This privacy policy ("Policy") applies when you access or use PesoHaus. Leapgen Lending Inc. ("PesoHaus"), a company duly organized in the Philippines and operating as an administrator, is committed to protecting the information collected from you.
Please read the Privacy Policy carefully before proceeding. This Privacy Policy describes how PesoHaus ("we", "our") collects, stores, uses and protects the information you provide directly related to your use of PesoHaus or indirectly through third parties to obtain information provided through PesoHaus online services. PesoHaus only retains your information for as long as authorized by law or relevant to the purposes for which it was collected.
Therefore, PesoHaus shall only use the information you disclose to us in the manner and for the purposes set out in this Privacy Policy. PesoHaus will access and collect your personal information only if you voluntarily submit the information to us or explicitly consent to us accessing that information. PesoHaus collects your personal information only where necessary and in connection with our dealings with you. This is in accordance with and compliance with the rules and regulations of Republic Act No. 10173 or Data Privacy Act of 2012.
When you access or register a PesoHaus account through the PesoHaus App or Website, you may be asked to provide information from time to time. This may include, but is not limited to:information used to identify you (e.g. name and biometric data), educational and professional background, photographs (via camera access), contact information, IP addresses, financial data, creditworthiness information, i guarantor's contact informaion , approximate location, financial-related SMS data (time stamp, phone number and content); device information (e.g., Device model, OS version, AD_ID, IP address etc. ) as well as your nationality, marital status, age, valid government ID numbers, and other information and data generated that you provide in relation to the permissions you grant when using our service.
Such personal data may be collected through manual or automated means and sourced from a variety of channels, including but not limited to information you provide directly, analysis of how you use and interact with our services, publicly available records or registries, government agencies, regulatory or law enforcement bodies, third parties, and data obtained during your visits to our website, such as metadata or cookies. This data will only be collected with your explicit consent to the disclosure and use of your personal information.
To provide a secure and seamless loan application experience, PesoHaus may request access to certain features on your mobile device. All data collected through these permissions will be transmitted via secure, encrypted connections and stored on our protected servers (https://pesohaus.com). We are committed to respecting your privacy and will never share your personal data with third parties without your explicit consent, unless required by law.
PesoHaus may request access to your device’s camera. This permission is used solely for identity verification purposes, such as capturing a photo of your valid government-issued ID and a facial recognition image. These measures help us verify your identity more efficiently and securely during the loan application process.
All captured images are encrypted and securely uploaded to our servers. PesoHaus does not use camera access for any other purpose and does not store or transmit your camera data without your knowledge and consent.
PesoHaus may request permission to access your device’s approximate location. This information helps us improve our user experience, enhance risk control mechanisms, and detect potentially fraudulent activities.
Granting this permission is optional and does not affect your ability to use the core functionalities of the application. You may enable or disable this permission at any time in your device’s settings.
If you choose to grant location access, your approximate location will be securely transmitted and stored on our servers. We will not use or share your location data for any purpose other than fraud prevention and service enhancement, without your express consent.
PesoHaus may, with your express consent (including electronic authorization), request limited access to SMS messages stored on your mobile device. This access is designed exclusively to assess your creditworthiness and prevent fraudulent activity during the loan application process.PesoHaus will not share your SMS data with any third party.
The collection and processing of financial SMS data serve the following purposes:
• To support automated loan eligibility evaluation and decision-making;
• To detect potentially inconsistent or fraudulent financial claims.
PesoHaus does not use SMS data for marketing, profiling, or unrelated analytics.
2. Scope of SMS Data Collection
To ensure your privacy is respected, we apply strict limitations and safeguards:
• Message Limit: Only the most recent 1,500 SMS messages received within the past 120 days are accessed.
• Keyword Filtering: Only messages containing financial keywords such as credit, loan, repay, wallet, interest, due, fraud, and similar terms are retained.
• Exclusions: The following types of SMS are explicitly excluded from access, processing, or storage, based on their sender address:
○ Personal communications (e.g., messages exchanged between individuals);
○ Messages originating from government or health-related sources, as well as system notifications or promotional content sent by telecom and government entities (e.g., sender addresses such as SMART, GLOBE, 8080, NTC, NDRRMC, etc.).
• Voluntary Authorization: Granting access to SMS messages is optional. Refusing this permission will not affect your ability to use core loan functions.
• Right to Withdraw: You may revoke SMS access at any time through your device settings. Once revoked, no further SMS data will be collected.
• Right to Delete: You can permanently erase previously collected SMS data by initiating the “Account Deletion” process in-app (My > Settings > Account Security > Delete Account).
• Encryption: All SMS data is encrypted in transit using TLS 1.3 and stored on secure servers at https://pesohaus.com.
• Access Controls: Only authorized systems may process your SMS data, and no human-readable access is allowed without proper authorization.
• Retention: Financial SMS data is retained only as long as necessary for the purposes stated above and is deleted upon account termination or consent withdrawal.
