GCash

GCash
‍Privacy Notice

GCash takes your privacy very seriously. We protect your personal data and use it in a fair, lawful, and secure way. We follow the Data Privacy Act of the Philippines, other laws that apply to our services, and relevant industry standards.

This Privacy Notice tells you how the relevant Mynt Group companies collect, use, share, keep, delete, and protect your personal data when you use the GCash App and GCash Services. It also explains how you can control what happens to your information.

What is GCash?

GCash is your everyday financial and lifestyle super app. The GCash App gives you access to a wide range of services all in one place. You can manage your core e-wallet needs with us, like sending money, receiving money, paying your bills, and shopping online. You can also use financial tools to borrow cash, invest, and manage stocks and bonds, where available.

For your lifestyle needs, the app offers features such as paying for your commute, ordering food, applying for jobs, requesting copies of your birth certificate and other official documents, donating to charities, planting trees, earning rewards, joining promos, discovering curated brands, and seeing offers tailored to your interests.

The services in the GCash App are provided or supported by different companies within the Mynt Group. These include Mynt, Inc. (“Mynt”, formerly Globe Fintech Innovations, Inc.), G-Xchange, Inc. (“GXI”), Fuse Financing Inc. (“Fuse”), Ryse, Inc. (“Ryse”), BlockG Virtual Assets, Inc. (“BlockG”), Electronic Commerce Philippines Inc. (“ECPay”), and other Mynt-affiliated companies named in this Privacy Notice or in the service-specific terms.

Depending on the services you choose, you may also deal with partners outside the Mynt Group, such as billers, merchants, financial institutions, remittance partners, product providers, advertisers, or other business partners. These partners are not part of the Mynt Group unless we clearly say otherwise.

To learn more about the various services available in the GCash App, please visit our GCash Services page.

Who handles your personal data?

When this Privacy Notice says “we,” “us,” or “our,” we mean the specific Mynt Group company responsible for the service, feature, product, or use of personal data being described. In some cases, two or more Mynt Group companies may be responsible for the same data use.

The relevant Mynt Group company may collect and use personal data for its own service or purpose. This means it may act as a personal information controller for that data use. A personal information controller decides why and how personal data is used.

Depending on the data, purpose, and service, Mynt Group companies may act as independent personal information controllers or as joint personal information controllers. They may do this to provide, support, secure, provide service-related personalization for, check eligibility or suitability for, or comply with legal rules for their services.

Mynt Group Company Example of services and purposes
GXI GCash Wallet, suitability and eligibility checks, payments, sending, receiving, disbursement, and remittance of e-money, KYC/KYM, AML, cybersecurity, and fraud detection and risk management
Fuse Loan or credit services, suitability and eligibility checks, loan applications, and loan servicing, KYC/KYM, AML, cybersecurity, and fraud detection and risk management
Ryse Investment or wealth services, account opening, suitability and eligibility checks, KYC, AML, cybersecurity, and fraud detection and risk management
BlockG Crypto or virtual asset services, where available

To learn more, please visit our individual Privacy Notices.

What about services from partners outside the Mynt Group?

Some services may be offered by partners outside the Mynt Group. For these services, we may share, send, or port your data to that partner only when the law allows it. We may also do this when it is needed for the service you choose, when it is covered by the relevant terms or privacy notice, or when you give your instruction or consent.

Partners outside the Mynt Group may have their own terms and privacy notices. These may explain how they collect, use, keep, and protect your personal data for their own services.

What personal data do we process and why do we process it?

This section explains the main types of personal data we collect and why we use them. Depending on the service, this data may be used by the relevant Mynt Group company responsible for that service or purpose.

  1. Information you give us when you sign up and open a GCash Account (Know-Your-Customer or KYC):

    These include:
    • Your full name,
    • Current and permanent address,
    • Birth details,
    • Citizenship or nationality,
    • Main source of funds,
    • Employment information,
    • Civil status,
    • Government-issued ID and ID number,
    • The information disclosed on your government-issued ID, including:
      • Sex,
      • Signature,
      • Your ID picture
    		 Before we can create your GCash Account and Wallet, and let you use GCash Services, we need to know who you are. This is required by law and by the Bangko Sentral ng Pilipinas’ (BSP) and Anti-Money Laundering Council’s (AMLC) rules on customer identification, customer verification, and due diligence.

