Right to Delete Personal Data Held by Lending Apps Under Philippine Data Privacy Law

I. Introduction

Online lending apps collect large amounts of personal data. A borrower may be asked to provide a name, address, mobile number, email address, selfie, government ID, employment information, bank or e-wallet details, emergency contact information, phone contact permissions, device data, location data, photos, call logs, messages, and other information. In abusive cases, lending apps may use this data to harass borrowers, contact relatives, shame borrowers on social media, threaten criminal cases, or disclose loan details to third parties.

Because of these risks, many borrowers ask: Can I require a lending app to delete my personal data?

Under Philippine data privacy law, a borrower has rights over personal information held by a lending app. One of the most important is the right to demand blocking, removal, or destruction of personal data when legal grounds exist. This is commonly referred to as the right to erasure, right to deletion, or right to be forgotten, although the Philippine legal framework uses specific language under the Data Privacy Act and National Privacy Commission rules.

The basic rule is this: a data subject may request deletion, blocking, removal, or destruction of personal data held by a lending app when the data is unlawfully obtained, no longer necessary, used beyond the declared purpose, processed without valid basis, inaccurate, excessive, prejudicial, or processed in violation of the Data Privacy Act; but the lending app may retain data that it is legally required or legitimately allowed to keep, such as records needed for an existing loan, legal claim, regulatory compliance, accounting, tax, fraud prevention, or defense of rights.

Thus, the right to delete personal data is powerful, but not absolute.

II. Philippine Data Privacy Framework

The main law governing personal data processing in the Philippines is the Data Privacy Act of 2012. It is implemented and enforced by the National Privacy Commission, or NPC.

The law applies to the processing of personal information by personal information controllers and personal information processors, including many private companies such as lending companies, financing companies, online lending platforms, and collection service providers.

Online lending apps are generally covered because they collect, store, analyze, use, disclose, and process personal data of borrowers, co-borrowers, references, guarantors, and sometimes even non-borrower phone contacts.

III. Lending Apps as Personal Information Controllers

A lending app, lending company, financing company, or online lending platform is usually a personal information controller because it determines why and how personal data is collected and used.

It may decide:

  • what personal data to collect;
  • why the data is collected;
  • how loan applications are evaluated;
  • what data is used for credit scoring;
  • how long data is retained;
  • which collection agencies may receive the data;
  • whether data is shared with affiliates;
  • what app permissions are required;
  • how borrower data is used for collection;
  • whether data is stored locally or in the cloud;
  • whether data is transferred abroad;
  • how data is deleted or archived.

If a third-party collector, app developer, cloud provider, call center, analytics provider, or verification vendor processes data for the lending app, that third party may be a personal information processor. The lending app remains responsible for ensuring lawful processing.

IV. What Personal Data Do Lending Apps Commonly Hold?

A lending app may hold many kinds of data, including:

  • full name;
  • nickname;
  • address;
  • date of birth;
  • gender;
  • civil status;
  • phone number;
  • email address;
  • government ID number;
  • photos of IDs;
  • selfies or facial verification images;
  • employment details;
  • employer name and address;
  • income information;
  • bank account details;
  • e-wallet details;
  • loan amount;
  • loan history;
  • repayment history;
  • credit score or risk score;
  • device ID;
  • IP address;
  • location data;
  • phone contacts;
  • contact names and numbers;
  • call logs, if accessed;
  • SMS or messaging data, if accessed;
  • social media information;
  • app usage logs;
  • collection notes;
  • recorded calls;
  • chat messages;
  • documents uploaded by the borrower;
  • references and guarantor information.

Some of this information is ordinary personal information. Some may be sensitive personal information, especially government-issued ID numbers, financial information, biometric-like verification data, health-related explanations, or other sensitive details.

V. What Is the Right to Deletion or Erasure?

In Philippine data privacy law, the right to deletion is connected to the data subject’s right to suspend, withdraw, or order the blocking, removal, or destruction of personal information from a filing system under certain grounds.

A borrower may invoke this right when the data is:

  • incomplete;
  • outdated;
  • false;
  • unlawfully obtained;
  • used for unauthorized purposes;
  • no longer necessary for the purposes for which it was collected;
  • processed in violation of the borrower’s rights;
  • prejudicial to the borrower;
  • used for direct marketing without proper basis;
  • retained beyond the lawful retention period;
  • disclosed unlawfully;
  • collected excessively;
  • processed without valid consent or other lawful basis.

In plain terms, the borrower may say: “You no longer have a lawful reason to keep or use this data. Delete it, block it, or stop processing it.”

VI. The Right Is Not Absolute

The right to deletion does not mean a borrower can always erase all records immediately, especially if the borrower still owes money or if the lender has legal duties to keep records.

A lending app may be allowed or required to retain certain data when necessary for:

  • processing an active loan application;
  • administering an existing loan;
  • collecting a lawful debt;
  • complying with lending, financing, tax, accounting, anti-fraud, anti-money laundering, corporate, or regulatory requirements;
  • responding to complaints;
  • defending legal claims;
  • filing a collection case;
  • proving consent, contract, or transaction history;
  • preventing fraud or identity theft;
  • complying with orders of courts, regulators, or law enforcement;
  • reporting to credit information systems where lawful;
  • maintaining records required by law.

The borrower’s right is strongest when the data is excessive, unlawfully obtained, unnecessary, retained too long, or used for harassment.

VII. Deletion Versus Blocking Versus Restriction of Processing

A borrower may request different remedies.

A. Deletion

Deletion means removing personal data from active systems or destroying records so they are no longer accessible or usable.

B. Blocking

Blocking means restricting access to data so it cannot be further processed except for limited lawful purposes.

C. Removal

Removal may mean deleting data from a filing system, database, public post, collection list, contact list, or third-party disclosure channel.

D. Destruction

Destruction means permanently destroying personal data, whether physical or digital, in a way that prevents reconstruction or unauthorized access.

E. Restriction of Processing

Restriction means the lending app may keep the data but must stop using it for certain purposes, such as marketing, harassment, profiling, or disclosure to third parties.

Sometimes complete deletion is not immediately possible, but blocking or restriction may be required.

VIII. Legal Bases for Processing Personal Data

A lending app must have a lawful basis to process personal data. Consent is one possible basis, but it is not the only one.

Possible legal bases include:

  • consent of the data subject;
  • necessity for contract or pre-contractual steps;
  • compliance with legal obligation;
  • protection of lawful rights and interests;
  • legitimate interests of the controller or third party, subject to privacy rights;
  • legal claims;
  • regulatory compliance;
  • protection of vital interests in rare cases.

A lending app cannot simply say, “You clicked agree, so we can do anything.” Consent must be specific, informed, freely given, and limited to declared purposes. Processing must also follow the principles of transparency, legitimate purpose, and proportionality.

IX. The Principle of Transparency

Transparency means the lending app must clearly tell the borrower:

  • what data it collects;
  • why it collects the data;
  • how it uses the data;
  • who receives the data;
  • whether data is shared with collectors, affiliates, credit bureaus, or third parties;
  • how long data is retained;
  • what rights the borrower has;
  • how to contact the data protection officer;
  • whether data is transferred abroad;
  • what app permissions are required;
  • whether contacts, location, camera, files, or device information are accessed.

A vague privacy policy or hidden data practice may violate transparency.

