How to Report Identity Theft to the Cybercrime Office in the Philippines

I. Introduction

Identity theft is one of the most common and damaging cyber-enabled offenses in the Philippines. It may involve the unauthorized use of a person’s name, photograph, government-issued identification, mobile number, email address, social media account, bank account, credit card, e-wallet, signature, biometric information, or other personal data to commit fraud, obtain money, open accounts, impersonate the victim, harass others, or conceal another crime.

In the Philippine context, identity theft often appears in the form of fake social media profiles, compromised Facebook or email accounts, online lending harassment, SIM-related scams, phishing, unauthorized e-wallet transactions, fake online sellers, romance scams, employment scams, investment scams, and the misuse of government IDs. Reporting the incident quickly is important because digital evidence can disappear, financial losses can increase, and the offender may continue using the victim’s identity against third persons.

This article discusses the legal basis of identity theft in the Philippines, the agencies that may receive complaints, the role of the cybercrime office, the documents and evidence needed, the reporting process, possible criminal, civil, and data privacy remedies, and practical steps a victim should take before, during, and after filing a complaint.

II. What Is Identity Theft?

Identity theft generally refers to the unauthorized acquisition, use, misuse, transfer, possession, or manipulation of another person’s identifying information with intent to defraud, cause damage, obtain benefit, impersonate the victim, or facilitate another unlawful act.

Identity theft may involve:

  1. using another person’s name or photo to create a fake account;
  2. accessing or taking over another person’s email, social media, or messaging account;
  3. using someone’s government ID to register a SIM, e-wallet, loan account, bank account, or online platform account;
  4. pretending to be the victim to borrow money, solicit donations, sell products, or deceive relatives and friends;
  5. using stolen personal data for phishing, scams, blackmail, harassment, or extortion;
  6. opening credit, lending, or financial accounts in another person’s name;
  7. using another person’s identity to avoid liability or conceal a criminal act;
  8. misusing personal information obtained from employment, school, business transactions, online forms, or hacked databases.

Identity theft is not limited to financial fraud. A person may suffer reputational damage, emotional distress, exposure to harassment, credit problems, legal complications, or loss of employment opportunities even where no money was actually taken.

III. Legal Framework in the Philippines

Several Philippine laws may apply to identity theft depending on how the act was committed and what information was misused.

A. Cybercrime Prevention Act of 2012

Republic Act No. 10175, known as the Cybercrime Prevention Act of 2012, is the principal law governing cybercrime in the Philippines. It penalizes certain offenses committed through or with the use of information and communications technology.

Identity theft may fall under cybercrime when the offender uses a computer system, internet platform, mobile device, social media account, email, electronic payment system, or other ICT tool to obtain, misuse, or manipulate another person’s identity.

Cybercrime-related acts may include illegal access, computer-related fraud, computer-related identity theft, computer-related forgery, and other offenses depending on the facts. When traditional crimes under the Revised Penal Code are committed through ICT, the cybercrime law may also affect the applicable penalty.

B. Revised Penal Code

The Revised Penal Code may apply where identity theft is used to commit fraud, falsification, estafa, unjust vexation, threats, libel, coercion, or other offenses.

For example:

  1. if the offender pretends to be another person to obtain money, the act may amount to estafa;
  2. if false documents, signatures, IDs, certificates, or records are created or altered, falsification may be involved;
  3. if the fake identity is used to defame the victim, cyber libel may be considered;
  4. if the offender threatens to expose private information or fabricated materials, grave threats, light threats, coercion, or related offenses may be relevant;
  5. if the offender uses the victim’s identity to harass others, additional criminal liability may arise depending on the conduct.

C. Data Privacy Act of 2012

Republic Act No. 10173, known as the Data Privacy Act of 2012, protects personal information and sensitive personal information. Identity theft frequently involves unauthorized processing, disclosure, access, use, or retention of personal data.

The Data Privacy Act may be relevant when:

  1. personal information was unlawfully obtained, sold, disclosed, or shared;
  2. an organization failed to protect the victim’s data;
  3. a database breach exposed IDs, account credentials, financial data, health data, school records, employee records, or customer information;
  4. a person or entity processed personal data without consent or legal basis;
  5. sensitive personal information was misused for fraud, harassment, or impersonation.

