Verification of Lending Company Authority and Licensing in the Philippines

A legal article in the Philippine context

Verification of a lending company’s authority and licensing is one of the most important legal and practical checks a borrower, investor, compliance officer, lawyer, or business counterparty can perform in the Philippines. It sits at the intersection of corporate law, securities regulation, consumer protection, data privacy, anti-fraud rules, debt collection regulation, anti-money laundering controls, and, in some cases, local business permitting and tax compliance.

In Philippine law, not every person or entity that “lends money” is regulated in the same way. A bank is regulated differently from a financing company, a lending company, a pawnshop, a cooperative, an online platform, a foreign lender, or a private individual extending an isolated loan. Because of that, “licensed” can mean different things depending on what the entity actually is and how it operates. A proper legal verification exercise must therefore answer several questions in sequence:

  1. What type of entity is offering the loan?
  2. Is that entity allowed by law to engage in lending as a business?
  3. Is it duly formed and in good standing?
  4. Does it hold the specific authority or registration required for its business model?
  5. Is it complying with consumer disclosure, fair collection, data privacy, and other operating rules?
  6. Are there signs that it is unauthorized, suspended, fraudulent, or using a front arrangement?

This article explains the Philippine legal framework, the distinction between related regulated entities, what “authority” means in this area, how verification should be done, what documents matter, the legal consequences of noncompliance, and the red flags that matter most.

I. The basic Philippine regulatory structure

In the Philippines, the authority to operate a business that grants loans depends primarily on the legal identity and regulatory classification of the lender.

At a high level, the main regulatory actors are:

  • Securities and Exchange Commission (SEC) for corporations engaged as lending companies or financing companies, and for corporate registration generally.
  • Bangko Sentral ng Pilipinas (BSP) for banks, quasi-banks, non-bank financial institutions under BSP jurisdiction, and certain consumer finance conduct rules applicable to BSP-supervised entities.
  • Cooperative Development Authority (CDA) for cooperatives, including credit cooperatives.
  • Local government units (LGUs) for mayor’s permits and local business permits.
  • Bureau of Internal Revenue (BIR) for taxpayer registration, invoicing/receipts, and tax compliance.
  • National Privacy Commission (NPC) for data privacy compliance where personal data is collected or processed.
  • Anti-Money Laundering Council (AMLC) in cases where the entity is a covered person or otherwise subject to AML obligations under applicable rules.
  • Courts and enforcement agencies for civil, criminal, administrative, and injunctive remedies.

The core Philippine statutes commonly implicated include the Lending Company Regulation Act of 2007, the Financing Company Act, the Corporation Code as amended by the Revised Corporation Code, the Truth in Lending Act, the Data Privacy Act of 2012, the Financial Products and Services Consumer Protection Act, the Civil Code, the E-Commerce Act, and anti-fraud provisions under criminal law and special laws.

II. What is a “lending company” in Philippine law?

A lending company is generally a corporation engaged in granting loans from its own capital funds or from funds sourced from not more than a limited class of creditors, and not from the public in the way deposit-taking institutions do. It is distinct from a bank and also distinct from a financing company.

This distinction matters because people often use the terms loosely. Legally, they are not interchangeable.

A. Lending company versus financing company

A lending company typically grants direct cash loans or similar credit accommodations.

A financing company generally engages in broader financing activities such as:

  • discounting or factoring commercial papers or accounts receivable,
  • financial leasing,
  • extending credit for asset acquisition or receivables-based transactions,
  • and other forms of financing beyond ordinary cash lending.

An entity may not freely call itself either one without fitting the legal category and holding the proper authority.

B. Lending company versus bank

A bank may lend, but a lending company is not a bank. A bank is allowed to accept deposits and is heavily regulated by the BSP. A lending company does not become a bank merely because it extends loans. Conversely, a lending company cannot lawfully present itself as a bank or perform deposit-taking functions reserved to banks and other properly authorized institutions.

C. Lending company versus private lender

A private person who occasionally lends money is not necessarily a “lending company.” The legal regime becomes different when the activity is done as a business, with continuity, public offering, organized solicitation, or corporate structuring for the purpose of lending. Once lending is conducted through a corporation and as a regular business, the corporate and special regulatory rules become central.

