Discovering that someone used your identity to register a Philippine SIM can feel alarming, especially when the number is connected to scams, loan applications, e-wallets, bank transactions, social media accounts, or threatening messages. The most important response is to act on several tracks at the same time: secure your accounts, notify the telecommunications company in writing, preserve evidence, dispute the unauthorized use of your personal data, and report any criminal or financial activity to the proper agencies.
What identity theft used for SIM registration means
Under the SIM Registration Act, Republic Act No. 11934 of 2022, a SIM must be registered before activation using the end-user’s personal information and a valid government-issued identification document.
Identity theft in SIM registration commonly happens when someone:
- Uses a stolen, altered, or photographed ID to register a SIM.
- Submits another person’s name, birth date, address, or passport details.
- Uses a forged ID or manipulated selfie.
- Registers multiple SIMs using personal data obtained from phishing, online lending applications, employment files, social media, or a data breach.
- Registers a SIM in the victim’s name and then uses it to open bank, e-wallet, lending, gaming, shopping, or social media accounts.
- Uses the victim’s identity to replace or take control of the victim’s real SIM, commonly called a SIM swap.
A fraudulently registered SIM and a SIM swap are related but different problems. In a fraudulent registration, the criminal may use a separate number that you have never owned. In a SIM swap, the criminal takes control of your existing mobile number, causing your real SIM to lose service or stop receiving calls and one-time passwords.
Philippine laws that may apply
SIM Registration Act
RA 11934 directly penalizes anyone who provides false or fictitious information or uses a fictitious identity or fraudulent identification documents to register a SIM. The penalty is imprisonment from six months to two years, a fine from ₱100,000 to ₱300,000, or both.
The law also requires each public telecommunications entity, or PTE, to maintain its own SIM registration database, secure subscriber information, provide fraud-reporting mechanisms, and investigate SIMs used for potentially fraudulent calls or messages. A registered SIM may be temporarily or permanently deactivated after investigation. (Supreme Court E-Library)
Because each telecommunications company maintains its own database, there is no public search portal where an individual can simply enter a name and see every SIM registered under that identity. A victim may need to contact several providers, particularly when the unauthorized number or its current network is unknown.
Do not rely entirely on a number’s prefix to identify its telecommunications provider. Under the Mobile Number Portability Act, RA 11202, subscribers may keep their numbers when transferring to another network. (Supreme Court E-Library)
SIM registration information is legally confidential. A telecommunications company ordinarily cannot reveal another subscriber’s complete registration records merely because someone asks for them. However, it must provide information when served with a subpoena issued by a competent authority in an investigation based on a sworn complaint involving a specific number used for a crime, fraud, or other unlawful act. (Supreme Court E-Library)
Data Privacy Act
Your name, address, birth date, ID number, photograph, signature, passport information, and similar details are protected under the Data Privacy Act of 2012, RA 10173.
As the data subject, meaning the person whose information is being processed, you may demand reasonable access to personal information held about you. You may also dispute inaccurate information, request immediate correction, and seek blocking, removal, or destruction when the information is false, unlawfully obtained, or used for an unauthorized purpose. The law also recognizes a right to compensation for damage caused by inaccurate, false, unlawfully obtained, or unauthorized processing. (National Privacy Commission)
These rights do not necessarily require the telecommunications company to give you unrestricted copies of another person’s confidential records. A practical response may instead include:
- Confirming whether your personal information appears in the provider’s records.
- Correcting or marking the registration as disputed.
- Blocking further processing or account changes.
- Deactivating the SIM after verification or investigation.
- Preserving records for law enforcement.
- Providing information directly to investigators under subpoena.
Cybercrime Prevention Act
The Cybercrime Prevention Act of 2012, RA 10175 defines computer-related identity theft as the intentional acquisition, use, misuse, transfer, possession, alteration, or deletion of another person’s identifying information without right.
This offense may apply when the offender obtained or used your identity through an online system, mobile application, electronic SIM-registration portal, database, email, computer, or smartphone. Illegal access, computer-related fraud, or other cybercrime offenses may also apply, depending on how the information was obtained and used. (Lawphil)
Anti-Financial Account Scamming Act
When the SIM is used to take over a bank account, open an e-wallet, receive stolen funds, or impersonate the victim during a financial transaction, the Anti-Financial Account Scamming Act, RA 12010 of 2024, may apply.