Complaints involving privacy violations may be brought before the National Privacy Commission, especially where the issue involves unlawful processing of personal data or failure of a personal information controller to protect data.

D. SIM Registration Law

The SIM Registration Act may become relevant if a mobile number was registered using the victim’s identity or if a scammer used a SIM connected to identity fraud. Victims may need to coordinate with the telecommunications provider, law enforcement, and relevant authorities to report unauthorized SIM registration or misuse of personal information.

E. E-Commerce, Banking, and Financial Regulations

If identity theft involves online banking, credit cards, e-wallets, digital banks, remittance platforms, lending applications, online marketplaces, or payment processors, the victim should also immediately report the matter to the relevant financial institution or platform. This is separate from filing a criminal complaint.

Banks, e-wallet providers, lending companies, and online platforms may have their own fraud investigation procedures, chargeback processes, account freezing protocols, dispute rules, and identity verification requirements.

IV. Which Office Handles Cybercrime Complaints?

In the Philippines, cybercrime complaints may generally be reported to law enforcement cybercrime units. The most commonly approached offices are:

  1. Philippine National Police Anti-Cybercrime Group, commonly referred to as the PNP-ACG;
  2. National Bureau of Investigation Cybercrime Division, commonly referred to as the NBI Cybercrime Division;
  3. local police stations, especially where immediate assistance is needed;
  4. prosecutor’s offices, where a formal criminal complaint may be filed;
  5. other specialized agencies depending on the nature of the offense, such as the National Privacy Commission for data privacy violations.

The phrase “cybercrime office” is often used by the public to refer to either the PNP Anti-Cybercrime Group or the NBI Cybercrime Division. Both may receive cybercrime-related reports, evaluate digital evidence, conduct investigation, and assist in building a complaint for prosecution.

V. When Should a Victim Report Identity Theft?

A victim should report identity theft as soon as possible when any of the following occurs:

  1. a social media account, email, e-wallet, or online account is hacked or taken over;
  2. someone creates a fake profile using the victim’s name, image, or personal details;
  3. the victim’s ID is used to obtain money, loans, SIM cards, bank accounts, e-wallets, or services;
  4. unauthorized transactions appear in bank, credit card, or e-wallet records;
  5. relatives, friends, customers, or co-workers receive messages from someone pretending to be the victim;
  6. the victim receives notices for loans, purchases, deliveries, or accounts that the victim did not create;
  7. private information, IDs, photos, or documents are being used for threats, blackmail, harassment, or scams;
  8. the victim suspects that personal data was leaked, sold, or accessed without permission.

Delay can make investigation more difficult because posts may be deleted, accounts may be renamed, IP logs may expire, SIM cards may be discarded, and financial trails may become harder to trace.

VI. Immediate Steps Before Filing a Report

Before going to a cybercrime office, the victim should take urgent protective steps.

A. Preserve Evidence

The victim should preserve all available evidence before confronting the offender or reporting the fake account to a platform. Evidence may include:

  1. screenshots of fake profiles, posts, comments, messages, emails, transaction pages, account names, usernames, URLs, QR codes, phone numbers, and payment details;
  2. full webpage links or profile URLs;
  3. timestamps and dates;
  4. email headers, if available;
  5. transaction reference numbers;
  6. bank or e-wallet statements;
  7. call logs and text messages;
  8. IDs or documents that were misused;
  9. names and contact details of witnesses;
  10. conversation threads showing how the impersonation occurred;
  11. proof that the account, number, or identity belongs to the victim;
  12. proof of financial loss, reputational harm, or harassment.

Screenshots should show the entire screen where possible, including the URL, account name, profile photo, date, time, and message content. The victim should avoid cropping screenshots too tightly because context may matter.

B. Secure Accounts

The victim should immediately change passwords for affected and connected accounts. Passwords should be unique, strong, and not reused. The victim should enable two-factor authentication, review login sessions, remove unknown devices, revoke suspicious app permissions, and update recovery email addresses and mobile numbers.

If an email account is compromised, the victim should treat it as urgent because email is often used to reset passwords for banks, social media accounts, e-wallets, cloud storage, and work systems.

C. Notify Banks, E-Wallets, and Platforms

If money, credit, loans, or financial accounts are involved, the victim should report immediately to the bank, credit card company, e-wallet provider, lending app, online marketplace, or payment platform. The victim should request account blocking, transaction dispute, chargeback, reversal, investigation, or fraud hold where applicable.

