hs777 Privacy Policy

01 Introduction

This Privacy Policy ("Policy") describes how hs777 ("hs777," "we," "us," "our") collects, processes, stores, and protects personal data provided by users ("Player," "you," "your") of the hs777 online gaming platform accessible at https://hs777.co ("Platform," "Site," "Service").

This Policy is issued in compliance with Republic Act No. 10173, otherwise known as the Data Privacy Act of 2012 of the Philippines ("DPA"), its implementing rules and regulations ("IRR"), and all issuances of the National Privacy Commission ("NPC"). By registering for or using the hs777 Platform, you consent to the collection and processing of your personal data as described in this Policy.

This Policy should be read in conjunction with the hs777 Terms & Conditions and Responsible Gaming Policy, both of which form part of the complete legal framework governing your use of the Platform.

02 Data Controller

hs777 acts as the Personal Information Controller ("PIC") in respect of all personal data collected through the Platform. As PIC, hs777 determines the purposes and means of processing your personal data and is accountable for ensuring that processing activities comply with the DPA and all applicable Philippine data protection regulations.

Inquiries regarding this Policy or the exercise of your data privacy rights may be directed to the hs777 Data Protection Officer ("DPO") at the contact details provided in Section 14 of this Policy.

03 Data We Collect

hs777 collects personal data in the following categories, depending on how you interact with the Platform:

3.1 Registration & Identity Data

• Full legal name as it appears on your government-issued Philippine identification document
• Date of birth (for age verification in compliance with the 21+ requirement)
• Residential address in the Philippines
• Philippine mobile number
• Email address
• Username and encrypted password

3.2 Identity Verification Data

• Copy of government-issued Philippine identification (e.g., PhilSys National ID, passport, driver's licence, UMID, SSS ID, PRC ID)
• Proof of address documentation where required
• Source-of-funds documentation for enhanced due diligence reviews

3.3 Financial & Transaction Data

• GCash mobile number, PayMaya account reference, or bank account details (BPI, BDO, Metrobank, Unionbank) associated with your hs777 account
• Deposit and withdrawal transaction history, including amounts, timestamps, and payment method references
• Bonus and promotion redemption records

3.4 Gameplay & Behavioural Data

• Game session logs, including games played, bet amounts, win/loss outcomes, and session duration
• Responsible gaming tool settings configured within your account
• Customer support interaction records

3.5 Technical & Device Data

• IP address and approximate geolocation
• Device type, operating system, and browser information
• Platform access timestamps and session identifiers
• Cookies and similar tracking technology data (see Section 7)

04 How We Use Your Data

hs777 processes personal data for the following purposes:

Purpose	Data Categories Used
Account registration and identity verification	Registration data, Identity verification data
Age verification (21+ compliance)	Date of birth, Government ID
Processing deposits and withdrawals	Financial data, Transaction data
Fraud prevention and anti-money laundering (AML) compliance	All categories, as required
Providing customer support	Registration data, Support interaction records
Delivering bonuses and promotional offers	Registration data, Gameplay data, Transaction data
Responsible gaming monitoring and interventions	Gameplay data, Account settings
Platform security and technical operations	Technical data, Device data
Regulatory compliance and reporting	All categories, as required by law
Service improvement and analytics	Anonymised or aggregated gameplay and technical data

hs777 does not use personal data for automated decision-making that produces legal or similarly significant effects on Players without providing an opportunity for human review, except where required or permitted by applicable law.

05 Legal Basis for Processing

hs777 processes your personal data on the following legal bases as provided under Section 12 and Section 13 of the Data Privacy Act of 2012:

• Consent: Where you have provided clear, informed consent to processing for a specific purpose, such as receiving promotional communications.
• Contractual Necessity: Where processing is necessary for the performance of the contract between you and hs777, including account registration, payment processing, and game delivery.
• Legal Obligation: Where processing is required for hs777 to comply with applicable Philippine laws and regulations, including AML obligations, PAGCOR requirements, and the DPA itself.
• Legitimate Interests: Where processing is necessary for the legitimate interests of hs777, including fraud prevention, platform security, and responsible gaming monitoring, provided such interests are not overridden by your rights and freedoms.

06 Data Sharing & Disclosure

hs777 does not sell, rent, or trade your personal data to third parties for their own marketing purposes. Personal data may be shared with the following categories of recipients, strictly on a need-to-know basis and subject to appropriate data protection safeguards:

• Payment Processors: GCash (Mynt), PayMaya (Maya Bank), BPI, BDO, Metrobank, and Unionbank — solely to process deposits and withdrawals on your instruction.
• Identity Verification Providers: Third-party Know Your Customer (KYC) service providers engaged to perform identity and age verification.
• Game Content Providers: Licensed game studios and live dealer operators who provide game content to the hs777 Platform may receive session and gameplay data necessary for game delivery.
• Regulatory and Law Enforcement Authorities: Philippine government agencies, including PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission (NPC), and law enforcement bodies, where disclosure is required by law or court order.
• Platform Technology Providers: Hosting, security, and analytics service providers engaged to support the technical operation of the Platform, under written data processing agreements.

All third-party service providers who process personal data on behalf of hs777 are required to comply with the DPA and to implement security measures equivalent to those applied by hs777.

