Identity Used in Scam Social Media Posts

I. Introduction

The unauthorized use of a person’s name, photograph, likeness, voice, personal information, or social media profile in scam posts has become a common form of online abuse in the Philippines. A scammer may create a fake account using someone else’s identity, copy a real person’s profile photo, impersonate a business owner, pretend to be a government official, use a celebrity’s image to endorse a fake investment, or post fabricated stories to solicit money from the public.

This conduct is not merely “online drama” or a private inconvenience. Depending on the facts, it may involve identity theft, computer-related fraud, cyber libel, unjust vexation, estafa, violation of data privacy rights, trademark or business name misuse, harassment, or other offenses. It may also give rise to civil liability for damages.

This article discusses the Philippine legal issues that arise when someone’s identity is used in scam social media posts, the possible criminal, civil, and administrative remedies, the evidence that should be preserved, and the practical steps victims may take.

II. What Does “Identity Used in Scam Social Media Posts” Mean?

“Identity used in scam social media posts” refers to the unauthorized use of another person’s identifying information in an online post, account, advertisement, message, page, group, marketplace listing, livestream, or comment for the purpose of deceiving others.

The identity used may include:

  1. Full name;
  2. Nickname or screen name;
  3. Profile photo;
  4. Personal photographs;
  5. Government ID images;
  6. Signature;
  7. Address, phone number, email address, or other contact information;
  8. Voice, video, or deepfake likeness;
  9. Business logo or trade name;
  10. Professional title or credentials;
  11. Screenshots from real accounts;
  12. Family details, employment details, or other personal data.

The scam may target either the person being impersonated or third parties. For example, the scammer may pretend to be the victim in order to borrow money from the victim’s friends, sell fake products, collect “reservation fees,” solicit donations, recruit people into a fake investment scheme, or damage the victim’s reputation.

III. Common Scenarios

A. Fake Personal Account

A scammer creates a fake Facebook, Instagram, TikTok, X, or messaging account using the victim’s name and photos. The account messages the victim’s relatives or friends asking for emergency money, load, GCash transfers, bank deposits, or other assistance.

B. Fake Seller or Marketplace Scam

The scammer uses the victim’s identity to appear trustworthy while posting items for sale. Buyers send payment, but no product is delivered. The real person whose identity was used may then be blamed by the buyers.

C. Fake Investment Endorsement

A victim’s image, name, or professional credentials are used to promote fake trading platforms, cryptocurrency schemes, lending apps, online casinos, or investment opportunities.

D. Fake Business Page

A scammer copies a legitimate business page, logo, product photos, and owner details. Customers are diverted to the fake page and are induced to pay to a different wallet or bank account.

E. Defamatory Scam Post

A scammer posts that the victim is involved in fraud, theft, immoral conduct, or other wrongdoing. This may be intended to destroy reputation, extort money, or harass the victim.

F. Use of Government ID or Sensitive Personal Information

The scammer posts or sends copies of the victim’s ID, address, contact number, birthdate, or other personal information to convince others that the transaction is legitimate.

G. Deepfake or Edited Media Scam

The scammer uses altered photos, AI-generated images, manipulated videos, or synthetic voice clips to make it appear that the victim is endorsing a product, asking for money, or making statements they never made.

IV. Key Philippine Laws Potentially Involved

Several Philippine laws may apply depending on the facts.

V. Cybercrime Prevention Act

The Cybercrime Prevention Act of 2012, or Republic Act No. 10175, is one of the primary laws relevant to identity misuse in online scams.

A. Computer-Related Identity Theft

Computer-related identity theft may arise when a person intentionally acquires, uses, misuses, transfers, possesses, alters, or deletes another person’s identifying information through or with the use of information and communications technology, without authority.

In the context of scam posts, this may apply where a scammer uses the victim’s name, photo, account details, or other identifying data to create a fake profile, deceive others, or carry out fraud.

The essence of the offense is the unauthorized use or misuse of another person’s identity through ICT. A scammer does not need to physically steal a wallet or ID card. Copying digital photos, account information, or personal data may be enough if the legal elements are present.

B. Computer-Related Fraud

Computer-related fraud may be involved when the scammer uses a computer system or online platform to deceive people and obtain money, property, or economic benefit.