If the lending app did not clearly disclose its data practices, the borrower may have stronger grounds to demand deletion or restriction.

X. The Principle of Legitimate Purpose

Personal data must be processed only for lawful and declared purposes.

A lending app may collect data to:

  • verify identity;
  • evaluate loan application;
  • prevent fraud;
  • manage the loan;
  • collect repayment lawfully;
  • comply with regulations;
  • maintain accounting records;
  • respond to complaints;
  • enforce contractual rights.

But it may not process data for illegal or abusive purposes, such as:

  • shaming borrowers;
  • threatening relatives;
  • posting borrower photos online;
  • contacting phone contacts who are not guarantors;
  • spreading false accusations;
  • harassing employers;
  • using data for political, sexual, defamatory, or coercive purposes;
  • selling borrower data without lawful basis;
  • accessing unrelated phone data;
  • creating fake legal notices;
  • using personal data after the purpose has ended.

Processing for harassment is not a legitimate purpose.

XI. The Principle of Proportionality

Proportionality means the lending app should collect only data that is necessary, relevant, and not excessive for the declared purpose.

A lending app may need identity, contact, income, and repayment data. But requiring access to all phone contacts, photos, messages, or call logs may be excessive if not clearly necessary and lawfully justified.

Examples of potentially excessive collection include:

  • harvesting full phone contact lists;
  • accessing SMS messages unrelated to the loan;
  • accessing photo galleries;
  • requiring social media passwords;
  • collecting contacts of people who never consented;
  • retaining borrower selfies forever;
  • collecting location continuously after loan release;
  • storing ID photos after no longer needed;
  • collecting employer data beyond legitimate verification;
  • accessing device files unrelated to loan processing.

Excessive collection supports a deletion or restriction request.

XII. Borrower’s Right to Withdraw Consent

If processing is based on consent, the borrower may withdraw consent.

However, withdrawal of consent does not automatically erase all legal consequences. If the borrower has an active loan, the lender may still process data necessary to administer or collect the loan under contract or legitimate interest.

Withdrawal may be effective against:

  • marketing messages;
  • sharing with affiliates for promotions;
  • accessing contacts;
  • non-essential profiling;
  • optional app permissions;
  • use of data beyond loan servicing;
  • collection harassment;
  • disclosure to unrelated third parties.

The borrower may say: “I withdraw consent for non-essential processing, marketing, contact harvesting, disclosure to my phone contacts, and any processing not necessary for lawful loan administration.”

XIII. Active Loan: Can the Borrower Demand Deletion?

If the borrower still has an active or unpaid loan, the lending app may refuse complete deletion of data necessary for the loan.

The app may keep data needed to:

  • identify the borrower;
  • maintain loan records;
  • compute balance;
  • accept payment;
  • issue receipts;
  • pursue lawful collection;
  • comply with accounting and regulatory duties;
  • defend against disputes;
  • prevent fraud.

However, even with an active loan, the borrower may demand deletion or restriction of data that is:

  • excessive;
  • unrelated to the loan;
  • unlawfully obtained;
  • used for harassment;
  • disclosed to unauthorized persons;
  • collected from phone contacts without valid basis;
  • used for marketing without consent;
  • retained in unnecessary app permissions;
  • inaccurate or defamatory.

An unpaid debt does not give the lending app unlimited control over personal data.

XIV. Fully Paid Loan: Can the Borrower Demand Deletion?

If the loan is fully paid, the borrower has a stronger basis to request deletion or restriction because the main contractual purpose has ended.

The lending app may still retain certain records for legal, tax, accounting, regulatory, fraud-prevention, or dispute purposes. But it should not keep or use data longer than necessary.

After full payment, the borrower may demand:

  • deletion of unnecessary app data;
  • removal from collection lists;
  • cessation of collection calls;
  • deletion of uploaded contacts;
  • deletion of marketing profile, unless consent remains;
  • restriction of data to legally required archives only;
  • correction of credit status;
  • issuance of clearance or certificate of full payment;
  • deletion of public posts or third-party disclosures;
  • notification to collectors to stop processing.

The app should not continue to threaten, call contacts, or report the borrower as delinquent after full payment.

XV. Rejected Loan Application: Can the Applicant Demand Deletion?

If the loan application was rejected or abandoned, the applicant may request deletion of personal data, especially if no loan contract was created.

The lending app may retain limited data for fraud prevention, audit, regulatory, or complaint purposes. But it should not indefinitely keep full ID photos, selfies, contacts, location data, or device data without lawful reason.

The applicant may request:

  • deletion of application data no longer necessary;
  • deletion of uploaded IDs and selfies unless legally retained;
  • deletion of phone contacts;
  • deletion from marketing databases;
  • withdrawal of consent;
  • cessation of profiling.

A rejected application does not justify unlimited retention.

XVI. Uninstalled App Does Not Mean Data Is Deleted

Many borrowers think deleting or uninstalling the app deletes their data. It usually does not.

Uninstalling the app only removes the app from the phone. The lending company may still have data stored in:

  • cloud servers;
  • databases;
  • backup systems;
  • collection agency files;
  • call center records;
  • third-party analytics systems;
  • credit reporting systems;
  • customer service logs;
  • emails;
  • archived documents.

To request deletion, the borrower must send a formal request to the lending app, its data protection officer, customer support, or registered company contact.

XVII. Deleting the Account Versus Deleting Personal Data

Some apps offer “delete account.” This may not mean all personal data is destroyed.

Account deletion may:

  • disable login;
  • remove the app profile from user view;
  • stop future app access;
  • hide the account in the interface.

But the company may still retain backend data for legal or business reasons.

A borrower should specifically ask for:

  • deletion of personal data no longer necessary;
  • blocking of retained legal records from further non-essential processing;
  • deletion of harvested contacts;
  • withdrawal of consent;
  • cessation of disclosure to third parties;
  • confirmation of what data is retained and why.

XVIII. Contacts Harvested by Lending Apps

One of the most serious privacy issues involving lending apps is the harvesting of phone contacts.

Borrowers may be pressured to grant access to contacts. The app may then store names and numbers of people who never applied for a loan and never consented.

Problems include:

  • contacting relatives to shame borrower;
  • texting friends about debt;
  • calling employers;
  • threatening emergency contacts;
  • using contacts for collection pressure;
  • disclosing loan information to non-guarantors;
  • saving contact lists even after app deletion;
  • selling or sharing contact data.

The borrower may request deletion of harvested contact data. The non-borrower contacts may also have rights as data subjects if their personal data was collected.

XIX. Rights of Non-Borrower Contacts

A person whose number was uploaded by a borrower’s lending app may ask: Can I demand deletion if I never borrowed money?

Yes, a non-borrower contact may have data privacy rights if the lending app holds their personal data.

They may request:

  • confirmation whether their data is held;
  • source of their data;
  • purpose of processing;
  • deletion of their name and number;
  • blocking of further calls or messages;
  • removal from collection lists;
  • complaint action for unauthorized processing.

A lending app cannot freely harass or process non-borrower contacts merely because a borrower’s phone contained their number.

XX. Emergency Contacts, References, Guarantors, and Co-Makers

The legal position differs depending on the person’s role.

A. Emergency Contact

An emergency contact is usually only someone to contact in genuine emergency or verification. Being listed as emergency contact does not automatically make the person liable for the debt.

B. Character Reference

A reference may be contacted for verification if properly disclosed and lawful, but loan details should not be unnecessarily disclosed.