The victim should obtain a reference number or written acknowledgment of the report.

D. Warn Contacts

If the offender is impersonating the victim, the victim should warn family, friends, co-workers, customers, and contacts not to send money, provide codes, click links, or transact with suspicious accounts. The warning should avoid defamatory language if the offender’s identity is not confirmed. A neutral warning may state that an account is fake, compromised, or unauthorized.

E. Do Not Delete Evidence

Victims sometimes delete messages, posts, or accounts out of fear or embarrassment. Deleting evidence may weaken the case. The better approach is to preserve copies first, report the content, and coordinate with investigators where appropriate.

VII. Evidence Needed for a Cybercrime Identity Theft Complaint

A well-prepared complaint usually includes both personal identification documents and incident evidence.

A. Identification of the Complainant

The victim should bring:

  1. valid government-issued ID;
  2. proof of address, if available;
  3. contact number and email address;
  4. proof of ownership or control of the affected account, mobile number, bank account, or e-wallet;
  5. authorization letter or special power of attorney if reporting on behalf of another person, company, minor, or incapacitated person.

B. Incident Documents

The victim should prepare:

  1. a written narrative or affidavit explaining what happened;
  2. screenshots and printouts of fake accounts, posts, messages, emails, transactions, or websites;
  3. URLs, usernames, account IDs, phone numbers, email addresses, bank account numbers, e-wallet numbers, QR codes, crypto wallet addresses, or other identifiers used by the offender;
  4. transaction receipts and reference numbers;
  5. communication records with banks, platforms, or telcos;
  6. reports already filed with social media platforms or financial institutions;
  7. witness statements, where available;
  8. copies of IDs, documents, or photos that were misused;
  9. proof of actual damage, such as unauthorized charges, loan notices, collection messages, lost money, reputational harm, or business disruption.

C. Digital Copies

The victim should bring both printed copies and digital copies. Digital evidence may be stored in a USB drive, phone, cloud folder, or email. However, the victim should not alter original files. Investigators may request access to the original device or original account to verify evidence.

VIII. How to Report to the Cybercrime Office

A. Prepare a Written Chronology

The victim should prepare a clear timeline. The chronology should state:

  1. when the victim first discovered the identity theft;
  2. how the victim discovered it;
  3. what accounts, IDs, numbers, or documents were affected;
  4. what the offender did;
  5. what losses or risks resulted;
  6. what steps the victim already took;
  7. what evidence is attached;
  8. whether the offender is known or unknown.

A concise but complete narrative helps investigators identify the possible offense, determine jurisdiction, and decide what evidence must still be collected.

B. Visit or Contact the Appropriate Cybercrime Unit

The victim may approach the PNP Anti-Cybercrime Group, the NBI Cybercrime Division, or a local police station for assistance. For urgent cases involving ongoing fraud, threats, extortion, or financial transfers, the victim should report immediately and also contact banks or platforms without delay.

Where the victim is outside Metro Manila, regional cybercrime units, provincial police offices, or local law enforcement may provide assistance or referral.

C. Submit Evidence and Identification

The victim should submit identification documents, a written complaint or affidavit, screenshots, transaction records, and other supporting evidence. The office may ask for additional documents or may require the victim to execute a sworn statement.

D. Execute a Complaint-Affidavit

For criminal prosecution, the victim will usually need a complaint-affidavit. This document states the facts under oath and attaches supporting evidence. It should be truthful, chronological, and specific.

A complaint-affidavit typically includes:

  1. full name, age, nationality, civil status, address, and contact details of the complainant;
  2. identification of the respondent, if known;
  3. statement of facts;
  4. description of the identity theft;
  5. description of the damage caused;
  6. list of attached evidence;
  7. request for investigation and prosecution;
  8. verification and oath before an authorized officer.

E. Cooperate With the Investigation

Investigators may request additional information, such as original devices, access logs, account ownership proof, platform reports, bank certifications, telco information, or witness statements. The victim should respond promptly and keep copies of all submissions.

F. Follow Up and Obtain Reference Information

The victim should ask for a complaint reference number, receiving copy, investigator’s contact details, or instructions for follow-up. All communications should be documented.