    To help prevent money laundering and other financial crimes, we verify the information you give us. We need to confirm your identity, manage risks, and prevent fraud and crime. We may also check your name and details against lists from authorities or other allowed sources, such as the AMLC, the Anti-Terrorism Council, and the United Nations.
    • Mobile number,
    • Email address
    		 KYC rules require us to collect your contact information. We also use your contact details to send you important updates about your account, the services you use, new features, security alerts, and other relevant communications.
    • Biometrics data
    		 Biometrics data may be in the form of fingerprint or selfie or face scan.

    We use your selfie or face scan to help confirm your identity when you sign up. We may also use it for security checks, such as when you log-in to your GCash on a new device. This helps us make sure that it is really you and keeps your account safe from unauthorized access. To find out more about this security feature, read our article on GCash DoubleSafe.

    When Biometrics Login is enabled, we use your fingerprint or face scan to enable quick and secure login. To learn more about this feature, read this article on Biometrics Login.
    • Other information as may be required by law.
    		 If KYC rules or other laws require us to ask for more information or update information, we will let you know through the app. We may also update this Privacy Notice when needed.

  2. Information we receive from your use of our app and services:

    • Device Information
    		 We collect details about the device you use to access your GCash Account. This helps make the app work on your device, keep your account safe, detect possible fraud, and support security features. GCash lets you use your account on only one registered phone at a time. To find out more about this security feature, read our article on Account Secure.
    • Transaction History
    		 We record and review your transactions to provide GCash Services, keep required records, and report to regulators when required by law. This helps us follow rules against money laundering, fraud, and other financial crimes.
    • App Use / GCash Usage Data
    		 We collect information about how you use the GCash App and GCash Services. This may include service-use data, transaction indicators, account limits, usage patterns, and whether you pay your loans or credit on time.

    We use this information to operate and improve the app, create or improve products, keep GCash and its customers safe, check if you may be eligible or suitable for GCash Services, and provide service-related personalization. This may include recommending, showing, or prioritizing services, offers, rewards, or features that may be relevant to you.

    The relevant Mynt Group company may use this data for its own service or purpose. We may share it with partners outside the Mynt Group only when allowed by law, needed for the service you choose, covered by the relevant terms or notice, or based on your instruction or consent.
    • Geolocation Information
    		 We collect your location information when you allow it in your device or app settings, or when it is needed for a service you choose. We use location information to improve our services, detect fraud or crime, verify identity or location when needed, support risk or compliance checks, and, where allowed by law and based on your choices, show relevant in-app offers.

    We may validate or share location-related information available with relevant Mynt Group companies or authorized partners such as banks and other regulated entities, when allowed by law, needed for the service, covered by the relevant terms or notice, based on your instruction or consent.

    Some features may not work correctly if you do not allow location access. You can manage this in your device settings.
    • Advertising Unique Identifiers
    		 We may collect advertising identifiers, such as your iOS Identifier for Advertisers (IDFA) and Google Advertising ID (GAID), where your device settings allow it. We use these for advertising activities, measuring offers, and helping make ads or promos more relevant to you, where allowed by law and based on your choices. You can control how your device shares advertising identifiers through changing your device settings.
    • Inferred and Derived Information
    		 We may create new information about you based on the data we already have. For example, we may create interest categories, preference indicators, customer segments, risk or eligibility flags, or other groupings based on your transaction history, app activity, and other information.

    We use this to better understand what products, services, offers, or experiences may be relevant to you. We may also use it to improve our services, support eligibility or suitability checks, manage risk, prevent fraud, and provide service-related personalization. Where this information is used for marketing or ads, we follow the law and your choices.

  3. Information you give in order to use additional app features and services:

    • Bank Account Information
    		 We collect this information when you link your bank account to your GCash Wallet. This helps us process transactions between your GCash Wallet and your linked bank account.
    • Billing Account Information
    		 When you pay bills through the GCash App, we may ask for your name, account information, contact information, and payment method. We collect these details so the biller, company, or institution you are paying can apply your payment to the correct bill or account.
    • Contact List
    		 If you allow the GCash App to access your contact list, we may use information from your address book to support features you choose. These may include sending money or mobile load to your contacts, inviting them to use features like GForest, or using the app’s messaging service. You can manage contact list access in your device settings.