Examples include fake product listings, fake investment posts, fraudulent donation drives, fake job offers requiring “processing fees,” and fake emergency requests sent through a copied or impersonated account.

C. Cyber Libel

Cyber libel may arise when the scam post contains defamatory statements against an identifiable person and is published through a computer system or online platform.

For example, if a scammer posts that the victim is a “swindler,” “thief,” “scammer,” “adulterer,” or otherwise imputes a crime, vice, defect, or dishonorable conduct, the post may be actionable if the elements of libel are present.

However, not every unpleasant or insulting post is automatically cyber libel. Philippine law generally requires defamatory imputation, publication, identifiability, and malice, subject to applicable rules and defenses.

D. Aiding, Abetting, or Attempt

Persons who knowingly assist in the scam may also be exposed to liability. This may include individuals who help create fake accounts, receive proceeds, lend bank or e-wallet accounts, repost fraudulent material, or coordinate with the principal scammer.

VI. Revised Penal Code Offenses

The Revised Penal Code may also apply, especially where money or property is obtained.

A. Estafa or Swindling

Estafa may be committed when a person defrauds another through false pretenses, deceit, abuse of confidence, or fraudulent means, causing damage.

If a scammer uses another person’s identity to convince victims to send money, pay for non-existent goods, invest in a fake scheme, or donate to a false cause, estafa may be considered.

The person whose identity was used is usually not the offender unless there is evidence that they participated in the fraud. This distinction is important because victims of the scam may initially blame the impersonated person.

B. Falsification

Falsification may be relevant if the scammer fabricates documents, receipts, IDs, certificates, screenshots, business permits, or transaction records.

For example, a fake receipt bearing the victim’s name or a falsified authorization letter may raise falsification issues.

C. Usurpation or Misrepresentation of Authority

If the scammer falsely represents themselves as a government official, police officer, lawyer, company representative, or person in authority, other offenses may be implicated depending on the specific facts.

D. Unjust Vexation, Threats, or Coercion

Where the misuse of identity is part of harassment, intimidation, extortion, or repeated online abuse, offenses such as unjust vexation, threats, or coercion may be considered.

VII. Data Privacy Act

The Data Privacy Act of 2012, or Republic Act No. 10173, may apply where personal information is processed without authority.

“Personal information” includes information from which an individual is apparent or can be reasonably and directly identified. “Sensitive personal information” includes certain data such as age, marital status, health information, government-issued identifiers, and other protected categories.

Using someone’s name, photo, address, phone number, ID, or other personal data in a scam post may constitute unauthorized processing, malicious disclosure, or improper use of personal information, depending on the circumstances.

The National Privacy Commission may be relevant where the issue involves unauthorized use, exposure, or processing of personal data. However, not every online impersonation automatically becomes a Data Privacy Act case; the particular act, the nature of the data, and the person or entity responsible matter.

VIII. Civil Code Remedies

A victim may also seek civil remedies.

A. Damages

The Civil Code allows recovery of damages in appropriate cases. A person whose identity was used in scam posts may suffer actual damages, moral damages, nominal damages, exemplary damages, attorney’s fees, or litigation expenses, depending on proof and applicable law.

Possible damages include:

  1. Lost income or business opportunities;
  2. Reputational harm;
  3. Emotional distress, anxiety, humiliation, or social embarrassment;
  4. Expenses for legal assistance, notarization, travel, platform reporting, and documentation;
  5. Costs of public clarification or reputation repair;
  6. Business losses from customer confusion.

B. Abuse of Rights

Civil liability may arise when a person exercises a right in a manner contrary to justice, honesty, or good faith. Online impersonation and malicious use of identity may fall within broader civil law principles protecting dignity, privacy, reputation, and fair dealing.

C. Privacy and Dignity

The Civil Code recognizes that every person must respect the dignity, personality, privacy, and peace of mind of others. Acts that meddle with or disturb another’s privacy may create liability, depending on the circumstances.

IX. Special Issues Involving Photos and Images

A person’s photo is often the central tool in social media impersonation. The legal issues may include identity theft, data privacy, privacy rights, copyright, and personality rights.

