Unauthorized Disclosure of Employment Contract Information

I. Introduction

Employment contracts often contain sensitive information. They may state an employee’s salary, benefits, incentives, job title, work arrangement, probationary standards, confidentiality obligations, non-compete clauses, intellectual property provisions, disciplinary rules, termination grounds, and other personal or business-related terms.

When this information is disclosed without authority, several legal issues may arise. The unauthorized disclosure may violate privacy rights, contractual confidentiality obligations, company policy, labor standards, data protection law, fiduciary duties, or even civil and criminal laws depending on the facts.

In the Philippines, the legal consequences depend on who disclosed the information, what information was disclosed, to whom it was disclosed, why it was disclosed, whether consent existed, whether there was a lawful basis, whether damage resulted, and whether the disclosed information was personal, confidential, proprietary, defamatory, or privileged.

The topic is important because employment contract information sits at the intersection of labor law, civil law, data privacy, corporate confidentiality, employee rights, management prerogative, and workplace discipline.

II. What Is Employment Contract Information?

Employment contract information refers to data, terms, documents, and communications connected with the employment relationship.

It may include:

  • employee’s full name;
  • job title or position;
  • department;
  • employment status;
  • probationary or regular status;
  • start date;
  • compensation;
  • allowances;
  • benefits;
  • bonuses;
  • commissions;
  • incentives;
  • stock options or equity grants;
  • work schedule;
  • place of assignment;
  • remote work arrangement;
  • duties and responsibilities;
  • performance standards;
  • probationary criteria;
  • confidentiality clause;
  • non-compete clause;
  • non-solicitation clause;
  • intellectual property clause;
  • training bond;
  • liquidated damages clause;
  • termination provisions;
  • notice period;
  • disciplinary rules;
  • company policies incorporated into the contract;
  • employee identification details;
  • tax and payroll information;
  • bank account or payroll account information;
  • government benefits numbers;
  • emergency contact details;
  • medical information, if attached or related;
  • personal circumstances disclosed during hiring;
  • signed contract and annexes;
  • offer letter;
  • salary adjustment letters;
  • promotion letters;
  • employment certificates;
  • separation agreements;
  • quitclaims;
  • settlement documents.

Some of this information is ordinary workplace information. Some is confidential business information. Some is personal information protected by privacy law. Some may be sensitive personal information. The legal treatment depends on the nature of the specific information.

III. What Is Unauthorized Disclosure?

Unauthorized disclosure occurs when employment contract information is shared, published, transmitted, discussed, copied, forwarded, uploaded, posted, shown, or revealed without proper authority or lawful basis.

Examples include:

  • HR staff sending an employee’s contract to the wrong person;
  • a manager showing an employee’s salary to co-workers;
  • an employee posting their co-worker’s contract online;
  • a recruiter sharing a candidate’s offer letter with another company;
  • an employee forwarding confidential contract templates to competitors;
  • payroll staff disclosing compensation details to outsiders;
  • a supervisor discussing an employee’s benefits in a group chat;
  • a former employee leaking employment contracts to social media;
  • a company publicly naming employees and contract terms without lawful purpose;
  • a union, employee group, or third party circulating contracts without consent;
  • a lawyer, accountant, consultant, or service provider disclosing employment records beyond the authorized purpose;
  • a company disclosing contract information to a background checker without proper basis;
  • a person using another employee’s contract information to harass, shame, discriminate, or retaliate.

Unauthorized disclosure can be intentional, negligent, reckless, accidental, or malicious.

IV. Why Employment Contract Information Is Legally Protected

Employment contract information may be protected because it can affect:

  • privacy;
  • dignity;
  • reputation;
  • workplace harmony;
  • bargaining position;
  • salary negotiations;
  • anti-discrimination rights;
  • company competitiveness;
  • employee safety;
  • trade secrets;
  • internal compensation structure;
  • tax and payroll confidentiality;
  • data protection obligations;
  • contractual rights;
  • labor relations;
  • litigation strategy.

Disclosure of salary, benefits, disciplinary clauses, medical leave arrangements, or settlement terms can harm an employee. Disclosure of contract templates, executive compensation structures, incentive plans, restrictive covenants, or confidential employment policies can harm an employer.

V. Main Legal Frameworks in the Philippines

Unauthorized disclosure of employment contract information may involve several legal frameworks.

A. Data Privacy Act

The Data Privacy Act is highly relevant because employment contract information often contains personal information and sometimes sensitive personal information.

Personal information includes data from which an individual’s identity is apparent or can reasonably be determined. Employment contracts usually contain personal information such as name, position, compensation, address, identification details, and employment history.

Sensitive personal information may include information on health, government-issued identifiers, marital status in certain contexts, disciplinary records depending on nature, union affiliation, or other legally sensitive data.

Employers are generally personal information controllers or processors in relation to employee data. They must process employee information lawfully, fairly, securely, and only for legitimate purposes.

B. Civil Code

The Civil Code may apply through principles on contracts, obligations, damages, abuse of rights, human relations, privacy, and good faith.

Unauthorized disclosure may give rise to civil liability if it causes damage, violates rights, breaches contract, or constitutes an abusive exercise of right.

C. Labor Law

Labor law may apply when disclosure affects employment rights, workplace discipline, management prerogative, employee trust, unfair treatment, harassment, constructive dismissal, or labor relations.

An employee who discloses confidential employment information may be disciplined if the disclosure violates company policy, confidentiality obligations, or trust. An employer that mishandles employee contract information may face complaints, damages claims, or administrative consequences.

D. Contract Law

Employment contracts often contain confidentiality clauses. Company policies, codes of conduct, non-disclosure agreements, settlement agreements, and offer letters may also prohibit disclosure.

A breach of confidentiality may support disciplinary action, damages, injunctive relief, or termination where legally justified.

E. Criminal Law

Depending on the facts, criminal issues may arise, such as:

  • unjust vexation;
  • grave coercion;
  • threats;
  • cyberlibel;
  • identity theft;
  • unauthorized access;
  • computer-related offenses;
  • revelation of secrets in special contexts;
  • falsification if documents are altered;
  • extortion if disclosure is threatened to obtain money or advantage.

Not every unauthorized disclosure is criminal. Many cases are civil, labor, contractual, or data privacy matters.

F. Company Policy

Internal policies often regulate confidentiality, data handling, document access, social media use, information security, workplace communications, and disciplinary penalties.

