Reporting Online Lending Harassment and Threats in the Philippines: Step-by-Step Guide

This practical article is written for borrowers facing debt-collection abuse by online lending apps and their agents. It explains your rights under Philippine law, who regulates what, how to preserve evidence, and exactly how to report and escalate.

1) What counts as “harassment” and “threats” in this context?

Common abusive tactics

  • “Debt shaming” (messaging your contacts, workplace, school, or family)
  • Repeated calls or messages at unreasonable hours, or using obscene/insulting language
  • Threats of harm, arrest, or public exposure; threatening to post photos, contact lists, or fabricated stories
  • Misrepresentation (posing as a government officer, lawyer, or police)
  • Doxxing and stalking; non-consensual sharing of your images or data

Key legal hooks likely implicated

  • Revised Penal Code (RPC)

    • Grave threats (Art. 282) and light threats (Art. 283)
    • Grave coercion (Art. 286) — forcing you to do something against your will without legal authority
    • Unjust vexation (Art. 287) — annoying/irritating acts that cause disturbance without justification
    • Libel/Slander (Arts. 353–355) — false, malicious imputations that injure reputation

  • Cybercrime Prevention Act (RA 10175) — above offenses when committed through ICT (e.g., cyber libel, cyber threats, unlawful processing/access)

  • Data Privacy Act (RA 10173) — unlawful/unauthorized processing, over-collection/over-retention, and disclosure of personal data (e.g., scraping your contacts; “debt shaming” blasts)

  • Safe Spaces Act (RA 11313) — gender-based online sexual harassment (lewd, misogynistic, transphobic abuse; unwanted sexual threats)

  • Anti-Photo and Video Voyeurism Act (RA 9995) — malicious sharing/threatened sharing of intimate images

  • Financial Products and Services Consumer Protection Act (RA 11765) — abusive collection by supervised financial service providers

  • SEC Memorandum rules on unfair debt-collection practices (applies to lending/financing companies under SEC jurisdiction) — prohibits threats, contact-harassment, debt shaming, and misrepresentation

  • Anti-Wiretapping Act (RA 4200) — recording a private call without consent can be illegal. Safer practice: keep call logs and notes; rely on messages you can screenshot.

Important: Non-payment of debt is a civil matter. Collectors cannot lawfully threaten arrest, jail, or criminal cases solely for non-payment of a private loan. Fraud is different; but mere inability to pay is not a crime.

2) First steps: safety and containment

  1. If there’s an imminent threat to life or property, call 911 and go to the nearest police station.

  2. Tell your contacts (family, HR, close friends) that you are being harassed by collectors so they can ignore or document any messages they receive.

  3. Secure your accounts and devices

    • Change passwords and enable 2-factor authentication.
    • Review app permissions; uninstall suspicious lending/“enhancer” apps that request contacts, SMS, storage, or call logs access.
    • On iOS/Android, block numbers and report SMS spam via 7726 (SPAM).

  4. Stop engaging by phone. Ask that all communications be in writing (SMS/email/app chat). This reduces real-time harassment and preserves evidence.

3) Preserve evidence the right way

Do

  • Screenshot entire conversations (capture sender ID/number, date/time, and message thread).
  • Export chat histories when possible; save PDFs of emails.
  • Photograph caller ID screens showing timestamps.
  • Keep proof of your loan: app pages/agreements, payment receipts, ledger, and any in-app notices.
  • Ask third-party recipients (your contacts/HR) to forward harassing messages and provide brief statements.

Don’t

  • Secretly record voice calls (risk under RA 4200).
  • Alter screenshots. If you redact, keep an unredacted original for authorities.

Create an Evidence Index (simple table)

  • Item # | Type (SMS/Chat/Call Log/Email) | From | To | Date/Time | Summary | Filename/Link

4) Where to report — and what each office actually does

A. Securities and Exchange Commission (SEC)

Who they cover: Lending companies and financing companies (including many online lending apps) not supervised by the BSP. What they can do: Investigate unfair debt-collection practices; suspend/revoke certificates; order takedowns; penalize companies. What to file:

  • Complaint letter + ID
  • App name, company name, addresses, corporate registration details (if known)
  • Screenshots/recordings of harassment, debt shaming, and misrepresentation
  • Copy of loan agreement/terms and your payment ledger
  • List of numbers/accounts used by collectors

B. Bangko Sentral ng Pilipinas (BSP) / Financial Consumer Protection

Who they cover: BSP-supervised financial institutions (banks, e-money issuers, certain lenders). What they can do: Enforce RA 11765 and BSP regulations on market conduct and collections; require corrective action and restitution. What to file:

  • Complaint form or letter, proof you tried to resolve with the provider, and all evidence of harassment.

