me877 Privacy Policy

Introduction

By registering an account, accessing the me877 website, or using any of our services — including live casino, slots, sports betting, bingo, e-sabong, and related features — you acknowledge that you have read and understood this Privacy Policy and consent to the collection and processing of your personal data as described herein.

This Policy should be read together with the Terms & Conditions and the Responsible Gaming Policy, both of which are incorporated by reference. If you do not agree with any part of this Policy, you should not use the me877 platform.

me877 acts as the Personal Information Controller (PIC) as defined under the Data Privacy Act for all personal data collected through the me877 platform. We have appointed a Data Protection Officer (DPO) to oversee our data privacy compliance program. Contact details for the DPO are provided at the end of this Policy.

1. Personal Data We Collect

me877 collects the following categories of personal data from users of the platform:

1.1 Account Registration Data

• Full legal name (as it appears on your government-issued Philippine ID);
• Date of birth (for age verification — 21+ requirement);
• Philippine mobile number (primary account identifier and OTP channel);
• Username and encrypted password;
• Preferred language.

1.2 Identity Verification (KYC) Data

• Government-issued Philippine ID type and number (SSS, UMID, PhilSys, Driver's License, Passport);
• Photograph of the ID document (front and back);
• Selfie photograph for liveness verification;
• Proof of address (where required for enhanced due diligence).

1.3 Financial and Transaction Data

• GCash mobile number or Maya account details used for deposits and withdrawals;
• Bank account name and account number (for bank transfer withdrawals);
• Cryptocurrency wallet addresses (for USDT transactions);
• Complete deposit and withdrawal transaction history;
• Bonus claims, wagering history, and gaming session records.

1.4 Technical and Device Data

• IP address and approximate geolocation derived from IP;
• Device type, operating system, and browser version;
• Session timestamps and duration;
• Pages visited and features accessed on me877;
• Cookie and tracking technology data (see Section 8).

1.5 Communications Data

• Records of communications with me877 customer support via live chat or email;
• Feedback, survey responses, and complaints submitted through the platform.

2. How We Collect Personal Data

me877 collects personal data through the following means:

• Directly from you: When you register an account, complete KYC, make a deposit or withdrawal, contact support, or participate in a promotion;
• Automatically: Through cookies, web beacons, server logs, and similar technologies when you browse or use the me877 platform;
• From third parties: From identity verification service providers, payment processors (GCash, Maya, BPI, BDO, Metrobank), and fraud detection services, where permitted by law and necessary for our compliance obligations;
• From publicly available sources: Including public records where necessary for AML (Anti-Money Laundering) compliance screening.

3. Purposes of Processing Your Personal Data

me877 processes your personal data for the following specific, legitimate purposes:

• Account Management: Creating, maintaining, and securing your me877 player account;
• Identity Verification: Verifying your age (21+), identity, and address as required by PAGCOR and the DPA;
• Service Delivery: Enabling your access to games, live casino, sports betting, and other platform features;
• Payment Processing: Processing deposits and withdrawal requests through your chosen payment method;
• Regulatory Compliance: Fulfilling obligations under the DPA, PAGCOR regulations, Anti-Money Laundering Act (AMLA), and other applicable Philippine laws;
• Fraud Prevention and Security: Detecting, investigating, and preventing fraudulent activity, cheating, bonus abuse, and unauthorized account access;
• Customer Support: Responding to your inquiries, complaints, and support requests;
• Responsible Gaming: Monitoring gaming patterns to identify potential problem gambling and applying responsible gaming controls;
• Platform Improvement: Analyzing usage data to improve the functionality, design, and performance of the me877 platform;
• Marketing Communications: Sending promotional offers and platform updates where you have given consent (you may opt out at any time from account settings).

4. Legal Basis for Processing

Under the Data Privacy Act of 2012, me877 processes your personal data on the following legal bases:

• Contractual Necessity: Processing is necessary to perform the contract between you and me877 (your account Terms & Conditions) — this covers account management, game access, and payment processing;
• Legal Obligation: Processing is required to comply with PAGCOR regulations, the AMLA, and the DPA — this covers KYC, AML screening, and regulatory reporting;
• Legitimate Interests: Processing is necessary for the legitimate interests of me877 — including fraud prevention, platform security, and responsible gaming monitoring — provided those interests are not overridden by your rights;
• Consent: For non-essential communications such as marketing messages and optional analytics cookies, me877 processes your data only with your explicit consent, which you may withdraw at any time.

5. Data Sharing and Disclosure

me877 does not sell, rent, or trade your personal data to third parties for their own marketing purposes. We may share your personal data with the following categories of recipients only as necessary and with appropriate safeguards:

• Payment Processors: GCash (Mynt), Maya (Voyager Innovations), BPI, BDO, Metrobank, and cryptocurrency processing partners — solely to process your deposits and withdrawals;
• Identity Verification Providers: Third-party KYC and AML screening services used to verify your identity and comply with regulatory requirements;
• Game Content Providers: Software providers such as Pragmatic Play, PG Soft, and others receive only anonymized game session identifiers — never personally identifiable information;
• Regulatory Authorities: PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission (NPC), and law enforcement bodies where required by law;
• Professional Advisors: Legal counsel, auditors, and compliance consultants, subject to confidentiality obligations;
• Business Successors: In the event of a merger, acquisition, or sale of the me877 business, your data may be transferred to the successor entity subject to this Policy or a revised policy with equivalent protections.

