jill8 Privacy Policy
Your privacy matters to jill8. This Privacy Policy explains exactly what personal data we collect from Filipino players, why we collect it, how we use and protect it, and the rights you hold under Philippine law. We keep it straightforward — no deliberately confusing legal language.
256-bit SSL Encryption
All data transmitted between your browser and jill8's servers — including login credentials, KYC documents, and GCash transaction details — is protected by 256-bit SSL encryption, the same standard used by Philippine banks for online banking.
RA 10173 — Philippine DPA
jill8 processes all personal data in compliance with Republic Act No. 10173, the Data Privacy Act of 2012 of the Philippines, and its implementing rules. Your rights as a Philippine data subject are fully recognized and enforced by jill8.
No Data Sales — Ever
jill8 does not sell, rent, or trade your personal information to third-party marketing companies. Data shared with third parties is limited to what is strictly necessary for service operation, legal compliance, and fraud prevention — nothing more.
Minimal Data Collection
jill8 applies data minimization — we collect only the personal information genuinely needed to operate your account, process GCash and bank payments, comply with PAGCOR requirements, and prevent fraud. We do not collect data speculatively.
You Control Your Data
As a jill8 player, you have the right to access your personal data, correct inaccuracies, request deletion, and object to certain types of processing — all rights guaranteed under the Philippine Data Privacy Act. We make exercising these rights straightforward.
Breach Notification
In the unlikely event of a personal data breach that poses risk to your rights, jill8 will notify affected players and the National Privacy Commission (NPC) within 72 hours of discovery, as required by the Data Privacy Act and NPC Circular 16-03.
1 Introduction & Scope
This Privacy Policy ("Policy") is issued by jill8 ("jill8," "we," "us," "our"), the operator of the online casino and sports betting platform accessible at jill8.org. This Policy applies to all individuals ("you," "Player," "User") who access, register on, or interact with the jill8 platform — including the casino lobby, sports betting section, poker rooms, bingo, live dealer tables, promotional features, and customer support channels.
jill8 is the data controller responsible for the personal data collected through the platform. We collect, process, and store personal data in compliance with Republic Act No. 10173, the Data Privacy Act of 2012 of the Philippines ("DPA"), its Implementing Rules and Regulations ("IRR"), and the issuances of the National Privacy Commission ("NPC"). Where applicable, jill8 also observes the relevant anti-money laundering obligations imposed by the Anti-Money Laundering Act (AMLA) and its implementing rules as they pertain to customer data handling.
This Policy should be read alongside jill8's Terms and Conditions and Responsible Gaming Policy. By using jill8, you acknowledge that you have read this Policy and consent to the processing of your personal data as described herein.
jill8 may update this Privacy Policy from time to time. When material changes are made, we will notify registered players via their registered email or mobile number. The effective date at the top of this document reflects the most recent version.
2 Personal Data We Collect
jill8 collects personal data at different stages of your relationship with the platform. The categories of data collected depend on what stage you are at — browsing without an account, registering, depositing, playing, withdrawing, or contacting support.
2.1 Registration Data
When you create a jill8 account, we collect: full legal name, date of birth, Philippine mobile number, email address (optional), and residential address. This data is necessary to open your account, verify your identity, and comply with PAGCOR's player registration requirements.
2.2 KYC & Identity Verification Data
Before your first withdrawal, jill8 requires identity verification ("KYC"). For this we collect a scanned or photographed copy of a valid Philippine government-issued ID. Acceptable documents include: PSA National ID (PhilSys), UMID, valid Philippine passport, LTO driver's license, or PRC ID. Where required under AMLA, jill8 may request additional documents as part of Enhanced Due Diligence ("EDD").
2.3 Financial Data
When you make a deposit or withdrawal, jill8 collects the payment method details necessary to process the transaction — for example, your GCash-registered mobile number, Maya account identifier, bank account name and number, or card details. jill8 does not store full card numbers; card data is tokenized and processed through PCI DSS-compliant payment gateways.
