How to Report Illegal Online Lending Scams to the SEC (Philippines)

How to Report Illegal Online Lending Scams to the SEC (Philippines)

Executive summary

Illegal online lending in the Philippines typically involves unregistered lenders or registered entities using unlawful practices (e.g., abusive collection, data-harvesting, hidden fees, and misrepresented interest). The Securities and Exchange Commission (SEC)—through its Enforcement and Investor Protection Department (EIPD) and its company registration/monitoring units—has primary jurisdiction over lending companies (R.A. 9474) and financing companies (R.A. 8556), including those that operate via mobile apps and websites. This article explains what is illegal, how to document evidence, where and how to file a complaint with the SEC, what outcomes to expect, and which other authorities you can engage for parallel relief.

1) Why the SEC and when it has jurisdiction

The SEC regulates:

  • Lending companies (R.A. 9474) and financing companies (R.A. 8556) and their online lending platforms (apps/websites).
  • Entities operating without a Certificate of Authority (CA) or using unapproved online lending platforms.
  • Unfair debt collection and deceptive lending/advertising by covered entities.
  • Administrative sanctions: cease-and-desist orders (CDOs), fines, revocation/suspension of CA, referral for criminal prosecution, and publication of advisories.

When SEC may not be the sole forum:

  • Banks/e-money issuers are regulated by the Bangko Sentral ng Pilipinas (BSP); still report abusive third-party collectors to SEC if they act on behalf of lending/financing companies.
  • Data privacy violations (contact scraping, doxxing, unauthorized processing) fall under the National Privacy Commission (NPC) (R.A. 10173).
  • Harassment, threats, extortion, online shaming can be criminal (e.g., grave threats, libel under the Revised Penal Code as amended by the Cybercrime Prevention Act, R.A. 10175) and may be pursued via PNP-Anti-Cybercrime Group or NBI-Cybercrime Division, apart from SEC action.

2) What counts as an illegal online lending “scam” (common patterns)

  1. No SEC Certificate of Authority (CA)

    • Any person/entity lending to the public as a business without a CA violates R.A. 9474 / R.A. 8556.
    • Red flags: no company name/SEC registration shown; vague “trading” or “investment” fronts; fast-cash apps not disclosing an SEC CA number.

  2. Unapproved or “ghost” online lending platforms

    • A company may have a CA but still violate SEC rules if it operates unregistered OLPs (apps/sites) or uses shell developers to hide control.

  3. Abusive debt collection

    • Harassment/“contact blasting” (messaging your phone contacts, employer, or family), threats of arrest, public shaming, and profanity are unlawful.
    • Collectors must properly identify themselves and respect privacy/data-minimization requirements.

  4. Deceptive pricing and hidden charges

    • Misrepresenting interest as “service fee,” imposing undisclosed penalties, or advertising one rate but charging another.

  5. Unfair terms and dark patterns

    • Forcing broad device permissions (contacts, photos), impossible repayment windows, or “loan rollovers” that trap borrowers.

3) Evidence checklist (assemble before you file)

Gather as much as you can. Keep originals and submit clear copies/screenshots:

  • Identity of the lender/collector: App name and version, website URL, social media pages, corporate name (if any), phone numbers, email addresses, chat handles, and bank/e-wallet details where you sent or were asked to send funds.
  • Proof of offer/transaction: Ads, chat/email/SMS threads, call logs (date/time/duration only), loan application screens, “consent” prompts, e-sign pages, and terms/FAQs captured via screenshots or PDFs.
  • Loan documents: E-contracts, disclosures, amortization schedules, SOAs, receipts, transaction IDs, and actual amounts disbursed vs. amounts collected (show deductions/fees).
  • Collection abuses: Screenshots/recordings of threats, shaming posts/messages, and lists of contacts who were messaged. (Do not illegally record calls; respect R.A. 4200 on wiretapping—recordings should be with consent or otherwise permissible under law.)
  • Financial trail: Bank/e-wallet proofs (send-money, bills-pay).
  • Device permissions/data grabs: App permission screens and device prompts.
  • Your affidavit/narrative: A chronological story with dates, people involved, amounts, and each violation you allege.

