jilib Privacy Policy

This Privacy Policy ("Policy") describes how jilib ("jilib," "we," "us," "our") collects, uses, stores, discloses, and protects the personal information of users ("you," "your," "the Data Subject") who access or use the jilib platform, including the website at jilib.one and all associated services, games, payment functions, and customer support channels (collectively, the "Platform").

This Policy is issued in compliance with Republic Act No. 10173, the Data Privacy Act of 2012 of the Philippines ("DPA"), its Implementing Rules and Regulations ("IRR"), and the issuances of the National Privacy Commission ("NPC"). By registering for a jilib account or using the Platform, you acknowledge that you have read, understood, and consent to the data processing practices described in this Policy.

This Policy should be read together with the jilib Terms & Conditions and the Responsible Gaming Policy, both of which are available on the Platform.

jilib is the personal information controller ("PIC") responsible for the personal data processed through the Platform. As PIC, jilib determines the purposes and means of processing your personal data and is responsible for ensuring that such processing complies with the DPA and applicable regulations.

jilib has designated a Data Protection Officer ("DPO") responsible for overseeing data protection compliance, handling data subject requests, and acting as the primary point of contact for data protection matters. The DPO may be contacted via the email address provided in Section 14 of this Policy.

jilib collects the following categories of personal data in connection with the operation of the Platform:

jilib does not collect or process sensitive personal information (as defined under the DPA) beyond what is strictly required for KYC and AML obligations, and only where a lawful basis exists for such processing. jilib does not collect biometric data beyond selfie verification images used solely for identity confirmation purposes.

jilib collects personal data directly from you when you: register a jilib account; complete KYC verification; make a deposit or withdrawal; contact jilib customer support; respond to surveys or promotions; or update your account settings and preferences.

jilib automatically collects certain technical and usage data when you access and use the Platform. This includes data collected through cookies, web beacons, server logs, and similar tracking technologies. See Section 10 for full details of jilib's cookie practices.

jilib may receive data about you from third parties in limited circumstances, including: payment processors (for deposit and withdrawal verification); identity verification service providers (for KYC processing); fraud prevention and AML screening services; and, where applicable, regulatory authorities. Data received from third parties is processed only to the extent necessary for the specific purpose for which it was obtained.

jilib uses your personal data for the following purposes:

• Account Management: Creating, maintaining, and administering your jilib account, including processing registration, KYC verification, and account updates.
• Service Delivery: Providing access to the Platform, processing bets and game sessions, crediting winnings, and managing your in-game activity and wallet balance.
• Payment Processing: Processing deposits and withdrawals via GCash, Maya, BPI, BDO, Metrobank, USDT, and Coins.ph; reconciling transaction records; and handling payment disputes.
• Regulatory and Legal Compliance: Fulfilling jilib's obligations under Philippine law, including anti-money laundering ("AML") requirements, know-your-customer ("KYC") obligations, age verification, and responses to lawful requests from regulatory authorities.
• Fraud Prevention and Security: Detecting, investigating, and preventing fraud, money laundering, prohibited conduct, and security threats to the Platform and its users.
• Responsible Gaming: Monitoring account activity for indicators of problem gambling; administering self-exclusion, deposit limits, and cooling-off requests; and contacting players where jilib has a duty of care concern.
• Customer Support: Responding to enquiries, resolving complaints, and maintaining records of support interactions.
• Marketing Communications: Sending promotional offers, bonus notifications, and Platform updates, where you have provided consent to receive such communications. You may withdraw consent at any time from your account settings.
• Platform Improvement: Analysing aggregated, anonymised usage data to improve Platform performance, game selection, user interface design, and customer experience.
• Legal Claims: Establishing, exercising, or defending legal claims arising from your use of the Platform.

jilib does not use your personal data for automated decision-making that produces legal or similarly significant effects without appropriate human review, except where permitted or required by applicable law.

jilib processes your personal data on one or more of the following lawful bases as recognised under the Data Privacy Act of 2012:

• Contractual Necessity: Processing necessary for the performance of the agreement between you and jilib (the Terms & Conditions), including account management, service delivery, and payment processing.
• Legal Obligation: Processing required to comply with jilib's legal obligations under Philippine law, including AML regulations, KYC requirements, and tax reporting obligations.
• Legitimate Interest: Processing in pursuit of jilib's legitimate business interests where these interests are not overridden by your data protection rights. This includes fraud prevention, security monitoring, and Platform improvement based on anonymised analytics.
• Consent: Processing based on your freely given, specific, informed, and unambiguous consent, primarily for marketing communications and certain optional data uses. Consent may be withdrawn at any time, though withdrawal does not affect the lawfulness of processing carried out prior to withdrawal.
• Vital Interests: In exceptional circumstances, processing may be necessary to protect life, health, or safety.

jilib does not sell your personal data to any third party. jilib shares personal data only in the following circumstances and only to the extent necessary for the stated purpose:

jilib engages third-party service providers ("personal information processors" under the DPA) who process personal data on jilib's behalf, under contractual obligations consistent with this Policy. These include: payment processors (GCash/GXI, Maya/Paymaya Philippines, banks); KYC and identity verification providers; fraud detection and AML screening services; cloud hosting and data storage providers; customer support platform operators; and analytics service providers processing only anonymised or aggregated data.

jilib may disclose personal data to Philippine government agencies, regulatory bodies, law enforcement authorities, or courts where required by law, regulation, or a valid legal process, including Anti-Money Laundering Council (AMLC) reporting obligations, responses to lawful court orders, and compliance with AMLC Covered Transaction Reports or Suspicious Transaction Reports as required by the Anti-Money Laundering Act.