Policies matter because they establish employee obligations and employer expectations.

VI. Types of Employment Contract Information and Legal Sensitivity

A. Salary and Compensation

Salary information is often treated as confidential by employers and private by employees. Unauthorized disclosure may cause resentment, discrimination concerns, negotiation disputes, or reputational harm.

However, salary confidentiality must be treated carefully. Employees may discuss wages in certain legitimate contexts, such as labor rights, union organizing, collective bargaining, or complaints about wage discrimination. A blanket prohibition against all wage discussion may raise labor policy concerns if it suppresses lawful employee activity.

The legality of disclosure depends on context. Disclosure by HR to an unauthorized person is different from employees discussing their own wages among themselves for legitimate labor concerns.

B. Benefits and Allowances

Benefits, allowances, bonuses, incentives, health coverage, relocation benefits, and executive perks may be confidential or personal. Disclosure may affect privacy and workplace equity issues.

C. Job Title and Employment Status

Job title and employment status are often less sensitive because they may be publicly known. However, probationary status, disciplinary probation, project-based status, or termination-related terms may be sensitive depending on context.

D. Probationary Standards

Probationary standards may be part of lawful employment documentation. Disclosure may be less sensitive internally, but unauthorized public disclosure may still breach privacy or confidentiality.

E. Disciplinary or Termination Terms

Documents about termination, misconduct, settlement, quitclaim, or disciplinary history can be highly sensitive. Unauthorized disclosure may damage reputation and may support legal action.

F. Non-Compete and Restrictive Covenants

Non-compete, non-solicitation, garden leave, client restrictions, and confidentiality clauses may reveal company strategy and risk controls. Disclosure to competitors may harm the employer.

G. Intellectual Property Clauses

Employment contracts may state ownership of inventions, software, work products, source code, designs, creative output, and confidential information. Disclosure may reveal business strategy or proprietary practices.

H. Training Bonds and Liquidated Damages

Training bond provisions may affect employee mobility. Disclosure may be relevant in disputes but may be confidential if circulated improperly.

I. Personal Identifiers

Employment contracts may include address, tax identification number, SSS, PhilHealth, Pag-IBIG, passport details, birth date, marital status, emergency contacts, or bank information. Unauthorized disclosure of these details is serious and may create identity theft or fraud risks.

J. Medical or Disability Information

If medical information is attached to employment documents, disclosure is especially sensitive. Health information requires stricter handling.

VII. Who Can Commit Unauthorized Disclosure?

A. Employer

An employer may commit unauthorized disclosure by mishandling employee contracts or sharing personal employment information beyond lawful purposes.

Examples:

  • posting employee salary details publicly;
  • sharing contracts with clients without need;
  • disclosing an employee’s medical accommodation terms to co-workers;
  • revealing settlement terms after a labor dispute;
  • sending employment documents to the wrong email address;
  • allowing unauthorized access to HR files.

B. Human Resources Personnel

HR personnel have access to employment records and are expected to maintain confidentiality. Unauthorized disclosure by HR may be a serious breach of trust.

C. Managers and Supervisors

Managers may know contract terms because of operational needs. They should not disclose private contract information casually to team members or outsiders.

D. Co-Employees

A co-employee may obtain another employee’s contract through shared drives, emails, misplaced documents, screenshots, or gossip. Sharing it may violate privacy, company policy, and workplace rules.

E. Former Employees

Former HR staff, managers, or employees may still be bound by confidentiality obligations after employment ends.

F. Recruiters and Agencies

Recruiters, staffing agencies, manpower agencies, background checkers, and executive search firms may process employment information. They should use it only for authorized recruitment or employment purposes.

G. Service Providers

Payroll processors, benefits administrators, accountants, lawyers, IT providers, cloud storage vendors, HR information system providers, and consultants may have access to contract information. Unauthorized disclosure may raise data processor and contractual liability issues.

H. Unions or Employee Representatives

Employee representatives may receive employment-related information for legitimate labor purposes. They must handle such information responsibly and avoid unnecessary public disclosure of personal data.

I. Hackers or Outsiders

Unauthorized access by external actors may involve cybersecurity, data breach, and cybercrime issues.

VIII. Lawful Disclosure vs. Unauthorized Disclosure

Not every disclosure of employment contract information is unlawful. Disclosure may be lawful when it has a valid purpose and proper basis.

A. Disclosure to Payroll and Benefits Personnel

The employer may disclose necessary contract information to payroll and benefits teams to process wages, taxes, government contributions, and benefits.

B. Disclosure to Government Agencies

Employment information may be disclosed to government agencies when required by law, such as tax, social security, labor, immigration, court, or regulatory processes.

C. Disclosure to Courts, Labor Arbiters, or Investigators

Employment contracts may be submitted as evidence in labor disputes, civil cases, criminal cases, administrative proceedings, or investigations.

D. Disclosure to Legal Counsel

An employer or employee may disclose relevant contract information to counsel for legal advice or representation.

E. Disclosure to Authorized Service Providers

Payroll vendors, HR platforms, insurers, auditors, and consultants may receive information if necessary and covered by proper safeguards.

F. Disclosure with Employee Consent

An employee may authorize disclosure for loan applications, visa applications, employment verification, background checks, or other purposes.

G. Disclosure for Legitimate Business Need

Internal disclosure may be allowed when personnel genuinely need the information to perform their functions.

The key is proportionality. Only necessary information should be shared with authorized persons for legitimate purposes.

IX. Data Privacy Principles in Employment Contract Disclosure

Under Philippine data privacy principles, employers and other parties handling employment contract information should observe:

A. Transparency

Employees should know how their employment data will be collected, used, stored, shared, and retained.

B. Legitimate Purpose

The disclosure must serve a lawful and legitimate purpose related to employment, legal compliance, business operations, dispute resolution, or authorized processing.

C. Proportionality

Only necessary information should be disclosed. Even if disclosure is lawful, excessive disclosure may violate privacy principles.

For example, a payroll processor may need compensation details but not necessarily disciplinary records. A client may need confirmation of an employee’s authority but not the full employment contract.

D. Security

Employment contracts must be protected against unauthorized access, accidental disclosure, loss, alteration, or misuse.

Security measures may include access controls, encryption, confidentiality undertakings, document retention rules, audit logs, secure HR systems, and proper disposal.

