Privacy Policy – hyph Online Gaming Philippines

Your Privacy, Our Commitment

Six core principles that guide how hyph handles your personal information.

Minimal Data Collection

hyph only collects the personal data that is strictly necessary for account registration, identity verification, payment processing, and regulatory compliance. We do not collect data for its own sake.

Secure Storage

All personal data stored by hyph is protected using industry-standard 256-bit SSL encryption, access controls, and regular security audits. Your data is never stored in plain text.

No Unauthorized Sharing

hyph does not sell, rent, or trade your personal data to third parties for marketing purposes. Data is shared only with service providers who support hyph's operations, and only under strict data processing agreements.

Your Rights, Respected

Under the Data Privacy Act of 2012, you have the right to access, correct, and request deletion of your personal data. hyph provides clear processes for exercising these rights through our customer support team.

Transparent Cookie Use

hyph uses cookies and similar technologies only for essential platform functionality, session management, and analytics. We do not use third-party advertising cookies. You can manage cookie preferences in your browser settings.

Defined Retention Periods

hyph retains personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by PAGCOR regulations and Philippine law. Data is securely deleted or anonymized when retention periods expire.

Table of Contents

About This Policy
Who We Are (Data Controller)
Personal Data We Collect
How We Collect Your Data
Why We Use Your Data (Legal Bases)
How We Share Your Data
Cookies and Tracking Technologies
Data Security
Data Retention
Your Rights Under Philippine Law
Children's Privacy
Cross-Border Data Transfers
Changes to This Policy
How to Contact Us

Summary: hyph collects your personal data to operate your gaming account, verify your identity, process payments, and comply with PAGCOR and Philippine legal requirements. We do not sell your data. You have the right to access, correct, and request deletion of your data at any time.

1. About This Policy

This Privacy Policy ("Policy") describes how hyph ("the Platform," "we," "us," or "our") collects, uses, stores, shares, and protects the personal data of individuals ("you," "the Player," or "the User") who access or use the hyph online gaming platform at hyph.one and its associated services.

This Policy is issued in compliance with Republic Act No. 10173, also known as the Data Privacy Act of 2012 ("DPA"), and its Implementing Rules and Regulations, as administered by the National Privacy Commission ("NPC") of the Philippines. It should be read alongside hyph's Terms & Conditions.

By registering a hyph account or using any hyph service, you acknowledge that you have read and understood this Policy and that you consent to the collection and processing of your personal data as described herein. If you do not agree with this Policy, you must not use the hyph platform.

2. Who We Are (Data Controller)

hyph is the data controller responsible for the personal data collected through the hyph platform. As data controller, hyph determines the purposes and means of processing your personal data and is accountable for ensuring that such processing complies with the DPA and all applicable Philippine privacy regulations.

hyph operates under a license issued by the Philippine Amusement and Gaming Corporation (PAGCOR) and is subject to PAGCOR's regulatory requirements, including those relating to player data, KYC verification, and anti-money laundering (AML) compliance.

For all privacy-related inquiries, requests, and complaints, you may contact hyph's Data Protection Officer (DPO) using the contact details provided in Section 14 of this Policy.

3. Personal Data We Collect

hyph collects the following categories of personal data:

Category	Examples	Purpose
Identity Data	Full legal name, date of birth, nationality, government ID number	Account registration, KYC verification, age verification (21+)
Contact Data	Philippine mobile number, email address, residential address	Account communication, OTP delivery, withdrawal processing
Financial Data	GCash number, PayMaya/Maya account, bank account details, transaction history	Deposit and withdrawal processing, AML compliance
Gaming Data	Bet history, game session logs, win/loss records, bonus usage	Game operation, responsible gaming monitoring, dispute resolution
Technical Data	IP address, device type, browser type, operating system, session timestamps	Platform security, fraud detection, technical support
KYC Documents	Scanned copies of government-issued ID (UMID, PhilSys ID, driver's license, passport)	Identity verification as required by PAGCOR and AML regulations
Communications Data	Live chat transcripts, support ticket content, email correspondence	Customer support, complaint resolution, quality assurance

hyph does not collect sensitive personal information (as defined under the DPA) beyond what is strictly necessary for identity verification and regulatory compliance. We do not collect data relating to your health, political opinions, religious beliefs, or sexual orientation.