C. Guarantor or Co-Maker

A guarantor or co-maker may have contractual liability if they signed or validly agreed. The lender may retain data needed to enforce that obligation.

D. Random Phone Contact

A random phone contact has no loan relationship and has stronger grounds to demand deletion and cessation of contact.

Lending apps often blur these categories. Data privacy law requires proper purpose limitation.

XXI. Data Used for Harassment

A borrower may demand deletion, blocking, or restriction when personal data is used for harassment.

Harassing uses may include:

  • contacting phone contacts to shame the borrower;
  • posting borrower’s photo online;
  • calling borrower a criminal or scammer;
  • threatening fake lawsuits or warrants;
  • disclosing loan balance to employer;
  • sending messages to relatives;
  • using abusive language;
  • creating group chats to shame borrower;
  • sending edited photos;
  • threatening bodily harm;
  • using borrower’s ID photo as public warning;
  • repeatedly calling beyond reasonable collection.

Such processing may violate data privacy, lending regulations, consumer protection principles, and possibly criminal or civil laws.

XXII. Public Shaming and Unauthorized Disclosure

A lending app should not disclose a borrower’s loan status to the public or unrelated third parties.

Unauthorized disclosure may occur through:

  • Facebook posts;
  • group chats;
  • messages to employer;
  • messages to relatives;
  • texts to phone contacts;
  • comments on social media;
  • publication of ID photos;
  • posting borrower’s address;
  • sharing screenshots of loan account;
  • labeling borrower as fraudster without judgment.

A borrower may demand immediate removal of public posts and deletion of disclosed data from improper channels.

XXIII. Right to Object to Processing

Apart from deletion, borrowers may object to certain processing.

They may object to:

  • direct marketing;
  • automated profiling not necessary for loan;
  • sharing with affiliates;
  • contacting non-guarantor contacts;
  • using data beyond loan purposes;
  • processing based on legitimate interest when privacy rights override it;
  • processing inaccurate data;
  • processing after full payment.

The lending app must evaluate the objection and stop processing if it lacks overriding lawful basis.

XXIV. Right to Access

Before requesting deletion, a borrower may request access.

The borrower may ask:

  • what personal data the app holds;
  • where the data came from;
  • why it is processed;
  • who received it;
  • how long it will be retained;
  • whether it was shared with collectors;
  • whether contacts were uploaded;
  • whether data was transferred abroad;
  • whether automated decision-making was used;
  • how to request correction or deletion.

Access helps the borrower identify what should be deleted.

XXV. Right to Correction

If the lending app holds inaccurate information, the borrower may request correction.

Examples:

  • wrong outstanding balance;
  • wrong payment status;
  • incorrect delinquency report;
  • outdated phone number;
  • wrong employer;
  • wrong address;
  • account marked unpaid after full payment;
  • incorrect credit reporting;
  • mistaken identity;
  • loan falsely attributed to borrower;
  • wrong contact person.

Correction may be more appropriate than deletion when the lender must keep accurate legal records.

XXVI. Right to Damages

A borrower or data subject may claim damages when harmed by inaccurate, incomplete, outdated, false, unlawfully obtained, or unauthorized use of personal data.

Possible harms include:

  • reputational damage;
  • emotional distress;
  • harassment;
  • job consequences;
  • family conflict;
  • identity theft;
  • financial loss;
  • denial of credit;
  • public humiliation;
  • security risk;
  • unlawful collection pressure.

Damages require proof. Screenshots, call logs, witness statements, receipts, medical records, employment records, and official complaints may be useful.

XXVII. Data Retention: How Long May Lending Apps Keep Data?

A lending app should retain personal data only for as long as necessary for the purpose for which it was collected or as required by law.

Retention may depend on:

  • status of loan;
  • regulatory recordkeeping rules;
  • tax and accounting requirements;
  • corporate records;
  • pending complaints;
  • fraud risk;
  • legal claims;
  • prescription periods;
  • dispute history;
  • court or regulator orders.

The app should have a retention policy. It should not keep all personal data forever by default.

XXVIII. What Data May Be Retained After Deletion Request?

Even after a deletion request, a lending app may retain limited data when justified.

Examples include:

  • loan contract;
  • payment records;
  • receipts;
  • account ledger;
  • collection history;
  • consent logs;
  • complaint records;
  • identity verification record, if legally required;
  • tax and accounting records;
  • regulatory compliance records;
  • fraud prevention records;
  • evidence for legal claims.

However, retained data should be limited, secured, and not used for unrelated purposes.

XXIX. What Data Should Usually Be Deleted or Restricted?

Depending on the facts, data that may be subject to deletion or restriction includes:

  • phone contacts not needed for the loan;
  • contact lists of non-borrowers;
  • unnecessary location data;
  • marketing profiles after consent withdrawal;
  • duplicate ID photos;
  • excessive selfies or biometric templates;
  • call logs harvested from phone;
  • SMS data not needed for loan;
  • social media data collected without basis;
  • public shaming posts;
  • data shared with unauthorized collectors;
  • data from rejected applications no longer necessary;
  • outdated loan offers;
  • inaccurate delinquency tags;
  • unnecessary device files.

The guiding question is whether continued retention is necessary and lawful.

XXX. Backups and Archived Data

A lending app may say deletion from backups is not immediate because backup systems follow retention cycles.

This may be acceptable only if:

  • the data is no longer used in active systems;
  • the backup is secure;
  • the data will be overwritten or deleted in due course;
  • the backup is accessed only for disaster recovery or legal purposes;
  • the borrower is informed;
  • the app does not restore deleted data for ordinary use.

Backups should not be used as an excuse to keep using data unlawfully.

XXXI. Third-Party Collection Agencies

Lending apps often share borrower data with collectors.

If the borrower requests deletion or restriction, the lending app should also address data held by processors, agents, or collectors.

The borrower may request that the lending app:

  • identify collection agencies that received data;
  • instruct collectors to stop unlawful processing;
  • require deletion of data no longer needed;
  • remove borrower from harassment lists;
  • confirm compliance;
  • ensure collectors do not contact unauthorized persons;
  • recall data from terminated collection agencies.

A controller remains responsible for processors acting on its behalf.

XXXII. Data Sharing With Affiliates

Some lending apps share data with related companies, marketing partners, credit scoring entities, or affiliates.

The borrower may object to or withdraw consent for sharing not necessary for the loan.

The app should disclose:

  • who received data;
  • purpose of sharing;
  • legal basis;
  • whether the affiliate is a controller or processor;
  • how deletion requests will be handled.

Undisclosed affiliate sharing may support a complaint.

XXXIII. Credit Reporting and Deletion

Lending apps may report loan data to credit information systems or credit bureaus where legally allowed.

A borrower may not always be able to delete accurate negative credit data simply because it is unfavorable. Credit reporting may be legally permitted if accurate, proportionate, and compliant with applicable rules.

However, the borrower may request correction or deletion if the report is:

  • inaccurate;
  • outdated;
  • based on identity theft;
  • based on a fully paid account incorrectly marked unpaid;
  • reported without lawful basis;
  • excessive;
  • retained beyond allowed period;
  • shared with unauthorized entities.

The borrower should distinguish between lawful credit reporting and unlawful shaming.

XXXIV. Identity Theft and Fraudulent Loans

If a lending app holds data because someone used the borrower’s identity fraudulently, the borrower should request blocking and correction immediately.

