top of page

Terms and Conditions

These online payment terms and conditions (“Terms”) apply to your use of the online payment transaction service (the
“Service”) made available by Bandido Technologies Inc. a Philippines based business trading under the name and style
“Moolah” (“We”, “Us”, or “Our”).


These Terms constitute a contract between you and Moolah Please read them carefully. These Terms may be altered or added to by Us at any time that We determine necessary, with or without notice. [By ticking the box where indicated each time you use the Service], you agree to be
bound by the provisions of these Terms.

1. Terms

1.1. These Terms form part of Moolah website terms and conditions of use available here, which govern your access to and usage of the Moolah website. By agreeing to comply with the Terms you also agree to comply with Moolah’ website terms and conditions of use. If there is a conflict between Moolah’ website terms and conditions of use and these Terms, these Terms shall prevail.

2. Grant of Rights

2.1. You may use the Service for the purpose of making bills payments to any merchant partnered with Moolah  via cash top-up in our Moolah top – up centers, , provided that you do not:

2.1.1. In any way damage or disrupt the Service and/or the operation of the Service;

2.1.2. Use the Service for any unauthorized or unlawful purpose.

2.2. Payments may be made using the Service for invoices generated by Us.

2.3. We reserve the right to suspend, amend or cancel the Service at any time either temporarily or permanently.

3. Payment

3.1. Payments using the Service may be made only using only in-app credits in your Moolah Account.

3.2. We are not directly involved in the online payment but through a third party service provider.

3.3. All top-up payments are to be in Singaporean Dollars.

3.4. Upon completing a transaction using the Service, you will be presented with a confirmation screen verifying the transaction details you wish to process. It is your responsibility to verify that all transaction information and other details are correct.

3.5. We have no liability for transactions which are incorrect as a result of inaccurate data entry in the course of the use of the Service or for loss of data or information caused by factors beyond Our control.

3.6. You will receive a confirmation via Moolah Mobile App once the payment has been received.

3.7. Transaction fees are non-refundable. Once a payment has been made it cannot be cancelled.

4. Refunds

5.1. Requests for refunds must be made in writing. Requests for refunds must be coursed through our customer service via Facebook or Email. 5.2. Refunds, if applicable, at our discretion.

5.3 Adjustments or reversals caused by incorrect entries, a missed or misdirected credit to the Moolah account.

5. Warranties and Disclaimers

6.1. You warrant that: 6.1.1. You are aged 18 or over;

6.1.2. You have the appropriate authority to validly accept the Terms and are able to and will meet your obligations in relation to the Terms. 6.1.4. You will pay all charges incurred in the use of the Service.

6.1.5. The information supplied by you is true and correct.

6.2. To the extent permitted by law, We do not accept liability for any damage, loss, costs (including legal costs), expenses, indirect losses or consequential damage of any kind which may be suffered or incurred by you from the use of the Service. If, for any reason, We are found to be liable to you for any damage or loss which arises as a result of your use of the Service, Our liability will not in any event exceed the dollar amount of the transaction which formed the basis of the damage or Sgd. 100.00, whichever is the lower.

6.3. We do not warrant or guarantee that the Service and/or your use of the Service will be error-free, immediate, virus free and/or continuously available or that the information provided through the Service will be complete, accurate and/or up-to-date.

7. Indemnity

7.1. You agree to indemnify Us for any loss, cost or expense suffered or incurred by Us as result of:

7.1.1. Your breach of your obligations under the Terms;

7.1.2. Intentional misuse of the Service;

7.1.3. Your negligent acts or omissions in using the Service;

7.1.4. Any claim brought against Us by a third party in relation to your use of the Service.

8. Privacy and Use of Information

8.1. We will comply with Data Protection Act and Data Privacy Law (RA 10173) of 2012 in relation to any applicable information you supply to Us. 8.2.  Any personal information supplied by You may be retained by Us until such time as you request that the information to be removed.

8.3. We will use any information you give to Us and which identifies you only for the purpose for which it is supplied to Us, including contacting you to verify your identity information, and will not use it for any other purpose or supply it to any third party except as required by law, authorized by You or set out in these Terms.

8.5. Payments using the Service are made through a secure third party. We will use all reasonable standards and means to prevent unauthorized access to your Personal Information. However, We will not be liable for any direct or indirect damage or loss whatsoever for any interception and/or ‘hacking’ of any data or other unauthorized access to information provided by you for the purposes of using the Service.