IX. Reporting Fake Social Media Accounts

Fake social media accounts are among the most common identity theft scenarios.

When a fake account uses the victim’s name, photo, business identity, or personal information, the victim should:

  1. screenshot the profile page, including URL and username;
  2. screenshot posts, messages, comments, stories, marketplace listings, or solicitations;
  3. ask recipients of scam messages to preserve their conversations;
  4. report the account to the platform for impersonation;
  5. warn contacts that the account is fake;
  6. report to a cybercrime office if the account is used for scams, harassment, threats, extortion, defamation, or other harmful conduct.

If the account merely copies a photo but has not yet caused harm, it may still be reported to the platform. If the account is being used to solicit money, damage reputation, or commit fraud, law enforcement reporting is strongly advisable.

X. Reporting Hacked Accounts

If the victim’s account was hacked, the legal concern may include illegal access, identity theft, fraud, data privacy violations, or other cybercrime.

The victim should:

  1. attempt recovery through official account recovery channels;
  2. change passwords on connected accounts;
  3. secure the email address linked to the account;
  4. enable two-factor authentication;
  5. preserve notices of suspicious login attempts;
  6. screenshot unauthorized posts or messages;
  7. inform contacts not to transact with the compromised account;
  8. report the incident to the cybercrime office if the account is used for scams, threats, extortion, harassment, or unauthorized transactions.

A hacked account is often more dangerous than a fake account because the offender may have access to private messages, photos, IDs, contacts, financial information, business records, and password reset links.

XI. Reporting Unauthorized Financial Transactions

Where identity theft results in unauthorized bank, credit card, e-wallet, or payment transactions, the victim should act quickly.

The victim should:

  1. immediately contact the bank, card issuer, e-wallet, or payment provider;
  2. request blocking or freezing of the account, card, or wallet;
  3. dispute unauthorized transactions;
  4. obtain a report reference number;
  5. request written acknowledgment;
  6. preserve transaction records;
  7. file a cybercrime complaint;
  8. file a police report if required by the financial institution;
  9. monitor credit, loan, and collection notices.

Financial institutions may have strict timelines for dispute reporting. Delay may affect the chance of reversal or reimbursement.

XII. Reporting Identity Theft Involving Online Loans

Online lending-related identity theft may involve unauthorized use of IDs, contact lists, photos, or personal information. Some victims discover that loans were taken in their name or that their contacts are being harassed by collectors.

The victim should:

  1. request documentation from the lending company;
  2. deny unauthorized loans in writing;
  3. report misuse of identity to the cybercrime office;
  4. report abusive collection practices to the appropriate regulatory agency where applicable;
  5. report privacy violations to the National Privacy Commission if personal data or contacts were misused;
  6. preserve collection messages, call logs, screenshots, and demand notices.

If the victim’s contacts are being harassed, their statements may help establish the extent of the damage.

XIII. Reporting Identity Theft Involving SIM Cards

If a SIM card was registered or used with the victim’s identity without authorization, the victim should contact the telecommunications provider and request verification, blocking, or investigation. The victim should also report to law enforcement if the SIM is connected to scams, threats, fraudulent transactions, or account takeovers.

Evidence may include:

  1. proof that the number is not owned or used by the victim;
  2. notices or messages linking the victim to the number;
  3. screenshots of scam messages from the number;
  4. reports from persons who received fraudulent communications;
  5. copies of IDs that may have been misused.

XIV. Reporting Data Privacy Violations

If identity theft resulted from unauthorized disclosure, mishandling, or misuse of personal data by a company, school, employer, clinic, online platform, lending app, association, or government office, the victim may consider filing a complaint with the National Privacy Commission.

A data privacy complaint may be appropriate where:

  1. personal data was processed without consent or lawful basis;
  2. sensitive personal information was disclosed to unauthorized persons;
  3. an organization failed to secure personal data;
  4. the victim’s data was leaked or exposed;
  5. the organization refused to act on a legitimate data subject request;
  6. personal data was used for harassment, profiling, unauthorized marketing, or identity fraud.

This remedy may exist alongside a criminal complaint for cybercrime or fraud.

XV. Filing a Criminal Complaint Before the Prosecutor

A cybercrime office may investigate and assist in evidence gathering, but prosecution generally proceeds through the proper prosecutor’s office. The complainant may need to file a complaint-affidavit and supporting documents for preliminary investigation.