E. Accountability

Employers must be able to show that they process employment information responsibly and have policies, training, contracts, and controls in place.

X. Consent and Employment Contract Disclosure

Consent may be one basis for disclosure, but it is not always required if another lawful basis exists, such as legal obligation, contract performance, legitimate interest, or legal claims.

However, consent must be meaningful when relied upon. It should be:

  • informed;
  • specific;
  • freely given;
  • recorded;
  • limited to the stated purpose.

In employment relationships, consent may be scrutinized because of the imbalance of power between employer and employee. Employers should not rely on broad, vague, or forced consent when another lawful and more appropriate basis exists.

XI. Confidentiality Clauses in Employment Contracts

Employment contracts often state that the employee must not disclose confidential information learned during employment.

Confidential information may include:

  • trade secrets;
  • client lists;
  • pricing;
  • business plans;
  • financial information;
  • software code;
  • product designs;
  • marketing strategy;
  • employee data;
  • salary structures;
  • internal policies;
  • contracts;
  • personnel records;
  • disciplinary information;
  • proprietary processes.

A confidentiality clause should be clear, reasonable, and related to legitimate business interests.

XII. Are Employment Contracts Themselves Confidential?

Often, yes. Many employers treat employment contracts as confidential. But the answer depends on the contract terms, company policy, and circumstances.

An employment contract contains the employee’s personal terms and may also contain company templates or proprietary provisions. Unauthorized sharing may breach privacy or confidentiality.

However, employees may have legitimate reasons to disclose their own contracts to:

  • a lawyer;
  • accountant;
  • spouse or adviser;
  • government agency;
  • labor arbiter;
  • union representative;
  • prospective lender;
  • immigration authority;
  • court;
  • new employer, if relevant and not prohibited;
  • trusted adviser for understanding rights.

A clause that absolutely forbids an employee from showing their own contract to legal counsel or government agencies would be highly problematic.

XIII. Employee’s Right to Discuss Their Own Employment Terms

An employee generally has a legitimate interest in understanding and discussing their own employment terms. An employee may need to disclose their own contract for legal, financial, immigration, tax, or personal reasons.

However, the employee should still avoid disclosing:

  • company trade secrets;
  • confidential client information;
  • proprietary templates;
  • sensitive internal processes;
  • personal data of other employees;
  • confidential settlement terms if covered by lawful confidentiality obligations;
  • information disclosed solely for work and not needed for personal advice.

The safer rule is: an employee may discuss their own rights, but should not unnecessarily expose another person’s information or company secrets.

XIV. Disclosure of Another Employee’s Contract

Disclosing another employee’s employment contract without authority is more legally risky than disclosing one’s own contract.

It may violate:

  • data privacy rights;
  • company policy;
  • confidentiality obligations;
  • workplace trust;
  • anti-harassment rules;
  • civil law duties;
  • labor discipline standards.

Examples:

  • posting a co-worker’s salary to embarrass them;
  • sending a manager’s compensation package to the team chat;
  • sharing an employee’s contract with a competitor;
  • using contract information to bully or discriminate;
  • disclosing a termination settlement to damage reputation.

XV. Salary Transparency and Wage Discussions

Salary information is sensitive, but wage discussions may also be connected to legitimate labor rights.

There is a difference between:

  1. an employee voluntarily discussing their own salary;
  2. employees discussing wages to address unfair pay;
  3. HR leaking payroll records;
  4. a manager disclosing another employee’s salary to shame or manipulate;
  5. a worker posting another person’s contract without consent;
  6. a union requesting relevant wage information for collective bargaining;
  7. a company sharing anonymized compensation bands.

A confidentiality rule should not be used to suppress lawful complaints, union activity, or labor rights. At the same time, employees should not violate privacy by exposing other workers’ personal documents.

XVI. Disclosure to Prospective Employers

An employee may sometimes show an offer letter, certificate of employment, or compensation details to a prospective employer during negotiation.

Risks arise when the employment contract contains confidentiality clauses, trade secrets, or non-disclosure obligations. The employee should consider redacting sensitive company information and sharing only what is necessary.

A prospective employer should not pressure a candidate to disclose confidential information from a current or former employer.

XVII. Disclosure to Family Members

Employees often share employment contracts with spouses, parents, or family members for practical advice. This is usually low risk if done privately and responsibly.

However, problems arise if the family member:

  • posts the document online;
  • uses it to harass the employer;
  • discloses trade secrets;
  • circulates salary details;
  • interferes with company operations;
  • contacts co-workers using information from the contract.

The employee may still face consequences if they enabled unauthorized disclosure of confidential information.

XVIII. Disclosure to Lawyers, Accountants, and Advisers

Disclosure to professional advisers is generally legitimate when made for legal, tax, financial, or professional advice. Lawyers and accountants have their own confidentiality obligations.

Employees and employers should disclose only relevant information and avoid unnecessary circulation.

XIX. Disclosure in Labor Cases

Employment contracts are often submitted in labor disputes to prove:

  • employment relationship;
  • salary;
  • job position;
  • probationary standards;
  • benefits;
  • termination provisions;
  • restrictive covenants;
  • training bonds;
  • final pay;
  • settlement terms.

Disclosure in a labor case is generally lawful when relevant. However, parties should avoid attaching unnecessary personal data of third persons and should request confidential treatment where appropriate.

XX. Disclosure in Social Media

Posting employment contracts, offer letters, salary details, disciplinary notices, resignation letters, or settlement documents on Facebook, TikTok, X, LinkedIn, Reddit, group chats, or public forums is risky.

Social media disclosure may lead to:

  • data privacy complaints;
  • disciplinary action;
  • cyberlibel claims if defamatory statements are included;
  • breach of contract claims;
  • harassment claims;
  • reputational damage;
  • loss of trust and confidence;
  • termination, if justified by facts and due process.

Even if the poster believes they are exposing unfair treatment, public posting of documents should be approached cautiously. It may be safer to file a proper complaint with DOLE, NLRC, the company grievance process, or counsel.

XXI. Disclosure in Group Chats

Many workplace privacy incidents happen in group chats.

Examples:

  • HR accidentally sends an offer letter to a department chat;
  • a manager shares an employee’s salary adjustment in a group;
  • a co-worker posts a screenshot of a contract;
  • employees circulate a termination document;
  • confidential employment details are sent to a client group chat.