4. How We Collect Your Data

hyph collects personal data through the following means:

Direct collection: Information you provide when registering a hyph account, completing KYC verification, making deposits or withdrawals, contacting customer support, or participating in promotions.
Automated collection: Technical data collected automatically when you access the hyph platform, including IP address, device identifiers, browser information, and session activity logs.
Third-party sources: Identity verification data from KYC service providers; payment data from payment processors (GCash, PayMaya, banks); fraud and AML screening data from compliance service providers.
Cookies and similar technologies: Session cookies, analytics cookies, and security tokens placed on your device when you use the hyph platform. See Section 7 for full details.

5. Why We Use Your Data (Legal Bases)

hyph processes your personal data on the following legal bases under the Data Privacy Act of 2012:

Contractual necessity: Processing required to create and manage your hyph account, process deposits and withdrawals, operate games, and deliver the services you have requested.
Legal obligation: Processing required to comply with PAGCOR licensing conditions, AML regulations under Republic Act No. 9160 (as amended), KYC requirements, and other applicable Philippine laws.
Legitimate interests: Processing for fraud detection and prevention, platform security, responsible gaming monitoring, and improving the hyph platform — where such interests are not overridden by your privacy rights.
Consent: Processing for marketing communications and non-essential analytics, where you have provided explicit consent. You may withdraw consent at any time by contacting hyph support.

6. How We Share Your Data

hyph does not sell, rent, or trade your personal data. We share your data only in the following circumstances:

Service providers: Third-party companies that provide services on hyph's behalf, including payment processors (GCash, PayMaya, banks), KYC verification providers, game software providers, cloud hosting providers, and customer support platforms. All service providers are bound by data processing agreements that restrict their use of your data to the specific services they provide to hyph.
Regulatory authorities: PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission (NPC), and other Philippine government authorities, where disclosure is required by law or regulatory obligation.
Law enforcement: Philippine law enforcement agencies, where disclosure is required by a valid court order, subpoena, or other legal process.
Business transfers: In the event of a merger, acquisition, or sale of hyph's business, your personal data may be transferred to the acquiring entity, subject to the same privacy protections described in this Policy.

In all cases, hyph shares only the minimum personal data necessary for the specific purpose and ensures that appropriate safeguards are in place.

7. Cookies and Tracking Technologies

hyph uses the following types of cookies and similar technologies on the platform:

Essential cookies: Required for the platform to function. These include session authentication tokens, security cookies, and load-balancing cookies. These cannot be disabled without affecting platform functionality.
Analytics cookies: Used to understand how players use the hyph platform — for example, which games are most popular and where players encounter difficulties. This data is aggregated and anonymized where possible.
Security cookies: Used to detect and prevent fraudulent activity, including bot detection and device fingerprinting for account security purposes.

hyph does not use third-party advertising cookies or behavioral tracking cookies for marketing purposes. You can manage cookie settings through your browser's privacy controls. Note that disabling essential cookies may prevent you from accessing certain features of the hyph platform.

8. Data Security

hyph implements a comprehensive set of technical and organizational security measures to protect your personal data against unauthorized access, disclosure, alteration, and destruction. These measures include:

256-bit SSL/TLS encryption for all data transmitted between your device and the hyph platform;
Encryption of sensitive data at rest, including KYC documents and financial data;
Role-based access controls limiting employee access to personal data on a need-to-know basis;
Regular security audits and penetration testing of hyph's systems;
Multi-factor authentication for hyph staff accessing internal systems;
Incident response procedures for detecting, reporting, and responding to personal data breaches.

In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, hyph will notify the National Privacy Commission within 72 hours of becoming aware of the breach, and will notify affected players without undue delay, in accordance with the DPA and NPC regulations.

While hyph takes all reasonable steps to protect your data, no online platform can guarantee absolute security. You are responsible for maintaining the security of your hyph login credentials and for notifying hyph immediately if you suspect unauthorized access to your account.