A. Use of Profile Photos

A profile photo publicly visible online is not automatically free for fraudulent use. Public visibility does not mean consent to impersonation, deception, or commercial exploitation.

B. Edited Photos

If the photo is edited to create a false impression, such as making it appear that the victim endorsed a product, joined a scheme, or committed wrongdoing, the act may strengthen claims for fraud, defamation, privacy violation, or damages.

C. Photos of Minors

The use of a child’s identity or photo in scam posts is especially serious. Parents or guardians should act promptly, preserve evidence, report to the platform, and consider reporting to appropriate authorities.

D. Copyright Considerations

If the victim took the photo, owns the photo, or commissioned it under terms that give them rights, copyright law may also be relevant. But even if the victim does not own the copyright in the image, unauthorized use of their likeness for fraud may still raise separate legal concerns.

X. Special Issues Involving Businesses

Businesses in the Philippines may also be impersonated through fake social media pages, copied logos, false advertisements, and fraudulent payment instructions.

Potential legal issues include:

  1. Trade name misuse;
  2. Trademark infringement or unfair competition;
  3. Cybercrime;
  4. Estafa;
  5. Consumer protection violations;
  6. Data privacy violations;
  7. Business reputation damage.

Business owners should monitor fake pages, preserve evidence, issue public advisories, report to the platform, and coordinate with payment providers where fraudulent accounts are used.

XI. Liability of the Person Whose Identity Was Used

A person whose identity was used without consent is generally a victim, not a wrongdoer. However, problems arise when third parties believe the impersonated person is responsible for the scam.

The key question is participation. Did the impersonated person create the post, control the account, receive the money, communicate with the complainants, authorize the transaction, or benefit from the scam?

If there is no participation, the impersonated person should gather evidence showing that the account or post is fake and that they did not authorize the transaction.

Useful evidence includes:

  1. Screenshots of the fake account;
  2. Screenshots comparing the real account and fake account;
  3. URLs or profile links;
  4. Dates and times of discovery;
  5. Messages from people who were contacted by the scammer;
  6. Proof that payment accounts used are not owned by the victim;
  7. Public advisory denying involvement;
  8. Reports submitted to the platform;
  9. Police, NBI, PNP-ACG, or barangay blotter records;
  10. Affidavits from witnesses.

XII. Liability of People Who Share or Repost the Scam

A person who innocently shares a scam post may not have the same liability as the original scammer. However, knowingly reposting, amplifying, or endorsing fraudulent content can create legal risk.

If a person is warned that a post is fraudulent but continues to circulate it, especially if they benefit from it, they may face greater exposure.

People should avoid sharing posts that solicit money, investments, or donations unless verified. They should also avoid reposting accusations against an identified person without basis.

XIII. Platform Responsibility

Social media platforms usually provide reporting tools for impersonation, fraud, intellectual property violations, privacy violations, and scams. Victims should use these tools immediately.

However, platform takedown is not the same as legal accountability. Even if a fake account is removed, the victim may still pursue legal remedies if the perpetrator can be identified.

Victims should preserve evidence before reporting because the post or account may disappear after takedown.

XIV. Evidence Preservation

Evidence is critical. Many cases fail or become difficult because posts are deleted, usernames are changed, or accounts disappear.

Victims should preserve:

  1. Full-page screenshots, not cropped screenshots only;
  2. The profile URL or post URL;
  3. Username, display name, user ID, page ID, or account handle;
  4. Date and time of capture;
  5. Screenshots of comments, reactions, shares, and messages;
  6. Screenshots of payment instructions;
  7. E-wallet numbers, bank account numbers, QR codes, or crypto wallet addresses;
  8. Conversation logs;
  9. Names of people contacted by the scammer;
  10. Proof of non-ownership of payment accounts, if available;
  11. Public advisories issued by the victim;
  12. Platform report confirmation emails or ticket numbers.

Where possible, victims may execute an affidavit narrating the facts and attach screenshots. For more serious cases, they may seek assistance from cybercrime authorities or a lawyer to properly authenticate digital evidence.

XV. Authentication of Digital Evidence

Digital evidence must be presented properly if a case is filed. Philippine rules recognize electronic evidence, but parties must still show reliability, integrity, and relevance.