In the event of a merger, acquisition, restructuring, or sale of all or part of jilib's business, personal data held by jilib may be transferred to the relevant successor entity, subject to appropriate data protection safeguards and notification to affected data subjects where required.

jilib may share your personal data with third parties not otherwise described in this Policy where you have provided explicit, informed consent to such sharing.

jilib requires all third parties with whom personal data is shared to respect the security of your data and to process it only in accordance with applicable law and jilib's instructions. jilib does not permit third-party service providers to use your personal data for their own purposes beyond the scope of services they provide to jilib.

jilib retains personal data only for as long as necessary to fulfil the purpose for which it was collected, or as required by applicable law and regulatory obligations. The following general retention periods apply:

After the applicable retention period, personal data will be securely deleted or anonymised so that it can no longer be associated with an identifiable individual. Where data anonymisation is applied, the resulting anonymised datasets are no longer subject to the DPA and may be retained for statistical and analytical purposes without time limit.

Under the Data Privacy Act of 2012, you have the following rights in relation to your personal data held by jilib:

To exercise any of the above rights, submit a written request to jilib's Data Protection Officer at [email protected] with the subject line "Data Subject Rights Request." Please include your full name, registered username, and a description of the right you wish to exercise. jilib will respond within 15 business days of receiving a complete and valid request.

jilib reserves the right to verify your identity before processing a data subject rights request to prevent unauthorised disclosure or modification of personal data. In certain circumstances, jilib may be unable to fulfil a deletion request where the data is required to be retained for legal compliance or legitimate business purposes, in which case jilib will explain the reason for any limitation on the requested right.

jilib uses cookies and similar tracking technologies (collectively "cookies") when you access the Platform. Cookies are small text files placed on your device that enable the Platform to function correctly, remember your preferences, and support security and analytics functions.

• Strictly Necessary Cookies: Essential for the Platform to function. These enable session management, authentication, security controls, and fraud prevention. These cookies cannot be disabled without materially impairing Platform functionality.
• Functional Cookies: Store your preferences such as language settings, game lobby layout preferences, and display settings to provide a personalised experience on the Platform.
• Analytics Cookies: Collect anonymised or aggregated data about how users interact with the Platform to enable jilib to improve performance, identify errors, and understand usage patterns. jilib uses analytics tools that process only non-personally identifiable data under these cookies.
• Security Cookies: Support fraud detection, login anomaly monitoring, and protection against automated attacks on the Platform.

jilib does not use third-party advertising cookies or deploy cookie-based tracking for targeted advertising purposes. You may manage cookie settings through your browser settings. Note that disabling strictly necessary cookies will affect your ability to log in and use the Platform.

jilib implements appropriate technical and organisational security measures to protect your personal data against unauthorised access, accidental loss, destruction, alteration, and unlawful disclosure. These measures include:

• 256-bit SSL/TLS encryption for all data transmitted between your device and jilib servers.
• Encryption of stored personal data and financial records at rest using industry-standard cryptographic methods.
• Role-based access controls restricting access to personal data to authorised jilib staff with a demonstrated need.
• Two-factor authentication requirements for staff accessing administrative systems containing personal data.
• Automated login anomaly detection and account lockout mechanisms to prevent brute force and credential stuffing attacks.
• Regular internal security audits, vulnerability assessments, and penetration testing.
• Data processor agreements requiring all third-party processors to implement equivalent security standards.

While jilib maintains robust security infrastructure, no online system can provide absolute security guarantees. In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, jilib will comply with its notification obligations under the DPA and notify the NPC and affected data subjects within the timeframes prescribed by applicable regulations.

You are also responsible for maintaining the security of your jilib account credentials. jilib strongly recommends enabling two-factor authentication on your account and using a unique, strong password not used for other services.

The jilib Platform is strictly intended for individuals aged 21 years and above, in accordance with Philippine gambling regulations. jilib does not knowingly collect personal data from individuals below the age of 21.

Age verification is a mandatory step in the jilib KYC process. If jilib discovers that personal data has been collected from an individual below the minimum age requirement, that account will be immediately closed, any associated funds will be handled in accordance with jilib's Terms & Conditions, and the personal data will be deleted from jilib's systems as promptly as practicable.

If you believe that a person under 21 has accessed jilib or provided personal data to jilib, please contact us immediately at [email protected] so that appropriate action can be taken.

jilib reserves the right to update or amend this Privacy Policy at any time to reflect changes in applicable law, regulatory requirements, jilib's data processing practices, or Platform functionality. The "Last Updated" date at the top of this Policy will be revised whenever material changes are made.

Where material changes are made that affect the way jilib processes your personal data, jilib will provide notice by publishing the revised Policy on this page and, where practicable and required by law, by notifying you via your registered email address. Continued use of the Platform after the effective date of a revised Policy constitutes your acknowledgment of the changes.

jilib recommends that you review this Privacy Policy periodically to stay informed of how your personal data is being handled. Prior versions of this Policy may be made available upon written request to jilib's Data Protection Officer.

If you have any questions about this Privacy Policy, wish to exercise your data subject rights, or have concerns about how jilib handles your personal data, please contact jilib's Data Protection Officer:

• Email: [email protected] (Subject line: "Privacy / Data Protection Enquiry")
• Live Chat: Available 24/7 from within your logged-in jilib account
• Response Time: jilib aims to acknowledge all data protection enquiries within 3 business days and provide a substantive response within 15 business days

If you are not satisfied with jilib's response to a data protection complaint, or if you believe that jilib has processed your personal data in violation of the Data Privacy Act of 2012, you have the right to lodge a complaint with the National Privacy Commission of the Philippines (NPC). Information about how to file a complaint with the NPC is available through the NPC's official government channels.