9. Data Retention

hyph retains your personal data for the following periods:

Account data and KYC records: Retained for a minimum of five (5) years from the date of account closure, as required by PAGCOR regulations and AML laws.
Transaction and gaming records: Retained for a minimum of five (5) years from the date of each transaction, as required by applicable Philippine financial regulations.
Customer support communications: Retained for two (2) years from the date of the last communication, for dispute resolution and quality assurance purposes.
Technical and analytics data: Retained for up to twelve (12) months, after which it is aggregated and anonymized.
Marketing consent records: Retained for the duration of your consent and for one (1) year after withdrawal of consent, as evidence of compliance.

Upon expiry of the applicable retention period, personal data is securely deleted or irreversibly anonymized. Where data must be retained beyond these periods due to ongoing legal proceedings or regulatory investigations, it will be retained only for the duration of such proceedings or investigations.

10. Your Rights Under Philippine Law

Under the Data Privacy Act of 2012, you have the following rights with respect to your personal data held by hyph:

Right to be informed: You have the right to be informed of how your personal data is collected, used, and shared. This Policy fulfills that obligation.
Right of access: You have the right to request a copy of the personal data hyph holds about you, including information about how it is being processed.
Right to rectification: You have the right to request correction of any inaccurate or incomplete personal data hyph holds about you. You may update basic account information directly through your hyph account dashboard.
Right to erasure: You have the right to request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, subject to hyph's legal and regulatory retention obligations.
Right to object: You have the right to object to the processing of your personal data on the basis of legitimate interests, including processing for direct marketing purposes.
Right to data portability: You have the right to receive a copy of your personal data in a structured, commonly used, and machine-readable format, where technically feasible.
Right to lodge a complaint: You have the right to lodge a complaint with the National Privacy Commission (NPC) if you believe hyph has violated your data privacy rights. The NPC can be reached through its official website at privacy.gov.ph.

To exercise any of these rights, please contact hyph's Data Protection Officer using the details in Section 14. hyph will respond to all verified data subject requests within fifteen (15) business days of receipt. We may require you to verify your identity before processing your request.

11. Children's Privacy

The hyph platform is strictly intended for individuals who are at least twenty-one (21) years of age. hyph does not knowingly collect personal data from individuals under the age of 21. If you are under 21, you must not register a hyph account or use any hyph service.

If hyph becomes aware that it has inadvertently collected personal data from an individual under the age of 21, it will take immediate steps to delete that data and close the associated account. If you believe that a minor has registered a hyph account, please contact hyph support immediately.

12. Cross-Border Data Transfers

Some of hyph's service providers — including cloud hosting providers and game software providers — may be located outside the Philippines. Where personal data is transferred to a country that does not provide an equivalent level of data protection to the Philippines, hyph ensures that appropriate safeguards are in place, including contractual clauses that require the recipient to protect your data to the same standard required by the DPA.

hyph will not transfer your personal data to any jurisdiction that has been identified by the NPC as providing inadequate data protection, without your explicit consent or without implementing additional protective measures.

13. Changes to This Policy

hyph reserves the right to update or amend this Privacy Policy at any time to reflect changes in our data processing practices, applicable law, or PAGCOR regulatory requirements. Where changes are material, hyph will notify registered players via email or an in-platform notification at least seven (7) days before the changes take effect.

The current version of this Policy, including the effective date, will always be available on this page. We encourage you to review this Policy periodically. Your continued use of the hyph platform after the effective date of any amendment constitutes your acceptance of the revised Policy.

14. How to Contact Us

If you have any questions, concerns, or requests relating to this Privacy Policy or hyph's data processing practices, please contact our Data Protection Officer through the following channels:

Live Chat: Available 24/7 via the hyph platform after login — the fastest way to reach us
Email (DPO): privacy@hyph.one
General Support: support@hyph.one

All email addresses above are provided as plain text for informational purposes only and are not clickable links. hyph aims to respond to all privacy-related inquiries within five (5) business days.

If you are not satisfied with hyph's response to your privacy concern, you have the right to escalate your complaint to the National Privacy Commission of the Philippines.

This Privacy Policy was last updated in May 2026. Previous versions are available upon request by contacting the hyph Data Protection Officer.

hyph Privacy Policy