Screenshots are useful for initial reporting, but in formal proceedings, additional steps may be needed. These may include affidavits, device inspection, metadata, platform records, testimony of the person who captured the evidence, or preservation requests.

The stronger the evidence chain, the better. Victims should avoid editing screenshots beyond necessary redactions for safety. They should preserve originals whenever possible.

XVI. Where to Report

A victim may consider reporting to:

  1. The social media platform;
  2. The Philippine National Police Anti-Cybercrime Group;
  3. The National Bureau of Investigation Cybercrime Division;
  4. The barangay or local police for blotter purposes;
  5. The National Privacy Commission for personal data misuse concerns;
  6. The Department of Trade and Industry for consumer or business-related scams;
  7. Banks, e-wallet providers, or payment processors;
  8. The Securities and Exchange Commission for fake investment schemes;
  9. The Intellectual Property Office of the Philippines for trademark or IP-related concerns;
  10. A private lawyer for civil, criminal, or takedown strategy.

The correct forum depends on the facts. For example, a fake investment endorsement may require SEC attention, while unauthorized exposure of personal data may involve the NPC. A fake marketplace transaction may involve cybercrime authorities, payment providers, and possibly consumer agencies.

XVII. Immediate Steps for Victims

A person whose identity is used in scam posts should consider the following steps:

  1. Do not engage impulsively with the scammer using threats or insults.
  2. Take screenshots and save links before the content is deleted.
  3. Record the date and time of discovery.
  4. Ask friends or affected persons to send screenshots of messages they received.
  5. Report the account or post to the platform.
  6. Post a clear public advisory on the real account.
  7. Warn close contacts directly if the scammer is messaging them.
  8. Report payment accounts to banks or e-wallet providers.
  9. File a blotter or report with cybercrime authorities when warranted.
  10. Consult counsel for serious, recurring, defamatory, or financially damaging cases.

A public advisory may say:

“Please be informed that the account/page using my name and photo is fake. I am not selling, soliciting money, asking for donations, offering investments, or requesting payments through that account. Please do not transact with it. I have reported the matter to the platform and appropriate authorities.”

XVIII. Practical Steps for Scam Victims Who Paid Money

A person who paid money to a scammer using another person’s identity should avoid immediately accusing the person whose identity was used. The real person may also be a victim.

The paying victim should:

  1. Preserve all messages, screenshots, and transaction receipts;
  2. Identify the exact account, username, link, and payment channel used;
  3. Report immediately to the bank or e-wallet provider;
  4. Ask whether the transaction can be frozen, reversed, or investigated;
  5. File a report with cybercrime authorities;
  6. Provide evidence to the impersonated person, if appropriate;
  7. Avoid posting defamatory accusations without sufficient basis.

XIX. Public Accusations and Defamation Risks

People who were scammed sometimes post the name and photo of the person whose identity was used. This may create another legal problem if the named person is actually innocent.

Before publicly accusing someone of being a scammer, the accuser should verify whether the account is authentic, whether the payment account belongs to that person, and whether there is evidence of participation.

A safer approach is to warn others by identifying the fake account, link, payment channel, and screenshots, while avoiding unsupported statements that the real person committed fraud.

XX. Role of Banks, E-Wallets, and Payment Providers

Many scams succeed because payments are sent through e-wallets, bank transfers, remittance channels, or QR codes. Victims should report suspicious accounts quickly.

Reports should include:

  1. Transaction reference number;
  2. Amount sent;
  3. Date and time;
  4. Recipient name or account identifier;
  5. Screenshots of the scam post or chat;
  6. Police or cybercrime report, if available.

Payment providers may have internal fraud processes, but recovery is not guaranteed. Speed matters because funds may be transferred out quickly.

XXI. Identity Theft Versus Defamation Versus Fraud

These concepts overlap but are not identical.

Identity theft focuses on unauthorized use of a person’s identifying information.

Fraud focuses on deception used to obtain money, property, or benefit.

Defamation focuses on injury to reputation through false statements.

A single scam post may involve all three. For example, a fake account using the victim’s photo posts that the victim is collecting money for an emergency. This may involve identity theft and fraud. If the post also falsely states that the victim committed a crime, cyber libel may be involved.

