Republic Act No. 11934, otherwise known as the Subscriber Identity Module (SIM) Registration Act (hereinafter referred to as the “SIM Registration Act” or “the Act”), constitutes the principal statutory framework governing the mandatory registration and regulated deactivation of SIM cards in the Philippines. Enacted on October 10, 2022, and signed into law by President Ferdinand Romualdez Marcos Jr., the legislation responds directly to the pervasive use of unregistered prepaid and postpaid SIM cards that had long facilitated anonymous communications exploited in cybercrimes, financial scams, terrorism financing, drug trafficking, and other illicit activities. The Act’s core objective is to establish a verifiable link between SIM card subscribers and their identities, thereby enhancing law enforcement capabilities while preserving the constitutional right to privacy through strict data-protection safeguards. It applies universally to all public telecommunications entities (PTEs) authorized by the National Telecommunications Commission (NTC), encompassing major operators such as Globe Telecom, Smart Communications, DITO Telecommunity, and their respective resellers and agents.

Scope and Coverage of the Act

The SIM Registration Act extends to every SIM card issued and used within Philippine territory, whether prepaid or postpaid, and regardless of the service type (voice, short messaging service, or data). This includes SIM cards embedded in mobile phones, tablets, laptops, and other devices capable of cellular connectivity. Machine-to-machine (M2M) SIM cards used in Internet of Things (IoT) applications are also covered, subject to implementing rules that differentiate them from consumer-oriented subscriptions. Both new SIM activations and legacy (existing) SIM cards fall within the mandate. Foreign-issued SIM cards used by roaming subscribers are exempt only during the temporary period of roaming; any permanent or extended use triggers full domestic registration requirements upon activation of a local SIM.

Mandatory Registration Requirements

Registration is compulsory and must precede or coincide with the activation of any SIM card for actual use. The law delineates precise evidentiary and procedural standards:

1. For Natural Persons (Individual Subscribers)
   Subscribers must present at least one valid, government-issued photo identification document containing the bearer’s full name, photograph, and date of birth. Acceptable IDs include, but are not limited to: Philippine Passport, Driver’s License, Professional Regulation Commission (PRC) ID, Social Security System (SSS) ID, Government Service Insurance System (GSIS) ID, Voter’s ID, PhilID (National ID), Postal ID, Barangay ID, or any other ID explicitly recognized by the NTC in the Implementing Rules and Regulations (IRR).
   Required personal data include: full name, date of birth, present address, permanent address (if different), citizenship, gender, civil status, and at least one active contact number or email address for verification purposes. Biometric verification—such as fingerprint or facial recognition—may be mandated by PTEs as an additional layer of authentication where technology permits. Minors below eighteen (18) years of age may only be registered by a parent or legal guardian who must furnish proof of filiation or guardianship and countersign the registration form. Duplicate registrations under the same ID are permitted up to a reasonable limit prescribed by the NTC to accommodate multiple devices per user, but each SIM requires its own distinct registration record.

2. For Foreign Nationals
   Foreign subscribers must submit a valid passport together with an appropriate immigration document: a valid visa, Alien Certificate of Registration (ACR) I-Card, or Special Resident Retiree’s Visa (SRRV). Temporary visitors on tourist visas may register for the duration of their authorized stay, after which the SIM must be deactivated or re-registered under a qualifying long-term status.

3. For Juridical Persons and Corporate Entities
   Authorized representatives of corporations, partnerships, or other juridical entities must present the entity’s Securities and Exchange Commission (SEC) registration documents, Department of Trade and Industry (DTI) certificate, or equivalent; a duly notarized board resolution or secretary’s certificate authorizing the representative; and the representative’s own valid government-issued ID. Corporate SIMs are registered under the juridical person’s name and tax identification number (TIN).

Registration may be conducted physically at authorized retail outlets, customer service centers of PTEs, or through secure digital platforms and mobile applications approved by the NTC. All registration data are transmitted electronically to a centralized, encrypted database maintained jointly by the PTEs and the NTC. The process must be completed within the timelines stipulated in the IRR: new SIMs require immediate registration prior to activation, while existing SIM cards were afforded a grace period (initially set at one hundred twenty (120) days from the effectivity of the IRR) to achieve compliance.

Deactivation Mechanisms and Procedures

Deactivation forms an integral enforcement pillar of the Act. The law imposes upon PTEs a non-discretionary duty to deactivate SIM cards under the following legally defined circumstances:

• Non-Registration or Failure to Register within the Grace Period
  Any SIM card that remains unregistered after the expiration of the statutory grace period is automatically deactivated by the PTE without further notice. Deactivation renders the SIM inoperable for voice, text, and data services, though limited emergency calling (e.g., 911) may remain functional in certain configurations.