4) How to report to the SEC

A) Choose the right channel

Use one primary SEC channel and cross-reference others only if asked. Typical routes include:

  • The SEC’s official online complaint portal/form for lending/financing complaints (EIPD).
  • By email to the SEC’s enforcement/investor protection contact point.
  • Walk-in or postal filing at an SEC office (attach USB/printouts as needed). Note: Exact addresses, forms, and email recipients may be updated. Always follow the instructions on the SEC’s official website or posted advisories when you file.

B) What to include in your filing (structure)

  1. Complainant details: Full name, address, contact numbers, email, and valid ID.

  2. Respondent details: Company name (if any), app/OLP names, URLs, developer/publisher, numbers/emails, and collection agents.

  3. Jurisdictional statement: That respondents are engaged in lending/financing to the public, operate an OLP, and fall under SEC regulation.

  4. Statement of facts: Clear timeline, dates, places, amounts, and copies of communications.

  5. Particular violations (tick or enumerate as applicable):

    • Operating without a Certificate of Authority;
    • Operating unregistered online lending platforms;
    • Unfair/deceptive collection practices;
    • Deceptive pricing/advertising;
    • Unauthorized processing of personal data (reference to NPC coordination).

  6. Reliefs requested:

    • Investigation and Cease-and-Desist Order against the app/website and operators;
    • Revocation/suspension of CA (if any);
    • Administrative fines and referral for criminal prosecution;
    • Takedown coordination with platforms/app stores;
    • Preservation of digital evidence and directive to stop harassing communications;
    • If applicable, direction to refund/return amounts illegally collected (or note that you will seek civil recovery in court).

  7. Evidence list: Attach and index exhibits (A, B, C…).

  8. Verification and undertaking: A sworn statement (see sample below) that facts are true, documents are authentic, and you consent to SEC’s use of your data for enforcement.

C) Affidavit (sample template)

Affidavit-Complaint I, [Name], Filipino, of legal age, with address at [Address], after being duly sworn, depose and state:

  1. I was offered and obtained a loan from [Entity/App] on [dates];
  2. Respondents are engaged in lending to the public and operate the [App/Website];
  3. They committed the following acts in violation of lending/financing laws and SEC rules: [enumerate];
  4. Attached as Annexes “A” to “__” are true copies of contracts, screenshots, and proofs of payment;
  5. I respectfully pray that the SEC issue appropriate orders, including a Cease-and-Desist Order, impose penalties, and refer the matter for criminal prosecution;
  6. I execute this affidavit to attest to the truth of the foregoing. [Signature over name] SUBSCRIBED AND SWORN to before me this [date] at [city].

(Many portals accept online submissions without notarization for intake, but the SEC may later require a notarized affidavit and original evidence.)

5) What happens after you file

  1. Docketing & preliminary assessment – The SEC screens the complaint’s sufficiency and jurisdiction.
  2. Evidence gathering – Requests for clarifications, verified affidavits, and additional exhibits; possible coordinated takedowns/app delistings.
  3. Enforcement actionsAdvisories, CDOs, administrative penalties, CA suspension/revocation; referral to the DOJ for criminal charges.
  4. Parallel referrals – SEC may coordinate with NPC (privacy), PNP-ACG/NBI (cybercrimes), BSP (if a supervised entity is involved).
  5. Outcomes for complainants – SEC’s primary remedies are public law measures (stop the illegal activity, penalize violators). Refunds/ damages typically require civil action in court or settlement, though SEC orders sometimes facilitate restitution.

6) Coordinating with other authorities (do this in parallel)

  • NPC (National Privacy Commission) – For contact scraping, doxxing, unlawful disclosures, overbroad permissions, and harassment using your personal data (R.A. 10173).
  • PNP-ACG / NBI-CCD – For threats, extortion, identity theft, unlawful access, online libel/shaming (RPC & R.A. 10175). Keep message headers, URLs, usernames, and time stamps.
  • BSP Financial Consumer Protection – If a bank/e-money channel or payment agent enabled the scheme or mishandled disputes.
  • Telcos/App stores/Platforms – Report abusive numbers, spam texts, and fraudulent apps/pages for blocking/takedown.