The borrower may demand:

  • investigation;
  • copy of application data;
  • source of uploaded documents;
  • device and account details, where lawfully available;
  • blocking of collection;
  • deletion of fraudulent data after investigation;
  • correction of credit records;
  • written clearance;
  • preservation of evidence for complaint;
  • report to authorities.

In identity theft cases, immediate deletion may not always be ideal because evidence must be preserved. The better request may be block processing, stop collection, preserve evidence, and correct records.

XXXV. Data Privacy and Debt Collection

A valid debt does not cancel privacy rights.

A lender may collect a debt lawfully, but it must not:

  • disclose debt to unauthorized third parties;
  • shame the borrower;
  • use threats;
  • access unrelated phone data;
  • misrepresent legal consequences;
  • contact random phone contacts;
  • post borrower information online;
  • process excessive data;
  • use personal data beyond collection purpose;
  • continue processing after payment without basis.

The legality of the debt and the legality of data processing are separate issues.

XXXVI. Can a Borrower Demand Deletion to Avoid Paying a Debt?

No. The right to deletion should not be used to erase a lawful debt or prevent a lender from enforcing legitimate claims.

If a borrower owes money, the lender may retain necessary records to prove and collect the debt through lawful means.

However, the borrower may still demand deletion or restriction of excessive, unlawful, or abusive data processing.

The proper request is not: “Delete everything so I do not owe you.”

The proper request is: “Retain only what the law allows and stop processing or disclosing my data unlawfully.”

XXXVII. Can a Lending App Refuse Deletion Because of an Unpaid Loan?

It may refuse complete deletion of necessary loan records while the loan is active or disputed.

But it cannot refuse all privacy requests merely because there is unpaid debt.

Even with unpaid debt, the app should:

  • stop contacting unauthorized third parties;
  • delete unnecessary harvested contacts;
  • stop public shaming;
  • stop marketing after withdrawal of consent;
  • correct inaccurate balances;
  • restrict data to lawful collection;
  • secure personal data;
  • disclose retention basis;
  • respond to the borrower’s request.

Debt collection must remain lawful and proportionate.

XXXVIII. Can a Lending App Refuse Deletion Because of “Legitimate Interest”?

A lending app may invoke legitimate interest for certain processing, such as fraud prevention or lawful debt collection.

But legitimate interest is not unlimited. It must be balanced against the rights and freedoms of the data subject.

Legitimate interest is weak when processing involves:

  • harassment;
  • public shaming;
  • excessive data collection;
  • contact harvesting;
  • undisclosed sharing;
  • processing sensitive data without safeguards;
  • contacting non-borrowers;
  • intimidation;
  • using data beyond collection.

A lending app cannot simply say “legitimate interest” as a magic phrase.

XXXIX. App Permissions and Deletion

Borrowers should review app permissions. Lending apps may request access to:

  • contacts;
  • camera;
  • storage;
  • location;
  • microphone;
  • SMS;
  • phone state;
  • call logs;
  • notifications;
  • installed apps;
  • device identifiers.

Some permissions may be necessary for identity verification or fraud prevention. Others may be excessive.

A borrower may revoke app permissions on the phone, but this does not delete data already collected. A separate deletion request is still needed.

XL. Government IDs and Selfies

Lending apps often collect government IDs and selfies for identity verification.

These are sensitive and risky because they can be used for identity theft.

A borrower may request deletion or restricted retention after the verification purpose is completed, subject to legal retention rules.

The lending app should protect:

  • ID numbers;
  • ID images;
  • facial images;
  • selfie verification data;
  • signatures;
  • addresses;
  • birthdates.

If the app leaks IDs or uses them for shaming, the violation is serious.

XLI. Biometric-Like Data and Facial Verification

If the app uses facial recognition or biometric verification, additional privacy concerns arise.

Important questions include:

  • Was the borrower informed?
  • Was consent obtained where required?
  • Is biometric data stored or only verified temporarily?
  • Who provides the facial recognition technology?
  • Is the data transferred abroad?
  • How long is it retained?
  • Can it be deleted?
  • Is it encrypted?
  • Is it used for any other purpose?

Borrowers may request deletion or restriction of biometric-like templates unless retention is legally justified.

XLII. Location Data

Location data can be sensitive because it reveals movement, home, workplace, and habits.

A lending app should not continuously track location unless there is a clear, lawful, proportionate purpose.

A borrower may demand deletion or cessation of location processing if:

  • location access is unnecessary;
  • tracking continues after loan release;
  • tracking continues after payment;
  • location is used for harassment;
  • location is shared with collectors;
  • privacy policy did not disclose it.

XLIII. Device Data and Behavioral Profiling

Some apps collect device data for fraud detection and credit scoring.

This may include:

  • device model;
  • operating system;
  • IP address;
  • advertising ID;
  • installed apps;
  • usage behavior;
  • typing patterns;
  • login frequency;
  • geolocation;
  • metadata.

Such processing must be disclosed and proportionate. Borrowers may object to excessive profiling or request deletion when no longer necessary.

XLIV. Automated Credit Scoring

Lending apps may use algorithms to approve loans or set credit limits.

Data privacy issues include:

  • transparency of automated processing;
  • accuracy of data used;
  • bias or discrimination;
  • excessive data collection;
  • lack of human review;
  • use of contact lists or social data;
  • unfair denial of loan;
  • inability to correct wrong data.

Borrowers may request information about automated processing and correction of inaccurate data.

XLV. Direct Marketing

After using a lending app, borrowers often receive repeated loan offers.

Borrowers may object to direct marketing and withdraw consent.

The app should stop:

  • promotional texts;
  • push notifications;
  • email offers;
  • calls for new loans;
  • sharing with marketing partners;
  • profiling for new loan offers.

Marketing is different from necessary loan servicing. A borrower may stop marketing even if some loan records are retained.

XLVI. Data Breach by Lending App

A data breach occurs when personal data is accidentally or unlawfully accessed, disclosed, altered, lost, or destroyed.

Examples:

  • borrower database leaked;
  • IDs exposed online;
  • collectors access data without authority;
  • employee downloads borrower list;
  • app API exposes account data;
  • contacts leaked;
  • ransomware attack;
  • misdirected email;
  • public posting of borrower information;
  • unauthorized third-party access.

If a breach occurs, the lending app may have notification and mitigation duties. Affected borrowers may request information, protection, correction, and deletion of data no longer necessary.

XLVII. Deletion After Data Breach

After a breach, borrowers may request deletion or blocking of data at risk.

The lending app should assess:

  • what data was compromised;
  • whether data must be retained;
  • whether continued retention increases risk;
  • whether data can be anonymized;
  • whether affected data should be replaced;
  • whether identity theft protection steps are needed.

Deletion may be part of remediation, but evidence of breach may need preservation.

XLVIII. Anonymization and Pseudonymization

Instead of deletion, a lending app may anonymize data for analytics or compliance reports.

A. Anonymization

Data is altered so the person can no longer be identified. Properly anonymized data is generally outside personal data rules.

B. Pseudonymization

Identifiers are replaced with codes, but re-identification remains possible. This is still personal data if the person can be identified.

Borrowers may accept anonymization if the app no longer needs identifiable data.

XLIX. Deletion of Public Posts

If the lending app or collector posted borrower data publicly, the borrower should demand immediate takedown.