  4. Information we receive from Third-Parties:

    • Information from Fraud and Crime Prevention Authorities
    		 We may receive information about you from authorities or other allowed sources to help protect you and our other customers from fraud, scams, or crime. For example, we may verify your identification information and check your identity against lists from authorities such as the Anti-Money Laundering Council, the Anti-Terrorism Council, and the United Nations.
    • Linked Account Information
    		 When you select GCash as a payment method in third-party apps or websites, we may receive information about your linked third-party account. We use this to process your transaction and support the service you chose.

  5. Information you provide when you contact us or interact with us on other platforms:

    • Customer Care
    		 When you contact us by chat, phone, or email, we may record our conversation and collect details about you and your concerns. If your concern involves your account, we may ask questions to confirm your identity before we take any action that may affect your account. We may also record calls and chats with us to improve our customer service.
    • Social Media
    		 When you interact with us on our official social media pages (Facebook, Twitter, TikTok, and Instagram), we may see the information that you allow us to see from your profile. This may include your photo, profile name, and other information you choose to share. We use this information to respond to your concern, comment, message, or participation in a promo or activity.

How long do we keep your personal data?

We keep your personal data for at least five (5) years after the last transaction you made using your GCash account or after you close your account. We will keep this information for as long as we are required by anti-money laundering requirements, for compliance with Banko Sentral ng Pilipinas regulations, and for other legal obligations.

Different Mynt Group companies may keep personal data for different periods, depending on the service, legal rule, or business need involved. Service-specific terms or notices may give more details.

We only have access to your current contact list and current location while you allow your device to share this information with us. Some records created from your prior use of these features may be kept for the periods explained in this Privacy Notice, where needed for legal, security, fraud prevention, service, or dispute-related purposes.

If your information is relevant to an investigation, legal case, complaint, claim, or court order, we may keep the information for up to ten (10) years after the matter is completed or resolved, or for as long as the law or a court order requires.

How do we collect your personal data?

If you create or use a GCash Account or any GCash Service, we may collect, use, and share different types of personal data. We keep and use your data only for the purposes explained in this Privacy Notice, our terms, service-specific terms and notices, or as required by law.

  1. Direct interactions: We collect information when you create a GCash Account,  use or apply for a GCash Service, contact us for assistance, join promos or events, apply to become a merchant or business partner, or give us your personal data directly.

  2. Through our app and website: We collect information when you use the GCash App, our website, or GCash Services such as GStocks PH, Global Stocks, GFunds, GSave, GCrypto, or other services available in the app.

  3. Through various channels: We collect information through online forms, app pages, consent screens, data porting screens, and other channels managed by us, the relevant Mynt Group company, partners and affiliates, or our service providers. For example, when you buy a product from a partner website and select GCash as your payment method, we collect information needed to process the payment.

  4. From Mynt Group companies and partners: Relevant Mynt Group companies may collect or use certain data through the GCash App depending on the particular service you avail or feature you use. We may also receive data from partners outside the Mynt Group, such as your employer, bank, biller, merchant, or product provider, when allowed by law, needed for the service you choose, or based on your instruction or consent.

  5. From our social media platforms: We collect information when you interact with us on our official social media pages or join our contests, promos, or activities.

  6. By granting permissions on your mobile devices: We collect information when you allow the GCash App to access certain device features, such as biometrics, location, contacts, camera, or other app permissions. You can manage these permissions in your device settings.
  7. From other third parties: We may receive your personal data when you ask another company to transact with us, share data with us, or send or port your data to us. Porting means sending a copy of your data from one company to another based on your request or instruction.
Who may receive or use your personal data?

We work with Mynt Group companies, service providers, partners outside the Mynt Group, financial institutions, and government agencies to provide GCash Services. We allow them to receive or use your personal data only when allowed by law, needed for a service, explained in the relevant terms or notice, or based on your instruction or consent where needed.

  1. Mynt Group companies: Different companies in the Mynt Group provide or support GCash Services. These include Mynt, GXI, Fuse, Ryse, BlockG, ECPay, and other Mynt-affiliated companies named in this Privacy Notice or in service-specific terms.

