At soloph, we handle the personal information of our Filipino players with the same care we apply to their funds – securely, transparently, and in full compliance with the Republic Act No. 10173 (Data Privacy Act of 2012) and applicable PAGCOR regulatory requirements. This Privacy Policy explains exactly what data we collect, why we collect it, how we use and store it, and the rights you hold over your own information.
This Privacy Policy is issued by soloph ("soloph," "we," "us," or "our") in respect of the personal data processed by soloph in the course of operating the online gaming platform accessible at soloph.one and all associated services (collectively, the "Platform").
This Privacy Policy applies to all personal data collected from registered Players, prospective registrants, and visitors to the Platform. By registering an account on soloph or otherwise using the Platform, you acknowledge that you have read and understood this Privacy Policy and consent to the collection and use of your personal data as described herein.
soloph is committed to protecting the privacy and personal data of Filipino players in accordance with Republic Act No. 10173, known as the Data Privacy Act of 2012 (DPA), its Implementing Rules and Regulations (IRR), and the guidelines issued by the National Privacy Commission (NPC) of the Philippines. Where soloph processes data in connection with its gaming licence obligations, PAGCOR's data governance requirements are additionally observed.
Plain Language Commitment: soloph is committed to writing privacy terms that Filipino players can actually understand. This document uses legal language where precision is necessary, but we avoid deliberate obfuscation. If any section is unclear, please contact our Data Protection Officer at the address in Section 16.
For the purposes of the Data Privacy Act of 2012 and its Implementing Rules and Regulations, soloph acts as the Personal Information Controller in respect of the personal data of Players and users of the Platform.
As Personal Information Controller, soloph is responsible for determining the purposes and means by which personal data collected through the Platform is processed. soloph has designated a Data Protection Officer (DPO) whose contact details are set out in Section 16 of this Privacy Policy.
Where soloph engages third-party service providers to process personal data on its behalf – for example, payment processors, game providers, or cloud infrastructure providers – those service providers act as Personal Information Processors and are contractually required to process personal data only in accordance with soloph's instructions and this Privacy Policy.
soloph collects and processes the following categories of personal data in connection with the operation of the Platform and delivery of Services to Filipino players:
| Data Category | Specific Data Points | Purpose |
|---|---|---|
| Identity Data | Full legal name, date of birth, gender, government ID type and number | Account registration, KYC verification, age verification |
| Contact Data | Residential address (Philippines), mobile number, email address | Account communication, OTP delivery, support, regulatory correspondence |
| KYC / Verification Data | Government-issued ID images (PhilSys, UMID, Passport, DL), selfie verification | Identity verification per PAGCOR and AML requirements |
| Financial Data | GCash / Maya account reference, bank account details (BPI, BDO, Metrobank), deposit and withdrawal history, transaction records | Payment processing, withdrawal verification, AML monitoring |
| Account Data | Username, account balance, loyalty tier, bonus history, gaming preferences | Account management, platform personalisation, responsible gaming |
| Gaming Activity Data | Game session logs, bet amounts, win/loss records, session durations, game titles played | Service delivery, fairness auditing, responsible gaming monitoring, regulatory reporting |
| Technical Data | IP address, device fingerprint, browser type, operating system, session tokens, geolocation data | Fraud prevention, security, Platform optimisation, regulatory jurisdiction verification |
| Communication Data | Customer support chat logs, email correspondence, complaint records | Support delivery, dispute resolution, quality assurance, regulatory compliance |
| Marketing Data | Promotional preferences, opt-in/opt-out records, campaign interaction history | Promotional communications (where consent is given) |
soloph does not collect full payment card numbers, CVV codes, or any sensitive financial authentication credentials. Payment card transactions, where applicable, are processed directly by the relevant payment service provider under their own PCI DSS-compliant systems.
soloph collects personal data through the following means:
Personal data you voluntarily provide during account registration, KYC verification, deposit and withdrawal processes, customer support interactions, promotional form submissions, and any other direct communication with soloph.
Technical and usage data collected automatically when you access and use the Platform, including IP addresses, session data, device identifiers, and gameplay logs. This data is collected via server logs, cookies, and similar tracking technologies as described in Section 8.