RA 12010 penalizes social-engineering schemes involving fraudulently obtained sensitive identifying information. It also covers money-muling activities such as opening a financial account using another person’s identity or identification documents. (Supreme Court E-Library)
Other possible laws include:
- RA 8484, as amended by RA 11449, when account numbers, PINs, telecommunications identifiers, cards, or other access devices are fraudulently used.
- Articles 171 and 172 of the Revised Penal Code, when public, official, commercial, or private documents are falsified or knowingly used.
- Estafa under Article 315 of the Revised Penal Code, when deceit causes another person to release money or property.
- Articles 19, 20, and 21 of the Civil Code, which may support a civil damages claim when a person willfully or negligently causes harm or acts contrary to law, morals, good customs, or public policy.
The exact criminal charge depends on the evidence. The same conduct may violate RA 11934 together with the Cybercrime Prevention Act, Data Privacy Act, Revised Penal Code, or another special law. RA 11934 expressly states that prosecution under the SIM law does not prevent liability under other laws. (Supreme Court E-Library)
What to do immediately
1. Secure your email before anything else
Your primary email is often the key to resetting every other account. From a trusted device:
- Change the email password to a new, unique password.
- Sign out all other sessions.
- Remove unknown recovery numbers and email addresses.
- Review forwarding rules, filters, connected applications, and authorized devices.
- Turn on an authenticator application, security key, or passkey where available.
- Save the provider’s security log showing suspicious access.
Do not continue relying solely on SMS codes when there is any possibility that your mobile identity has been compromised.
2. Lock down financial and online accounts
Prioritize accounts in this order:
- Banks and credit cards.
- E-wallets and remittance applications.
- Government accounts.
- Online lending and investment platforms.
- Email and cloud storage.
- Social media and messaging applications.
- Shopping, delivery, and transportation applications.
Tell each institution that your identity may have been used in an unauthorized SIM registration. Ask it to:
- Freeze suspicious access or transactions.
- Remove the unauthorized number as an authentication or recovery number.
- Require enhanced identity verification for account changes.
- Preserve login, device, IP address, and transaction records.
- Give you a written incident or case-reference number.
- Confirm whether any account, loan, card, or wallet was opened using your identity.
3. Report unauthorized transfers immediately
Report a disputed transaction first through the bank’s or e-wallet’s Financial Consumer Protection Assistance Mechanism, commonly called its customer-assistance or complaints unit.
Use direct language such as:
I am reporting an unauthorized and disputed transaction connected to identity theft and unauthorized SIM registration. Please trace the transaction, initiate coordinated verification, and determine whether the funds qualify for temporary holding under RA 12010 and BSP Circular No. 1215.
Provide:
- Account name and number.
- Amount.
- Date and exact time.
- Transaction reference number.
- Receiving account, wallet, bank, or institution, if visible.
- Screenshots and alert messages.
- Date and time you first notified the institution.
Under RA 12010, participating institutions may temporarily hold funds involved in a disputed transaction and must conduct coordinated verification. BSP rules define an initial holding period of not more than five calendar days, while the total temporary holding period generally may not exceed 30 calendar days unless extended by a court. A hold is not automatic; the institutions must evaluate the complaint and the circumstances.
4. Send a written notice to the telecommunications provider
A phone call is useful for urgent action, but follow it with a written complaint through the provider’s official fraud, privacy, or customer-service channel.
Include:
- Your complete name.
- The disputed mobile number, if known.
- A clear statement that you never registered, purchased, possessed, or authorized the SIM.
- The identity information or ID believed to have been misused.
- The date and manner you discovered the problem.
- Any connected scams, account takeovers, loans, or transactions.
- A request for urgent deactivation or restriction.
- A request for correction, blocking, or annotation of the false registration.
- A request to preserve all relevant registration and usage records.
- A request for a written investigation result and reference number.
Ask the provider to preserve, without altering or deleting:
- The registration form.
- Uploaded identification documents and selfie images.
- Registration date and time.
- IP address, browser, device, or application information.
- SIM serial number and activation information.
- Changes made to the registration.
- SIM replacement, reactivation, or porting records.
- Customer-service communications.
- Relevant call, text, and account-access metadata permitted by law.