2.4 Transaction & Gaming Activity Data
jill8 maintains records of your deposit and withdrawal history, bonus claims, bet history, game session logs, win/loss records, and account balance movements. These records are maintained for legal compliance, dispute resolution, responsible gaming monitoring, and fraud prevention purposes.
2.5 Technical & Device Data
When you access jill8, our servers automatically log: IP address, browser type and version, device type and operating system, time and date of access, pages visited, and session duration. This data is used for security monitoring, fraud detection, platform performance optimization, and geographic compliance.
2.6 Communications Data
When you contact jill8 support — whether by live chat or email — we retain a record of the communication, including any personal information you disclose in the course of the interaction. Live chat transcripts are retained for quality assurance and dispute resolution purposes.
2.7 Responsible Gaming Data
If you activate responsible gaming tools — such as deposit limits, loss limits, session timers, cooling-off periods, or self-exclusion — jill8 records these settings and any associated communications. This data is used to enforce the restrictions you have placed on your own account and to monitor compliance with those restrictions across all sessions.
jill8 does not collect sensitive personal information as defined under the DPA (such as health records, religious beliefs, or political affiliation) except where directly relevant to a responsible gaming matter and only with your explicit consent.
3 How We Use Your Personal Data
jill8 uses personal data only for legitimate purposes directly connected to operating the platform and fulfilling our legal obligations. The following table summarizes the primary purposes of data processing and the legal basis for each.
| Purpose of Processing | Data Used | Legal Basis |
|---|---|---|
| Account creation and management | Registration data, mobile number | Contract performance |
| Age and identity verification (KYC) | Government ID, date of birth, name | Legal obligation (PAGCOR, AMLA) |
| Processing deposits and withdrawals | Financial data, transaction records | Contract performance |
| Anti-money laundering screening | KYC data, transaction history | Legal obligation (AMLA) |
| Fraud prevention and security | Technical data, IP address, login history | Legitimate interest |
| Responsible gaming enforcement | Gaming activity, limits, self-exclusion | Legal obligation & legitimate interest |
| Customer support and dispute resolution | Communications data, account records | Contract performance & legal obligation |
| Platform performance and analytics | Technical data, session data (aggregated) | Legitimate interest |
| Promotional communications (opt-in only) | Mobile number, email, game preferences | Consent |
| Regulatory reporting to PAGCOR / NPC / AMLC | Account data, transaction data | Legal obligation |
jill8 does not engage in automated decision-making that produces legal or similarly significant effects on players solely without human review. Where automated processes flag an account for fraud or AML concerns, a human review is conducted before any account action is taken.
4 Data Sharing & Disclosure
jill8 does not sell, rent, or trade your personal data. We share personal information with third parties only in the following defined circumstances, and only to the extent strictly necessary for the stated purpose.
4.1 Payment Service Providers
To process deposits and withdrawals, jill8 shares transaction-relevant data with payment service providers including GCash (G-Xchange, Inc.), Maya (Voyager Innovations), BancNet, and other licensed Philippine payment intermediaries. These providers receive only the minimum data required to process the specific transaction. They are prohibited from using your data for any other purpose.
4.2 KYC & Identity Verification Partners
jill8 uses regulated third-party identity verification services to automate and validate KYC document checks. These providers process identity documents on jill8's behalf under strict data processing agreements that prohibit independent use of your data and require equivalent data security standards.
4.3 Regulatory Authorities
jill8 is required by Philippine law to disclose certain player information to: the Philippine Amusement and Gaming Corporation (PAGCOR) as the applicable gaming regulator; the Anti-Money Laundering Council (AMLC) for transaction monitoring and suspicious transaction reporting; and the National Privacy Commission (NPC) in the event of a reportable data breach. Such disclosures are made in strict compliance with the relevant legal requirements and only to the extent legally mandated.
4.4 Game and Technology Providers
Third-party game developers and platform technology providers who supply game engines, live dealer studio feeds, sports data, and platform infrastructure may process limited technical data (such as session identifiers and bet records) as necessary to deliver their services within the jill8 platform. These providers operate under data processing agreements requiring compliance with the DPA.