Personal data received from third-party service providers in the ordinary course of platform operations, including:
soloph processes personal data on the following legal bases as recognised under the Data Privacy Act of 2012 and its Implementing Rules and Regulations:
The majority of personal data processing by soloph is necessary for the performance of the contract between soloph and the Player – specifically, the account agreement established upon registration and governed by soloph's Terms & Conditions. This includes processing Identity Data, Contact Data, Financial Data, Account Data, and Gaming Activity Data for the purpose of delivering the Services, processing payments, and managing the Player's account.
soloph is required to process certain personal data to comply with applicable legal and regulatory obligations, including PAGCOR licensing requirements, the Anti-Money Laundering Act of 2001 (AMLA) as amended, the Terrorism Financing Prevention and Suppression Act of 2012, and the Data Privacy Act of 2012. KYC verification data, transaction records, and certain gaming activity logs are processed on this basis and must be retained for minimum periods specified by applicable regulations regardless of account status.
soloph processes certain personal data where it has a legitimate interest in doing so, provided that such interests are not overridden by the Player's fundamental rights and freedoms. Legitimate interests relied upon by soloph include: fraud detection and prevention, platform security, improvement of the Platform and Services, and responsible gaming monitoring. Players have the right to object to processing on this basis – see Section 11.
Where soloph processes personal data for purposes not covered by the above bases – primarily direct marketing communications – soloph relies on the Player's freely given, specific, and informed consent. Consent for marketing communications may be withdrawn at any time by updating notification preferences in Account settings or by contacting soloph's support team.
soloph uses personal data collected from Players for the following purposes:
No Sale of Data: soloph does not sell, rent, or trade personal data to third-party marketers or data brokers under any circumstances. Your personal information is used exclusively for the purposes described in this Privacy Policy and is not a commercial asset of soloph.
soloph does not disclose personal data to third parties except in the circumstances described below:
soloph engages trusted third-party service providers who process personal data on soloph's behalf as Personal Information Processors. These include cloud hosting providers, payment gateway operators, identity verification service providers, game technology providers, customer support platform operators, fraud detection services, and email and SMS delivery services. All such providers are contractually bound to process personal data solely on soloph's instructions, maintain appropriate security standards, and not use the data for any independent purpose.
soloph is required to disclose personal data to PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission (NPC), and other competent Philippine regulatory or law enforcement authorities where required by law, regulation, court order, or official regulatory direction. Such disclosures are made to the minimum extent required to satisfy the legal obligation.
In the event of a merger, acquisition, restructuring, or sale of all or substantially all of soloph's assets, personal data held by soloph may be transferred to the acquiring entity as part of the transaction. Where such a transfer occurs, soloph will endeavour to ensure that the receiving entity is bound by privacy obligations at least equivalent to those in this Privacy Policy. Affected Players will be notified of any material change to data controllership.
soloph may share personal data with third parties where a Player has given explicit consent to such sharing. Players retain the right to withdraw consent for such disclosures at any time by contacting soloph's Data Protection Officer.
Phishing Warning: soloph will never request your personal data, passwords, or financial details via unsolicited email, SMS, or social media message. Any communication purportedly from soloph requesting such information outside of the Platform's secure environment should be treated as a phishing attempt and reported to soloph's support team immediately.
Cookies are small text files placed on your device by the soloph Platform when you visit. They enable the Platform to remember your preferences, maintain your login session, and gather analytical information about Platform usage. Similar technologies including local storage, session tokens, and device fingerprinting serve analogous functions.
Players may control non-essential cookies through browser settings. Most modern browsers allow you to block or delete cookies. Please note that disabling cookies may affect the functionality of certain Platform features. Strictly necessary cookies for Platform security and session management cannot be disabled while using soloph's Services.
