Your personal information is yours. This policy explains in plain terms what red365 collects, why we collect it, who we share it with, how long we keep it, and what rights you have as a Filipino player under the Data Privacy Act of 2012.
Your Privacy Matters: red365 is committed to protecting the personal information of all Filipino players. This Privacy Policy is drafted in compliance with Republic Act No. 10173, the Data Privacy Act of 2012, and its Implementing Rules and Regulations, as well as the applicable data protection regulations of the National Privacy Commission (NPC) and the data compliance requirements of PAGCOR. Reading this document helps you understand how your information is handled and what choices you have.
This Privacy Policy ("Policy") describes how red365 ("red365", "we", "us", "our") collects, uses, stores, shares, and protects personal information in connection with your use of the red365 online gaming platform accessible at red365.win ("Platform").
red365 is the Data Controller responsible for your personal information as defined under the Data Privacy Act of 2012 (RA 10173) of the Republic of the Philippines. As a PAGCOR-licensed online gaming operator, red365 is also subject to PAGCOR's data handling requirements and the Anti-Money Laundering Act (RA 9160, as amended), both of which impose specific obligations on how we process player information.
This Policy applies to all players who register an account, make a deposit, interact with customer support, receive promotional communications, or otherwise use any feature of the red365 Platform. By using the Platform, you acknowledge that you have read and understood this Policy and consent to the processing of your personal information as described herein.
This Policy does not apply to third-party websites or services that may be linked from the Platform. red365 is not responsible for the privacy practices of any third party, and we encourage you to read the privacy policies of any external services you interact with.
red365 collects only the personal information that is necessary for the purposes described in this Policy. The categories of personal information we collect include:
Sensitive Personal Information: Identification documents submitted for KYC (such as passport copies, UMID, and PhilSys data) are classified as sensitive personal information under RA 10173. red365 processes this data solely for identity verification and PAGCOR compliance purposes, subject to the enhanced protections required under Philippine law.
red365 collects personal information through the following means:
| Collection Method | Description |
|---|---|
| Account Registration | Information provided directly by you when creating your red365 account, including name, date of birth, and mobile number. |
| KYC Verification | Identity documents and selfie photographs uploaded during the mandatory verification process required by PAGCOR. |
| Payment Transactions | Financial details provided when making deposits or withdrawals via GCash, PayMaya, or Philippine bank transfer. |
| Platform Interaction | Automatically collected data generated when you access, browse, and use features of the red365 Platform, including technical and usage data. |
| Customer Support | Information you provide when contacting red365 support via live chat or email, including your query details and any supporting information. |
| Third-Party Sources | Identity verification data from licensed KYC service providers used to validate documents against government databases, subject to their privacy policies. |
| Cookies & Analytics | Data collected through cookies and analytics tools as described in Section 8 of this Policy. |
red365 processes personal information only for specified, legitimate purposes. Each purpose is supported by a lawful basis under RA 10173 and applicable PAGCOR regulations:
Processing necessary to create and manage your account, process deposits and withdrawals, provide access to games and services, and fulfil the obligations set out in the red365 Terms and Conditions. This is the primary legal basis for most routine processing activities.
Processing required to comply with PAGCOR licensing conditions, the Anti-Money Laundering Act, the Data Privacy Act, and other applicable Philippine laws. This includes KYC verification, age verification, AML transaction monitoring, and regulatory reporting.
Processing for purposes of fraud prevention, platform security, responsible gaming monitoring, dispute resolution, and internal analytics — where these interests do not override your rights as a data subject under RA 10173.
Where we rely on your consent for processing — such as for certain marketing communications or optional analytics cookies — we will obtain that consent separately and explicitly. You have the right to withdraw consent at any time without affecting the lawfulness of processing carried out prior to withdrawal.
No Selling of Personal Data: red365 does not sell, rent, or trade your personal information to any third party for marketing purposes. Your data is used exclusively for the purposes outlined in this Policy.
red365 does not share your personal information with third parties except in the following specific circumstances, and only to the extent necessary for the stated purpose:
All third-party service providers that receive personal data from red365 are required, by contract, to implement appropriate technical and organisational security measures and to process that data only for the specified purpose and in accordance with applicable law.