The request should identify:

  • URL or platform;
  • screenshot;
  • date and time;
  • account name;
  • content posted;
  • personal data disclosed;
  • harm caused;
  • demand for deletion and confirmation.

The borrower should preserve evidence before the post is deleted.

L. Deletion of Group Chat Disclosures

Collectors may create group chats with relatives, friends, or co-workers.

The borrower may demand:

  • deletion of messages;
  • removal of borrower data from group chats;
  • cessation of further disclosure;
  • identification of responsible collector;
  • disciplinary action;
  • confirmation that third parties were instructed to delete data.

In practice, complete deletion from every recipient’s phone may be difficult. But the lender must stop further unlawful disclosure and take reasonable remedial steps.

LI. Deletion From Collector Call Lists

Borrowers and non-borrower contacts may request removal from collection call lists when contact is unauthorized or excessive.

The request should state:

  • the number being called;
  • relationship to borrower, if any;
  • that the person is not a co-maker or guarantor;
  • demand to stop calls and delete the number;
  • request for source of data;
  • request for confirmation.

Non-borrowers should not be pressured to pay debts they do not owe.

LII. Data of Minors

If a lending app collects data of minors, heightened concerns arise.

This may happen when:

  • a borrower uploads contacts of children;
  • family photos are accessed;
  • minors are listed as references;
  • collectors message minor relatives;
  • app accesses school-related data;
  • a minor uses someone else’s ID.

Processing minors’ data requires special care. Deletion requests involving minors should be treated urgently.

LIII. Sensitive Personal Information

Sensitive personal information requires stronger protection.

Lending apps may process sensitive data such as:

  • government ID numbers;
  • financial account details;
  • biometric-like verification data;
  • health information given as payment excuse;
  • marital status or family details;
  • precise location;
  • data about legal cases;
  • possibly data about religion or affiliations if collected.

Processing sensitive personal information generally requires stronger legal basis and safeguards. Unlawful use strengthens the demand for deletion and damages.

LIV. Cross-Border Data Transfers

Some lending apps store or process data abroad through cloud servers, foreign affiliates, app developers, or analytics providers.

Borrowers may ask whether data was transferred outside the Philippines.

Cross-border transfer is not automatically illegal, but the lending app must ensure adequate safeguards and lawful processing.

If data was transferred to unauthorized foreign processors, the borrower may demand deletion, recall, or restriction.

LV. Lending App Closure or Deregistration

If a lending app shuts down, loses authority, or stops operating, it must still handle personal data properly.

It should not simply abandon databases.

Issues include:

  • who controls remaining data;
  • whether data is sold to another company;
  • whether borrowers are notified;
  • whether collectors retain data;
  • whether records are archived or deleted;
  • whether unpaid loans are assigned;
  • whether data is secured.

Borrowers may request deletion or confirmation from the company, assignee, or regulator depending on the situation.

LVI. Sale or Assignment of Loan Accounts

If a lending app sells or assigns loan accounts to another company, borrower data may be transferred.

The borrower should be informed where required and may ask:

  • who now owns or services the loan;
  • what data was transferred;
  • legal basis for transfer;
  • whether the assignee is authorized;
  • how to exercise deletion rights;
  • whether non-essential data was transferred;
  • whether collectors received data.

Assignment of debt does not authorize transfer of excessive or unrelated personal data.

LVII. Deletion and Pending Complaints

If the borrower has filed a complaint with the NPC, SEC, police, court, or another body, immediate deletion of all data may conflict with evidence preservation.

In such cases, the borrower may request:

  • preservation of evidence;
  • blocking of unlawful processing;
  • restriction from harassment;
  • deletion of excessive data not needed as evidence;
  • no further disclosure;
  • secure retention pending investigation.

A good request distinguishes between preserve evidence and stop unlawful processing.

LVIII. Deletion and Court Cases

If there is a pending collection case, criminal complaint, data privacy complaint, or civil case, the lending app may retain data relevant to the case.

However, it should not use the case as an excuse to process unrelated data.

For litigation, retention may cover:

  • loan agreement;
  • payment history;
  • communications;
  • consent records;
  • identity verification;
  • collection records;
  • complaint evidence.

But unrelated contacts, marketing profiles, or excessive device data may still be subject to deletion or restriction.

LIX. Deletion and Regulatory Investigations

Regulators may require lending apps to preserve records during investigation.

If the borrower asks deletion while an investigation is ongoing, the app may preserve relevant records but should stop unlawful use.

The borrower may also request that the regulator order appropriate data protection measures.

LX. How to Request Deletion From a Lending App

A deletion request should be written and specific.

It should include:

  • borrower’s full name;
  • registered mobile number;
  • loan account number, if available;
  • email address;
  • specific data to delete;
  • reason for deletion;
  • whether loan is paid, rejected, or active;
  • request to stop unauthorized processing;
  • request to notify third-party processors;
  • request for written confirmation;
  • copy of ID, if reasonably required for verification;
  • evidence of harassment or unlawful disclosure, if any.

Avoid vague requests like “delete my data” without identifying the issue. Specific requests are harder to ignore.

LXI. Sample Deletion Request to Lending App

Subject: Request for Deletion, Blocking, and Restriction of Personal Data

Dear Data Protection Officer / Privacy Officer,

I am requesting the deletion, blocking, removal, or restriction of my personal data under Philippine data privacy law.

My details are:

Name: [Full Name] Registered Mobile Number: [Number] Email Address: [Email] Loan Account Number, if any: [Account Number]

I request that your company delete or block personal data that is no longer necessary, excessive, unlawfully obtained, or processed beyond the legitimate purpose of my loan/application, including but not limited to [identify data: phone contacts, uploaded contact list, location data, marketing profile, ID images no longer necessary, call logs, SMS data, public posts, collection lists, etc.].

I also withdraw consent for non-essential processing, marketing, sharing with affiliates, access to my phone contacts, and disclosure to third parties not necessary for lawful loan administration.

If you claim that certain data must be retained, please identify the specific data, legal basis for retention, retention period, and persons or entities with access to it.

Please also confirm that you have instructed your collectors, processors, affiliates, and agents to stop unauthorized processing and delete or block data that they are not legally allowed to retain.

Kindly provide written confirmation of action taken.

Respectfully,

[Name]

LXII. Sample Request by Non-Borrower Contact

Subject: Request to Delete My Personal Data and Stop Contacting Me

Dear Data Protection Officer / Privacy Officer,

I am not a borrower, co-maker, guarantor, or debtor of your company. However, I have received calls/messages from your company or your collectors regarding another person’s alleged loan.

My details are:

Name: [Full Name] Mobile Number Contacted: [Number]

I request that you disclose the source of my personal data, the purpose for processing it, and the legal basis for contacting me.

I also demand that you delete my personal data from your collection, contact, and messaging systems, and that you stop contacting me regarding a debt for which I am not legally responsible.

Please confirm in writing that my number has been removed and that your collectors and processors have been instructed to stop processing my personal data.

Respectfully,

[Name]

LXIII. Sample Takedown Request for Public Shaming Post

Subject: Urgent Demand for Takedown and Deletion of Unlawfully Disclosed Personal Data

Dear Data Protection Officer / Privacy Officer,

I demand the immediate takedown and deletion of the public post/message containing my personal data and loan information.

