j2jl Privacy Policy

This Privacy Policy applies to all personal data collected, processed, stored, and used by j2jl ("j2jl," "we," "us," "our") in connection with the operation of the j2jl online gaming platform accessible at j2jl.org, including all associated mobile experiences, customer support channels, and marketing communications.

j2jl acts as the Personal Information Controller in respect of all personal data collected directly from players and visitors to j2jl.org, within the meaning of the Philippine Data Privacy Act of 2012 (Republic Act No. 10173) and its Implementing Rules and Regulations. Where j2jl engages third-party service providers to process personal data on its behalf, those providers act as Personal Information Processors under j2jl's direction and are bound by written data processing agreements.

j2jl's data processing activities are also subject to applicable requirements under PAGCOR's regulatory framework, including obligations relating to the retention of player transaction records and KYC documentation for regulatory inspection purposes.

j2jl collects the following categories of personal data from players and platform visitors:

j2jl does not collect sensitive personal information as defined under RA 10173 — such as health data, religious beliefs, or political affiliation — except where strictly required for responsible gaming compliance (e.g., self-exclusion records), in which case such data is processed under the lawful basis of compliance with a legal obligation.

j2jl collects personal data through the following methods:

• Direct Collection: Data you provide when you register an Account, complete KYC verification, make a deposit or withdrawal, contact customer support, or respond to a j2jl survey or promotion;
• Automated Collection: Technical and gaming data collected automatically when you access and use j2jl.org, through server logs, session tracking, and platform analytics systems;
• Payment Providers: Transaction confirmation data and payment reference details received from GCash, Maya, BPI, BDO, and other integrated payment service providers when you conduct a deposit or withdrawal;
• Identity Verification Services: Identity and document verification data received from j2jl's KYC service providers when you complete the account verification process;
• Cookies and Similar Technologies: Session and analytical data collected through cookies placed on your device when you visit j2jl.org, as further described in Section 7 of this Policy.

Under the Philippine Data Privacy Act of 2012, j2jl relies on the following lawful bases for processing your personal data:

• Contractual Necessity: Processing required to perform j2jl's obligations under the Player Agreement (Terms & Conditions), including account management, game provision, and payment processing;
• Legal Obligation: Processing required to comply with applicable Philippine law, PAGCOR regulations, AML obligations under the Anti-Money Laundering Act, and KYC requirements;
• Legitimate Interests: Processing for fraud prevention, platform security, responsible gaming monitoring, and improvement of j2jl's services, where these interests are not overridden by your privacy rights;
• Consent: Processing for direct marketing communications, where you have opted in to receive such communications. You may withdraw your marketing consent at any time by contacting j2jl support.

j2jl uses your personal data for the following purposes:

• To create, verify, and maintain your j2jl Account;
• To process deposits and withdrawals and maintain accurate account balance records;
• To conduct KYC and AML verification as required by PAGCOR and Philippine law;
• To provide, operate, and improve the j2jl gaming platform and its game content;
• To enforce j2jl's Terms & Conditions and detect, investigate, and prevent fraudulent, abusive, or illegal activity;
• To administer bonuses, promotions, and loyalty programs;
• To operate j2jl's responsible gaming program, including monitoring for indicators of problem gambling and administering self-exclusion requests;
• To provide customer support and resolve player disputes;
• To send transactional notifications (account activity, withdrawal confirmations, security alerts) — these are not optional as they are part of the service;
• To send direct marketing communications where you have provided consent, which you may withdraw at any time;
• To maintain records required by PAGCOR and applicable Philippine law.

j2jl does not sell, rent, or commercially transfer your personal data to third parties. Your data may be shared with the following categories of recipients solely to the extent necessary for the purposes described in this Policy:

• Payment Service Providers: GCash, Maya, BPI, BDO, Metrobank, and other integrated payment partners, for the purpose of processing transactions. These providers receive only the data necessary to execute the relevant payment;
• KYC and Identity Verification Providers: Third-party identity verification services engaged by j2jl to conduct KYC checks as required under PAGCOR regulations and AML law;
• Gaming Content Providers: Third-party game providers whose games are offered on j2jl may receive limited session and transaction data required for game delivery and RNG audit compliance;
• IT and Platform Service Providers: Cloud hosting, security, analytics, and communications technology providers engaged by j2jl under data processing agreements;
• Regulatory Authorities: PAGCOR, the Anti-Money Laundering Council (AMLC), the National Privacy Commission (NPC), and other competent Philippine government bodies, where disclosure is required by law or regulatory direction;
• Law Enforcement: Philippine law enforcement agencies, where j2jl is compelled by lawful court order, search warrant, or statutory obligation to disclose player data.