07 Cookies & Tracking Technologies

hs777 uses cookies and similar tracking technologies on the Platform. Cookies are small text files stored on your device that help the Platform function correctly and allow hs777 to understand how Players interact with the Site.

hs777 uses the following categories of cookies:

• Strictly Necessary Cookies: Required for the Platform to function. These include session authentication cookies that keep you logged in to your hs777 account. These cookies cannot be disabled.
• Functional Cookies: Remember your preferences, such as display settings and responsible gaming configurations, to improve your experience across sessions.
• Analytics Cookies: Collect anonymised data about how Players navigate the Platform to help hs777 identify areas for improvement. No personally identifiable information is used in analytics processing.
• Security Cookies: Assist in detecting and preventing fraudulent access attempts and unusual account activity.

You may configure your browser settings to refuse or delete cookies. However, disabling strictly necessary cookies will impair your ability to log in and use the hs777 Platform. hs777 does not use third-party advertising or behavioural targeting cookies.

08 Data Retention

hs777 retains personal data for as long as necessary to fulfil the purposes for which it was collected, and in accordance with applicable legal retention obligations. The following general retention periods apply:

• Account and identity data: Retained for the duration of the active account relationship, plus five (5) years following account closure, in compliance with Philippine AML record-keeping requirements.
• Financial and transaction data: Retained for a minimum of five (5) years from the date of each transaction, as required by Philippine AML and tax regulations.
• Gameplay and session data: Retained for three (3) years from the date of the session, or longer where required for dispute resolution or regulatory review.
• Customer support records: Retained for three (3) years from the date of the interaction.
• Cookie and technical data: Retained for up to twelve (12) months from the date of collection.

Upon expiry of the applicable retention period, personal data is securely deleted or anonymised in accordance with hs777's data disposal procedures.

09 Data Security

hs777 implements technical and organisational security measures designed to protect your personal data against unauthorised access, loss, destruction, or alteration. Measures in place include:

• 256-bit SSL/TLS encryption for all data transmitted between your device and the hs777 Platform.
• Encryption at rest for sensitive personal data stored on hs777 servers, including financial account references and government ID copies.
• Role-based access controls limiting staff access to personal data on a strict need-to-know basis.
• Regular security assessments and penetration testing of the Platform infrastructure.
• Incident response procedures in compliance with NPC breach notification requirements under the DPA.

In the event of a personal data breach that poses a real risk of serious harm to affected Players, hs777 will notify the National Privacy Commission and affected individuals within 72 hours of becoming aware of the breach, in accordance with NPC Circular 16-03.

10 Your Rights Under the Data Privacy Act

As a data subject under the Data Privacy Act of 2012, you have the following rights with respect to your personal data held by hs777:

• Right to be Informed: You have the right to know what personal data hs777 holds about you, the purpose of processing, and to whom it may be disclosed.
• Right of Access: You may request a copy of the personal data hs777 holds about your account, free of charge, subject to a reasonable processing period.
• Right to Rectification: You may request correction of inaccurate or incomplete personal data in your hs777 account at any time through account settings or by contacting support.
• Right to Erasure or Blocking: You may request deletion or blocking of your personal data where it is no longer necessary for the purpose collected, subject to hs777's legal retention obligations.
• Right to Object: You may object to the processing of your personal data where processing is based on legitimate interests, including the right to opt out of promotional communications at any time.
• Right to Data Portability: You may request a structured, commonly used copy of the personal data you have provided to hs777, for transmission to another controller.
• Right to Lodge a Complaint: You have the right to lodge a complaint with the National Privacy Commission if you believe hs777 has processed your personal data in breach of the DPA.

To exercise any of the above rights, please contact the hs777 Data Protection Officer using the details in Section 14. hs777 will respond to all verified requests within fifteen (15) business days of receipt.

11 Children's Privacy

hs777 is strictly a real-money gaming platform intended exclusively for adults aged 21 years and above, in compliance with Philippine gambling law. hs777 does not knowingly collect personal data from individuals under the age of 21. Age verification is conducted as part of the account registration and KYC process.

If hs777 discovers that personal data has been collected from an individual under the age of 21, the relevant account will be immediately suspended, all associated data will be deleted, and any funds deposited will be returned via the original payment method after completion of required verification.

If you believe that hs777 may have collected data from an individual under 21 years of age, please contact the DPO immediately at the details in Section 14.

12 Cross-Border Data Transfers

Certain third-party service providers engaged by hs777 — including game content providers and technology infrastructure providers — may be located outside the Philippines. Where personal data is transferred to entities in other countries, hs777 ensures that appropriate safeguards are in place, including contractual data protection clauses that meet or exceed the standards required by the DPA and the NPC.

hs777 does not transfer personal data to jurisdictions that do not provide an adequate level of data protection without implementing supplementary protective measures.

13 Changes to This Privacy Policy

hs777 reserves the right to update or modify this Privacy Policy at any time to reflect changes in applicable law, NPC guidance, or hs777's data processing practices. Material changes will be communicated to registered Players via the email address on file and through a prominent notice on the Platform at least fourteen (14) days before the changes take effect.

Continued use of the hs777 Platform following the effective date of any amendment constitutes your acceptance of the revised Policy. If you do not accept the revised Policy, you must cease using the Platform and contact support to request account closure.

14 Contact & Data Protection Officer

For all inquiries, data subject requests, or complaints relating to this Privacy Policy or the processing of your personal data by hs777, please contact the Data Protection Officer:

• Email: [email protected] (subject line: "Privacy / DPO Inquiry")
• Live Chat: Available 24 hours a day, 7 days a week through the Platform

If you are not satisfied with hs777's response, you have the right to escalate your complaint to the National Privacy Commission of the Philippines through official NPC channels.