The post/message appears at: [URL/platform/account/group chat] Date and time discovered: [Date/Time] Personal data disclosed: [Name/photo/ID/address/loan amount/contact details/etc.]

This disclosure was unauthorized, unnecessary, excessive, and prejudicial. Please immediately remove the post, stop further disclosure, identify the collector or agent responsible, and confirm what remedial measures your company has taken.

Please also preserve records relevant to this incident for purposes of complaint and investigation.

Respectfully,

[Name]

LXIV. What the Lending App Should Do After Receiving the Request

A responsible lending app should:

  1. verify the requester’s identity;
  2. acknowledge the request;
  3. identify the data involved;
  4. determine whether data must be deleted, blocked, corrected, or retained;
  5. stop unlawful processing immediately;
  6. notify relevant processors and collectors;
  7. delete excessive or unnecessary data;
  8. restrict retained legal records;
  9. respond within a reasonable period;
  10. explain retained data and legal basis;
  11. document action taken;
  12. provide contact details for further concerns.

Ignoring a valid request may strengthen an NPC complaint.

LXV. When the Lending App May Ask for Identity Verification

The app may ask for reasonable identity verification before deleting data. This prevents fraud or unauthorized deletion by impostors.

However, verification should be proportionate.

The app should not demand excessive new data just to process deletion. For example, if the app already has the borrower’s account details, it should not unnecessarily require new sensitive documents unless needed.

LXVI. What If the Lending App Ignores the Request?

If the lending app ignores the deletion request, the borrower may:

  • send a follow-up;
  • escalate to the data protection officer;
  • file a complaint with the National Privacy Commission;
  • report abusive lending practices to the appropriate regulator;
  • preserve evidence of harassment;
  • request assistance from law enforcement for threats or identity misuse;
  • consult counsel for civil, criminal, or regulatory remedies.

The borrower should keep proof of sending the request.

LXVII. Filing a Complaint With the National Privacy Commission

A borrower may complain to the NPC for data privacy violations.

Possible grounds include:

  • unlawful collection of contacts;
  • unauthorized disclosure;
  • public shaming;
  • failure to honor deletion request;
  • excessive data collection;
  • processing without consent or lawful basis;
  • data breach;
  • failure to respond to rights request;
  • inaccurate data causing harm;
  • sharing data with unauthorized collectors;
  • failure to secure personal data.

The complaint should be supported by evidence.

LXVIII. Evidence to Preserve

Borrowers should preserve:

  • screenshots of app permissions;
  • privacy policy;
  • loan agreement;
  • screenshots of public posts;
  • collection messages;
  • call logs;
  • names and numbers of collectors;
  • messages sent to relatives or contacts;
  • proof of full payment;
  • receipts;
  • clearance;
  • deletion request email;
  • proof of delivery;
  • app screenshots;
  • list of contacted third parties;
  • witness statements;
  • social media URLs;
  • recordings where lawfully obtained;
  • complaint references.

Evidence should be organized by date.

LXIX. Complaint Against Lending App Collectors

If a third-party collector misused data, the borrower may complain against both:

  • the collector who performed the act; and
  • the lending company that controlled or authorized the collection.

A lending app cannot always escape liability by saying, “That was our collector, not us.” If the collector processed data on behalf of the lending app, the app may remain accountable.

LXX. Regulatory Issues Beyond Data Privacy

Data privacy is not the only legal issue. Lending apps may also face regulation under laws governing lending companies, financing companies, consumer protection, unfair debt collection, cybercrime, threats, defamation, and harassment.

A borrower may have multiple remedies if the app:

  • operates without proper authority;
  • imposes excessive charges;
  • uses abusive collection practices;
  • misrepresents legal consequences;
  • threatens imprisonment for debt;
  • posts defamatory content;
  • accesses phone contacts without valid consent;
  • violates app store policies;
  • fails to disclose loan terms.

Data deletion may be one part of a broader legal strategy.

LXXI. Cybercrime Issues

Some lending app conduct may involve cyber-related offenses, depending on facts.

Examples:

  • online libel;
  • identity theft;
  • unauthorized access;
  • misuse of computer data;
  • cyber harassment;
  • threats through electronic means;
  • publication of defamatory posts;
  • use of borrower’s photo in fake posts;
  • unauthorized account access.

A borrower should preserve digital evidence before it disappears.

LXXII. Defamation and Public Shaming

If a collector falsely calls a borrower a criminal, scammer, estafador, thief, or fraudster in public messages, defamation issues may arise.

Even if the debt exists, statements must not be false, malicious, or unnecessarily disclosed to third parties.

Data privacy and defamation claims may overlap.

LXXIII. Threats and Coercion

Collectors may threaten:

  • arrest;
  • imprisonment;
  • barangay blotter;
  • police visit;
  • fake court case;
  • disclosure to employer;
  • harm to family;
  • public posting;
  • home visit with intimidation.

Debt collection must not involve unlawful threats. Deletion and restriction requests may be accompanied by a demand to stop abusive collection.

LXXIV. Employer Contact

A lending app may contact an employer only if there is a lawful, proportionate, and disclosed basis, such as employment verification or lawful collection where appropriate. Even then, disclosure should be limited.

The app should not tell the employer unnecessary details of the debt, shame the employee, or pressure the employer to pay.

A borrower may demand deletion of employer contact details if no longer necessary or if used for harassment.

LXXV. Barangay Contact

Collectors sometimes threaten to report borrowers to the barangay. A debt may be subject to lawful demand or barangay conciliation in some cases, but collectors should not disclose personal data unnecessarily or use barangay threats as harassment.

If a legitimate legal process is initiated, only necessary information should be disclosed.

LXXVI. Police and Court Threats

A lending app cannot truthfully claim that a borrower will be jailed simply for unpaid debt. Nonpayment of debt is generally civil, not criminal, unless separate criminal elements exist.

False legal threats may be relevant to complaints for harassment, unfair collection, or deceptive practices.

Data processing used to deliver fake legal threats may be unlawful or unfair.

LXXVII. Deletion of Data From App Store or Platform Complaints

Borrowers may also report abusive apps to app stores or platforms. However, platform takedown does not automatically delete borrower data from the company’s servers.

A borrower should still send deletion requests and regulatory complaints where necessary.

LXXVIII. Data Protection Officer

Covered organizations should have a data protection officer or responsible privacy contact.

A deletion request should be sent to:

  • DPO email address in the privacy policy;
  • customer support;
  • company registered email;
  • app support email;
  • official business address;
  • regulator-listed address, if available.

If no DPO contact is available, that itself may indicate poor privacy compliance.

LXXIX. What to Include in the Deletion Request

A strong request should include:

  • identity of requester;
  • account or loan details;
  • specific data to delete;
  • legal basis or reason;
  • withdrawal of consent where applicable;
  • objection to processing;
  • demand to notify processors;
  • request for retention explanation;
  • deadline for response;
  • supporting evidence;
  • contact details for reply.

The tone should be firm and professional.

LXXX. What Not to Include in the Request

Avoid:

  • threats of violence;
  • insults;
  • admissions of unrelated liability;
  • false statements;
  • unnecessary sensitive information;
  • sending more IDs than needed;
  • giving passwords;
  • authorizing new data use;
  • agreeing to pay disputed amounts without review;
  • deleting evidence before complaint.

The request should protect rights without creating new risks.

LXXXI. Can the Borrower Demand Deletion by Phone?

A phone request may be made, but written request is better.