The prosecutor will determine whether probable cause exists. If probable cause is found, an information may be filed in court. If the complaint is dismissed, remedies may include filing a motion for reconsideration or pursuing other remedies where legally available.

A victim should ensure that the complaint clearly connects the evidence to each alleged act. General suspicion is usually insufficient. The complaint should show what happened, who was involved if known, how the identity was misused, what evidence supports the claim, and what damage resulted.

XVI. Can the Offender Be Anonymous?

Yes. Many cybercrime complaints are initially filed against unknown persons. The complaint may identify the offender by username, account name, phone number, email address, bank account, e-wallet number, IP-related information if available, or other digital identifiers.

Law enforcement may coordinate with platforms, telecommunications companies, banks, payment processors, or other entities through lawful processes to identify the person behind the account or transaction.

However, anonymity makes evidence preservation more important. Victims should not rely solely on screenshots of a profile name because usernames, display names, and photos can be changed.

XVII. Jurisdiction and Venue

Cybercrime cases may involve victims, offenders, platforms, servers, banks, and witnesses located in different places. In practice, victims usually report to the cybercrime unit accessible to them, the place where they reside, where the damage occurred, where the fraudulent transaction took place, or where evidence may be gathered.

Because cybercrime may cross local and international boundaries, jurisdiction and venue should be evaluated based on the specific facts. The investigating office or prosecutor may advise where the complaint should be filed.

XVIII. What Happens After Reporting?

After a report is filed, the following may occur:

  1. the cybercrime office receives and evaluates the complaint;
  2. the victim executes a sworn statement;
  3. digital evidence is reviewed;
  4. investigators request additional documents;
  5. preservation requests or lawful information requests may be considered;
  6. respondents may be identified;
  7. a case build-up is conducted;
  8. the complaint may be referred for inquest, preliminary investigation, or further investigation;
  9. the prosecutor evaluates probable cause;
  10. the case may proceed to court if charges are filed.

The timeline varies depending on the complexity of the case, the availability of evidence, cooperation of platforms and institutions, and whether the offender is identifiable.

XIX. Common Problems in Identity Theft Complaints

Victims often encounter difficulties such as:

  1. incomplete screenshots;
  2. deleted accounts or messages;
  3. lack of transaction records;
  4. failure to preserve URLs or usernames;
  5. inability to prove account ownership;
  6. delay in reporting to banks or platforms;
  7. confusion between civil debt issues and criminal identity theft;
  8. lack of witness statements from persons deceived by the impersonator;
  9. uncertainty about whether the offender is in the Philippines;
  10. use of fake IDs, mule accounts, or disposable SIM cards by offenders.

These problems do not necessarily defeat a complaint, but they may make investigation more difficult.

XX. Practical Evidence Checklist

A victim should gather the following where applicable:

  1. valid government ID of the complainant;
  2. written chronology of events;
  3. screenshots of fake profiles, posts, messages, and emails;
  4. profile URLs and usernames;
  5. email addresses, phone numbers, and account handles used by the offender;
  6. transaction receipts and reference numbers;
  7. bank, e-wallet, or credit card statements;
  8. platform report confirmations;
  9. telco, bank, or e-wallet complaint reference numbers;
  10. proof of account ownership;
  11. proof that the victim did not authorize the transaction or account;
  12. copies of IDs or documents misused;
  13. witness statements or screenshots from recipients of scam messages;
  14. demand letters, loan notices, collection messages, or notices from third parties;
  15. proof of reputational, financial, emotional, or business harm.

XXI. Sample Outline of a Complaint-Affidavit

A complaint-affidavit for identity theft may follow this structure:

1. Personal Circumstances

State the complainant’s full name, age, nationality, civil status, address, and contact information.

2. Statement of Account Ownership or Identity

Explain the complainant’s ownership of the affected name, account, ID, number, business, or online profile.

3. Discovery of Identity Theft

State when and how the complainant discovered the fake account, hacked account, unauthorized transaction, loan, SIM, or misuse of identity.

4. Description of the Offending Acts

Describe what the offender did, including dates, platforms, usernames, phone numbers, and messages.

5. Damage or Risk Caused

Explain financial loss, unauthorized transactions, reputational harm, harassment, threats, business damage, or risk of further misuse.