Some of red365's service providers and game technology partners may be located outside the Philippines. Where personal data is transferred to recipients in other countries, red365 ensures that such transfers comply with RA 10173's requirements for cross-border data flows.
Specifically, red365 relies on one or more of the following safeguards for international transfers:
You may request information about the specific safeguards applied to international transfers affecting your personal data by contacting our Data Protection Officer at the details provided in Section 15.
red365 retains personal information only for as long as is necessary for the purpose for which it was collected, or as required by applicable law and regulation. The following retention schedule applies:
| Data Category | Retention Period | Legal Basis |
|---|---|---|
| Account & Identity Records | 5 years from account closure | PAGCOR licensing requirement; RA 10173 |
| KYC Documents | 5 years from account closure | PAGCOR compliance; AMLA obligations |
| Financial Transaction Records | 5 years from transaction date | Anti-Money Laundering Act (RA 9160) |
| Gameplay & Betting History | 3 years from account closure | PAGCOR audit requirements |
| Support Communications | 2 years from last interaction | Legitimate interest (dispute resolution) |
| Marketing Preferences | Until withdrawal of consent or account closure | Consent (RA 10173) |
| Technical / Session Logs | 12 months from collection | Legitimate interest (security, fraud prevention) |
Following the expiry of the applicable retention period, personal data is securely deleted or anonymised in a manner that makes re-identification impossible. Where anonymisation is used, the anonymised data may be retained for analytical purposes indefinitely.
red365 uses cookies and similar tracking technologies to operate and improve the Platform. Cookies are small text files stored on your device that help us recognise you across sessions and understand how the Platform is used.
You may manage cookie preferences through your browser settings. Note that disabling strictly necessary cookies will impair or prevent access to your red365 account. For browsers on Android and iOS, cookie management is available through the respective browser privacy settings.
No Cross-Site Advertising Tracking: red365 does not use advertising cookies or third-party tracking pixels for cross-site behavioural advertising. Cookies used on the Platform are limited to those necessary for Platform operation, analytics, and responsible gaming functionality.
red365 implements industry-standard technical and organisational security measures to protect your personal information against unauthorised access, disclosure, alteration, or destruction. These measures include:
In the event of a personal data breach that is likely to result in harm to data subjects, red365 will notify the National Privacy Commission (NPC) within seventy-two (72) hours of becoming aware of the breach, and will notify affected players as required under RA 10173 and NPC regulations.
Your Role in Security: While red365 implements robust security measures, the security of your account also depends on your own practices. Please use a strong, unique password for your red365 account, enable two-factor authentication, and never share your credentials with any third party. red365 support will never ask for your password.
Under the Data Privacy Act of 2012 (RA 10173), you have the following rights in relation to your personal information held by red365. You may exercise these rights by contacting our Data Protection Officer as described in Section 15:
Request a copy of the personal information red365 holds about you, including the purposes for processing and the categories of data processed.
Request correction of inaccurate or incomplete personal information. Certain corrections may require re-verification of identity documents.
Request deletion of your personal data where it is no longer necessary for the purpose collected, subject to legal retention obligations under PAGCOR and AMLA requirements.
Object to processing based on legitimate interests, including direct marketing. Objection to marketing processing will be actioned immediately upon receipt.
Receive your personal data in a structured, machine-readable format and transmit it to another controller where processing is based on consent or contract.
Withdraw consent at any time where processing is based on consent. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.
red365 will respond to all data subject requests within thirty (30) calendar days of receipt. If the request is complex or numerous, the response period may be extended to a maximum of sixty (60) days, and you will be notified within the initial thirty-day window. If your request is declined, we will provide the reason in writing. You have the right to escalate any unresolved complaint to the National Privacy Commission (NPC) of the Philippines.
red365 may send you promotional communications about new games, bonuses, events, and platform features by SMS to your registered Philippine mobile number or by email. We will only send marketing communications where you have provided your explicit consent at registration or at any subsequent point through your account preferences.
You may withdraw your consent to marketing communications at any time by:
Withdrawal of marketing consent will not affect transactional communications necessary for your account, such as deposit confirmations, withdrawal notifications, account security alerts, and responsible gaming notifications.
red365 will never send marketing communications to players who have self-excluded or are subject to an active responsible gaming restriction. This commitment is maintained regardless of any prior marketing consent.