Written requests create proof of:

  • date of request;
  • exact data requested for deletion;
  • grounds invoked;
  • company response or non-response;
  • follow-up history.

Use email, support ticket, registered mail, courier, or other traceable method.

LXXXII. Can the Borrower Demand Deletion Through the App?

If the app provides an in-app deletion tool, the borrower may use it. But the borrower should take screenshots and follow up by email if the issue is serious.

In-app deletion may be insufficient if there is harassment, public disclosure, or third-party sharing.

LXXXIII. Can the Lending App Charge a Fee for Deletion?

A rights request should generally not be used as a revenue source. If a company imposes unreasonable fees to process data rights, that may be challenged.

The app may refuse abusive or repetitive requests in limited circumstances, but it should not use fees to block legitimate deletion requests.

LXXXIV. Can the Lending App Require Payment Before Deleting Data?

A lending app may retain necessary loan records if the debt remains unpaid, but it should not condition deletion of excessive or unlawfully processed data on payment.

For example:

  • It may retain the loan ledger while unpaid.
  • It should not keep harassing random contacts until payment.
  • It should not refuse to delete public shaming posts unless paid.
  • It should not continue marketing unless debt is paid.
  • It should not retain unrelated phone data as leverage.

Privacy rights are not ransom.

LXXXV. Can the Lending App Keep Data for Collection?

Yes, but only data necessary for lawful collection.

Necessary collection data may include:

  • borrower identity;
  • loan agreement;
  • amount due;
  • due dates;
  • payment history;
  • borrower contact details;
  • lawful guarantor or co-maker details;
  • collection communications;
  • legal notices.

Unnecessary data may include random contacts, photo gallery data, unrelated SMS, or social media contacts not part of the loan.

LXXXVI. Can the Lending App Contact References After Deletion Request?

If the reference validly consented and contact is necessary for verification or lawful collection, limited contact may be allowed. But the app should not disclose unnecessary debt details or harass.

If the reference is not a guarantor or co-maker, they should not be pressured to pay.

If the borrower withdraws consent for reference contact and no other lawful basis exists, the app should stop.

LXXXVII. Can the Lending App Contact a Co-Maker or Guarantor?

Yes, if the person is a valid co-maker, guarantor, or surety and their data was lawfully collected. The lender may retain and process data necessary to enforce obligations.

However, even co-makers and guarantors have privacy rights. They should not be harassed, shamed, or contacted excessively.

LXXXVIII. Can the Borrower Demand Deletion From a Credit Bureau?

The borrower may request correction or deletion from a credit bureau or credit information system if data is inaccurate, outdated, unlawfully reported, or not supported.

If the data is accurate and lawfully reportable, deletion may not be available merely because the borrower dislikes it.

The borrower should first identify whether the issue is:

  • inaccurate data;
  • unauthorized reporting;
  • outdated delinquency;
  • identity theft;
  • fully paid account still marked unpaid;
  • data retained beyond allowable period.

LXXXIX. Can a Borrower Demand Deletion From Google, Facebook, or App Stores?

If borrower data appears on a public platform, the borrower may request takedown from the platform. But the primary wrongdoer remains the poster or controller that uploaded the data.

The borrower may pursue:

  • platform takedown request;
  • complaint against lending app;
  • complaint against collector;
  • data privacy complaint;
  • defamation or cybercrime remedies where applicable.

XC. Deletion and Consent Hidden in Terms and Conditions

Some lending apps bury broad consent clauses in long terms and conditions.

A borrower may challenge consent if it was:

  • vague;
  • bundled;
  • forced beyond necessity;
  • not informed;
  • not specific;
  • not freely given;
  • misleading;
  • excessive;
  • impossible to refuse without losing unrelated rights;
  • used for purposes not clearly disclosed.

Consent to process data for loan evaluation is not necessarily consent to shame the borrower’s contacts.

XCI. Consent of Phone Contacts

A borrower generally cannot give full consent on behalf of every person in their phone contacts for the lending app to use those contacts for collection or harassment.

The app must have a lawful basis to process data of non-borrowers.

Mass harvesting of contacts is one of the strongest grounds for deletion and complaint.

XCII. Privacy Notice Defects

A privacy notice may be defective if it fails to state:

  • data collected;
  • purposes;
  • recipients;
  • retention period;
  • rights of data subjects;
  • DPO contact;
  • cross-border transfers;
  • automated processing;
  • collection agency sharing;
  • app permissions;
  • consequences of refusal;
  • legal basis.

A defective privacy notice weakens the lending app’s claim that processing was transparent and consented to.

XCIII. Security Safeguards

Lending apps must protect personal data with reasonable security measures.

Safeguards may include:

  • encryption;
  • access controls;
  • role-based permissions;
  • audit logs;
  • secure deletion;
  • collector training;
  • confidentiality agreements;
  • breach response plan;
  • vendor contracts;
  • data minimization;
  • secure storage of IDs;
  • regular security testing.

If a lending app cannot secure data, deletion or minimization becomes even more important.

XCIV. Collector Training and Accountability

Collectors should be trained not to misuse personal data.

They should know:

  • what information may be disclosed;
  • who may be contacted;
  • what scripts are prohibited;
  • how to verify identity;
  • how to handle deletion requests;
  • how to avoid threats and harassment;
  • how to protect borrower data;
  • how to document calls lawfully.

A lending app that fails to control collectors may be liable.

XCV. Record of Consent

A lending app should be able to prove consent when consent is the basis for processing.

Proof may include:

  • date and time of consent;
  • version of privacy policy accepted;
  • app screen shown to borrower;
  • permissions granted;
  • IP address or device log;
  • specific purposes accepted;
  • withdrawal mechanism.

If the app cannot prove consent, the borrower’s deletion request becomes stronger.

XCVI. Retention Policy

A proper retention policy should state:

  • types of data collected;
  • retention period per data type;
  • reason for retention;
  • deletion schedule;
  • secure disposal method;
  • archive access limits;
  • backup retention;
  • third-party processor deletion;
  • legal hold procedure;
  • data subject request procedure.

A lending app that has no clear retention policy may be retaining data unlawfully.

XCVII. Secure Deletion

Deletion should be secure. The app should not merely hide data from view while keeping it freely accessible.

Secure deletion may involve:

  • deleting active records;
  • overwriting data where appropriate;
  • encrypting and destroying keys;
  • removing from collection systems;
  • deleting exported spreadsheets;
  • recalling data from collectors;
  • deleting cloud copies;
  • deleting public posts;
  • scheduling backup deletion;
  • documenting completion.

XCVIII. Data Portability

Borrowers may also have rights related to obtaining a copy of their data in a structured or commonly used format, depending on circumstances.

This may help borrowers transfer records, prove payment, or challenge credit reports.

A borrower may request data portability before deletion to preserve proof.

XCIX. When Not to Request Immediate Deletion

Immediate deletion may not be strategic when the data is needed as evidence.

For example, if the app harassed the borrower, the borrower may want the app to preserve:

  • collector logs;
  • call recordings;
  • messages;
  • access logs;
  • data-sharing records;
  • consent logs;
  • account notes;
  • public post records.

In that case, request preservation for investigation plus blocking of further unlawful processing.