XXII. Possible Defenses and Complications

A respondent in a case may raise defenses such as:

  1. Lack of intent;
  2. Lack of identity or mistaken identity;
  3. Consent or authorization;
  4. No use of ICT;
  5. No damage;
  6. No defamatory meaning;
  7. Truth or privileged communication in defamation cases;
  8. Account hacking;
  9. Lack of control over the page or post.

These defenses are fact-sensitive. The complainant must establish the elements of the offense or cause of action.

XXIII. When the Scammer Is Unknown

Often, the scammer uses a fake name, disposable account, VPN, prepaid SIM, mule bank account, or borrowed e-wallet. This does not mean the victim has no remedy.

Reports can still be filed against unknown persons. Authorities may investigate account registration details, IP logs, payment trails, SIM registration information, device identifiers, and related records, subject to legal process.

Victims should provide as much detail as possible. The payment trail is often more useful than the social media username.

XXIV. SIM Registration Issues

Where scams involve mobile numbers, SIM registration may help identify the registered user. However, the registered user may claim that the SIM was stolen, borrowed, sold, or registered using fake or misused information. The existence of a registered number is helpful but not always conclusive.

XXV. Deepfakes and AI-Generated Impersonation

AI-generated impersonation adds new risks. A person’s face, voice, or mannerisms may be copied to create fake endorsements, fake pleas for money, or fake scandal content.

Existing legal principles may still apply even if the method is new. The core issues remain unauthorized use of identity, fraud, privacy invasion, defamation, and damages.

Victims should preserve the AI-generated material, identify where it was posted, and avoid relying only on visual appearance. Technical analysis may be needed in serious cases.

XXVI. Workplace and Professional Consequences

Identity misuse can affect employment and professional reputation. A teacher, doctor, lawyer, accountant, government employee, influencer, or business owner may suffer serious harm if their identity is used in a scam.

Victims may need to notify employers, clients, professional organizations, or regulators, especially if the fake posts could mislead the public. The notice should be factual and non-inflammatory.

XXVII. Government Officials and Public Figures

When the identity of a government official or public figure is used, additional public interest issues may arise. Scammers often use the names or images of officials to promote fake assistance programs, fake scholarships, fake ayuda registration, fake recruitment, or fake investment opportunities.

Public figures should issue prompt advisories and coordinate with official communications channels. Members of the public should verify such posts through official government pages and avoid sending money or personal data through unofficial links.

XXVIII. Remedies for Businesses and Professionals

Businesses and professionals should consider a structured response:

  1. Issue a public advisory;
  2. Report fake pages and ads to the platform;
  3. Notify customers through official channels;
  4. Report fraudulent payment accounts;
  5. Preserve evidence for legal action;
  6. Register or enforce trademarks where applicable;
  7. Use verified pages or official websites;
  8. Monitor comments and messages for victims;
  9. Coordinate with cybercrime authorities;
  10. Consider civil action if damages are substantial.

XXIX. Draft Public Advisory

A public advisory should be clear, factual, and avoid excessive accusations unless already verified. A sample advisory:

“PUBLIC ADVISORY: It has come to my attention that a fake account/page is using my name, photos, and/or personal information to solicit money, offer products, or conduct transactions. I am not connected with that account/page and have not authorized anyone to use my identity for such purpose. Please do not send money, personal information, or documents to that account. Kindly report the fake account/page and transact only through my official account: [insert official account]. This matter has been or will be reported to the appropriate authorities.”

XXX. Draft Evidence Checklist

Victims may prepare an evidence folder containing:

  1. Screenshots of fake account or post;
  2. URL of the fake account or post;
  3. Screenshots of messages sent by the scammer;
  4. Names and contact details of affected persons;
  5. Payment receipts and account details used by the scammer;
  6. Screenshots of the real account for comparison;
  7. Timeline of events;
  8. Platform report confirmations;
  9. Public advisory posted by the victim;
  10. Any prior threats, extortion attempts, or related incidents.