    The relevant Mynt Group company may use personal data depending on the particular service you avail or feature you use. For example, GXI handles data for the GCash Wallet and e-money services. Fuse handles data for loan or credit services. Ryse handles data for investment or wealth services. BlockG handles data for virtual asset services, where available.

    The table below gives examples of Mynt Group companies and the GCash Services or functions they may provide or support. This table is meant as a guide. For more details about a specific service, please visit our Help Center, the relevant service-specific terms, or the individual Privacy Notices of the Mynt Group company involved.

    GCash Service Type of Service Mynt Group Entity
    GCash Wallet E-Wallet/Payments G-Xchange, Inc.
    GGives, GLoan, Borrow Load Lending Fuse Financing Inc.
    GFunds Investments Ryse, Inc.

    While some Mynt Group companies provide services directly, others support specific GCash Services or functions. For example, ECPay may support biller, merchant, and payment services. We explain the related data use in this Privacy Notice, service-specific terms, or other notices shown to you.


  2. Partners outside the Mynt Group: To offer you a broad range of financial and lifestyle services, some GCash Services are provided or supported by banks, billers, merchants, insurers, investment providers, crypto providers, job platforms, and other partners outside the Mynt Group.

    When you choose these services, we may share, send, or port your personal data to the partner only when allowed by law, needed for the service you choose, covered by the relevant terms or privacy notice, or based on your instruction or consent. When required, we will show you the relevant notice, consent screen, data porting screen, or service terms in the app. These partners may also have their own terms and privacy notices explaining how they use your personal data for their services.

    The table below gives examples of partners outside the Mynt Group that may be involved in selected GCash Services. This table is a guide. The current partner may depend on the product, feature, location, availability, and service you choose. For the latest details, please visit our Help Center, the applicable service terms, or the notice shown before you use the service.

    GCash Service Type of Service Mynt Group Partner
    GCredit Credit / Lending CIMB
    GSave Savings / Deposit GSave Partner Banks
    CIMB
    BPI
    MayBank
    UNO Bank
    Cebuana Lhuillier Rural Bank
    GBills Bills Payment List of 2,400+ Billers
    GStocks Investment AB Capital Securities, Inc.
    GBonds Investment PDAX, bonds.ph
    GCrypto Virtual Assets PDAX
    GInsure Insurance List of GInsure Insurance Providers
    GJobs Livelihood PASAJOB INC.
    Ship & Deliver Logistics CTO Global Services, Inc, a.k.a. Last Mile Inc.
    GCash Travel+ Travel Advanced Plus Technologies Pte Ltd.

    Whenever you avail a product or service which requires sending your KYC information to a third-party, we’ll let you know in the app and make sure we have your explicit instruction to port your data. (See GCash Porting Terms and Conditions)


  3. Financial institutions and credit investigation agencies: We may share your personal data with banks, lenders, credit bureaus, credit investigation agencies, and other financial institutions when needed to provide a service you requested, confirm your identity, check your creditworthiness, manage risks, prevent fraud or crime, or comply with law.


  4. Service providers acting on our behalf: We may share your personal data with trusted service providers who help us run the GCash app and provide GCash Services. They help us answer your questions, analyze and verify information, manage risk, prevent fraud, process payments, store data, provide cloud services, and keep accounts secure.

    Our service providers may process your personal data only for the purposes we allow. They are required by contract to protect your data, keep it confidential, and follow our security requirements. Some of our service providers may store or process data outside the Philippines. When this happens, we use safeguards required by law.

    For security reasons, we may not publish the full list of our service providers. As a data subject, you may request more information on how we process your data. Please see the “How can you exercise your data privacy rights?” section of this Privacy Notice.


  5. Fraud and crime prevention partners: We may share your personal data with fraud prevention partners, financial institutions, and other allowed parties to help protect you, other users, and GCash from fraud, scams, money laundering, and other crimes.


  6. Law enforcement agencies, regulatory bodies, local government units, and courts: We may share your personal data with law enforcement agencies, regulators, local government units, courts, and other public authorities when required by law, when needed to protect our rights, or when needed to prevent fraud, crime, or harm to GCash users and the public. These may include the Anti-Money Laundering Council, the Bangko Sentral ng Pilipinas, the Credit Information Corporation, the National Bureau of Investigation, the Philippine National Police, courts, and other similar authorities.