C. Practical Strategy for Borrowers

A borrower dealing with a lending app should:

  1. take screenshots of app permissions and privacy policy;
  2. save messages and call logs;
  3. pay through traceable channels if paying;
  4. request statement of account;
  5. request deletion of excessive data;
  6. withdraw consent for marketing and contact access;
  7. demand cessation of third-party disclosure;
  8. request confirmation of retained data;
  9. file complaint if ignored;
  10. avoid deleting evidence;
  11. revoke app permissions;
  12. uninstall only after preserving evidence and account records.

CI. Practical Strategy for Non-Borrower Contacts

A non-borrower contact receiving collection messages should:

  1. state that they are not the debtor, guarantor, or co-maker;
  2. demand deletion of their number;
  3. ask for the source of their data;
  4. block abusive numbers after preserving evidence;
  5. notify the borrower if appropriate;
  6. file a complaint if harassment continues;
  7. avoid paying a debt they do not owe;
  8. avoid giving more personal data to collectors.

CII. Practical Strategy for Lending Apps

A compliant lending app should:

  1. collect only necessary data;
  2. avoid harvesting contacts;
  3. provide clear privacy notices;
  4. obtain valid consent where needed;
  5. maintain lawful retention policy;
  6. honor deletion and objection requests;
  7. control collectors;
  8. prohibit public shaming;
  9. train staff on privacy;
  10. secure IDs and financial data;
  11. maintain audit logs;
  12. delete data after retention periods;
  13. respond to complaints promptly;
  14. avoid misleading legal threats;
  15. document lawful bases for processing.

CIII. Practical Checklist Before Filing a Deletion Request

Before filing, the borrower should check:

  1. Is the loan active, paid, rejected, or disputed?
  2. What data should be deleted?
  3. What data should be preserved as evidence?
  4. Was data shared with contacts?
  5. Was data posted publicly?
  6. Was there harassment?
  7. Was the app allowed to access contacts, SMS, location, or files?
  8. Was consent withdrawn?
  9. Is there proof of full payment?
  10. Is there a pending complaint or case?
  11. Who is the DPO?
  12. How can the request be sent with proof?

CIV. Practical Checklist for the Deletion Request

A deletion request should ask for:

  1. deletion of unnecessary personal data;
  2. deletion of harvested contacts;
  3. blocking of unlawful processing;
  4. cessation of marketing;
  5. cessation of unauthorized third-party disclosure;
  6. correction of inaccurate records;
  7. identification of retained data;
  8. legal basis for retention;
  9. retention period;
  10. list of third parties that received data;
  11. confirmation that processors were instructed;
  12. written response.

CV. Practical Checklist for an NPC Complaint

A complaint should include:

  1. complainant’s identity;
  2. lending app/company name;
  3. app name and screenshots;
  4. account details;
  5. privacy issue;
  6. deletion request sent;
  7. company response or non-response;
  8. evidence of unauthorized processing;
  9. evidence of harassment;
  10. screenshots of public posts;
  11. call logs;
  12. messages to contacts;
  13. proof of payment, if relevant;
  14. requested relief.

Relief may include deletion, blocking, correction, takedown, damages, penalties, or orders to stop unlawful processing.

CVI. Common Misconceptions

1. “If I uninstall the app, my data is deleted.”

Incorrect. Uninstalling only removes the app from the phone. The company may still retain server-side data.

2. “If I owe money, I have no privacy rights.”

Incorrect. A debt does not erase privacy rights. The lender may collect lawfully but cannot harass, shame, or process excessive data.

3. “I can demand deletion of all loan records even if I still owe money.”

Not always. The lender may retain necessary records for lawful collection and compliance.

4. “Once my loan is paid, the app must instantly delete everything.”

Not necessarily. Some records may be retained for legal, accounting, tax, regulatory, or dispute purposes, but unnecessary data should be deleted or restricted.

5. “The borrower can consent for all phone contacts.”

Not generally. Non-borrower contacts have their own privacy rights.

6. “A privacy policy allows the app to do anything.”

Incorrect. Processing must still be transparent, legitimate, and proportionate.

7. “Collectors can message relatives because the borrower gave their number.”

Not automatically. Disclosure must be lawful, necessary, and limited.

8. “Negative credit data must be deleted on request.”

Not if it is accurate, lawful, and still within proper retention. But inaccurate or unlawful data may be corrected or deleted.

9. “Deletion requests are useless.”

Incorrect. A written deletion request creates a record and may support an NPC complaint if ignored.

10. “Data privacy prevents lenders from collecting debts.”

Incorrect. Data privacy prevents unlawful, excessive, and abusive processing. Lawful collection may continue.

CVII. Frequently Asked Questions

1. Can I ask a lending app to delete my personal data?

Yes. You may request deletion, blocking, removal, or destruction when the data is unlawfully obtained, excessive, no longer necessary, inaccurate, outdated, unauthorized, or processed in violation of your rights.

2. Can the app refuse deletion if I still owe money?

It may retain data necessary for lawful loan administration and collection. But it should still delete or restrict excessive, unlawful, or unnecessary data.

3. Can I ask them to delete my phone contacts?

Yes, especially if the contacts are not co-makers, guarantors, or legally necessary for the loan. Contact harvesting and harassment are serious privacy concerns.

4. Can my relatives demand deletion of their numbers?

Yes, if the app holds or uses their personal data and they are not legally responsible for the loan.

5. Can I withdraw consent?

Yes, especially for non-essential processing such as marketing, contact access, affiliate sharing, or processing beyond loan purposes.

6. Does full payment give me the right to deletion?

It strengthens your request. The app may retain limited legal records, but it should stop collection, delete unnecessary data, and restrict further processing.

7. What if the app posted my photo or loan details online?

Preserve screenshots, demand immediate takedown and deletion, and consider filing a complaint with the NPC and other appropriate authorities.

8. What if the app ignores my request?

Send a follow-up and consider filing a complaint with the National Privacy Commission, supported by screenshots, messages, call logs, and proof of your request.

9. Can the app keep my ID photo forever?

It should retain ID images only for as long as necessary or legally required. Unnecessary retention may be challenged.

10. Should I ask for deletion or preservation?

If you need evidence for a complaint, ask for preservation of relevant evidence and blocking of unlawful processing. Ask for deletion of excessive data not needed as evidence.

CVIII. Conclusion

Under Philippine data privacy law, borrowers and other data subjects have the right to demand deletion, blocking, removal, or destruction of personal data held by lending apps when the data is excessive, unlawfully obtained, outdated, inaccurate, no longer necessary, used beyond the declared purpose, disclosed without authority, or processed in violation of the Data Privacy Act.

This right is especially important because abusive lending apps may harvest phone contacts, access unnecessary device data, disclose loan information to relatives or employers, publicly shame borrowers, or retain sensitive documents longer than necessary.

However, the right to deletion is not absolute. A lending app may retain data necessary for an active loan, lawful collection, accounting, tax, regulatory compliance, fraud prevention, legal claims, or defense against complaints. But retention must be limited, lawful, secure, and proportionate.

The practical rule is clear: a lending app may keep only the personal data it has a lawful reason to keep, for only as long as necessary, and only for legitimate purposes. It may not use borrower data as a weapon for harassment, public shaming, or unlawful collection.

Disclaimer: This content is not legal advice and may involve AI assistance. Information may be inaccurate.

Privacy Policy

Terms of Use

Lawyer Login

 
 
Privacy Policy         Terms of Use         Lawyer Login