6. Data Retention

me877 retains personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law:

• Account data: Retained for the duration of your active account plus 5 years after account closure, in compliance with PAGCOR and AMLA record-keeping requirements;
• KYC documents: Retained for at least 5 years from the date of the last transaction, as required under the AMLA;
• Transaction records: Retained for 5 years from the date of the transaction;
• Customer support records: Retained for 3 years from the date of the interaction;
• Marketing consent records: Retained until consent is withdrawn, plus 1 year thereafter for compliance documentation;
• Technical logs: Retained for 90 days for security and debugging purposes, then automatically deleted.

Upon expiry of the applicable retention period, personal data is securely deleted or anonymized in accordance with our data destruction procedures.

7. Security Measures

me877 implements industry-standard technical and organizational security measures to protect your personal data from unauthorized access, loss, alteration, or disclosure:

• Encryption in Transit: All data transmitted between your device and me877 servers is protected by 256-bit SSL/TLS encryption;
• Encryption at Rest: Sensitive data fields including passwords and payment details are encrypted at rest using AES-256;
• Password Security: User passwords are hashed using bcrypt with unique salts — me877 staff cannot view or recover your password;
• Access Controls: Access to personal data is restricted on a strict need-to-know basis with role-based access controls and multi-factor authentication for all staff systems;
• Penetration Testing: The me877 platform undergoes regular independent security assessments and penetration testing;
• Incident Response: me877 maintains a documented data breach response procedure. In the event of a breach affecting your rights, we will notify the National Privacy Commission and affected users within the timeframes required by the DPA.

8. Cookies and Tracking Technologies

me877 uses cookies and similar technologies on the me877.org website. Cookies are small text files placed on your device that help us operate the platform and understand how it is used.

Types of Cookies Used

• Strictly Necessary Cookies: Required for core platform functions — login session management, security tokens, and shopping cart functionality. These cannot be disabled without impairing the platform.
• Functional Cookies: Remember your preferences such as language settings and display options for a more personalized experience.
• Analytics Cookies: Collect anonymized data about how pages are used and which features are most popular. Used to improve platform performance. Only activated with your consent.
• Session Cookies: Temporary cookies that expire when you close your browser. Used to maintain your login state during a session.

You may manage your cookie preferences through your browser settings. Please note that disabling strictly necessary cookies will affect your ability to use the me877 platform. me877 does not use third-party advertising cookies or cross-site tracking technologies.

9. Your Rights as a Data Subject

Under the Data Privacy Act of 2012, you have the following rights with respect to your personal data held by me877:

me877 will respond to data subject requests within 15 business days of receipt. Complex requests may require additional time, in which case we will notify you of the extended timeframe within the initial 15-day period.

10. Minors and Age Restrictions

me877 does not knowingly collect personal data from individuals under the age of 21. The me877 platform is strictly restricted to players who are 21 years of age or older, in compliance with PAGCOR regulations governing casino-style gaming in the Philippines.

Where me877 discovers that personal data has been collected from a person under 21 — whether through registration fraud or otherwise — the account will be immediately suspended, all personal data associated with that account will be deleted in accordance with our retention schedule, and any deposited funds will be returned pending verification of the minor's guardian identity.

Parents and guardians who believe their child may have accessed me877 should contact our support team immediately for prompt account review and data deletion.

11. Cross-Border Data Transfers

me877's primary data infrastructure is located in the Philippines. In limited circumstances, personal data may be processed by service providers whose systems are located outside the Philippines — for example, cloud infrastructure providers or international payment processors.

Any cross-border transfer of personal data by me877 is conducted only where:

• The recipient jurisdiction provides adequate data protection (as determined by the NPC); or
• Appropriate contractual safeguards are in place, including Data Processing Agreements that bind the recipient to processing standards equivalent to Philippine DPA requirements; or
• The transfer is necessary to perform the contract with you (e.g. processing a cryptocurrency transaction).

12. Changes to This Privacy Policy

me877 reserves the right to update or revise this Privacy Policy at any time. The "Last Updated" date at the top of this page reflects the most recent revision. For material changes that significantly affect your privacy rights, me877 will make reasonable efforts to notify registered players via their registered contact details before the change takes effect.

Your continued use of the me877 platform after a revised Privacy Policy is published constitutes your acceptance of the revised Policy. If you do not agree with any changes, you should cease using the platform and may close your account.

13. Contact Us and Data Protection Officer

If you have any questions, concerns, or requests regarding this Privacy Policy or the handling of your personal data, please contact the me877 Data Protection Officer:

• Data Protection Officer, me877
• Live Chat: Available 24/7 via the me877 platform — request to speak with the DPO team
• Email: [email protected]
• Response Time: Within 15 business days for formal data subject requests; within 2 business days for general privacy inquiries

For unresolved privacy complaints, you may also contact the National Privacy Commission (NPC) of the Philippines. The NPC is the authority responsible for administering the Data Privacy Act of 2012.