Mobile Users: If you access soloph via a mobile browser on your Android or iOS device, cookie controls are available within your browser's privacy settings. Clearing browser data on your mobile device will clear soloph session cookies, effectively logging you out.
soloph retains personal data for as long as necessary to fulfil the purposes for which it was collected, comply with legal and regulatory obligations, resolve disputes, and enforce soloph's agreements. The following retention principles apply:
Following the expiry of applicable retention periods, personal data is securely deleted or irreversibly anonymised in accordance with soloph's data disposal procedures.
soloph implements technical, organisational, and administrative security measures appropriate to the nature of the personal data processed and consistent with standards applicable to online gaming platforms operating in the Philippines. These measures include:
Notwithstanding these measures, no data transmission over the internet or data storage system can be guaranteed to be 100% secure. Players are responsible for maintaining the confidentiality of their own Account credentials and for using secure, up-to-date devices and browsers when accessing the Platform.
As a data subject under the Data Privacy Act of 2012, Filipino players whose personal data is processed by soloph have the following rights, exercisable by contacting soloph's Data Protection Officer as described in Section 16:
The right to be informed of what personal data is being collected, the purposes for which it is processed, the recipients of the data, and the period of retention – as set out in this Privacy Policy.
The right to request a copy of the personal data held by soloph about you, including information about how it is being used, to whom it has been disclosed, and the sources from which it was obtained.
The right to request correction of inaccurate, incomplete, or outdated personal data held by soloph. Players may update certain data directly in Account settings; other corrections require a request to the DPO.
The right to request deletion of personal data where it is no longer necessary for the purposes for which it was collected, or where consent has been withdrawn and no other legal basis applies. This right is subject to overriding legal retention obligations.
The right to object to the processing of personal data based on legitimate interests, in particular processing for direct marketing purposes. Upon receipt of a valid objection, soloph will cease processing for the objected purpose unless compelling legitimate grounds exist.
The right to request the temporary blocking or suspension of personal data processing where the accuracy of the data is contested, the processing is unlawful, or the data is no longer needed but you require it for legal claims.
The right to receive personal data you have provided to soloph in a structured, commonly used, and machine-readable format, and to request its transmission to another personal information controller where technically feasible.
The right to be indemnified for damages sustained in connection with inaccurate, incomplete, outdated, false, or unlawfully obtained or unauthorised use of personal data, as provided under Section 16 of the Data Privacy Act of 2012.
To exercise any of the above rights, submit a written request to soloph's Data Protection Officer with sufficient identification to verify your identity. soloph will acknowledge data rights requests within five (5) business days and endeavour to resolve them within thirty (30) calendar days. Where a request involves complex processing or a high volume of data, soloph may extend the response period by up to a further sixty (60) calendar days, with notification provided to the requester.
Players who are not satisfied with soloph's response to a data rights request may lodge a complaint with the National Privacy Commission of the Philippines at www.privacy.gov.ph.
soloph does not knowingly collect, process, or retain personal data from individuals under the age of 21. The Platform is not directed at, designed for, or intended for use by persons below the minimum gaming age of 21 years as required under PAGCOR regulations.
In the event that soloph discovers that personal data has been collected from a person under the age of 21, soloph will immediately suspend the relevant Account, delete the personal data from its active systems, and retain only such data as is required for regulatory reporting and compliance purposes under applicable law.
Players are responsible for ensuring that minor persons in their households do not access their soloph Account or the Platform generally. soloph recommends the use of parental control software on shared devices to prevent unauthorised access by minors.
In the course of operating the Platform, some personal data processed by soloph may be transferred to or accessed from locations outside the Philippines. This may occur in connection with cloud infrastructure providers, game technology platforms, or fraud detection services whose processing infrastructure is located in other jurisdictions.
Where personal data is transferred outside the Philippines, soloph takes reasonable steps to ensure that such transfers are made in compliance with the Data Privacy Act of 2012, including by implementing appropriate contractual safeguards such as Data Sharing Agreements that require the receiving party to maintain data protection standards equivalent to those applicable in the Philippines.
soloph does not transfer personal data to jurisdictions that do not provide an adequate level of data protection without implementing additional contractual or technical safeguards. Details of the specific cross-border transfer mechanisms in place for any category of data are available upon request from soloph's Data Protection Officer.