The provider may not release all these records directly to you because of confidentiality rules, but preservation is important so that they remain available for a subpoena, court order, or lawful investigation.
RA 11934 states that when an end-user reports loss of a SIM or requests deactivation, the provider must deactivate it within 24 hours. An identity-theft dispute may require additional verification because the complainant may not possess the physical SIM, but the request should still be marked urgent, particularly where continuing fraud is documented. (Supreme Court E-Library)
5. Contact more than one provider when necessary
If you do not know which company currently carries the number, contact the likely provider and ask the National Telecommunications Commission for assistance. Because mobile number portability allows numbers to move between providers, the original prefix may no longer identify the current network.
If you suspect that copies of your ID were used repeatedly, consider sending a data-subject request to all major Philippine mobile providers. Ask each provider whether it processes your personal information in connection with a SIM that you do not recognize, while allowing appropriate masking of unrelated subscriber information.
6. Preserve evidence before deleting or resetting anything
Create one incident folder containing the original files and a second backup.
Keep:
- Screenshots showing the full number, sender, date, time, application, and message.
- Original emails, including headers where possible.
- Bank and e-wallet transaction histories.
- Account-security alerts and login records.
- Call logs and voicemail files.
- Copies of fraudulent loan demands, account notices, or collection messages.
- Copies of your authentic IDs.
- Proof of ownership of your legitimate mobile numbers.
- Telecommunications, bank, NTC, NPC, NBI, and police reference numbers.
- Courier receipts, email delivery records, and acknowledgments.
- A chronological written account of what happened.
Do not factory-reset a device, delete suspicious messages, or surrender the only copy of an original document. Screenshots are helpful, but complete electronic records and provider logs are usually stronger.
When sending an ID copy, use the provider’s secure upload channel when available. A watermark such as “For SIM-registration identity-theft investigation only — [date]” can reduce reuse, provided it does not cover the photograph, number, signature, or other fields needed for verification.
How to file the proper complaints
File a complaint with the NBI or PNP cybercrime unit
Report the incident to the nearest:
- National Bureau of Investigation Cybercrime Division or regional office.
- Philippine National Police Anti-Cybercrime Group or local cybercrime unit.
- Police station, when immediate police documentation or protection is needed.
The NBI Divisions and Services directory lists its Cybercrime Division and complaints units. (National Bureau of Investigation)
Bring printed and electronic copies of:
- A valid government-issued ID.
- A complaint-affidavit or detailed written narration.
- The disputed mobile number.
- Screenshots, messages, emails, and transaction records.
- Telecommunications and financial-institution case numbers.
- Proof of financial loss or account takeover.
- Names and contact details of witnesses.
- Any known information about the suspected offender.
A complaint-affidavit is a sworn written statement explaining the facts in chronological order. It should distinguish clearly between facts you personally know, records you received, and conclusions you suspect.
Ask investigators to consider sending a preservation request and obtaining the necessary subpoena or cybercrime warrant. Under RA 11934, a telecommunications provider must disclose registration information pursuant to a subpoena from a competent authority when a sworn complaint identifies a specific number used for a crime or unlawful act and the perpetrator’s identity is unknown. (Supreme Court E-Library)
Escalate a provider complaint to the NTC
The NTC regulates telecommunications providers. Its general consumer rules require consumers to complain first to the service provider and allow escalation to the NTC when the provider fails to address the complaint within 30 days. Complaint forms may be obtained from the NTC’s public-assistance office, regional offices, or website. (Region 7 NTC)
For active fraud, do not simply wait while losses continue. Send the provider an urgent written complaint and ask the NTC regional office for immediate assistance, clearly explaining that the matter involves unauthorized SIM registration, account-security risks, or ongoing criminal activity.
Attach:
- The complaint sent to the provider.
- Proof of delivery.
- Provider responses and reference numbers.
- Your ID and contact information.
- Evidence of identity misuse.
- The specific remedy requested, such as deactivation, correction, investigation, or record preservation.
File a privacy complaint with the NPC
First send a written data-privacy complaint to the telecommunications provider or other organization processing the disputed information. Address it to the company’s Data Protection Officer when possible.
Invoke your rights to:
- Know whether your data is being processed.
- Access your personal data.
- Correct inaccurate information.
- Block or remove unauthorized processing.
- Obtain an explanation of the source and use of your information.