7) If you’ve already paid (financial recovery roadmap)

  • Compute the true cost: principal received vs. total paid, and identify undisclosed/illegal fees.
  • Send a demand letter (optional but helpful): assert illegal terms/collection, demand cessation and refund/adjustment, and put them on notice of your SEC/NPC complaints.
  • Consider small claims/civil action to recover improper charges and damages (jurisdiction depends on amount and cause of action). Attach the SEC filing and any advisory/CDO as persuasive evidence.
  • Credit reporting: Dispute derogatory reports built on illegal or misrepresented debt.

8) Preventive checks before borrowing

  1. Verify the company’s SEC registration and Certificate of Authority (CA).
  2. Confirm that the specific app/website you are using is approved/recognized for that company.
  3. Read the total cost of credit: interest, fees, penalties, tenor, and effective rates—not just headlines.
  4. Scrutinize permissions: no app should demand blanket access to contacts/photos unrelated to creditworthiness.
  5. Beware of red flags: threats of arrest, public shaming, “limited-time” disbursement if you send an upfront “processing fee,” and forced rollovers.

9) Borrower safety & data-protection tips

  • Use a separate email and do not give access to your contacts/photos when not necessary.
  • Keep offline backups of key messages and e-contracts (PDF).
  • Turn on two-factor authentication for your accounts and e-wallets.
  • If you’re harassed, document but do not engage; preserve evidence and escalate via formal complaints.

10) Practical filing roadmap (one page)

  1. Freeze the evidence (screenshots, PDFs, bank records).
  2. Draft the narrative + affidavit (dates, amounts, actors, violations).
  3. File with the SEC via its official complaint channel (lend/finance category).
  4. File with NPC (privacy abuses) and PNP-ACG/NBI (threats/cybercrimes) in parallel.
  5. Respond promptly to follow-ups from agencies and keep a master folder of your exhibits.
  6. Consider civil recovery (small claims/civil case) if you suffered loss.
  7. Monitor advisories and share case numbers only with trusted counsel or authorities.

11) FAQ

Q: Do I need a lawyer to file with the SEC? A: Not to start. A clear, well-documented complaint often suffices for intake. For civil/criminal cases and negotiations, a lawyer is helpful.

Q: Will the SEC get my money back? A: The SEC’s core powers are administrative (stop and penalize). Refunds/damages generally require court action or settlement, though SEC enforcement can strengthen your case.

Q: The lender is registered—can it still be illegal? A: Yes. Registration/CA does not excuse unregistered OLPs, abusive collection, or deceptive pricing.

Q: Can I stay anonymous? A: You typically provide identity to regulators for due process. Ask about confidentiality measures; do not publish your own evidence online if it exposes your data.

12) Model annex list (for your submission)

  • Annex A – Proof of identity and authority (IDs).
  • Annex B – Loan application screens; disclosures; consent prompts.
  • Annex C – E-contract/terms; schedules; SOAs.
  • Annex D – Proofs of disbursement/repayment (bank/e-wallet records).
  • Annex E – Screenshots of harassment/threats/shaming; list of contacted persons.
  • Annex F – App store listing/website capture (with date).
  • Annex G – Demand letter and replies (if any).
  • Annex H – Any related police/NPC/BSP reports or ticket numbers.

Closing note (compliance & updates)

Rules and contact points evolve. Before submission, follow the instructions on the SEC’s official website/portal and check for the latest advisories related to online lending. If you face active harassment or threats, prioritize safety and file with PNP-ACG/NBI immediately while you pursue SEC remedies.

Disclaimer: This content is not legal advice and may involve AI assistance. Information may be inaccurate.

Privacy Policy

Terms of Use

Lawyer Login

 
 
Privacy Policy         Terms of Use         Lawyer Login