Group chat disclosure may be just as serious as email disclosure, especially if the group includes unauthorized persons.

XXII. Accidental Disclosure

Not all unauthorized disclosures are intentional. Accidental disclosure may happen through:

  • wrong email recipient;
  • misdirected attachment;
  • unsecured shared drive;
  • lost laptop;
  • printed contract left on copier;
  • HR file left on desk;
  • incorrect access permissions;
  • auto-fill email mistake;
  • forwarded email thread;
  • cloud folder shared publicly;
  • salary spreadsheet accidentally uploaded.

Even accidental disclosure may create legal obligations, including containment, notification, investigation, and remediation.

XXIII. Data Breach Considerations

An unauthorized disclosure of employment contract information may amount to a personal data breach if it involves unauthorized access, disclosure, acquisition, use, alteration, or loss of personal data.

A breach may require internal assessment and possibly notification to the National Privacy Commission and affected data subjects, depending on the nature of the data, likelihood of harm, and applicable rules.

A company should have a breach response plan.

XXIV. Employer Duties in Protecting Employment Contract Information

Employers should protect employment documents by implementing:

  • HR confidentiality policies;
  • access controls;
  • role-based permissions;
  • secure document management systems;
  • encryption;
  • secure email practices;
  • employee training;
  • clean desk policy;
  • secure disposal and shredding;
  • password protection;
  • data retention schedules;
  • vendor contracts;
  • incident response procedures;
  • audit trails;
  • disciplinary rules for unauthorized disclosure;
  • privacy notices;
  • data processing agreements with vendors.

Employers should not allow unrestricted access to personnel files.

XXV. Employee Duties of Confidentiality

Employees may have duties to protect employment contract information based on:

  • employment contract;
  • company handbook;
  • code of conduct;
  • non-disclosure agreement;
  • fiduciary duties;
  • duty of loyalty;
  • data privacy policies;
  • intellectual property policies;
  • professional ethics;
  • reasonable workplace expectations.

Employees with HR, payroll, IT, finance, legal, management, and administrative roles usually have higher confidentiality obligations.

XXVI. Disclosure by HR Personnel

HR employees are expected to handle personal information carefully. Unauthorized disclosure by HR may be serious misconduct because HR personnel are entrusted with confidential records.

Possible consequences include:

  • written warning;
  • suspension;
  • demotion;
  • termination for just cause, if legally justified;
  • civil liability;
  • data privacy complaint;
  • professional consequences;
  • internal investigation.

The penalty depends on intent, harm, policy, prior record, and due process.

XXVII. Disclosure by Managers

Managers may receive employee contract information for staffing, budgeting, and performance management. They should not disclose such information outside the need-to-know circle.

A manager who uses contract information to shame, threaten, discriminate, or retaliate against an employee may expose the company and themselves to liability.

XXVIII. Disclosure by IT Personnel

IT personnel may access files, emails, systems, logs, and cloud storage. Access should be limited to technical necessity. Viewing or sharing HR files out of curiosity or personal interest may be unauthorized.

Audit logs and access controls are important.

XXIX. Disclosure by Payroll or Finance

Payroll and finance staff handle compensation, tax, bank, and benefits information. Disclosure errors may cause financial and identity theft risks.

Payroll data should be protected with strict access limits and secure transmission.

XXX. Disclosure by Recruiters

Recruiters may possess resumes, offer letters, compensation expectations, employment history, and negotiated terms. They should not disclose these to unauthorized third parties.

A recruiter who shares a candidate’s offer package with another employer, posts it in a group chat, or uses it for personal gain may violate privacy and professional obligations.

XXXI. Disclosure by Third-Party Vendors

Employers often use vendors for payroll, HR systems, background checks, benefits, insurance, and document storage.

Vendor contracts should contain:

  • confidentiality obligations;
  • data processing instructions;
  • security requirements;
  • breach notification duties;
  • limitation on subcontracting;
  • return or deletion of data;
  • audit rights;
  • liability clauses;
  • compliance with Philippine privacy law.

A vendor’s unauthorized disclosure may still affect the employer if vendor management was inadequate.

XXXII. Employee Remedies for Unauthorized Disclosure

An employee whose employment contract information was disclosed without authority may consider several remedies.

A. Internal Complaint

The employee may complain to HR, data protection officer, management, grievance committee, or compliance office.

The complaint should request:

  • investigation;
  • identification of who accessed or disclosed the information;
  • containment of disclosure;
  • deletion or retrieval of copies;
  • disciplinary action if warranted;
  • explanation of safeguards;
  • confirmation that further disclosure will stop;
  • copy of incident report, if appropriate.

B. Data Privacy Complaint

If personal data was disclosed without lawful basis, the employee may consider filing a complaint with the National Privacy Commission.

C. Labor Complaint

If the disclosure forms part of harassment, discrimination, retaliation, constructive dismissal, illegal dismissal, or unfair labor practice, labor remedies may be available.

D. Civil Action for Damages

If the disclosure caused damage, the employee may consider civil claims for damages based on breach of privacy, abuse of rights, breach of contract, or other civil law grounds.

E. Criminal Complaint

If the facts involve threats, extortion, cyberlibel, identity theft, unauthorized access, or other criminal conduct, a criminal complaint may be considered.

F. Demand Letter

The employee may send a demand letter requesting cessation, correction, deletion, apology, damages, or preservation of evidence.

XXXIII. Employer Remedies Against Unauthorized Disclosure

An employer affected by unauthorized disclosure may consider:

  • internal investigation;
  • disciplinary action;
  • cease-and-desist letter;
  • demand for return or deletion of documents;
  • civil action for damages;
  • injunction;
  • criminal complaint if hacking, theft, extortion, or cybercrime is involved;
  • data breach notification and mitigation;
  • action against vendor or contractor;
  • termination for just cause, if supported by law and due process.

The employer should avoid overreacting when the disclosure is protected activity, whistleblowing, labor complaint, or lawful consultation with counsel.

XXXIV. Workplace Discipline for Unauthorized Disclosure

An employee may be disciplined for unauthorized disclosure if:

  1. there is a clear rule or duty of confidentiality;
  2. the employee had access to the information;
  3. the disclosure was unauthorized;
  4. the information was confidential or protected;
  5. the penalty is proportionate;
  6. procedural due process is observed;
  7. evidence supports the charge.