III. Why verification matters

Verifying authority and licensing serves several purposes.

1. To determine whether the entity has legal capacity to operate

An unauthorized lender may be operating without the corporate purpose, registration, or regulatory authority required by law. That can expose the business and its officers to sanctions and may complicate the enforceability of contracts, collections, representations, and investor dealings.

2. To protect borrowers

Borrowers often encounter lenders through websites, social media, mobile apps, or messaging platforms. A lender may appear professional while lacking legal authority. Verification helps detect illegal lenders, predatory operators, sham collection outfits, and identity-cloned entities.

3. To assess enforceability and risk

Even if a loan agreement exists, defects in authority can create litigation, regulatory, or reputational issues. The question is not always whether every loan becomes void, but whether there are violations affecting legality, remedies, interest, collection practices, and exposure to penalties.

4. To distinguish lawful lending from abusive practices

The most serious consumer harm in the Philippines has often involved not merely high interest but harassment, shaming, unauthorized data use, deceptive disclosure, fake penalties, and unlawful collection methods. A genuine verification exercise therefore goes beyond checking whether there is a certificate hanging on the wall.

IV. The principal legal sources of authority

A. Corporate existence under the SEC

A Philippine lending company is ordinarily organized as a domestic corporation registered with the SEC. Corporate existence alone is not enough, but it is the first legal layer.

A proper check asks:

  • Does the corporation legally exist?
  • Is it active or delinquent?
  • What is its registered name?
  • What is its SEC registration number?
  • What are its primary purposes in its articles of incorporation?
  • Who are its directors, trustees, or officers of record?
  • Is its term still valid?
  • Has it been dissolved, revoked, suspended, or placed under sanctions?

A corporation without lending in its corporate purpose cannot safely assume it may lawfully engage in lending as a primary business. Corporate purpose matters because a corporation acts through powers granted by law and by its constitutive documents.

B. Special authority as a lending company

For a corporation whose business is lending, a second layer is required: authority to operate as a lending company under the applicable SEC-administered framework.

This is not identical to general SEC incorporation. A corporation may be incorporated but still lack the special authority needed to operate as a lending company.

C. Other registrations and permits

Even a duly registered lending company usually also needs:

  • BIR registration
  • LGU business permit / mayor’s permit
  • possible barangay clearance
  • compliance with invoicing/receipt rules and tax obligations
  • compliance with data privacy obligations if it processes personal data
  • compliance with advertising, disclosure, and fair collection rules

These do not replace SEC authority, but absence of them can still indicate unlawful or irregular operations.

V. Core legal requirements for a lending company

Although implementation details can change, the standard legal architecture usually requires the following:

1. Proper legal form

A lending company is ordinarily expected to be a corporation, not merely an unregistered association or trade name.

2. Lawful primary purpose

Its constitutive documents should authorize it to engage in lending or related lawful activities consistent with the regulatory regime.

3. Minimum capital and documentary requirements

Philippine law and implementing rules have historically required minimum paid-in capital and supporting submissions. The exact amount and documentary detail can be set or adjusted by implementing regulations. A serious verification review checks not only the articles but whether the paid-in capital represented is real, subscribed, and properly supported.

4. Certificate of authority or equivalent SEC permission to operate

This is the heart of the licensing inquiry. A lender using the label “lending company” should have the legally required SEC authority for that business.

5. Good standing and renewal-related compliance

The entity should remain in good standing by filing required reports and maintaining corporate compliance. A company can be validly incorporated yet effectively compromised by suspension, revocation, delinquency, or serious noncompliance.

6. Compliance with disclosure law

The lender must comply with the Truth in Lending Act and related rules on disclosure of finance charges and the true cost of credit. The point is that the borrower must be informed of the actual price of the loan, not merely the headline amount disbursed or periodic collection figure.

7. Compliance with fair debt collection and consumer protection standards

A licensed lender cannot use unlawful harassment, threats, public shaming, coercion, false claims of criminal liability, or misuse of phone contacts.

8. Compliance with data privacy law

Lenders and lending apps typically process sensitive personal and financial data. Collection, storage, sharing, and use of such data must comply with the Data Privacy Act and related NPC principles.