  7. Changes in our business: If a Mynt Group company or any part of our business is merged, sold, reorganized, or transferred to another company, we may need to share or transfer personal data as part of that change. This may include sharing limited personal data with potential or actual buyers, investors, or professional advisors when needed to review, negotiate, or complete the change, subject to appropriate confidentiality and security safeguards. If this happens, we will tell you when required by law and explain any important changes to how your personal data will be handled.


How do we delete your personal data?

We securely delete, destroy, anonymize, or make your personal data unreadable when we no longer need it, or when no longer required or allowed by law to keep it. We use security measures that are standard in our industry. 

For physical records, we destroy them by shredding. For electronic records, such as files stored on devices, drives, or other electronic media, we use secure deletion or wiping tools so the data cannot be read or used without authorization.

Do we transfer your data outside the Philippines?

Philippine privacy and data protection laws allow cross-border transfers when proper safeguards are in place. We may store or process your personal data through cloud service providers, service providers, Mynt Group companies, or partners whose systems or centers may be located outside of the Philippines. 

We may also share or disclose your personal data to authorized partners outside of the Philippines when allowed by law, needed for the service you choose, covered by the relevant terms or notice, or based on your instruction or consent. 

While we do not publish the exact location of our systems or data centers for security reasons, as a data subject, you may request more information on where we transfer your data. Please see the “How can you exercise your data privacy rights?” section of this Privacy Notice.

When we transfer or process data outside the Philippines, we use safeguards such as contracts, access controls, security measures, and confidentiality requirements to help keep your personal data protected.

How do we advertise to you?

As part of the GCash super app experience, we may show you content, offers, rewards, ads, promos, and recommendations that may be relevant to you. For example, we may recommend, show, suppress, or prioritize GCash Services, offers, rewards, or features based on your account, service use, eligibility, or preferences.

We may also show or support GCash-related offers, promos, rewards, and ads outside the GCash App, such as merchant promos where GCash may be used as a payment method. These activities help you discover or return to GCash Services and partner offers. We do these only when allowed by law and, where required, based on your choices or consent.

We may use Mynt Group service providers and authorized advertising partners to help personalize content, show GCash-related offers, and measure or improve our campaigns. They may process personal data only for disclosed purposes, under contracts, safeguards, and the Data Privacy Act.

  1. Data Collection and Profiling: We collect and analyze data limited to what is needed for these activities, such as your account details, demographic data, transaction indicators, app activity, preference signals, contextual data, inferred or derived data, and advertising identifiers. We use this to understand your interests, suggest relevant services, improve your app experience, and help make sure content is suitable and age-appropriate. Where sensitive personal information is used for marketing, we will ask for your specific consent unless another lawful basis under the Data Privacy Act clearly applies. 

  1. Targeted Ads: Instead of displaying identical content to everyone, we use your profile or segment to deliver ads, offers, and promos that may match your interests, location, service use, or preferences. This helps keep your in-app experience relevant and helps filter out unavailable or unsuitable content. Where allowed by law and based on your settings or consent, when required, we may also show or support GCash-related ads on approved channels outside the GCash App, such as social media platforms, search engines, or other digital service.

  1. Collaboration: To deliver, measure, and improve our marketing campaigns, we may work with advertising companies, ad technology platforms, media agencies, partner brands, social media platforms, search engines, and other digital platforms. Where allowed by law and based on your choices or consent, we may share data limited to what is needed for these activities, such as advertising identifiers and hashed contact details. Our partners are required by contract to protect your data, keep it confidential, and comply with applicable data protection laws.

  2. Manage what you receive: You can manage the channels where you receive promos, exclusive offers, and limited deals. For example, you may turn off promo messages through email or SMS. You can also use Privacy Choices or the relevant app settings to manage marketing communications, partner offers, and available sharing choices. For ads outside the GCash App, you can use your phone settings to control how your advertising ID is used or to limit personalized ads, depending on your device. Essential non-marketing messages, such as security alerts, service notices, transaction updates, and legal or account-related messages, are not covered by these marketing settings and may still be sent to you.

Do we use automated processing or decision-support tools?

We may use automated processing or decision-support tools. This means we may use computer systems, rules, models, or similar tools to help us review data, detect risks, check eligibility or suitability, improve services, personalize your experience, or protect your account.