Possible grounds may include serious misconduct, willful breach of trust, violation of company policy, gross negligence, fraud, conflict of interest, or analogous causes depending on facts.

XXXV. Due Process Before Disciplinary Action

If an employee is disciplined for unauthorized disclosure, the employer must observe procedural due process.

For termination cases, this generally includes:

  • first written notice specifying the charge;
  • opportunity for the employee to explain;
  • hearing or conference where appropriate;
  • consideration of evidence;
  • second written notice stating the decision and reasons.

The employer must also prove a valid cause.

A rushed termination based only on suspicion may expose the employer to illegal dismissal claims.

XXXVI. Loss of Trust and Confidence

Unauthorized disclosure by employees in positions of trust, such as HR, payroll, finance, legal, IT, management, or executive roles, may support loss of trust and confidence if the breach is willful, serious, and supported by substantial evidence.

However, loss of trust cannot be used arbitrarily. It must be based on clearly established facts.

XXXVII. Gross Negligence

If disclosure happened through careless handling rather than intent, gross negligence may be considered if the employee showed serious disregard of duty.

Examples:

  • repeatedly sending contracts to wrong recipients;
  • storing HR files in unsecured public folders;
  • leaving contracts in public areas;
  • ignoring data protection procedures;
  • using personal email for sensitive files without authorization.

Penalty should match the gravity, harm, and circumstances.

XXXVIII. Whistleblowing and Protected Disclosure

Not all disclosures are wrongful. Some disclosures may be protected or justified when made to report illegal conduct, labor violations, discrimination, harassment, fraud, corruption, or public interest concerns.

However, whistleblowing should be done responsibly. The disclosure should be limited to necessary information and directed to proper channels, such as:

  • internal compliance office;
  • legal counsel;
  • labor authorities;
  • regulator;
  • court;
  • law enforcement;
  • authorized investigators.

Public posting of entire employment contracts may exceed what is necessary and may create separate liability.

XXXIX. Disclosure to DOLE or NLRC

An employee may disclose employment contract information to the Department of Labor and Employment, National Labor Relations Commission, or other proper labor authorities to pursue legal rights.

An employer should not discipline an employee merely for submitting relevant employment documents to a lawful proceeding or government complaint.

However, unrelated personal data of co-workers should be redacted where possible.

XL. Disclosure to a Union

Disclosure to a union may be legitimate if related to collective bargaining, grievance handling, representation, wage issues, or labor rights.

Still, the union and employees should handle personal data responsibly and avoid unnecessary public exposure of individual contracts unless required and authorized.

XLI. Disclosure of Executive Compensation

Executive contracts and compensation packages may be more sensitive because they may reveal company strategy, incentives, and governance arrangements.

Disclosure may also be subject to corporate governance, securities, or regulatory reporting rules for certain companies. Unauthorized leaks may create corporate and securities concerns.

XLII. Disclosure of Confidential Settlement Agreements

Employment disputes often end with settlement agreements, quitclaims, or compromise agreements containing confidentiality clauses.

Unauthorized disclosure of settlement terms may breach contract and may expose the disclosing party to damages or return-of-benefit consequences if stated.

However, confidentiality clauses should not prevent legally required disclosures to government agencies, courts, tax authorities, or counsel.

XLIII. Disclosure of Employment Contracts in Litigation

When employment contracts are used in litigation, parties should consider:

  • relevance;
  • redaction of unnecessary personal information;
  • protective orders if available;
  • confidential filing where allowed;
  • limiting circulation;
  • avoiding public posting of pleadings with sensitive attachments;
  • securing copies.

Litigation does not give unlimited license to expose irrelevant personal information.

XLIV. Disclosure to Background Checkers

Employers may verify employment history, but disclosure should be proportionate and authorized.

Former employers should generally limit disclosures to:

  • dates of employment;
  • position;
  • employment status;
  • eligibility for rehire, if policy allows;
  • other information authorized by the employee or required by law.

Sharing full contracts, salary details, disciplinary records, or reasons for termination without proper basis may be risky.

XLV. Disclosure to Banks, Embassies, and Government Offices

Employees may need employment contracts for:

  • visa applications;
  • loan applications;
  • housing loans;
  • credit cards;
  • immigration petitions;
  • scholarship applications;
  • government records;
  • tax matters.

Disclosure by the employee for their own legitimate purpose is generally different from disclosure by an employer to unrelated third parties.

Employers asked to verify employment should disclose only necessary information and preferably with employee authorization.

XLVI. Unauthorized Disclosure and Defamation

Disclosure of employment contract information may be combined with defamatory statements.

Example:

  • posting an employee’s contract and falsely calling them a thief;
  • sharing a termination letter with accusations not yet proven;
  • circulating a salary document with insulting commentary;
  • posting a settlement agreement and accusing the person of fraud without basis.

If the disclosure includes false and damaging statements, libel or cyberlibel issues may arise.

Truth alone is not always a complete practical shield if private information is unnecessarily exposed or used maliciously. Privacy, confidentiality, and harassment issues may still exist.

XLVII. Unauthorized Disclosure and Harassment

Disclosure may become harassment when used to shame, intimidate, retaliate, or pressure an employee.

Examples:

  • posting a worker’s salary to provoke ridicule;
  • sharing a contract after the employee filed a complaint;
  • exposing personal details to co-workers;
  • threatening to reveal contract terms unless the employee resigns;
  • leaking settlement terms to damage reputation.

Harassing disclosure may support labor, civil, privacy, or criminal complaints.

XLVIII. Unauthorized Disclosure and Discrimination

Employment contract information may reveal protected or sensitive matters such as pregnancy-related arrangements, disability accommodations, health benefits, family status, or religious arrangements.

Unauthorized disclosure can contribute to discrimination, stigma, retaliation, or hostile work environment.

XLIX. Unauthorized Disclosure and Identity Theft

Contracts may contain personal identifiers. If disclosed, they may be used for:

  • loan applications;
  • SIM registration misuse;
  • fake accounts;
  • phishing;
  • payroll fraud;
  • social engineering;
  • account recovery attacks;
  • impersonation.

Employers should avoid including unnecessary sensitive identifiers in contracts and should secure stored copies.

L. Unauthorized Disclosure by Email

Email disclosure risks include:

  • wrong recipient;
  • forwarded threads;
  • hidden attachments;
  • autocomplete mistakes;
  • personal email use;
  • lack of encryption;
  • unsecured cloud links;
  • reply-all errors;
  • compromised accounts.