- Preserve records relating to the incident.
For a formal complaint before the National Privacy Commission, the complainant generally must first notify the respondent in writing and allow it 15 calendar days to take timely and appropriate action. Proof of that notice must be attached. (National Privacy Commission)
The NPC accepts a notarized complaint-assisted form or verified complaint with supporting documents and witness affidavits. Filing may be done personally, by registered mail, by courier, or through an electronic-mail method authorized by the Commission. Review the current NPC complaint mechanics and NPC filing page before submission. (National Privacy Commission)
Escalate an unresolved bank or e-wallet complaint to the BSP
After first reporting the matter to the bank or BSP-supervised financial institution, an unresolved complaint may be escalated through the BSP Online Buddy or by submitting the prescribed Complaints, Inquiries and Requests form.
Include:
- A brief chronological summary.
- The remedy requested.
- A copy of the complaint sent to the institution.
- Its response, if any.
- Transaction records and supporting evidence.
- Your current contact information.
The current procedures and channels appear on the BSP Consumer Assistance page. (Bureau of the Treasury)
Documents, costs, and realistic timelines
| Action | Documents commonly needed | Cost and timing |
|---|---|---|
| Urgent telecommunications complaint | ID, disputed number, affidavit or written denial, screenshots, proof of legitimate numbers | Provider complaint and SIM registration processes should not carry a registration fee. RA 11934 provides a 24-hour period for deactivation following a qualifying report of loss or request, although identity disputes may require verification. (Supreme Court E-Library) |
| Bank or e-wallet fraud report | ID, account details, transaction reference, amount, date and time, screenshots | Report immediately. BSP rules allow an initial hold of up to five calendar days and a total temporary hold generally not exceeding 30 days when the legal conditions are met. |
| NPC complaint | Notarized form or verified complaint, evidence, witness affidavits, proof of prior written notice | NPC generally requires proof that the respondent failed to act appropriately or did not respond within 15 calendar days. Notarial, printing, courier, and copying charges vary. (National Privacy Commission) |
| NTC complaint | Provider complaint, proof of receipt, provider response, supporting documents | General consumer rules refer to escalation after the provider fails to address the matter within 30 days. Urgent fraud concerns should be identified immediately. (Region 7 NTC) |
| Criminal complaint | Complaint-affidavit, IDs, electronic evidence, transaction records, witness details | Initial reporting may be completed in a day, but investigation, subpoena compliance, forensic examination, prosecutor review, and court proceedings may take weeks, months, or longer. |
| Overseas affidavit or SPA | Passport, affidavit or special power of attorney, supporting evidence | Consular, notarial, apostille, authentication, and courier fees depend on the country and Philippine foreign-service post. |
Common problems that weaken a victim’s case
Reporting only by telephone
A call may stop immediate activity, but it can be difficult to prove later. Always obtain a case number and follow up by email, complaint form, or letter.
Sending a vague complaint
Do not merely write, “My identity was stolen.” Identify the disputed number, account, transaction, ID, date, and requested remedy. Separate confirmed facts from suspicions.
Asking the provider to reveal everything immediately
SIM registration information is protected by confidentiality rules. Ask for access to personal data concerning you, correction of inaccurate records, deactivation, and preservation. Let investigators obtain protected third-party information through subpoena or legal process.
Publicly accusing a suspected person
Posting a person’s name, photograph, address, or number online can alert the offender, compromise the investigation, expose other personal data, and create possible defamation or cyberlibel issues. Give identifying information to investigators and relevant institutions instead.
Treating a barangay or police blotter as the complete case
A blotter provides a contemporaneous record, but it does not automatically deactivate the SIM, recover money, correct personal data, or begin a full cybercrime investigation. Send separate complaints to the telecommunications provider, financial institution, NTC, NPC, and cybercrime authorities as appropriate.
Paying a fraudulent loan or account immediately
If a creditor or collector contacts you about an account you never opened, dispute it in writing. Ask for the application, contract, disbursement record, identification used, device and login records, and destination account, subject to lawful privacy restrictions.
State clearly:
- You deny opening or authorizing the account.
- Your identity may have been used without consent.
- The account and any negative reporting are disputed.
- Collection contact should be suspended while the fraud is investigated.
- Relevant records must be preserved.