4.5 Legal Proceedings
jill8 may disclose personal data to law enforcement agencies, courts, or other governmental authorities in the Philippines where required to do so by law, court order, or in connection with the investigation of fraud, money laundering, or other serious criminal matters.
All third-party data processors engaged by jill8 are required to sign Data Processing Agreements (DPAs) that obligate them to process personal data only under jill8's documented instructions, maintain appropriate technical and organizational security measures, and not further share data without jill8's prior written consent.
5 Data Security
jill8 implements a layered set of technical and organizational security measures designed to protect personal data from unauthorized access, disclosure, alteration, and destruction. These measures are proportionate to the nature of the data held and the risks associated with online gambling platform operations.
Technical Security Measures
- Encryption in transit: All data transmitted between players and jill8 is encrypted using TLS 1.2 or higher (256-bit SSL). This applies to all pages of the platform, including the login page, deposit/withdrawal flows, and live casino sessions.
- Encryption at rest: Sensitive stored data — including KYC document files, hashed passwords, and financial records — is encrypted at rest using AES-256 encryption on secured servers.
- Access controls: Access to personal data is restricted to jill8 personnel and authorized service providers on a strict need-to-know basis. All internal access is logged and subject to periodic audit.
- Two-Factor Authentication (2FA): Players may enable 2FA on their jill8 accounts. All administrative access to jill8's backend systems requires multi-factor authentication.
- Intrusion detection: jill8 employs automated intrusion detection and anomaly monitoring systems to identify and respond to unusual access patterns or security threats in real time.
- Penetration testing: jill8 conducts periodic third-party security assessments and penetration testing to identify and remediate vulnerabilities before they can be exploited.
Organizational Measures
- A designated Data Protection Officer (DPO) oversees jill8's compliance with the Data Privacy Act of 2012 and related NPC issuances.
- All staff and contractors with access to personal data receive mandatory data privacy training and are bound by confidentiality obligations.
- A documented personal data breach response plan is maintained, with defined procedures for containment, assessment, notification, and post-incident review.
While jill8 implements comprehensive security measures, no data transmission over the internet or electronic storage system can be guaranteed to be 100% secure. Players are encouraged to protect their own accounts by using strong, unique passwords and enabling 2FA. For guidance on account security, visit the FAQ page.
6 Data Retention
jill8 retains personal data for no longer than is necessary for the purposes for which it was collected, subject to any applicable legal retention obligations. The retention periods below apply to the main categories of personal data held by jill8.
| Data Category | Retention Period | Basis |
|---|---|---|
| Account registration data | Duration of account + 5 years after closure | PAGCOR licensing requirements |
| KYC identity documents | 5 years from account closure | AMLA record-keeping obligation |
| Transaction records (deposits/withdrawals) | 5 years from date of transaction | AMLA & PAGCOR compliance |
| Bet and game history | 3 years from date of activity | Regulatory reporting & dispute resolution |
| Support communications | 3 years from last communication | Dispute resolution & quality assurance |
| Technical / device logs | 12 months from date of logging | Security monitoring & fraud prevention |
| Responsible gaming records | 5 years from account closure | PAGCOR player protection requirements |
| Marketing preferences (opt-in) | Until consent is withdrawn | Consent basis |
Upon expiry of applicable retention periods, personal data is securely deleted or irreversibly anonymized. Data subject to active legal proceedings, regulatory investigation, or unresolved disputes will be retained until those matters are concluded, after which standard retention periods apply.
7 Your Data Rights Under Philippine Law
As a data subject under the Republic Act No. 10173 (Data Privacy Act of 2012), you have the following rights with respect to your personal data held by jill8. These rights may be exercised by contacting our Data Protection Officer at [email protected] with the subject line "Data Rights Request."
jill8 will respond to all verifiable data rights requests within 30 calendar days of receipt. Where a request is complex or numerous, this period may be extended by a further 30 days, in which case you will be informed. jill8 may request proof of identity before processing a data rights request to ensure we disclose or modify data only to the legitimate account holder.
