecting your personal data by contacting jililo's Data Protection Officer.

Section 9

Data Retention

jililo retains personal data for the minimum period necessary to fulfill the purposes for which it was collected, subject to the retention periods required by Philippine law:

Account Data: Retained for the duration of your active Account plus a minimum of 5 years following Account closure, in accordance with PAGCOR licensing requirements and the Anti-Money Laundering Act.
Financial Transaction Records: Retained for a minimum of 5 years from the date of each transaction, as required by the Anti-Money Laundering Act (RA 9160) and AMLC regulations.
KYC Documents: Retained for a minimum of 5 years from the date of verification, consistent with AML obligations. Copies of ID documents are stored in encrypted form.
Gaming History: Retained for a minimum of 3 years from the date of each session, for dispute resolution, regulatory audit, and responsible gaming monitoring purposes.
Support Communications: Retained for a maximum of 3 years from the date of each communication, unless required to be retained longer for ongoing dispute resolution.
Marketing Preferences: Retained until you opt out, plus 12 months for record-keeping purposes.

At the end of applicable retention periods, personal data is securely deleted or anonymized in a manner that permanently prevents re-identification.

Section 10

Cookies and Tracking Technologies

jililo.vip uses cookies and similar tracking technologies to operate the platform, maintain your login session, prevent fraud, and analyze site performance. The following cookie categories are used:

Strictly Necessary Cookies: Essential for the operation of jililo.vip, including maintaining your login session, remembering your language preference, and enabling the Cashier function. These cookies cannot be disabled without breaking site functionality.
Security Cookies: Used to detect fraud, monitor for unauthorized login attempts, and protect against cross-site request forgery (CSRF) attacks. These cookies are required for platform security and cannot be disabled.
Analytics Cookies: Used to collect anonymized data on how players navigate jililo.vip, which pages are most visited, and where technical errors occur. This data is used to improve the platform. These cookies may be disabled through your browser settings, though doing so will not affect your ability to use the platform.
Preference Cookies: Used to remember your in-platform preferences, such as your most recently played games and responsible gaming settings. Disabling these cookies means your preferences will not be saved between sessions.

You may manage cookie preferences through your browser settings. Most modern browsers allow you to refuse or delete cookies. Note that refusing strictly necessary or security cookies will impair your ability to use the jililo platform.

Section 11

Children's Privacy

jililo is strictly prohibited from accepting players under the age of 21 under PAGCOR's licensing requirements for online gambling in the Philippines. This age threshold is higher than the general definition of "minor" under Philippine law and reflects the specific regulatory requirements of the licensed gambling sector.

jililo does not knowingly collect personal data from individuals under 21 years of age. If jililo becomes aware that personal data has been collected from a person under 21 — whether through registration circumvention or misrepresentation of age — the relevant Account will be immediately closed, all deposits will be returned to the source payment method, and all personal data collected will be deleted from jililo's systems within 30 days.

If you believe that a person under 21 has registered on jililo, please contact our Data Protection Officer immediately at the contact details in Section 16.

Section 12

Your Data Subject Rights

Under the Data Privacy Act of 2012 (RA 10173), you have the following rights with respect to your personal data held by jililo. These rights are enforceable and jililo will respond to all valid requests within 15 business days of receipt, unless a longer period is permitted by law:

Right to be Informed: The right to know what personal data jililo collects, how it is used, with whom it is shared, and for how long it is retained — as set out in this Privacy Policy.
Right of Access: The right to request a copy of the personal data jililo holds about you, including a description of the purposes for which it is processed.
Right to Rectification: The right to request correction of any inaccurate, incomplete, or outdated personal data held by jililo. You may update certain Account information directly through your Account Settings.
Right to Erasure ("Right to be Forgotten"): The right to request deletion of your personal data where it is no longer necessary for the purposes collected, where you have withdrawn consent, or where processing is unlawful — subject to legal retention obligations that require jililo to retain certain data for minimum periods.
Right to Object: The right to object to the processing of your personal data based on legitimate interests, including profiling for direct marketing purposes. Where you object to marketing processing, jililo will cease such processing immediately.
Right to Data Portability: The right to receive a copy of the personal data you have provided to jililo in a structured, commonly used, machine-readable format.
Right to Damages: The right to claim compensation from jililo for damages suffered as a result of inaccurate, incomplete, outdated, false, unlawfully obtained, or unauthorized use of your personal data, in accordance with RA 10173.
Right to Complain to the NPC: The right to lodge a complaint with the National Privacy Commission if you believe jililo has processed your personal data in violation of RA 10173.