21+ Mandatory: The red365 Platform is exclusively for individuals aged 21 years and above, in accordance with PAGCOR's minimum age requirements for online gaming in the Philippines. red365 does not knowingly collect personal information from individuals under the age of 21.
The mandatory KYC process — which requires submission and verification of a government-issued Philippine identification document — is designed to enforce the 21+ age restriction at the point of account activation. No account may be funded or used for real-money gaming until age has been positively verified.
If red365 becomes aware that personal information has been collected from an individual who is under 21 years of age, all such data will be permanently deleted and the associated account will be immediately closed. Any deposits made will be returned to the payment source after deducting any applicable bank or payment processing fees.
Parents or guardians who believe that a minor may have registered or accessed the red365 Platform should contact our support team immediately at [email protected] so that appropriate action can be taken without delay.
The red365 Platform may contain references to third-party services such as payment processors (GCash, PayMaya, BPI, BDO, Metrobank) and game provider platforms. When you interact with any third-party service, you leave the red365 Platform and your interaction is subject to that third party's own privacy policy and terms of service.
red365 is not responsible for the privacy practices, data handling, or security measures of any third-party service. We encourage all players to review the privacy policies of any external services before providing personal information, particularly when connecting payment accounts for deposits or withdrawals.
red365 reserves the right to update this Privacy Policy at any time to reflect changes in our data processing practices, applicable law, or PAGCOR regulatory requirements. The effective date of the current version is displayed at the top of this page and in the page header.
Where changes are material — meaning they significantly affect your rights as a data subject or the way your personal information is processed — red365 will provide prior notice via registered email address or in-platform notification, at least fourteen (14) days before the changes take effect where practicable.
Continued use of the red365 Platform following the effective date of an updated Privacy Policy constitutes your acknowledgment of the changes. If you do not accept any update to this Policy, you should cease using the Platform and contact support to request account closure and data handling information.
red365 has appointed a Data Protection Officer (DPO) in accordance with the requirements of the Data Privacy Act of 2012 and National Privacy Commission (NPC) regulations. The DPO is responsible for overseeing red365's compliance with RA 10173 and serves as the primary contact for data subject rights requests and privacy-related concerns.
To exercise your rights under this Policy, submit a data subject access request, report a suspected data breach, or raise any privacy concern, please contact us through the following channels:
If you are not satisfied with red365's response to your privacy request or complaint, you have the right to lodge a complaint with the National Privacy Commission (NPC) of the Philippines through the NPC's official complaint mechanism.
NPC Escalation: The National Privacy Commission is the government authority responsible for enforcing the Data Privacy Act of 2012 in the Philippines. Complaints may be filed with the NPC if you believe your data privacy rights have not been adequately addressed by red365. Contact information for the NPC is available through official Philippine government channels.
The red365 Privacy Policy is built on six concrete commitments to every Filipino player. Here's what they mean in practice.
Every connection to red365 is encrypted with 256-bit TLS/SSL. Your login credentials, financial data, and identity documents are protected in transit and at rest. The same standard used by Philippine banks.
red365 processes all personal information in full compliance with Republic Act 10173 — the Philippine Data Privacy Act of 2012. A dedicated Data Protection Officer oversees compliance and handles all data subject requests.
red365 does not sell, rent, or trade your personal information to any third party for any commercial purpose. Your data is used exclusively to operate your account and comply with PAGCOR and AMLA requirements.
Data is not kept indefinitely. red365 follows a clear retention schedule — from 12 months for session logs to 5 years for KYC records as mandated by PAGCOR and AMLA. After that, data is securely deleted or anonymised.
Access, rectify, erase, port, object to, or withdraw consent for your personal data at any time. red365 responds to all data subject requests within 30 days. Unresolved issues can be escalated to the NPC.
Marketing communications from red365 require your explicit consent and can be withdrawn at any time — via account settings, SMS reply, email unsubscribe, or live chat. No dark patterns, no buried toggles.
1,000+ certified games, instant GCash deposits, PAGCOR regulation, and a Privacy Policy built on Philippine law. Your information is protected from the moment you register.