These tools may use personal data such as:

  • information you give us when you sign up, such as KYC and basic profile information;
  • information from your use of the GCash App and GCash Services, such as transaction indicators, app usage, account limits, repayment behavior, and service-use patterns;
  • information we receive from authorities, partners, or other allowed sources, such as fraud, crime prevention, or security information; and
  • inferred or derived information, such as risk flags, eligibility flags, preference indicators, or customer segments.

We may use these tools to assess whether you may be eligible or suitable for certain GCash Services, such as loans, credit, investments, promos, rewards, or other financial and lifestyle services. We may also use them to prevent fraud, protect users, comply with legal rules, and improve GCash.

Relevant Mynt Group companies may use these insights for their own services or purposes. Partners outside the Mynt Group may receive data or insights only when allowed by law, needed for the service you choose, covered by the relevant terms or notice, or based on your instruction or consent.

Where automated processing is the sole basis for a decision that may significantly affect you, we will provide the notice, rights, and safeguards required by law.

How do we use AI/ML technologies?

The relevant Mynt Group companies may use artificial intelligence or machine learning, also called AI/ML, to help improve and protect the GCash App and GCash Services.

We may use AI/ML for the following purposes:

  • Protection and security: We may use AI/ML to detect scams, unauthorized access, suspicious activity, fraud, and money laundering risks. These tools help us protect users, block harmful activity, and comply with legal and regulatory rules. Because this processing is needed for safety and compliance, it cannot be turned off. 
  • Efficiency and experience: We may use AI/ML tools, such as automated assistants, to answer questions faster, improve customer support, and reduce errors. We will tell you when you are directly interacting with an AI system, where required or appropriate. 
  • Eligibility, suitability, and transaction patterns: We may use AI/ML to help understand transaction patterns, service use, and risk or eligibility signals. This helps us check whether certain GCash Services may be relevant, suitable, or available to you. 
  • Model training and improvement: We may use data to train, test, and improve our AI/ML models. This may include transaction indicators, app activity, service-use patterns, feedback, preferences, and other data explained in this Privacy Notice. Where possible, we use aggregated, de-identified, minimized, or synthetic data. We also review our models to help keep them accurate, secure, and fair, and to reduce errors or unfair bias.

Some AI/ML uses are needed to keep the GCash App safe, secure, and compliant with law. These cannot be turned off. Other uses, such as marketing, ads, or personalization, may depend on your choices or consent where required.

We design and review our AI/ML use to support transparency, security, fairness, accountability, and privacy. Where practical, we use safeguards such as access controls, testing, monitoring, human review, and privacy-enhancing techniques. These may include using aggregated, de-identified, minimized, or synthetic data to reduce privacy risk.

We use human review where required or appropriate. You may use our privacy settings or Privacy Choices feature in the GCash App to manage certain privacy and marketing choices.

How do we keep your data safe and secure?

Your trust and privacy are important to us. We use safeguards to help keep your personal data safe when it is collected, used, shared, stored, or sent.

There can be risks when you create a profile or use a digital platform. Someone may try to take control of your account (account takeover), trick you into giving away your personal data (social engineering), or access your phone without your permission (hacking). We use security measures to help protect your data from loss, misuse, unauthorized access, or other harmful activity.

These security measures include:

  1. Restricting access: Only authorized people, systems, or companies may access your personal data when they need it for an allowed purpose.
  2. Encryption: We use encryption to help protect your personal data when it is stored or sent. Encryption turns information into a secret code that can only be read by someone with the right key.
  3. Multi-factor authentication (MFA): We use MFA in the GCash App. This means you may need more than one step before you can access your account or use certain features. For example, you may need to use a one-time password or OTP, enter your Mobile PIN or MPIN, or complete a selfie scan. We may also use biometric login where available. 

We also check how data moves into and out of our systems to  help keep it protected. We use organizational, physical, and technical security measures aligned with recognized industry standards.

When service providers or partners outside the Mynt Group process personal data for a GCash Service, we require them to protect your data and follow our privacy and security requirements. Relevant Mynt Group companies must also follow the security and privacy rules that apply to their services and data use.

You also play an important role in keeping your account safe. Never share your MPIN or OTP. Tell us right away if you think your account, password, MPIN, or OTP has been compromised. For more information on protecting your GCash Account, visit our Help Center.