9. Governing Law

9.1. These Terms are governed by Philippine Laws. The Philippine Laws Courts have exclusive jurisdiction over any matter in connection with the Services and the Terms

Data Privacy Policy

1. Introduction

This Policy sets out the commitment of Bandido Technologies Inc ("Moolah") to collect and process personal information and sensitive personal information (collectively, "personal data") in accordance with the applicable laws and regulations on data privacy, including the Philippine Data Privacy Act of 2012 ("DPA") and its implementing rules and regulations ("DPA IRR"). It explains how Moolah implements that commitment and the terms and conditions under which we collect and process personal data. In processing personal data, we seek to adhere to the general privacy principles of transparency, legitimate purpose, and proportionality, and such other relevant principles in the collection, processing, and retention of personal data as required by applicable law. This Policy, and any updates, amendments or supplements thereto, is available at Moolah’s website at

2. Definitions and construction

Definitions of certain terms used in this Policy are in Schedule 1. Schedule 1 also sets out provisions on the construction of certain terms and phrases used in this Policy. When we refer to "Schedules" and "Clauses", we are referring to schedules to, and clauses in, this Policy.

3. Confidentiality under Philippine Law

Information that we receive from clients, whether or not constituting personal data, are generally protected as privileged communications, and covered by our responsibility to our clients to keep that information confidential. We diligently observe this professional obligation. We note that local law, regulations, and authorities permit disclosure of such information under certain conditions, as when the information has become public.

4. DPA Exemptions

The DPA exempts from its application or does not apply to certain personal data and their collection and processing (see Schedule 2). These data and activities are not covered by this Policy.

5. How we collect and process personal data

We may be able to obtain personal data in various ways. These include where a natural or juridical person (a "Person") –

(i) registers in the moolah mobile application ;

(ii) submits to us any application, form, request, notice, or some other document;

(iii) accesses, browses, visits, or uses any of our websites, platforms, social media presence, and other online presence; or Where personal data is publicly available, we may be able to collect the data from such public sources, including any online presence you may have.

On the categories of personal data we collect and process, this would be the data that you or other data subjects provide to us, such as your name, address, email address, telephone number, age, marital status, information issued by government agencies, and other information that may be used to enter into or help perform a contract we have with you, provide you with products and services, communicate with you, or meet any of the purposes set out in Schedule 3. Insofar as you disclose personal data when accessing or visiting the Moolah website, we may process such personal data as well. Further, we may collect and process information that is normally collected as a standard part of your browsing activity. This may include your IP-address, access times, system activity, cookies, device identifier and hardware information, and other log information that is collected when you browse or visit our sites and accounts.

6. Purposes of collection and processing; recipients of personal data

We collect and process personal data for the purposes (i) for which you have provided the data or made it otherwise available to us or to the public, and to enable us to fully and efficiently achieve those purposes, (ii) as allowed by applicable law, and (iii) those purposes specified in Schedule 3 (collectively, the "Purposes"). Recipients of personal data that we collect include persons within Moolah (including any affiliates or related companies), and third parties to whom we have outsourced or may outsource certain business or operating activities, advisers, suppliers, and service providers, in order to achieve the Purposes. Some of these entities may be outside the Philippines, so that transfer of data will be cross-border. We may also disclose information, whether intended to be kept confidential or not, upon lawful request by a governmental authority, in response to a court order, or when required by applicable law. Please see Schedule 3 for more information about persons to whom personal data may be transferred or shared.

7. Consent and other lawful criteria for collection and processing

7.1 Where you have provided us with your personal data through any of the interactions mentioned in Clause 5, in providing or making available the personal data, you agree and consent to our collecting, using, disclosing, sharing and otherwise processing the personal data for the Purposes, and in the manner and under the terms and conditions, in this Policy.

This supplements but does not supersede nor replace any other consents you may have previously provided or will provide to us in respect of your personal data, or the existence of a lawful basis or bases for the collection and processing of your personal data.

7.2 Applicable law allows us to process your personal data in accordance with other criteria or where the data is not covered by the DPA.

8. Scope and method of collection and processing

8.1 We utilize standard manual and computerized methods and systems to file, store and process personal data. Collection and processing of personal data will be undertaken in accordance with the principles set out in this Policy and as required by law.

8.2 We will store and retain personal data for such period as may be required by applicable law or as may be needed to enable us to fully and efficiently achieve the Purposes.

9. Amendments and supplements We may amend or update this Policy.

You agree to be bound by the prevailing terms of this Policy as updated from time to time, upon the amendment or supplement being published on our website or otherwise advised to you. Please check our website regularly for updated information about, or amendments or supplements to, the Policy.

10. Rights of data subjects

Under the DPA, data subjects have the following rights:

10.1 Right to object

As a data subject, you have the right to indicate your refusal to the collection and processing of your personal data, including processing for direct marketing, automated processing, or profiling. You also have the right to be informed and to withhold your consent to further processing in case there are any changes or amendment to information given to you. Once you have notified us of the withholding of your consent, further processing of your personal data will no longer be allowed; unless:

(i) The processing is required pursuant to a subpoena, lawful order, or as required by law; or

(ii) The collection and processing is undertaken pursuant to any lawful basis or criteria indicated under Clause 7.2.