6. Evidence

List attached screenshots, receipts, URLs, statements, IDs, reports, and other documents.

7. Prior Actions Taken

State whether the matter was reported to banks, platforms, telcos, employers, schools, or other agencies.

8. Request for Investigation and Prosecution

Request the appropriate authorities to investigate and prosecute the offender for the applicable offenses.

9. Verification and Oath

The affidavit must be signed and sworn before an authorized officer.

XXII. Sample Incident Narrative

A victim may prepare a short narrative such as:

“I discovered on [date] that an unknown person created and used an account under my name and photograph on [platform]. The account used the username [username] and URL [URL]. The said account sent messages to my relatives and friends asking for money through [bank/e-wallet details]. I did not create, authorize, or control this account. Attached are screenshots of the fake profile, messages sent to my contacts, transaction details provided by the offender, and statements from persons who received the messages. I respectfully request investigation for identity theft, fraud, and other applicable offenses.”

This sample should be adjusted to match the actual facts.

XXIII. Remedies Available to the Victim

Depending on the facts, a victim may pursue one or more remedies.

A. Criminal Complaint

A criminal complaint may be filed for cybercrime, fraud, falsification, threats, cyber libel, or other applicable offenses.

B. Data Privacy Complaint

A complaint may be filed with the National Privacy Commission if the case involves unauthorized processing, disclosure, misuse, or failure to protect personal information.

C. Platform Takedown or Account Recovery

The victim may report fake or hacked accounts to social media platforms, email providers, online marketplaces, and payment services.

D. Bank or E-Wallet Dispute

The victim may request reversal, blocking, investigation, chargeback, or fraud dispute.

E. Civil Action

Where damages are suffered, the victim may consider civil remedies, including recovery of actual damages, moral damages, exemplary damages, attorney’s fees, or other relief, depending on the facts and applicable law.

F. Workplace, School, or Business Reporting

If the identity theft affects employment, school records, professional reputation, customers, or business operations, the victim may notify the relevant institution and request protective action.

XXIV. Rights and Responsibilities of the Victim

A victim has the right to seek assistance, file a complaint, preserve evidence, request action from platforms and institutions, and pursue legal remedies.

At the same time, the victim should:

  1. be truthful in all statements;
  2. avoid fabricating or altering evidence;
  3. preserve original files and devices where possible;
  4. avoid publicly accusing a specific person without sufficient basis;
  5. cooperate with investigators;
  6. keep copies of all reports and submissions;
  7. avoid engaging directly with the offender in a way that may compromise the investigation.

False accusations may expose the complainant to legal liability.

XXV. Preventive Measures Against Identity Theft

Although victims are not to blame for identity theft, preventive measures can reduce risk.

Recommended measures include:

  1. use strong, unique passwords;
  2. enable two-factor authentication;
  3. avoid sharing one-time passwords or verification codes;
  4. do not click suspicious links;
  5. verify URLs before logging in;
  6. limit posting of IDs, tickets, certificates, addresses, and personal documents online;
  7. watermark copies of IDs when submitting them, where appropriate;
  8. regularly review bank, e-wallet, and credit card activity;
  9. avoid saving passwords on shared devices;
  10. update devices and apps;
  11. review privacy settings on social media;
  12. avoid oversharing birthdays, addresses, family details, and security question answers;
  13. use official apps and websites only;
  14. be cautious of online job, loan, investment, romance, and marketplace offers;
  15. monitor messages from telcos, banks, platforms, and government agencies.

XXVI. Special Considerations for Minors

If the victim is a minor, a parent, guardian, or authorized representative should assist in reporting. Identity theft involving minors may include fake accounts, cyberbullying, sexual exploitation, blackmail, or unauthorized use of photos and personal information.

Where sexual images, grooming, exploitation, threats, or child protection issues are involved, the matter should be treated as urgent and reported immediately to the appropriate law enforcement and child protection authorities.

XXVII. Special Considerations for Businesses and Professionals

Identity theft may also affect businesses, professionals, and public figures. Common examples include fake business pages, fake sellers, impersonation of lawyers or doctors, fraudulent job postings, fake invoices, cloned websites, and unauthorized use of logos or credentials.

