lol291 Privacy Policy

1. Introduction

lol291 ("lol291," "we," "our," "us") is committed to protecting the privacy of all registered players and visitors to the lol291 Platform (lol291.org). This Privacy Policy ("Policy") describes our practices concerning the personal data we collect from you when you access or use our Platform, create an account, make deposits or withdrawals, contact customer support, or participate in promotions.

This Policy is issued in compliance with the Republic Act No. 10173 (Data Privacy Act of 2012) of the Philippines and its Implementing Rules and Regulations, as overseen by the National Privacy Commission (NPC). By registering an account or using the lol291 Platform, you acknowledge that you have read and understood this Policy.

2. Personal Data We Collect

lol291 collects the following categories of personal data:

2.1 Identity & Contact Data

• Full legal name as it appears on your government-issued ID
• Date of birth (for 21+ age verification purposes)
• Philippine mobile number and email address
• Residential address (city, province, postal code)
• Government-issued ID type and document number (for KYC)
• Scanned copy or photograph of your government-issued ID and selfie verification (where required)

2.2 Financial Data

• GCash number, PayMaya number, or bank account details used for deposits and withdrawals
• Cryptocurrency wallet addresses used for transactions
• Transaction history: deposit amounts, withdrawal amounts, timestamps, and payment method references
• Source-of-funds declarations (where requested for regulatory compliance)

2.3 Gaming & Usage Data

• Game session logs: games played, bet amounts, win/loss records, session duration
• Bonus and promotion redemption history
• Login timestamps, IP addresses, and device identifiers
• Browser type, operating system, and screen resolution
• Referring URL and navigation patterns within the lol291 Platform

2.4 Communications Data

• Records of your communications with lol291 customer support via live chat or email
• Feedback, complaints, or dispute submissions you send to lol291
• Marketing preferences and communication opt-in/opt-out records

3. How We Collect Your Data

lol291 collects personal data through the following means:

• Account Registration: You provide identity and contact data when creating your lol291 account.
• KYC Verification: You upload identification documents as part of the mandatory Know Your Customer process before your first withdrawal.
• Transactions: Payment processors and e-wallet providers (GCash, PayMaya, BPI, BDO, Metrobank, and crypto networks) transmit transaction reference data to lol291.
• Platform Use: Our servers automatically collect gaming session data, login records, and device/browser information each time you access the Platform.
• Cookies and Tracking Technologies: As described in Section 7 of this Policy.
• Customer Support Interactions: Data you provide when contacting lol291 support.

4. How We Use Your Personal Data

lol291 uses your personal data for the following purposes:

• Account Management: Creating, maintaining, and securing your lol291 account; verifying your identity and age; processing login and session management.
• Transaction Processing: Processing deposits, withdrawals, and bonus credits; maintaining accurate financial records; preventing payment fraud and chargebacks.
• Regulatory Compliance: Fulfilling obligations under PAGCOR licensing conditions, the Data Privacy Act of 2012, Anti-Money Laundering Act (AMLA) requirements, and other applicable Philippine laws.
• Responsible Gaming: Monitoring gaming patterns to identify players who may be at risk of problem gambling; administering deposit limits, self-exclusion, and cooling-off periods you have requested.
• Customer Support: Responding to your queries, complaints, and dispute submissions; maintaining records of our support interactions for quality assurance.
• Platform Security: Detecting, investigating, and preventing fraudulent activity, multi-accounting, bot usage, and other breaches of our Terms & Conditions.
• Service Improvement: Analysing aggregated, anonymised usage data to improve game performance, platform stability, and the overall lol291 player experience.
• Marketing: Sending promotional offers and newsletters to players who have opted in to receive marketing communications. You may opt out at any time.

5. Legal Basis for Processing

lol291 processes your personal data under the following legal bases as recognised by the Data Privacy Act of 2012:

• Contractual Necessity: Processing required to perform the contract between you and lol291 (your account registration and the Terms & Conditions).
• Legal Obligation: Processing required to comply with PAGCOR regulations, AMLA obligations, and other applicable Philippine laws.
• Legitimate Interests: Processing for fraud prevention, platform security, and responsible gaming monitoring, where these interests are not overridden by your rights.
• Consent: Processing for marketing communications, where you have given explicit opt-in consent. Consent may be withdrawn at any time.

6. Data Sharing and Third-Party Disclosure

lol291 does not sell your personal data to third parties. We share your data only in the following limited circumstances:

• Payment Processors: GCash, PayMaya, BPI, BDO, Metrobank, and cryptocurrency network operators receive transaction reference data necessary to process your deposits and withdrawals.
• KYC and Identity Verification Partners: Third-party identity verification service providers receive identification documents solely for the purpose of performing KYC checks on behalf of lol291.
• Game Providers: Game software providers may receive pseudonymised session identifiers for the purpose of game delivery, technical support, and RNG audit purposes.
• Regulatory Authorities: PAGCOR, the National Privacy Commission, Anti-Money Laundering Council (AMLC), and other competent Philippine authorities may receive data where required by law or upon valid legal demand.
• Professional Advisors: Legal counsel, auditors, and compliance consultants engaged by lol291 under obligations of confidentiality.
• Business Transfers: In the event of a merger, acquisition, or sale of substantially all assets of lol291, your data may be transferred to the successor entity, subject to equivalent privacy protections.