Best practices:

  • verify recipients;
  • use password-protected attachments where appropriate;
  • avoid unnecessary attachments;
  • use secure HR portals;
  • restrict forwarding;
  • include confidentiality notices;
  • revoke access to mistaken links quickly;
  • report incidents promptly.

LI. Unauthorized Disclosure by Shared Drive

Shared drive incidents happen when HR folders are accessible to employees who should not have access.

Best practices:

  • role-based access;
  • periodic permission review;
  • audit logs;
  • separate HR files from general folders;
  • restrict downloads;
  • remove access after role changes;
  • avoid public links;
  • classify sensitive documents.

LII. Unauthorized Disclosure by Printed Documents

Printed contracts should be handled carefully.

Risks include:

  • documents left in printers;
  • files left on desks;
  • disposal in ordinary trash;
  • unlocked cabinets;
  • visible documents during meetings;
  • courier misdelivery.

Best practices:

  • secure printers;
  • locked cabinets;
  • shredding;
  • clean desk policy;
  • sealed envelopes;
  • tracking of physical files.

LIII. Unauthorized Disclosure by Screenshots

Screenshots are a common source of leaks. Employees may screenshot payroll systems, contract PDFs, chat messages, or HR portals.

Company policies should address screenshotting and forwarding sensitive information. Technical controls may also help, though they are not foolproof.

LIV. Unauthorized Disclosure Through AI Tools and Online Platforms

Employment contract information may be disclosed when employees upload contracts into online tools, public document converters, AI chatbots, cloud editors, or unsecured translation platforms.

This can be risky if the platform stores, uses, or exposes the content. Contracts containing personal or confidential information should not be uploaded to unauthorized third-party tools.

Companies should have policies on use of AI and cloud tools for HR documents.

LV. Data Minimization in Employment Contracts

One way to reduce risk is to minimize sensitive information in contracts.

Employment contracts should include necessary terms but avoid unnecessary personal data such as:

  • full government ID numbers unless required;
  • bank account details;
  • excessive family information;
  • medical information;
  • emergency contacts;
  • unrelated personal history.

Sensitive details can be collected through separate secure HR forms rather than placed in the main employment contract.

LVI. Retention of Employment Contracts

Employers should retain employment contracts only as long as necessary for legal, business, tax, labor, and evidentiary purposes.

Retention policies should specify:

  • storage location;
  • access rights;
  • retention period;
  • disposal method;
  • litigation hold procedure;
  • treatment of separated employees’ records.

Keeping old contracts indefinitely without safeguards increases risk.

LVII. Redaction

Redaction is important when sharing employment documents for legitimate purposes.

Information that may be redacted includes:

  • home address;
  • personal phone number;
  • government ID numbers;
  • bank details;
  • emergency contacts;
  • signatures, where not needed;
  • salary, if irrelevant;
  • other employees’ names;
  • medical or family details.

Redaction should be done properly, not merely by placing black boxes over text in a way that can be removed.

LVIII. Confidentiality Notices

Documents and emails may include confidentiality notices, but a notice alone is not enough. The organization must also implement actual safeguards.

A confidentiality notice helps show expectation of confidentiality but does not automatically create liability if the underlying information is not confidential or if disclosure is legally required.

LIX. Contract Clauses Addressing Disclosure

Employment contracts may include clauses such as:

  • confidentiality;
  • data privacy consent and notice;
  • return of documents;
  • non-disclosure of compensation;
  • non-disparagement;
  • intellectual property protection;
  • company property return;
  • post-employment confidentiality;
  • disciplinary consequences;
  • permitted disclosures to counsel, government, or as required by law.

These clauses should be reasonable and should not prevent employees from exercising statutory rights.

LX. Sample Confidentiality Clause

A basic clause may state:

The Employee shall keep confidential and shall not disclose to any unauthorized person any confidential information obtained during employment, including business information, client information, trade secrets, personnel records, compensation structures, and other non-public information of the Company. This obligation does not prohibit disclosures required by law, disclosures to government agencies, disclosures in legal proceedings, or disclosures to counsel or professional advisers for legitimate purposes.

The clause should be adapted to the employer’s actual needs.

LXI. Sample Employee Data Disclosure Clause

A privacy-related clause may state:

The Employee acknowledges that the Company will process employment-related personal information for recruitment, employment administration, payroll, benefits, tax compliance, performance management, legal compliance, workplace security, and legitimate business purposes. The Company shall process such information in accordance with applicable data privacy laws and shall disclose it only to authorized personnel, service providers, government agencies, courts, or other recipients with lawful basis and appropriate safeguards.

This should be supported by a separate privacy notice.

LXII. Sample Permitted Disclosure Clause for Employees

A balanced clause may state:

Nothing in this Agreement prohibits the Employee from disclosing this Agreement or relevant employment information to legal counsel, tax advisers, government agencies, courts, labor authorities, or other persons where disclosure is required by law or reasonably necessary to enforce or understand the Employee’s legal rights, provided that the Employee does not unnecessarily disclose trade secrets, personal data of others, or confidential business information beyond what is necessary.

This helps avoid overbroad confidentiality restrictions.

LXIII. What to Do If Your Employment Contract Information Was Disclosed

An employee should take these steps:

Step 1: Identify What Was Disclosed

Determine whether the disclosure involved salary, contract copy, ID details, bank information, disciplinary records, settlement terms, medical information, or other data.

Step 2: Identify Who Disclosed It

Was it HR, a manager, co-worker, former employee, vendor, recruiter, or hacker?

Step 3: Identify Where It Was Disclosed

Was it sent by email, posted on social media, shared in group chat, printed, uploaded to a drive, or given to an outside party?

Step 4: Preserve Evidence

Save screenshots, emails, chat messages, links, witness statements, and timestamps.

Step 5: Request Containment

Ask that the document be deleted, access revoked, copies recalled, posts removed, or recipients instructed not to share further.

Step 6: File Internal Complaint

Notify HR, management, data protection officer, or compliance office.

Step 7: Consider Legal Remedies

If the disclosure caused harm or involved sensitive information, seek legal advice and consider privacy, labor, civil, or criminal remedies.

LXIV. Sample Internal Complaint by Employee

Subject: Complaint Regarding Unauthorized Disclosure of Employment Contract Information

I respectfully report that my employment contract information appears to have been disclosed without my consent or lawful authorization.