10.2 Right to access

Upon your request, you may be given access to your personal data that we collect and process, as described in Clause 5. You also have the right to request access to the circumstances relating to the processing and collection of your personal data, insofar as allowed by law.


10.3 Right to rectification

You have the right to dispute any inaccuracy or error in your personal data and may request us to immediately correct it. Upon your request, and after correction has been made, we will inform any recipient of your personal data of its inaccuracy and the subsequent rectification that was made.


10.4 Right to erasure or blocking

In the absence of any other legal ground or overriding legitimate interest for the lawful processing of your personal data, or when there is substantial proof that your personal data is incomplete, outdated, false, or has been unlawfully obtained, you may request us to suspend, withdraw, or order the blocking, removal, or destruction of your personal data from our filing system. We may also notify those who have previously received your processed personal data.


10.5 Right to damages

You have the right to be indemnified for any damages sustained due to inaccurate, incomplete, outdated, false, unlawfully obtained, or unauthorized use of your personal data, taking into account any violation of your rights and freedoms as a data subject, as provided by law.


10.6 Right to data portability

In case your personal data was processed through electronic means and in a structured and commonly used format, you have the right to obtain a copy of your personal data in such electronic or structured format for your further use, subject to the guidelines of the National Privacy Commission with regard to the exercise of such right.


10.7 Transmissibility of rights of the data subject

We wish to advise you that upon the passing of a data subject, or in case of a data subject’s incapacity or incapability to exercise legal rights, the data subject’s lawful heirs and assigns may invoke the data subject’s rights in place of the data subject.


10.8 Limitation on rights; manner of exercising

The rights mentioned under this item are not applicable if personal data are processed only for scientific and statistical research purposes, and without being used as basis for carrying out any activity or taking any decision regarding you as the data subject. Your rights as a data subject are also subject to other limitations provided by law. The law requires you to exercise your rights as described in this Policy in a reasonable and non-arbitrary manner, and with regard to rights of other parties. All requests, demands or notices which you may make under this Policy or applicable law must be made in writing, and will only be considered made and received if sent in accordance with Clause 14.2.

11. Security Measures

We have taken appropriate security measures to protect your personal data against unauthorized access or unauthorized alteration, disclosure, or destruction. These measures include internal reviews of our data collection, storage, and processing practices, as well as physical security measures to protect your information against unauthorized access. As part of our efforts to ensure your information is protected, we restrict access to personal data to personnel who would need that information to perform their functions.

12. Data breaches

We will comply with the relevant provisions of rules and circulars on handling personal data security breaches, including notification to you or to the National Privacy Commission, where an unauthorized acquisition of sensitive personal information or information that may be used to enable identity fraud has been acquired by an unauthorized person, and is likely to give rise to a real risk of serious harm to the affected data subject. Please note that under applicable law, not all personal data breaches are notifiable.

13. Data Protection Officer

The Data Protection Officer (DPO) is the individual principally responsible for ensuring Moolah’s compliance with applicable laws and regulations for the protection of data privacy and security.

14 Inquiries; notices

14.1 For any inquiry related to this Policy, please contact our Data Protection Officer by emailing

14.2 All requests, demands or notices which a data subject may send or submit to us under this Policy must be in writing, should be addressed to the Data Protection Officer using the contact details above, and will be deemed duly given

(i) on the date of delivery if delivered personally, (ii) on the third Business Day following the date of sending if delivered by a nationally recognized next-day courier service and the service has confirmed delivery, or (iii) if given by electronic mail, when such electronic mail is transmitted to the email address specified above and the appropriate confirmation has been received by the sender via email.

Schedule 1 - Definition of Terms

1. Definitions Whenever used in this Policy, the following terms shall have the respective meanings as set forth below: "Business Day" means any day that Philippine banks are open for business in Makati City,

"DPA" means the Data Privacy Act of 2012 and its implementing rules and regulations, as well as the circulars issued by the National Privacy Commission from time to time.

"Person" means any natural or juridical person.

"personal data" means personal information and sensitive personal information.

"personal information" refers to any information, whether recorded in a material form or not, from which the identity of an individual is apparent or can be reasonably and directly ascertained by the entity holding the information, or when put together with other information, would directly and certainly identify an individual;

"Policy" means this data privacy policy as may be amended, modified or supplemented from time to time.

"processing" refers to any operation or any set of operations performed upon personal data including, but not limited to, the collection, recording, organization, storage, updating, or modification, retrieval, consultation, use, consolidation, blocking, erasure, or destruction of data. Processing may be performed through automated means, or manual processing, if the personal data are contained or are intended to be contained in a filing system.