C. National Privacy Commission (NPC)

Who they cover: Any personal information controller/processor handling your data (lenders, collectors, third-party agencies). Typical violations: Unauthorized processing; excessive data collection; disclosure to your contacts; failure to secure your data; threats to expose personal data. What they can do: Order compliance/cease-and-desist; impose penalties; require data-erasure and breach notifications. What to file:

  • Complaint form/affidavit; IDs; proof of data collection/processing; screenshots of “debt shaming” and threatened disclosures; privacy policy copies if available.

D. Philippine National Police – Anti-Cybercrime Group (PNP-ACG) / NBI Cybercrime Division

Who they cover: Criminal acts using ICT (threats, coercion, libel, stalking, extortion, identity theft). What they can do: Investigate and file criminal complaints with prosecutors; apply for subpoenas/search warrants. What to file:

  • Sworn complaint/affidavit with annexes (your evidence index), IDs, and any witness statements.
  • If threats are specific (e.g., “we will harm you at [place/time]”), highlight them as grave threats.

E. National Telecommunications Commission (NTC) / Your Telco

What they do: Number/IMEI blocking upon due process; spam/SMS complaint intake (e.g., 7726); enforcement against sender IDs. What to file: Harassing numbers, messages, dates/times, screenshots.

Tip: If you’re unsure whether your provider is under SEC or BSP, file with both SEC/BSP and NPC. Criminal threats should be reported to PNP-ACG/NBI regardless.

5) Step-by-step reporting workflow (with timelines)

Day 0–1: Stabilize & Collect

  1. Secure devices; uninstall abusive apps; block numbers; alert contacts.
  2. Start the Evidence Index and gather screenshots, loan docs, and payment proofs.

Day 1–3: File Administrative Complaints 3. File with SEC (if a lending/financing company) or BSP (if BSP-supervised). Attach your evidence. 4. File a Data Privacy Complaint with NPC for any “debt shaming,” threats to disclose, scraping of contacts, or data misuse.

Day 1–7: File Criminal Reports (parallel if there are threats) 5. Execute a Sworn Complaint and submit to PNP-ACG or NBI Cybercrime. If physical threats are imminent, report at once. 6. Ask your telco/NTC for number blocking review and submit spam to 7726.

Week 2 onward: Follow-Through 7. Monitor reference numbers; respond to clarifications; attend mediation/hearings as scheduled. 8. If harassment continues, submit supplemental evidence and request cease-and-desist or restraining measures as applicable.

6) How to draft your filings (concise templates)

A. Universal Complaint Outline (SEC/BSP/NPC)

  • Complainant: Full name, address, contact, ID number
  • Respondent: Company name, app name, d/b/a, known numbers/accounts
  • Facts: Chronology (loan date, amounts, due dates, collection timeline); when harassment began; who received debt-shaming messages; any physical threats
  • Violations Alleged: (Choose applicable) Unfair debt-collection; unauthorized processing/disclosure; threats/coercion; libel; cyber harassment
  • Reliefs Sought: Stop harassment; erase unlawfully collected data; sanction respondent; administrative fines; require lawful, written communications only
  • Annexes: Evidence Index + labeled exhibits (A, B, C…)

B. Sworn Complaint-Affidavit (Criminal)

I, [Name], Filipino, of legal age… after being duly sworn, depose and state:

  1. I obtained a loan from [App/Company] on [date]…
  2. Beginning [date], its agents sent me the following threats/harassing messages (Annexes A-F)…
  3. They also messaged my [mother/employer/contacts], disclosing my personal data without consent (Annexes G-H)…
  4. These acts constitute violations of [specify offenses] under the RPC/RA 10175/RA 10173. PRAYER: That respondents be prosecuted and penalized according to law. [Signature over printed name] SUBSCRIBED AND SWORN…

C. Cease-and-Desist Demand (to the collector/provider)

  • Direct all communications to me in writing via [email].
  • Stop contacting my contacts/employer; stop threats and misrepresentation.
  • Delete unlawfully obtained personal data and confirm deletion in writing.
  • Further harassment will be recorded and reported to SEC/BSP/NPC/PNP-ACG/NBI.

7) Special scenarios & how to respond

  • They threaten arrest or “Warrant of Arrest.” Arrest for private debt non-payment is unlawful. Demand the case number and court if they insist; report the threat as grave coercion/misrepresentation.