PesoHaus may access your device’s network connectivity status (e.g., online/offline status, network type, signal strength) solely for the purpose of ensuring secure and uninterrupted delivery of key services-including loan applications, repayment confirmations, and account-related updates. This access also helps us detect potential misuse (such as suspicious access via high-risk networks) to enhance fraud prevention and account security.
PesoHaus does not access, store, or analyze any of the following:
• Your browsing history;
• The content of your internet traffic;
• Any data exchanged by other apps on your device.
To help us improve app functionality and measure marketing performance, PesoHaus integrates two third-party SDKs AppsFlyer and Firebase both registered in the Google Play SDK Console. These SDKs collect limited, non-sensitive data and are governed by strict privacy controls.
We use the AppsFlyer SDK (by AppsFlyer Ltd) for marketing attribution and analytics. This SDK may collect the following types of data:
• Device Advertising Identifier (e.g., Google Advertising ID)
• Approximate location data (as permitted)
• In-app interaction data (e.g., app opens, session duration, loan application events)
• Basic app performance data (e.g., crash logs, diagnostics)
Purpose of Use:
• Attribute app installs to marketing campaigns (e.g., ads on social media/search platforms)
• Evaluate user acquisition quality across different sources
• Optimize advertising and user engagement strategies
Data Protection:
• End-to-end encrypted transmission
• No collection of sensitive data such as contacts, messages, precise location, or biometrics
• Users can reset or disable their Advertising Identifier through device settings
We use the Firebase SDK (by Google LLC) to monitor app performance and diagnose technical issues. It may collect:
• Device-specific identifiers (e.g., Android ID)
• Crash logs and diagnostics (e.g., OS version, device model, memory usage)
• In-app event data (e.g., form submission errors, loan initiation)
Purpose of Use:
• Identify and resolve app crashes or loading failures
• Improve overall app stability and responsiveness
• Enhance user experience in workflows like loan applications
Data Protection:
• End-to-end encrypted transmission
• No access to biometric data, financial data, or precise location
• Users may disable diagnostic reporting through device settings or Firebase’s consent tools
For more information, refer to Google’s Privacy Policy: https://policies.google.com/privacy
Purpose of Collecting Personal Information
We collect and process your personal information to provide, improve, and protect our services in accordance with applicable laws and regulations. Specifically, your data may be used for the following purposes:
• Identity verification and validation of information you submit to us;
• Assessment of your eligibility to access and use our loan products or services;
• Loan servicing, including disbursement, repayment tracking, and account updates via PesoHaus;
• Customer support, including resolution of issues, inquiries, and complaints;
• System management, service quality monitoring, and general statistical reporting;
• Service improvement, including product refinement and user experience enhancements;
• Fraud detection and prevention, including risk analysis and suspicious activity monitoring;
• Regulatory compliance, such as responding to lawful requests from government or judicial authorities;
Change of Purpose for Data Use
If there is a need to use your personal data for a purpose not originally specified in this Privacy Policy due to business changes or product updates, we will:
• Notify you in advance through appropriate means (e.g., in-app notifications, email); and
• Obtain your explicit consent before processing your data for the new purpose.
We will not use your personal information for any new or unrelated purpose without your prior authorization.
How We Share, Transfer, and Disclose Your Personal Information
PesoHaus values your privacy. We do not sell or unlawfully disclose your personal information. We will only share, transfer, or publicly disclose your data under limited and lawful circumstances, as outlined below:
1. Sharing of Personal Information
We will not share your personal data with any external parties except in the following situations:
• With your explicit consent: We may share your personal information with third parties only after obtaining your clear and informed consent.
• As required by law: We may disclose your information to comply with legal obligations, such as court orders, government mandates, or regulatory inquiries.
• With authorized service partners: Certain services may be provided jointly with regulated third-party partners (e.g., licensed credit reference agencies such as CIBI). In these cases:
○ We only share data necessary to deliver services;
○ Partners are contractually obligated to use data solely for lawful, specific, and agreed-upon purposes;
○ No shared data may be used for unrelated or commercial purposes without your consent.
• With technical providers: Limited information may be accessed by third-party SDK providers (e.g., AppsFlyer, Firebase) for service analytics and maintenance, under strict data protection controls.
2. Transfer of Personal Information
We will not transfer your personal data to another entity unless one of the following conditions is met:
• Legal or regulatory requirement: The transfer is mandated by law or government order.
• With your consent: You have given prior explicit consent or authorization for the transfer.
• Business transactions: In the event of a merger, acquisition, restructuring, or bankruptcy, your data may be transferred to a new entity. In such cases:
○ You will be informed in advance, including the recipient’s identity and contact information;
○ The new entity will be bound by this Privacy Policy, or will be required to obtain your renewed consent;
○ Data transfers will use secure encryption (e.g., TLS 1.3) and follow security audit requirements;
○ If no successor assumes control, your personal data will be securely deleted or anonymized.