On [date], I learned that [describe information] was disclosed to [recipient/person/group/platform] through [email/group chat/social media/other means]. The disclosed information includes [salary/benefits/personal details/contract terms/other].

I request that the company investigate the incident, identify the source and recipients of the disclosure, take steps to retrieve or delete unauthorized copies, prevent further disclosure, and inform me of the measures taken to protect my personal information and employment records.

I reserve all rights under applicable labor, civil, contractual, and data privacy laws.

LXV. Sample Cease-and-Desist Letter

Subject: Demand to Cease Unauthorized Disclosure of Employment Contract Information

It has come to my attention that you disclosed, circulated, or caused the disclosure of my employment contract information without my consent or lawful authority.

You are hereby demanded to immediately stop further disclosure, delete any copies in your possession or control, identify all persons to whom the information was sent, and confirm in writing that no further dissemination will be made.

This demand is made without prejudice to all rights and remedies available under law, contract, data privacy rules, and applicable company policies.

LXVI. What an Employer Should Do After Discovering Unauthorized Disclosure

An employer should:

  1. contain the disclosure;
  2. disable links or revoke access;
  3. retrieve or delete misdirected copies where possible;
  4. identify affected employees and data;
  5. preserve logs and evidence;
  6. assess whether it is a personal data breach;
  7. notify the data protection officer;
  8. determine whether notification to authorities or affected persons is required;
  9. investigate the cause;
  10. discipline responsible persons if warranted;
  11. improve safeguards;
  12. document all actions taken.

Covering up the incident may worsen liability.

LXVII. Internal Investigation Checklist

The investigation should determine:

  • what information was disclosed;
  • whose information was affected;
  • who had access;
  • how disclosure occurred;
  • when disclosure occurred;
  • who received it;
  • whether it was downloaded, copied, or reposted;
  • whether sensitive personal information was involved;
  • whether harm is likely;
  • whether company policy was violated;
  • whether notification is required;
  • what corrective action is needed.

LXVIII. Notice to Affected Employee

When appropriate, the employer should inform the affected employee:

  • what happened;
  • what information was involved;
  • when it happened;
  • what was done to contain it;
  • what risks may exist;
  • what steps the employee should take;
  • whom to contact for questions;
  • whether the incident was reported to regulators, if applicable.

The notice should be factual and avoid minimizing serious exposure.

LXIX. Possible Damages from Unauthorized Disclosure

The harmed party may claim damages depending on proof, such as:

  • actual financial loss;
  • identity theft expenses;
  • emotional distress;
  • reputational damage;
  • lost employment opportunity;
  • workplace harassment;
  • discrimination;
  • legal costs;
  • privacy-related harm;
  • business loss;
  • loss of competitive advantage;
  • costs of containment.

Moral damages may be relevant in appropriate cases involving privacy violation, bad faith, harassment, or reputational injury.

LXX. Employer Liability for Employee Disclosure

An employer may be held responsible if the unauthorized disclosure was connected to employment and resulted from inadequate controls, negligent supervision, weak policies, poor access management, or actions of employees within their roles.

However, an employer may defend by showing it had reasonable safeguards, policies, training, and that the rogue employee acted outside authority.

LXXI. Personal Liability of the Disclosing Employee

The individual who disclosed the information may face:

  • disciplinary action;
  • termination;
  • civil damages;
  • criminal complaint, if applicable;
  • data privacy complaint;
  • professional consequences;
  • loss of trust.

Personal liability is more likely when disclosure was intentional, malicious, repeated, or for personal gain.

LXXII. Unauthorized Disclosure After Resignation or Termination

Confidentiality obligations may survive separation from employment if the contract or law supports it.

A former employee should not keep, share, use, or leak employment contracts, HR files, salary lists, templates, or personnel records obtained during employment.

Employers should conduct exit procedures requiring:

  • return of company documents;
  • deletion of confidential files;
  • disabling system access;
  • reminders of confidentiality obligations;
  • confirmation of returned devices.

LXXIII. Unauthorized Disclosure by the Employee of Their Own Contract After Leaving

A former employee may disclose their own contract to counsel, government agencies, or in legal proceedings. But public posting or sharing with competitors may breach confidentiality if the document contains proprietary terms or settlement confidentiality.

The context matters.

LXXIV. Non-Disclosure of Compensation Clauses

Some employment contracts state that salary or compensation must be kept confidential.

Such clauses may be enforceable in certain contexts, especially to prevent disclosure of salary structures, executive compensation, or confidential compensation data. However, they should not be used to prevent employees from asserting wage rights, filing complaints, consulting counsel, or engaging in lawful labor activity.

A balanced clause is safer than an absolute gag clause.

LXXV. Training Bonds and Disclosure

Training bond clauses may be disputed when employees resign. Disclosure of the clause to counsel, DOLE, or NLRC is legitimate if needed to challenge or enforce rights.

Posting the entire contract publicly may be unnecessary and risky.

LXXVI. Non-Compete Clauses and Disclosure

Non-compete clauses may be reviewed by future employers or lawyers. However, disclosure should be limited to what is necessary.

A prospective employer receiving a candidate’s non-compete should avoid using confidential information beyond evaluating legal risk.

LXXVII. Employment Contract Templates as Company Property

An employment contract template may be company property or confidential business material. HR staff or employees should not copy and distribute templates without authorization.

Even if the template is generic, it may contain company-specific policies, compensation structure, restrictive covenants, and legal strategy.

LXXVIII. Special Cases: Public Officials and Government Employees

Employment information involving public officers or government employees may be subject to different rules on public records, transparency, privacy, civil service regulations, and administrative discipline.

Some compensation information may be public in government contexts, while personal information remains protected. The analysis differs from private employment.

LXXIX. Special Cases: Domestic Workers

Employment arrangements with domestic workers may contain personal details, salary, address, and household information. Unauthorized disclosure may create safety and privacy risks for both worker and employer.

Domestic workers are also entitled to dignity and privacy.

LXXX. Special Cases: OFWs and Overseas Employment Contracts

Overseas employment contracts may contain passport details, foreign employer details, salary, deployment terms, and agency information. Unauthorized disclosure may affect immigration, safety, recruitment rights, and anti-illegal recruitment concerns.