Do we use privacy-enhancing technologies or PETs?

We may also use privacy-enhancing technologies or PETs. These are tools that help us improve our services while reducing the use of real personal data. For example, we may use synthetic data. Synthetic data is sample data made by computer systems. It can show patterns similar to real customer data, but it does not contain actual personal data. This helps us test systems, study trends, and build new features with less privacy risk. We use PETs where practical and appropriate. Not all data processing can be done this way, but we use these tools when they help protect your privacy and keep your data safe.

What rights do you have over your personal data?

You have rights under the law. These rights may be subject to legal limits. For example, we may need to keep some data to follow the law, prevent fraud, protect users, or resolve disputes. Your rights include:

  1. Right to be informed: You can be told how we collect, use, share, keep, and protect your personal data.
  2. Right to access: You can ask for a copy of the personal data we have about you.
  3. Right to rectify: You can ask us to correct mistakes or errors in your personal data.
  4. Right to object: You can object to certain uses of your personal data, such as processing based on consent or legitimate interest, when allowed by law.
  5. Right to withdraw consent: If we rely on your consent to process your personal data, you can withdraw your consent. This will not affect processing done before you withdrew consent, or processing we must continue under law or for a service you requested.
  6. Right to erasure or blocking: You can ask us to delete, block, or stop using your personal data when allowed by law.
  7. Right to data portability: You can ask for a copy of your personal data in an electronic format. You may also ask us to port or send your data to another company when allowed by law.
  8. Right to file a complaint: You can file a complaint with the National Privacy Commission if you believe your privacy rights were violated.
  9. Right to damages: You may claim compensation if your privacy rights were violated and you suffered damage.

‍For more information about your privacy rights, you can visit the National Privacy Commission’s website to look at resources about the Rights of Data Subjects.

How can you exercise your data privacy rights?

We will handle your requests to access, rectify, delete, block, object to, or port your personal data, unless legal reasons prevent us from doing so.

Before acting on your request, we may ask you to verify your identity. This helps us make sure we are dealing with the right person and protects your account from unauthorized requests.

If your request relates to a service handled by a specific Mynt Group company, we may coordinate with that company or direct your request to the proper channel.

To learn more about managing your personal data, you may use the Privacy Choices feature in the GCash App, speak with Gigi, visit our Help Center, or call us at 2882 through Customer Care.

How do we give you privacy notices and choices?

We use a layered approach. This means we give you privacy information in different ways, depending on what you are doing in the GCash App. 

GCash Terms and Conditions explain the main rules for using the GCash App. They also explain why we may use personal data needed to provide GCash Services.

The Privacy Notice gives more details. It explains who handles your personal information, what data we collect, why we use it, how we share it, how long we keep it, and how we protect it. It also explains your rights and choices.  

We may also give you Privacy at a Glance. This gives you a short summary of our privacy practices.

For some services, we may show you service terms, consent screens, data porting screens, or just-in-time notices. These appear when you use, apply for, or choose a specific service. They give more details about the personal data needed for that service, who will receive it, why it will be used, and what choices you have.

Not all data use is based on consent. Some data use is needed to provide a service, follow the law, prevent fraud, or protect your account. When consent is needed, we will ask for it. When you give an instruction, such as a data porting request, we will process your personal data based on that instruction and the rules that apply.

Is our Privacy Notice up to date?

We update this Privacy Notice from time to time. We do this to keep you informed about how we protect and use your personal data, and to reflect changes in our services, privacy practices, security measures, or legal requirements.

We recommend that you visit this page regularly to stay informed of any updates.

Effective Date: June 15, 2026

Seal of Registration
Got questions about GCash?
Visit Help Center
G-Xchange, Inc. (GCash) is regulated by the Bangko Sentral ng Pilipinas (www.bsp.gov.ph)

Need Help? Visit the GCash Help Center or Call 2882 (Globe/TM) / (02) 7213-9999 (other networks; fees may apply)

W Global Center, Lane P Cor. 9th Avenue, 
Bonifacio Global City, Taguig, Philippines
Customer
Get StartedServicesNewsroomPromosCareers
Business
EnterpriseMSMEPartner Solutions
Legal
Privacy NoticeTerms and Conditions
Copyright © 2025 GCash. All Rights Reserved.