Storage of Personal Information
Your personal information will be stored entirely in the Philippines. If it involves the cross-border transfer of personal information overseas, we will inform you of the purpose of transferring personal information abroad, the type of personal information, and the data recipients by laws, regulations, and relevant regulatory requirements, and obtain additional consent.
Protection of Personal Information
We are committed to maintaining a reasonable level of information security. To protect your data, we implement physical, technical, and organizational measures, including encrypted data transmission, firewalls, isolated and encrypted storage, access controls, and employee security training.
While we strive to adopt commercially feasible systems and measures, no system is entirely immune to risks. In the event of a data breach, we will promptly notify you (or issue announcements if individual notification is impractical) and report the incident to regulatory authorities. We will also take corrective actions to prevent future breaches. However, we disclaim liability for breaches arising from inherent risks of internet-based communications beyond our reasonable control.
To exercise your rights, contact us at support@pesohaus.com.
1. Right to Notification and Consent
We will inform you how we collect, use, and share your data, the legal basis for processing, and your rights as a data subject. This information is available in the PesoHaus App and Privacy Policy.
You may request a copy of your personal data, unless doing so violates the rights of others or contravenes applicable laws.
You can request corrections to inaccurate data. Supporting evidence may be required to verify your request.
4. Right to Erasure ("Right to be Forgotten")
You may request data deletion if:
○ The data is no longer needed.
○ Processing lacks a lawful basis.
○ The data is used unlawfully.
○ Applicable law requires deletion.
5. Right to Restrict Processing
You can request a restriction on data usage if:
○ Data is inaccurate.
○ Processing is unlawful but you wish to retain the data.
○ You need the data for legal proceedings.
○ You believe there is no valid reason to continue processing.
You may claim indemnity for damages caused by inaccurate, incomplete, outdated, or unlawfully obtained data. Liability is limited to the principal amount of your loan with us.
If processing is based on consent or contractual obligations, you may request your data in a structured, machine-readable format or have it transferred to another data controller.
You may object to data processing based on our legitimate interests, as defined by applicable law.
Response Time Limit for Right Exercise Requests
After receiving your request for exercising rights, we will complete the processing and provide feedback on the results within 15 working days; if an extension is needed, we will inform you in advance and explain the reason, with a maximum extension of no more than 30 working days.
We will retain your personal data, registration, and transaction records with third-party storage providers for up to 5 years or as required by the National Privacy Commission, applicable laws, and regulations. Data may also be retained for legal claims, legitimate business purposes, or compliance with industry standards.
When retention is no longer allowed, your data will be securely destroyed through physical and/or technical measures to prevent unauthorized access, disclosure, or further processing.
We reserve the right to refuse deletion if it would prevent us from meeting legal obligations.
If your data is found to be incomplete, outdated, false, unlawfully obtained, or used for unauthorized purposes, we will suspend, block, delete, or destroy it. Data will also be deleted when no longer necessary for its original purpose, or if you withdraw consent and no other legal basis exists for processing.
The "Account Deletion" option can be found at: My > Settings > Account Security > Delete Account. Once a deletion request is submitted, we will process it within 15 working days. However, if your account involves unsettled loans or ongoing legal disputes, the deletion process will be suspended, and you will be notified via in-app message and email. You may reapply for deletion once the issues are resolved.
Upon successful deletion, all personal data (e.g., identity information, transaction records, biometric data) will be permanently destroyed, except for data required to be retained under applicable laws and regulations.
PesoHaus may update this Privacy Policy to reflect changes in laws or data practices. For material changes (e.g., adjustments to data collection or sharing rules), we will notify you via in-app pop-ups, SMS, or email at least 7 days before the changes take effect and obtain your consent if required by law. Non-material changes will be posted on the app and website, with the "Last Updated" date indicated.
By continuing to use our services after updates take effect, you agree to the revised Policy. To review previous versions, contact support@pesohaus.com.
If you have any questions, concerns, or requests regarding this Privacy Policy or the processing of your personal data, you may contact us through the following official channels:
• App Name: PesoHaus
• Email: support@pesohaus.com
• Working Hours: Monday to Saturday, 9:00 AM – 6:00 PM (Philippine Standard Time)
• Mailing Address: 19A East Wing, Octagon Center, San Miguel Avenue, Ortigas Center, Barangay San Antonio, Pasig 1600, Philippines
We will respond to all inquiries within ten (10) working days upon receipt of your complete request, including any required supporting documentation.
This Privacy Policy is issued by the legal operator of the PesoHaus platform:
• Company Name: Leapgen Lending Inc.
• SEC Registration Number: CS201915717
• Certificate of Authority (issued by the SEC): No. 3089
Leapgen Lending Inc. is a duly registered and licensed financing company operating in the Republic of the Philippines, in accordance with applicable laws and regulations.