The soloph Platform may integrate with or reference third-party services, including payment platforms such as GCash, Maya, and banking portals. These third-party services have their own independent privacy policies governing the collection and use of personal data provided directly to them during payment transactions. soloph is not responsible for the privacy practices of third-party platforms and encourages Players to review the privacy policies of any third-party service they use in connection with their soloph Account.
soloph does not embed third-party social media tracking widgets or third-party advertising networks on the Platform. soloph's analytical data is collected and processed by soloph directly and is not shared with social media platforms or advertising exchanges.
soloph reserves the right to update this Privacy Policy at any time to reflect changes in applicable law, regulatory requirements, Platform functionality, or soloph's data processing practices. Material changes to this Privacy Policy will be communicated to registered Players by notification within the Platform and by email to the Player's registered email address not less than fourteen (14) days prior to the effective date of the revised policy, except where immediate amendment is required by law or regulatory direction.
The current version of this Privacy Policy is always accessible on the soloph Platform and bears its effective date. Players are encouraged to review this Privacy Policy periodically. Continued use of the Platform following the effective date of any updated Privacy Policy constitutes acknowledgment of and agreement to the updated terms.
Where soloph intends to process personal data for purposes materially different from those described in this Privacy Policy, fresh consent will be sought from affected Players prior to commencement of such processing.
soloph has designated a Data Protection Officer (DPO) responsible for overseeing compliance with the Data Privacy Act of 2012 and this Privacy Policy. Players may contact the DPO in connection with any data privacy matter, including the exercise of data subject rights under Section 11, by submitting a written request via soloph's customer support channels with the subject line "Data Privacy Request – DPO".
The DPO will acknowledge all data privacy requests within five (5) business days of receipt. Players should provide sufficient information in their request to enable the DPO to verify their identity and locate the relevant personal data.
For general privacy questions that do not constitute formal data rights requests, Players may contact soloph's customer support team via the live chat facility on the Platform, available 24 hours a day, 7 days a week. Alternatively, general inquiries may be sent by email to the address published on the Platform.
If a Player believes that soloph has not handled their personal data in accordance with the Data Privacy Act of 2012 and is not satisfied with soloph's response to a formal complaint, the Player has the right to lodge a complaint with the National Privacy Commission of the Philippines. The NPC's complaint procedures and contact information are available at the NPC's official website.
Response Commitment: soloph treats all data privacy requests seriously and commits to handling them with the same level of care as any account or payment-related matter. Players in Manila, Cebu, Davao, or anywhere in the Philippines can expect the same standard of privacy responsiveness regardless of location.
Six core privacy principles that underpin how soloph handles Filipino players' personal data.
soloph does not sell, rent, or trade personal data to marketers, data brokers, or any commercial third party. Your information is used exclusively to operate your account, process payments, meet regulatory requirements, and keep you safe on the platform. Full stop.
All data in transit is protected by TLS 1.3 (128-bit SSL encryption). Sensitive stored data including KYC documents and financial records is encrypted at rest. soloph's security posture is reviewed periodically through independent security assessments.
soloph's data processing practices are aligned with the Data Privacy Act of 2012 (RA 10173), its Implementing Rules and Regulations, and NPC guidelines. A designated Data Protection Officer oversees ongoing compliance and handles player data rights requests.
Filipino players have the full suite of data subject rights under RA 10173 – access, rectification, erasure, objection, portability, and more. soloph processes data rights requests within 30 days and has a clear escalation path to the National Privacy Commission.
soloph retains personal data only as long as required for legal, regulatory, or operational purposes. When data is no longer needed, it is securely deleted or anonymised. Retention periods are published in this Policy and are not extended beyond regulatory minimums.
When this Privacy Policy changes materially, soloph notifies registered players at least 14 days before the change takes effect – via platform notification and email. You're never surprised by a change you didn't know was coming.
Play with Confidence
Knowing how your data is handled shouldn't be a mystery, and at soloph it never is. Everything from your GCash deposit to your bingo card history is processed under the principles in this Privacy Policy – securely, lawfully, and transparently. Players across Manila, Cebu, Davao, and beyond trust soloph with their information because we earn that trust every day.
Understand the complete agreement governing your soloph account and use of the platform. See Terms & Conditions.
Deposit limits, session controls, and self-exclusion options are available from your account settings. Learn more at Responsible Gaming.
Common data privacy questions from Filipino players answered clearly. Visit the FAQ page for quick answers.
Access your soloph account with confidence – SSL-encrypted login with optional 2FA. Go to soloph Login.