Do not sign an acknowledgment of debt, restructuring agreement, or settlement merely to stop calls. Such documents may later be presented as an admission.
Special considerations for Filipinos abroad and foreign victims
A victim outside the Philippines can begin by sending written complaints electronically to the telecommunications company, bank, e-wallet, NTC, or NPC. A Philippine representative may also act under a special power of attorney, or SPA. NPC rules expressly permit an authorized representative to file for the data subject. (National Privacy Commission)
When a sworn affidavit or SPA is required:
- A Filipino may generally execute it before a Philippine Embassy or Consulate offering notarial services.
- A document notarized in a country that is a party to the Apostille Convention will ordinarily need an apostille from that country’s competent authority for use in the Philippines.
- Documents from non-Apostille countries may require authentication or legalization.
- Procedures, appointment systems, fees, and processing times vary by foreign-service post.
Philippine consular guidance confirms that consular officers may notarize documents personally executed before them by Filipino nationals and that apostilled documents from convention countries generally do not require the former “red-ribbon” process. (Philippine Embassy in New Delhi)
Foreign nationals whose passports or Philippine immigration documents were used should provide the telecommunications company and investigators with the passport number, nationality, visa or ACR I-Card details involved, together with proof that they did not purchase or register the disputed SIM.
Frequently Asked Questions
Can I check all SIM cards registered under my name?
There is no public, consolidated name-search system. Each telecommunications provider maintains its own SIM register. You may send a data-subject access and correction request to each major provider, describing the identity information that may have been misused.
Can I demand the name of the person using the fraudulent SIM?
Usually not through an ordinary customer-service request. SIM registration data is confidential. Investigators may obtain the information through a subpoena, court order, or other legal process allowed by RA 11934.
Will the telecommunications company deactivate the SIM immediately?
RA 11934 requires deactivation within 24 hours after a qualifying report of loss or request for deactivation. When you never possessed the disputed SIM, the provider may first verify the identity-theft claim. Provide detailed evidence and request an urgent temporary restriction while the investigation is pending.
Am I automatically liable for scams committed using a SIM registered in my name?
No. A registration record may create an investigative link, but it does not conclusively prove that you possessed the SIM, sent the messages, controlled the device, or benefited from the offense. Prompt written denial, account records, device evidence, travel records, and reports made to authorities can help establish that your identity was misused.
What should I do if my real SIM suddenly stops working?
Contact your provider immediately from another phone or through an official branch. Ask whether there was a SIM replacement, eSIM activation, account change, or mobile-number porting request. Freeze bank and e-wallet access at once because loss of service may indicate a SIM swap.
Can stolen money be recovered after an unauthorized transfer?
Recovery depends heavily on speed, whether the funds remain within reachable accounts, and whether the receiving institutions can trace and hold them. Report the transaction immediately and request temporary holding and coordinated verification under RA 12010 and BSP Circular No. 1215.
Is a police or barangay blotter enough?
No. It is supporting evidence, not a substitute for direct complaints to the provider, bank, e-wallet, NTC, NPC, NBI, or PNP cybercrime unit.
Can someone file the complaint for me while I am abroad?
Yes, when the agency permits representation and the representative has a properly executed SPA. The SPA may need consular notarization, an apostille, or authentication depending on where it was signed.
Can I claim damages for identity theft?
Possible remedies include indemnification under the Data Privacy Act, restitution under financial-consumer laws, and damages under the Civil Code. Success depends on proving the wrongful act, the responsible person or organization, actual injury or loss, and the legal connection between the violation and the damage claimed.
Key Takeaways
- Secure your email, financial accounts, and recovery methods immediately.
- Report the unauthorized SIM registration to the telecommunications provider in writing and obtain a reference number.
- Request deactivation or restriction, correction or blocking of false data, and preservation of registration and activity records.
- Report unauthorized financial transactions immediately and request tracing, temporary holding, and coordinated verification.
- Preserve original messages, transaction records, login alerts, IDs, affidavits, and proof of every report.
- File with the NBI or PNP cybercrime unit when a crime, scam, account takeover, or financial loss is involved.
- Escalate provider issues to the NTC, privacy violations to the NPC, and unresolved bank or e-wallet complaints to the BSP.
- Do not publicly accuse suspects, delete evidence, acknowledge fraudulent debts, or rely solely on a blotter entry.