• Voluntary Deactivation by Subscriber
  Subscribers may request deactivation at any time through formal channels (written request, authenticated app portal, or customer care). PTEs must effect deactivation within twenty-four (24) hours of verified receipt of the request.

• Deactivation upon Loss, Theft, or Fraudulent Use
  Upon sworn affidavit or police report attesting to loss, theft, or unauthorized use, the PTE must immediately deactivate the affected SIM to prevent further misuse. Reactivation requires re-registration with fresh biometric and documentary verification.

• Administrative or Judicial Deactivation
  The NTC, upon complaint or ex officio investigation, may order deactivation where the SIM is linked to violations of the Act, the Cybercrime Prevention Act, or other penal statutes. Courts may likewise issue deactivation orders in criminal proceedings involving SIM-facilitated offenses.

• End-of-Life or Technical Deactivation
  SIM cards that reach the end of their validity period (prepaid load expiration without renewal) or are flagged for technical incompatibility may also be deactivated.

PTEs are required to maintain an auditable log of all deactivation events, including the precise date, time, reason code, and authorizing official. Reactivation of a previously deactivated SIM is treated as a new registration and subjects the subscriber to the full set of documentary and biometric requirements.

Obligations of Public Telecommunications Entities

PTEs bear primary responsibility for operational compliance. They must:

• Establish and maintain secure, NTC-approved registration systems capable of real-time validation against government ID databases where interoperability agreements exist.
• Refuse activation of any SIM without completed registration.
• Transmit registration data to the NTC’s central repository within one (1) business day.
• Implement robust cybersecurity measures to protect subscriber data in accordance with Republic Act No. 10173 (Data Privacy Act of 2012).
• Conduct regular audits and submit compliance reports to the NTC.
• Provide free deactivation and reactivation services to subscribers reporting lost or stolen SIMs.

Data Privacy and Security Safeguards

The Act expressly subjects all collected subscriber information to the Data Privacy Act. Personal data may be accessed or disclosed only upon lawful order of a court or competent authority, and solely for the purposes of criminal investigation, national security, or public safety. PTEs and the NTC are jointly liable for any unauthorized disclosure or breach. Subscribers retain the right to access, correct, or request deletion of their data subject to retention periods prescribed by the IRR (generally five (5) years from the last transaction or until the SIM is permanently deactivated and purged).

Penalties and Sanctions

Violations trigger severe administrative, civil, and criminal sanctions to deter circumvention:

• Selling, distributing, or activating unregistered SIM cards: fine of not less than Five Hundred Thousand Pesos (₱500,000) but not more than One Million Pesos (₱1,000,000) per violation, and imprisonment of six (6) months to two (2) years.
• Providing false or fraudulent information during registration: fine of not less than Two Hundred Thousand Pesos (₱200,000) but not more than Five Hundred Thousand Pesos (₱500,000), and imprisonment of three (3) months to one (1) year.
• PTEs failing to deactivate non-compliant SIMs or to maintain required security standards: administrative fines up to Ten Million Pesos (₱10,000,000) per day of violation, plus possible suspension or revocation of franchise.
• Unauthorized disclosure of registration data: penalties under the Data Privacy Act, including fines up to Five Million Pesos (₱5,000,000) and imprisonment of up to six (6) years.

Repeat offenders face escalated penalties and possible permanent disqualification from engaging in telecommunications-related businesses.

Implementing Rules and Regulations and Oversight

The NTC, in coordination with the DICT and the Department of Justice, promulgated the IRR within ninety (90) days of the Act’s effectivity. These rules provide granular operational details, including acceptable ID lists, registration forms, data formats, and deactivation protocols. The NTC exercises continuing supervisory jurisdiction, conducts random audits, and maintains a public dashboard on compliance rates. Local government units and the Philippine National Police assist in enforcement, particularly in curbing the black market for unregistered SIMs.

Jurisprudential and Practical Implications

The SIM Registration Act has reshaped the telecommunications landscape by eliminating anonymity as a default feature of mobile connectivity. It strengthens the state’s ability to trace SIM-linked criminal activity while imposing affirmative duties on both subscribers and operators. Challenges remain in rural connectivity, digital literacy among elderly or low-income users, and the logistical burden of nationwide registration drives; however, the legal architecture prioritizes universal compliance through phased implementation and public-education campaigns. Judicial review of the Act has upheld its constitutionality, affirming that the regulatory intrusion is a reasonable exercise of police power in furtherance of public welfare.

In sum, the Legal Requirements for SIM Card Deactivation and Registration under Republic Act No. 11934 establish a comprehensive, technology-neutral regime that balances security imperatives with individual rights, ensuring that every SIM card in the Philippines is traceable, accountable, and subject to lawful deactivation when circumstances so warrant. Compliance therewith is not merely administrative but a statutory imperative enforceable through the full weight of Philippine penal and administrative law.