XXXI. Draft Affidavit Outline

An affidavit may generally include:

  1. Full name, age, civil status, address, and identification of the affiant;
  2. Statement that the affiant discovered the fake account or post;
  3. Description of the fake account or post;
  4. Statement that the affiant did not create, authorize, or control it;
  5. Statement that the affiant’s name, photo, personal data, business identity, or likeness was used without consent;
  6. Description of the scam or fraudulent solicitation;
  7. Details of people contacted or deceived;
  8. Details of payments made, if known;
  9. Description of harm suffered;
  10. List of attached screenshots and evidence;
  11. Request for investigation or appropriate action.

XXXII. Preventive Measures

Individuals and businesses may reduce risk by:

  1. Enabling two-factor authentication;
  2. Using strong, unique passwords;
  3. Limiting public visibility of personal information;
  4. Watermarking business product photos;
  5. Using official channels for transactions;
  6. Posting verified contact and payment details;
  7. Regularly searching for fake accounts;
  8. Educating family, customers, and employees;
  9. Avoiding public posting of IDs, addresses, and sensitive documents;
  10. Acting quickly when impersonation is discovered.

XXXIII. Special Concern: Use of Government IDs

Victims should avoid sending ID photos to unverified persons or pages. Scammers often collect IDs for identity theft, fake account verification, loan fraud, SIM registration misuse, or social engineering.

If a government ID has been exposed, the victim should monitor financial accounts, report suspicious activity, and consider notifying relevant institutions. Where the ID was used in fraudulent transactions, the victim should document that the use was unauthorized.

XXXIV. Online Lending, Fake Loans, and Harassment

Some scams involve fake lending pages or abusive online lending practices using a person’s contacts, photos, or identity. Victims may face harassment or reputational damage.

Relevant issues may include data privacy violations, cyber harassment, unfair collection practices, threats, and unauthorized processing of contact lists or personal information.

XXXV. Minors and Students

Schools and parents should act promptly if a student’s identity is used in scam posts. The harm may include bullying, reputational injury, emotional distress, and financial deception of classmates or relatives.

The response should prioritize preservation of evidence, removal of harmful content, protection of the minor, and reporting to appropriate authorities.

XXXVI. Jurisdictional Issues

Social media platforms, servers, scammers, and victims may be located in different places. A scam may involve a Filipino victim, a foreign platform, a Philippine e-wallet, and an unknown user abroad.

Jurisdiction can be complex, but Philippine remedies may still be available where the victim, damage, payment channel, or relevant conduct has a Philippine connection.

XXXVII. Prescription and Timing

Victims should act promptly. Delay can result in lost evidence, deleted accounts, transferred funds, faded witness memory, and procedural complications. The applicable prescriptive period depends on the specific offense or civil action.

XXXVIII. Settlement and Retraction

Some cases may be resolved through takedown, apology, correction, restitution, or settlement. However, settlement should be handled carefully, especially in criminal matters. A private agreement may not automatically extinguish criminal liability.

A victim should also avoid signing broad waivers without understanding the consequences.

XXXIX. Ethical and Social Considerations

Online communities should avoid mob justice. When scam posts circulate, people should help preserve evidence and report fake accounts, but they should avoid harassing innocent persons, doxxing, or making unsupported accusations.

Identity misuse harms both the people deceived into paying money and the person whose identity was stolen.

XL. Conclusion

The use of another person’s identity in scam social media posts is a serious legal matter in the Philippines. It may involve cybercrime, fraud, identity theft, data privacy violations, defamation, civil damages, and business-related claims.

The most important first steps are to preserve evidence, warn potential victims, report the fake account or post, notify payment providers, and seek assistance from proper authorities when warranted.

A person whose identity was used without consent should be treated as a potential victim unless evidence shows participation in the scam. At the same time, people who paid money should act quickly to preserve transaction evidence and report the fraud.

As scams become more sophisticated through fake accounts, copied pages, AI-generated content, and digital payment channels, both individuals and businesses must be proactive in protecting their identities, verifying online transactions, and responding swiftly to impersonation.

This article is for general legal information in the Philippine context and is not a substitute for legal advice based on specific facts.

Disclaimer: This content is not legal advice and may involve AI assistance. Information may be inaccurate.

Privacy Policy

Terms of Use

Lawyer Login

 
 
Privacy Policy         Terms of Use         Lawyer Login