All third-party service providers who process personal data on j2jl's behalf are bound by written data processing agreements that impose equivalent data protection standards to those in this Policy and require compliance with RA 10173.

j2jl uses cookies and similar tracking technologies on j2jl.org to support platform functionality, ensure security, and analyze platform performance. The following cookie categories are used:

• Strictly Necessary Cookies: Required for the platform to function — session management, login authentication, security token validation. These cannot be disabled without breaking core platform functionality;
• Functional Cookies: Remember your preferences, language settings, and game lobby configurations to personalize your j2jl experience;
• Analytics Cookies: Aggregate, anonymized data about how players navigate and use j2jl.org, used to identify usability improvements. These do not identify individual players;
• Security Cookies: Support j2jl's fraud detection and suspicious login monitoring systems.

j2jl does not use advertising or cross-site tracking cookies. You may manage cookie preferences through your browser settings; however, disabling strictly necessary cookies will impair your ability to log in to and use j2jl.

j2jl implements technical and organizational security measures appropriate to the nature and sensitivity of the personal data it processes. These measures include:

• 256-bit SSL/TLS encryption for all data in transit between players and j2jl.org;
• AES-256 encryption for sensitive personal data stored at rest, including KYC documents and financial data;
• Multi-factor authentication requirements for administrative access to systems holding personal data;
• Role-based access controls limiting staff access to personal data on a strict need-to-know basis;
• Regular third-party security audits, vulnerability assessments, and penetration testing;
• Intrusion detection and real-time security monitoring systems;
• Data breach response procedures in compliance with NPC notification requirements under RA 10173.

j2jl retains your personal data only for as long as is necessary to fulfil the purposes described in this Policy, or as required by applicable law and regulation. The following retention principles apply:

• Active Account Data: Retained for the duration of your Account's existence and for a period thereafter as required by PAGCOR regulations and AML obligations;
• Transaction and Gaming Records: Retained for a minimum of five (5) years from the date of the transaction, in accordance with PAGCOR record-keeping requirements and the Anti-Money Laundering Act;
• KYC Documentation: Retained for a minimum of five (5) years following the closure of your Account, or longer where required by law or ongoing regulatory investigation;
• Customer Support Records: Retained for a period of three (3) years from the date of the interaction, to support dispute resolution and quality assurance;
• Marketing Consent Records: Retained for as long as you remain a registered player and for one (1) year following Account closure, to demonstrate compliance with consent obligations.

Upon expiry of the applicable retention period, personal data is securely deleted, destroyed, or anonymized in accordance with j2jl's data disposal procedures. Anonymized data — from which no individual can be identified — may be retained indefinitely for statistical and analytical purposes.

As a data subject under the Philippine Data Privacy Act of 2012, you have the following rights in respect of your personal data held by j2jl. To exercise any of these rights, contact j2jl's Data Protection Officer at [email protected] with the subject line "Data Subject Rights Request."

j2jl's platform and services are strictly intended for persons aged 21 years and above. j2jl does not knowingly collect personal data from individuals under 21. If j2jl becomes aware that personal data has been collected from a person under 21, all associated data will be deleted immediately and the Account closed.

If you are a parent or guardian and believe that a minor has created an Account on j2jl or provided personal data to j2jl without your knowledge, please contact j2jl immediately at [email protected]. j2jl will investigate and take appropriate action without delay.

Certain j2jl service providers — including cloud hosting providers, KYC verification services, and game content providers — may be located outside the Philippines. Where personal data is transferred to recipients in other jurisdictions, j2jl ensures that such transfers are conducted in compliance with Section 21 of the Philippine Data Privacy Act, including through the use of standard contractual clauses, binding corporate rules, or transfers to jurisdictions that provide an adequate level of data protection.

j2jl maintains a register of all cross-border data transfers and the safeguards applied to each, which is available to the National Privacy Commission upon request. Players may request information about specific cross-border transfers by contacting j2jl's Data Protection Officer.

j2jl reserves the right to update this Privacy Policy at any time to reflect changes in its data processing practices, applicable law, PAGCOR regulations, or NPC guidance. When material amendments are made, j2jl will notify registered players via the email address on file at least seven (7) days before the revised Policy takes effect.

The effective date at the top of this Privacy Policy will be updated with each revision. If you continue to use j2jl after the effective date of an amended Policy, you are deemed to have accepted the revised terms. Where the amendment materially affects how j2jl uses data in a way that requires your consent, j2jl will seek fresh consent before processing under the new terms.

Prior versions of this Privacy Policy are retained by j2jl and are available on request by contacting [email protected].

j2jl has designated a Data Protection Officer (DPO) responsible for overseeing compliance with the Philippine Data Privacy Act and this Privacy Policy. For any privacy-related queries, data subject rights requests, or concerns regarding j2jl's data practices, please contact:

If you are not satisfied with j2jl's response to a privacy concern, you have the right to escalate your complaint to the National Privacy Commission (NPC) of the Philippines. Information on how to file a complaint with the NPC is available at the NPC's official government website.

This Privacy Policy was last reviewed and updated on 1 January 2026.