Disclosure to government agencies, legal counsel, or migrant worker support offices may be legitimate when pursuing rights.

LXXXI. Special Cases: Executives and Senior Managers

Executive contracts may contain sensitive provisions such as:

  • equity grants;
  • bonuses;
  • severance;
  • garden leave;
  • non-compete;
  • confidentiality;
  • intellectual property;
  • change-of-control benefits;
  • board reporting lines.

Unauthorized disclosure can affect corporate governance, investor relations, internal morale, and competitive position.

LXXXII. Special Cases: Remote Work and Digital HR Systems

Remote work increases disclosure risk because employment contracts may be stored, signed, and transmitted digitally.

Risks include:

  • personal devices;
  • unsecured Wi-Fi;
  • cloud links;
  • shared home computers;
  • screenshots;
  • unauthorized printing;
  • misplaced digital copies;
  • use of personal email;
  • messaging apps.

Companies should have remote work data security rules.

LXXXIII. Preventive Measures for Employers

Employers should:

  • classify employment contracts as confidential;
  • restrict HR file access;
  • train HR and managers;
  • adopt a privacy notice;
  • use secure HR systems;
  • require vendor confidentiality;
  • prohibit unauthorized forwarding;
  • monitor access logs;
  • implement breach response;
  • use redaction;
  • minimize data in contracts;
  • review confidentiality clauses;
  • provide reporting channels;
  • discipline violations consistently.

LXXXIV. Preventive Measures for Employees

Employees should:

  • keep their contract copy secure;
  • avoid posting it online;
  • redact sensitive data when sharing;
  • disclose only to trusted advisers or proper authorities;
  • avoid forwarding co-workers’ documents;
  • report accidental access to HR;
  • avoid using company documents for personal disputes;
  • preserve evidence if their information is leaked;
  • understand confidentiality obligations.

LXXXV. Practical Red Flags

Unauthorized disclosure risk is high when:

  • HR files are in open shared drives;
  • managers discuss salary casually;
  • payroll spreadsheets are emailed without protection;
  • contracts are sent through personal accounts;
  • group chats are used for HR documents;
  • former employees retain HR files;
  • vendors lack data processing agreements;
  • employees use AI tools with confidential documents;
  • printed contracts are left unattended;
  • access is not removed after resignation.

LXXXVI. Frequently Asked Questions

1. Is an employment contract confidential in the Philippines?

Often, yes. It usually contains personal information and may contain confidential business terms. However, the level of confidentiality depends on the terms, context, and purpose of disclosure.

2. Can an employer disclose my salary to co-workers?

Generally, salary information should not be casually disclosed to co-workers without a legitimate need or lawful basis. Unauthorized disclosure may raise privacy and workplace issues.

3. Can I show my employment contract to a lawyer?

Yes. Disclosure to a lawyer for legal advice is generally legitimate.

4. Can I show my contract to DOLE or NLRC?

Yes, if it is relevant to a labor complaint, inquiry, or proceeding.

5. Can I post my employment contract online to complain about my employer?

That is risky. It may expose confidential information and personal data. It is safer to file with proper authorities or seek legal advice.

6. Can I disclose my own salary?

You may discuss your own salary in legitimate contexts, but you should consider any confidentiality clause and avoid disclosing company secrets or other employees’ information.

7. Can I disclose a co-worker’s salary?

Generally, no, unless you have lawful authority or legitimate reason. Unauthorized disclosure of another employee’s salary may violate privacy and company policy.

8. Can HR be disciplined for accidentally sending my contract to the wrong person?

Yes, depending on negligence, harm, company policy, and due process. The company should also contain the incident and assess privacy obligations.

9. Can an employer terminate an employee for leaking contracts?

Possibly, if there is a valid cause, substantial evidence, proportional penalty, and procedural due process.

10. Can a confidentiality clause stop me from filing a labor complaint?

No. A contract should not prevent an employee from asserting lawful rights before proper agencies or courts.

LXXXVII. Sample Policy Provision

A company policy may provide:

Employment contracts, compensation records, personnel files, disciplinary records, payroll information, and related employment documents are confidential. Employees may access, use, or disclose such information only when authorized and necessary for legitimate work purposes. Unauthorized access, copying, forwarding, posting, or disclosure of such information is prohibited and may result in disciplinary action, without prejudice to civil, criminal, or regulatory remedies. This policy does not prohibit lawful disclosures to government agencies, courts, legal counsel, or disclosures protected by law.

LXXXVIII. Sample Data Breach Response Language

A company may notify an employee:

We write to inform you that on [date], certain employment-related information concerning you was inadvertently disclosed to [recipient/category of recipient]. The information involved [description]. Upon discovery, we took steps to [revoke access/request deletion/secure records/investigate]. We are reviewing the incident and implementing measures to prevent recurrence. Please contact [DPO/contact] for questions or concerns.

The wording should be tailored to the seriousness of the incident.

LXXXIX. Balancing Privacy, Transparency, and Labor Rights

Employment contract information is not always absolutely secret. There are legitimate reasons for disclosure: payroll, benefits, legal compliance, labor complaints, counsel review, union representation, litigation, and government reporting.

The proper approach is balance:

  • protect personal data;
  • protect confidential business information;
  • allow employees to enforce rights;
  • permit lawful reporting;
  • limit disclosure to what is necessary;
  • prevent harassment, retaliation, and public shaming;
  • maintain workplace trust.

XC. Key Takeaways

Unauthorized disclosure of employment contract information in the Philippines may create legal consequences under data privacy law, labor law, civil law, contract law, company policy, and, in serious cases, criminal law.

Employment contracts often contain personal information, compensation details, confidential company terms, and sensitive employment records. Employers, HR personnel, managers, employees, recruiters, vendors, and former workers must handle them responsibly.

Disclosure may be lawful when necessary for payroll, benefits, legal compliance, government reporting, litigation, legal advice, authorized service provision, or legitimate labor rights. But disclosure becomes risky when done without authority, beyond necessity, maliciously, negligently, publicly, or for harassment, retaliation, or personal gain.

The central rule is simple: employment contract information should be disclosed only to authorized persons, for lawful purposes, and only to the extent necessary.

Disclaimer: This content is not legal advice and may involve AI assistance. Information may be inaccurate.

Privacy Policy

Terms of Use

Lawyer Login

 
 
Privacy Policy         Terms of Use         Lawyer Login