Businesses should preserve:

  1. business registration documents;
  2. proof of ownership of official pages, websites, and marks;
  3. screenshots of fake pages or scam messages;
  4. customer complaints;
  5. payment details used by scammers;
  6. internal incident reports;
  7. platform takedown requests;
  8. public advisories issued to customers.

A company may authorize an officer, lawyer, or representative to file the complaint through a board resolution, secretary’s certificate, authorization letter, or special power of attorney, as applicable.

XXVIII. Frequently Asked Questions

1. Can I report identity theft even if I do not know the offender?

Yes. Many cybercrime complaints start against unknown persons. Provide all available identifiers such as usernames, URLs, phone numbers, account numbers, emails, and transaction details.

2. Is a screenshot enough?

A screenshot is useful but may not be enough by itself. It is better to include URLs, timestamps, account identifiers, transaction records, witness statements, and proof of damage.

3. Should I report to the platform first or to the cybercrime office first?

For urgent harm, do both. Preserve evidence before requesting takedown. If the account is deleted before evidence is saved, the complaint may become harder to prove.

4. Can I file a complaint if no money was lost?

Yes. Identity theft may cause reputational harm, privacy violations, harassment, threats, or risk of further fraud even without financial loss.

5. Can I post the offender’s name online?

Caution is advised. Public accusations without sufficient proof may expose the victim to defamation or other legal risks. It is safer to issue a neutral warning and let authorities investigate.

6. Should I hire a lawyer?

A lawyer is not always required to make an initial report, but legal assistance is helpful when preparing affidavits, identifying proper charges, preserving evidence, dealing with banks or platforms, and pursuing prosecution or civil remedies.

7. What if the fake account is outside the Philippines?

The victim may still report the matter in the Philippines if the victim is in the Philippines, damage occurred in the Philippines, or Philippine law may apply. Cross-border enforcement can be more complex and may require platform cooperation or international coordination.

8. What if my ID was used for an online loan I did not apply for?

Immediately deny the loan in writing, request documents from the lender, report the identity theft to law enforcement, preserve collection messages, and consider filing a data privacy complaint if personal information or contacts were misused.

9. What if my e-wallet was used without permission?

Report immediately to the e-wallet provider, request blocking and investigation, dispute the transactions, preserve reference numbers, and file a cybercrime complaint if unauthorized access, phishing, fraud, or identity theft occurred.

10. What if someone is using my photos but not my full name?

The case may still involve impersonation, privacy violation, harassment, defamation, fraud, or misuse of personal data depending on the facts. Preserve evidence and report if harm or unlawful use is present.

XXIX. Practical Reporting Template

A victim may use the following checklist when reporting:

Subject: Complaint for Identity Theft and Related Cybercrime

Complainant: [Full name] Address: [Address] Contact Number: [Number] Email: [Email] Platform or Account Involved: [Facebook/email/e-wallet/bank/other] Date Discovered: [Date] Offender Details, if known: [Name/username/phone/email/account number] Summary of Incident: [Brief statement of what happened] Damage Suffered: [Financial loss/reputational harm/harassment/unauthorized transactions/other] Evidence Attached: [Screenshots, URLs, receipts, statements, IDs, reports] Action Requested: Investigation, identification of offender, preservation of evidence, and prosecution for applicable offenses.

XXX. Conclusion

Identity theft in the Philippines is both a cybercrime and a serious personal security concern. Victims should act quickly by preserving evidence, securing accounts, reporting to financial institutions and platforms, and filing a complaint with the appropriate cybercrime office. Depending on the facts, remedies may involve the PNP Anti-Cybercrime Group, the NBI Cybercrime Division, the prosecutor’s office, the National Privacy Commission, banks, e-wallet providers, telecommunications companies, and online platforms.

The strongest complaints are those supported by clear chronology, complete screenshots, URLs, transaction records, witness statements, proof of identity, and proof of damage. Because identity theft can overlap with cybercrime, fraud, falsification, data privacy violations, and civil damages, victims should treat the matter seriously and consider obtaining legal assistance, especially where money, reputation, employment, business, minors, or sensitive personal information is involved.

Disclaimer: This content is not legal advice and may involve AI assistance. Information may be inaccurate.

Privacy Policy

Terms of Use

Lawyer Login

 
 
Privacy Policy         Terms of Use         Lawyer Login