To exercise any of the above rights, submit a written request to jililo's Data Protection Officer using the contact details in Section 16. jililo may require verification of your identity before processing a data subject request to protect your data from unauthorized access.

Section 13

Security Measures

jililo implements the following technical and organizational measures to protect your personal data against unauthorized access, disclosure, alteration, or destruction:

Encryption in Transit: All data transmitted between your device and jililo's servers is encrypted using TLS 1.3 / 256-bit SSL.
Encryption at Rest: All personal data stored on jililo's servers is encrypted using AES-256 encryption.
Access Controls: Personal data is accessible only to authorized jililo personnel who require it to perform their job functions, controlled through role-based access management and multi-factor authentication for all staff accessing personal data systems.
Audit Logging: All access to personal data systems is logged and monitored. Logs are retained for a minimum of 12 months and reviewed periodically for anomalies.
Penetration Testing: jililo's technical infrastructure undergoes independent security penetration testing at least annually, with findings remediated according to severity level.
Vendor Security: All third-party service providers with access to jililo player data are required to maintain security standards equivalent to those described in this section, verified through contractual commitments and periodic reviews.

No data transmission over the internet or electronic storage method can be guaranteed 100% secure. jililo provides reasonable and industry-standard safeguards, but cannot guarantee the absolute security of your personal data.

Section 14

Data Breach Procedure

In the event that jililo becomes aware of a personal data breach affecting your information, jililo will:

Notify the National Privacy Commission (NPC) within 72 hours of becoming aware of the breach, in accordance with NPC Circular 16-03;
Notify affected data subjects without undue delay, providing details of the nature of the breach, the categories and approximate number of individuals affected, the likely consequences of the breach, and the measures taken or proposed to address the breach;
Take immediate steps to contain the breach, assess its scope, and prevent further unauthorized access or disclosure;
Document the breach, the remediation steps taken, and the notifications made, and retain such records for a minimum of 5 years.

Notification to data subjects will be made via the email address registered to your jililo Account, via SMS to your registered Philippine mobile number, or via in-platform notification, depending on the nature of the breach and the urgency of the communication.

Section 15

Amendments to This Policy

jililo reserves the right to update this Privacy Policy at any time to reflect changes in our data processing practices, changes in applicable Philippine law, or changes in jililo's business operations. Material changes — particularly changes that affect your rights or significantly change how we process your personal data — will be communicated to you via email to your registered address and/or via a prominent notice on jililo.vip at least 15 days before the change takes effect.

The Effective Date and Version number at the top of this Policy are updated with each revision. Continued use of the jililo platform following the effective date of any amendment constitutes acceptance of the revised Policy. If you do not accept a material amendment, you should request Account closure before the effective date of the change.

Section 16

Contact the Data Protection Officer

jililo has appointed a Data Protection Officer (DPO) responsible for overseeing compliance with the Data Privacy Act of 2012 and this Privacy Policy. The DPO is your primary point of contact for all privacy-related inquiries, data subject rights requests, and data breach notifications.

You may contact jililo's Data Protection Officer by the following means:

Email: [email protected] (subject line: "Data Privacy Request — [Your Name]")
Live Chat: Available 24/7 on jililo.vip — request a privacy-related escalation and the support agent will connect you with the DPO team.

jililo will acknowledge all DPO contact requests within 3 business days and will respond substantively within 15 business days, or within the statutory period required by the NPC for the specific type of request.

If you are not satisfied with jililo's response to a privacy inquiry or data subject request, you have the right to lodge a complaint directly with the National Privacy Commission of the Philippines. The NPC's contact details are publicly available on the NPC's official website.

Document Version

This Privacy Policy was last updated on 1 January 2026 and supersedes all prior versions. Version number: v2.4. Players who registered prior to this date are bound by this updated Policy from the effective date.

jililo Casino — Privacy Policy

Our Privacy Commitments at a Glance

Philippine Law Compliance

We Collect Only What We Need

No Sale of Personal Data

Security-First Infrastructure

Your Rights Are Enforceable

Breach Notification