All third-party data processors engaged by lol291 are required by contract to process your data only for the specified purpose and in compliance with applicable Philippine data protection law.

7. Cookies and Tracking Technologies

lol291 uses the following categories of cookies and similar tracking technologies:

• Strictly Necessary Cookies: Required for the Platform to function. These include session authentication tokens and security cookies. These cannot be disabled.
• Functional Cookies: Remember your preferences, such as language settings, last-visited game categories, and remembered login details (if you selected "Remember me").
• Performance / Analytics Cookies: Collect anonymised data about how players navigate the Platform to help lol291 identify and fix performance issues.
• Marketing Cookies: Used only if you have opted in to marketing communications. Track which promotions you have interacted with to avoid sending irrelevant offers.

You may manage cookie preferences through your browser settings. Note that disabling strictly necessary cookies will prevent you from logging in to your lol291 account.

8. Data Retention

lol291 retains your personal data for the following periods:

• Active Account Data: Retained for the duration of your active lol291 account plus a minimum of 5 years following account closure, as required by PAGCOR compliance and AMLA record-keeping obligations.
• Transaction Records: Retained for a minimum of 5 years from the date of each transaction in compliance with AMLA requirements.
• KYC Documents: Retained for the duration of your account plus 5 years post-closure.
• Support Communications: Retained for 3 years from the date of the interaction, or longer if the matter is subject to an ongoing dispute or legal proceeding.
• Marketing Consent Records: Retained until you withdraw consent, at which point they are archived for 3 years as evidence of previous consent status.

Upon expiry of the applicable retention period, lol291 will securely delete or anonymise your personal data.

9. Data Security

lol291 implements the following technical and organisational security measures to protect your personal data:

• Transport Layer Security (TLS/SSL) encryption for all data transmitted between your device and lol291 servers
• Encryption at rest for sensitive data including KYC documents and financial records
• Role-based access controls ensuring that only authorised lol291 personnel can access personal data, and only to the extent necessary for their role
• Regular third-party security audits and penetration testing of the lol291 Platform
• Two-factor authentication available for all player accounts
• Automated suspicious login detection and account lockout policies
• Incident response procedures in place for data breach notification in compliance with NPC requirements

While lol291 takes all reasonable precautions, no system is completely immune to security incidents. In the event of a data breach affecting your rights, lol291 will notify affected players and the NPC within the timeframes required by law.

10. International Data Transfers

lol291 primarily operates within the Philippines and processes data on servers located in the Philippines. Certain third-party service providers (such as game software providers and cloud infrastructure partners) may process data in other jurisdictions. Where international transfers occur, lol291 ensures that appropriate safeguards are in place, including contractual data protection clauses consistent with NPC guidelines, to protect your data to the same standard as required under Philippine law.

11. Your Rights Under the Data Privacy Act

As a data subject under Republic Act No. 10173, you have the following rights with respect to your personal data held by lol291:

• Right to be Informed: The right to be told what data lol291 collects and how it is used — as described in this Policy.
• Right of Access: The right to request a copy of the personal data lol291 holds about you.
• Right to Rectification: The right to have inaccurate or incomplete personal data corrected.
• Right to Erasure / Right to be Forgotten: The right to request deletion of your personal data, subject to lol291's legal retention obligations (such as AMLA record-keeping requirements).
• Right to Object: The right to object to processing of your personal data for direct marketing purposes at any time.
• Right to Data Portability: The right to receive your personal data in a structured, commonly used format where technically feasible.
• Right to Lodge a Complaint: The right to file a complaint with the National Privacy Commission (NPC) if you believe lol291 has processed your data in violation of the Data Privacy Act.

To exercise any of the above rights, please contact lol291's Data Protection Officer using the contact details in Section 15. We will respond to all verified rights requests within 15 business days.

12. Children's Privacy

The lol291 Platform is strictly for individuals aged 21 years and above. lol291 does not knowingly collect personal data from any person under the age of 21. If we become aware that an account has been created by or for a person under 21, the account will be immediately closed and all personal data deleted, except where retention is required by law. If you believe a minor has accessed lol291, please contact our support team immediately.

13. Third-Party Links

The lol291 Platform does not contain links to third-party websites for commercial or navigational purposes beyond those listed in our internal navigation menu. In the unlikely event that any third-party content is displayed on the Platform, lol291 is not responsible for the privacy practices of those third parties. We encourage you to read the privacy policies of any external services you access independently.

14. Amendments to This Policy

lol291 reserves the right to update or amend this Privacy Policy at any time to reflect changes in our data practices, legal obligations, or regulatory requirements. Material changes will be communicated to registered players via email or on-platform notification at least 7 days before the amended Policy takes effect. Continued use of the lol291 Platform after the effective date of any amendment constitutes your acknowledgment of the updated Policy. If you do not accept the revised Policy, you must close your lol291 account before the effective date.

15. Contact the lol291 Data Protection Officer

For questions about this Privacy Policy, to exercise your data rights, or to report a privacy concern, please contact the lol291 Data Protection Officer:

You also have the right to lodge a complaint directly with the National Privacy Commission of the Philippines (NPC) if you believe your data privacy rights have been violated. The NPC can be contacted through official government channels.