  • They blast your contact list. This may be unauthorized processing/disclosure under the Data Privacy Act. File with NPC (attach your contacts’ statements) and with SEC/BSP for unfair collection.

  • They threaten to post intimate photos. This invokes RA 9995 and possibly RA 11313. Save the threats and report immediately to PNP-ACG/NBI.

  • They say they’re “from the court/police.” Impersonation supports criminal complaints. Ask for ID and office details; document and report.

  • You already repaid but harassment continues. Attach proof of payment; demand written correction of your ledger; file with regulator and NPC for wrongful processing.

  • The numbers keep changing / anonymous sender IDs. Keep filing supplemental reports. Use 7726 for each spam number; request your telco’s assistance and include sender IDs in your complaints.

8) Practical do’s and don’ts (Philippine context)

Do

  • Keep calm, move communications to asynchronous written channels.
  • Use clear filenames for exhibits (e.g., Annex A – 2025-11-01 Threat SMS.png).
  • Bring a valid ID for notarization or for executing a sworn statement at police/NBI.
  • If summoned, attend regulator hearings/mediations on time.

Don’t

  • Pay “facilitation fees” to hush collectors.
  • Sign any “confession of judgment” or blank documents.
  • Publicly post personal data of collectors (avoid counter-libel/privacy issues).

9) Possible outcomes

  • Administrative: Fines; suspension/revocation of the lender’s license/registration; cease-and-desist; mandated data deletion and corrective measures.
  • Criminal: Filing of Informations for threats/coercion/libel/cyber offenses/voeurism-related crimes.
  • Civil: Damages for privacy breaches, defamation, or other torts; injunctions against continued harassment.

10) Frequently asked questions

Q: Will reporting stop the harassment quickly? A: It often reduces it, especially after formal notices or regulator intervention. Persist with supplemental filings if it continues.

Q: Can I record calls to catch them? A: Avoid recording private calls without consent due to RA 4200. Rely on written communications and call logs instead.

Q: Is non-payment a crime? A: No. It’s generally a civil matter. False threats of arrest are abusive and reportable.

Q: Can they contact my employer? A: Debt shaming and disclosure of your personal data to third parties can violate the Data Privacy Act and unfair collection rules.

11) Quick checklists

Evidence Pack

  • Valid ID
  • Loan agreement/receipts/ledger
  • Screenshots of threats/debt shaming (with timestamps)
  • Contact statements (if they were messaged)
  • Evidence Index (table)
  • Draft complaint letters (SEC/BSP/NPC)
  • Sworn complaint (PNP-ACG/NBI)

Agencies to File With (pick all that apply)

  • SEC (lending/financing companies)
  • BSP (banks/e-money/supervised lenders)
  • NPC (data privacy breaches/debt shaming)
  • PNP-ACG / NBI Cybercrime (criminal threats, cyber offenses)
  • NTC / Telco (spam/number blocking)

12) Final notes

  • Keep everything professional and factual in your filings.
  • If you receive a subpoena or court notice, consult a lawyer promptly and do not ignore deadlines.
  • Free or low-cost assistance may be available via PAO (if you qualify), law school legal aid clinics, or local bar associations.

Appendix A — Sample “Debt-Shaming Event” Log (copy into any spreadsheet)

# Date/Time Platform Sender ID/Number Target (me/contact) Summary of content Annex
1 2025-11-10 14:21 SMS +63 9XX XXX XXXX Me Threatened to email HR and post photos A-1
2 2025-11-10 14:35 Messenger “Field Officer Ron” Mother Called me a “criminal,” demanded payment A-2

Appendix B — Minimal Cease-and-Desist (copy/paste)

Subject: Unlawful Debt-Collection and Data Disclosure — Demand to Cease I demand that you cease harassment, misrepresentation, and disclosure of my personal data to third parties. Direct all communications in writing to [email]. Delete any unlawfully obtained data (including my contacts) and confirm within five (5) days. Continued violations will be reported to SEC/BSP/NPC/PNP-ACG/NBI for administrative/criminal action. [Name, Address, Date]

This article is for general information in the Philippine context and is not a substitute for tailored legal advice. If you’re in Metro Manila and the threats are ongoing today (Wednesday, November 12, 2025), prioritize personal safety and make a police report immediately.

Disclaimer: This content is not legal advice and may involve AI assistance. Information may be inaccurate.

Privacy Policy

Terms of Use

Lawyer Login

 
 
Privacy Policy         Terms of Use         Lawyer Login