"sensitive personal information" refers to personal information: (1) about an individual’s race, ethnic origin, marital status, age, color, and religious, philosophical or political affiliations; (2) about an individual’s health, education, genetic or sexual life of a person, or to any proceeding for any offense committed or alleged to have been committed by such individual, the disposal of such proceedings, or the sentence of any court in such proceedings; (3) issued by government agencies peculiar to an individual which includes, but is not limited to, social security numbers, previous or current health records, licenses or its denials, suspension or revocation, and tax returns; or (4) specifically established by an executive order or an act of Congress to be kept classified.

2. Construction

Whenever the word, "include," "includes" or "including" are used in this Policy, they shall be deemed to be followed by the words "without limitation".

The meaning assigned to each term used here will be equally applicable to both the singular and plural forms of such term, and the words denoting any gender shall include all genders.

Schedule 2 - Personal data not covered

This Policy does not apply to the following information:

1. Information processed for the purpose of allowing public access to information that fall within matters of public concern, pertaining to:

(i) Information about any individual who is or was an officer or employee of government that relates to his or her position or functions;

(ii) Information about an individual who is or was performing a service under contract for a government institution, but only insofar as it relates to such service, including his name and the terms of his contract; and

(iii) Information relating to a benefit of a financial nature conferred on an individual upon the discretion of the government, such as the granting of a license or permit, including the name of the individual and the exact nature of the benefit: Provided, that they do not include benefits given in the course of an ordinary transaction or as a matter of right.

2. Personal information that will be processed for research purpose, intended for a public benefit, subject to the requirements of applicable laws, regulations, or ethical standards; and

3. Information necessary in order to carry out the functions of public authority, in accordance with a constitutionally or statutorily mandated function pertaining to law enforcement or regulatory function, including the performance of the functions of the independent, central monetary authority, subject to restrictions provided by law.

Schedule 3 - Purposes for collection and processing of personal data

1. General

We use personal data to:

(i) comply with and exercise our rights under contracts and agreements, and the law, as may be required by our operations and in pursuit of our legitimate business and commercial objectives;

(ii) perform and improve our services, and address concerns or questions about those services;

(iii) implement efficiencies and best practices;

(iv) obtain services and advice for our operations and business;

(v) conduct surveys, research, and data gathering exercises;

(vi) market, promote and share information about the firm and our services;

(vii) communicate with you; and

(viii) allow audits and diligence for compliance and other review by advisers or third parties. In this regard, we will require such advisers or third parties to enter into a confidentiality agreement.

2. Employee Data

We may collect and process personal data from current or prospective employees in order to initiate, carry out, or terminate an employment agreement, including the results of certain medical examinations that are part of conditions of employment.

For job applicants, we may process personal data required in order to initiate the employment application process. The collected personal data of any applicant, who may not have been hired, may be retained by the firm for purposes of future selection process.

For job applicants, we may process personal data required in order to initiate the employment application process. The collected personal data of any applicant, who may not have been hired, may be retained by the firm for purposes of future selection process.

We may share an applicant’s or an employee’s personal data when expressly authorized by law or when the applicant or employee concerned has given consent, as when the Company is provided as a reference.

Company files, records (whether or not electronic), computers, devices and facilities are the property of Moolah, and we may examine and review their contents at any time, whether or not an officer, employee or other staff has personal data, property or other information stored therein.

Data Privacy Consent Form

Data Privacy Consent Form

In Compliance with the Data Privacy Act of 2012


Maintaining and protecting the privacy of personal data you share with us is important to us. BANDIDO TECHNOLOGIES INC / MOOLAH  is committed to implementing appropriate security measures to maintain the confidentiality, integrity, and availability of your personal data, in accordance with the Data Privacy Act of 2012 (“DPA”).

We will only collect personal data that is provided to us voluntarily by you directly or indirectly. By providing us with your personal data and signing our consent form, you explicitly authorize MOOLAH, our employees, authorized representatives, related companies, and third party service providers, to use, process and share Personal Data in order to complete your transaction, for marketing and promotional purposes, to improve our services, and other legitimate purposes. Please take the time to read DATA PRIVACY ACT OF 2012 (RA 10173) to know more about:

Please take the time to read DATA PRIVACY ACT OF 2012 (RA 10173) to know more about:

•  the information we collect from you;

•  the purposes for collecting and processing personal Data;

•  the parties with whom we may disclose and share your Personal Data;

•  the data security measures in place to protect you against processing risks;

•  your rights as data subjects, i.e., your right to be informed, to object, access, correct or block your Personal Data, right to data portability, right to file a complaint and right to damages; and,

•  how long your information will be processed and retained.

For inquiries regarding our Privacy Policy Statement and the processing of your personal data, as well as any concerns or complaints regarding data privacy, please email us at or message us through Facebook messenger.

bottom of page