Certain rights may be limited where legal retention obligations apply — for example, jill8 cannot delete KYC documents or transaction records during the legally mandated 5-year retention period under AMLA. We will inform you clearly if any such limitation applies to your specific request.
8 Cookies & Tracking Technologies
jill8 uses cookies and similar tracking technologies to operate the platform, authenticate sessions, detect fraud, analyze performance, and (where you have consented) deliver personalized promotional content.
8.1 Strictly Necessary Cookies
These cookies are essential to the functioning of the jill8 platform and cannot be disabled. They include: session authentication tokens (to keep you logged in during a game session), CSRF protection tokens (to prevent cross-site request forgery attacks), load-balancer cookies (to route your requests to the correct server), and deposit/withdrawal flow state cookies. These cookies do not track browsing activity across other websites.
8.2 Performance & Analytics Cookies
jill8 uses aggregated analytics to understand how Filipino players interact with the platform — which game categories are most visited, how long pages take to load on mobile connections, and where users encounter errors. This data is used to improve the platform experience. Where third-party analytics tools are used, they are configured to anonymize IP addresses and are prohibited from using the data for any purpose beyond the specific analytics service provided to jill8.
8.3 Functional Cookies
These cookies remember your preferences — such as preferred language, responsible gaming settings, and display options — so you don't have to re-enter them on each visit. They enhance the usability of jill8 without performing any tracking across third-party websites.
8.4 Managing Cookies
You can control and delete cookies through your browser settings. Most browsers allow you to refuse new cookies, delete existing cookies, or set preferences on a site-by-site basis. Disabling strictly necessary cookies will impair or prevent your ability to use jill8. Disabling functional or analytics cookies will not prevent access but may reduce the quality of your experience.
9 Minors & Age Restriction
jill8 does not knowingly collect personal data from individuals under the age of 21. The platform is strictly restricted to players aged 21 years and above, in compliance with PAGCOR's requirements for online gaming in the Philippines. Registration requires confirmation of age at the point of sign-up, and age verification is enforced through KYC document review before any withdrawal is processed.
If jill8 becomes aware that it has inadvertently collected personal data from a person under 21 years of age — whether through misrepresentation at registration or any other means — the account will be immediately suspended, all pending transactions will be reversed, and the data will be deleted in accordance with applicable law. Parents or guardians who believe a minor may have registered on jill8 should contact [email protected] immediately.
10 Contact & Data Protection Officer
For any privacy-related inquiries, data rights requests, complaints, or concerns regarding jill8's processing of your personal data, please contact our Data Protection Officer using the details below. All communications will be treated with confidentiality and responded to within the timeframes required by the DPA.
jill8 Data Protection Contact
If you are not satisfied with jill8's response to a privacy complaint, or believe jill8 is processing your data in violation of the Data Privacy Act of 2012, you have the right to file a complaint with the National Privacy Commission (NPC) of the Philippines. Information about the NPC's complaints process is available on the NPC's official website.
Effective Date: 1 January 2026. This Privacy Policy supersedes all prior versions. The most current version is always accessible at jill8.org/privacy-policy.
Table of Contents
- 1. Introduction & Scope
- 2. Personal Data We Collect
- 3. How We Use Your Data
- 4. Data Sharing & Disclosure
- 5. Data Security
- 6. Data Retention
- 7. Your Data Rights
- 8. Cookies & Tracking
- 9. Minors & Age Restriction
- 10. Contact & DPO
Related Policies
Key Privacy Facts
- RA 10173 (DPA 2012) compliant
- 256-bit SSL on all data in transit
- No data sold to third parties
- Data rights requests: 30-day response
- Breach notification to NPC within 72 hours
- 21+ age requirement enforced via KYC
- KYC documents retained 5 years (AMLA)
Trust jill8 With Your Game
Your data is in good hands at jill8. We're built for Filipino players — with GCash-first payments, PHP accounts, and a security framework designed around your privacy rights under Philippine law.