VI. The difference between “registration,” “authority,” “license,” and “permit”

These terms are often used loosely, but in legal analysis they should be separated.

A. Registration

This usually refers to legal recognition of the entity itself, such as SEC registration of the corporation or BIR registration as a taxpayer.

B. Authority

This refers to the legal permission to engage in the regulated line of business. In the lending context, this is often the most important inquiry.

C. License

This may refer broadly to the specific permission to lawfully operate the regulated business. In practice, people use “license” and “certificate of authority” interchangeably, but the exact document title matters less than the substance of the permission granted.

D. Permit

This often refers to operational permits, especially local business permits. A mayor’s permit does not by itself make a company a lawful lending company if special national regulatory authority is missing.

A common mistake is to think that because an office has a business permit, the lender is fully lawful. That is incorrect. The business permit is only one layer.

VII. Step-by-step legal verification framework

A careful Philippine verification exercise should proceed in the following order.

1. Identify the exact legal entity

Do not rely on:

  • app name,
  • brand name,
  • Facebook page name,
  • collection agent’s message signature,
  • or trade name alone.

You need the full legal name of the entity. Many borrowers only know the app brand, which may differ from the actual corporate name. Some abusive operators deliberately obscure the true corporate identity.

Ask:

  • What is the company’s full registered corporate name?
  • What is its SEC registration number?
  • What is its principal office address?
  • Who signs the loan agreement?
  • Who is named in the privacy notice and terms and conditions?
  • Who receives payment?

A mismatch among these is a major red flag.

2. Check corporate existence and status

The next question is whether the legal entity exists and is active.

A good legal review examines:

  • SEC registration details
  • Articles of incorporation
  • latest general information sheet if available
  • officers and directors
  • amendments to name or purpose
  • status of corporate reports
  • whether the entity has been dissolved, revoked, or sanctioned

Why this matters: a revoked or dissolved corporation cannot safely continue business as if nothing happened.

3. Check whether it is the right kind of regulated entity

Many entities extend credit but under different legal regimes:

  • Bank: BSP-supervised
  • Financing company: SEC-regulated under financing laws
  • Lending company: SEC-regulated under lending company rules
  • Pawnshop: governed by separate rules
  • Cooperative: CDA jurisdiction
  • Microfinance NGO or special program operator: possibly another regime
  • Employer salary advance program: may not fit standard lending company analysis
  • Individual or partnership lender: separate issues arise

Verification fails if you ask only, “Is there an SEC registration?” without first asking, “What kind of lender is this?”

4. Check specific authority to engage in lending

This is the center of the inquiry. A company offering loans to the public as a business should have the proper authority for that line of activity.

The questions include:

  • Is it authorized as a lending company?
  • If it claims to be a financing company, does its authority match the business actually conducted?
  • Is the authority current and effective?
  • Has the authority been suspended, revoked, or conditioned?
  • Is the company operating within the scope of what it was authorized to do?

A company may not lawfully avoid regulation by simply calling itself a “service provider,” “marketing platform,” or “loan facilitator” if in substance it is the lender or holds itself out as such.

5. Review the constitutional documents and business purpose

The articles of incorporation and amendments are crucial. They should support the activity actually being conducted.

Key questions:

  • Is lending a primary purpose?
  • Is the language broad enough to cover the product being offered?
  • Is there any restriction on source of funds or mode of operation?
  • Are there related powers for collection, collateral, guarantees, or receivables management?

If the company is offering digital consumer loans nationwide but its corporate documents are narrow, outdated, or inconsistent, that matters.

6. Verify local and tax registrations

A real operating entity should normally have:

  • BIR registration
  • official receipts/invoices where required
  • local permits for the place of business

Their absence does not always mean the loan contract automatically disappears, but it is a serious compliance issue and sometimes a clue to a ghost operation.

7. Examine the loan documents

The loan contract, disclosure statement, promissory note, payment instructions, privacy notice, and collection notices often reveal whether the operation is lawful.

Look for:

  • complete lender identity
  • principal amount
  • net proceeds
  • finance charges
  • service charges
  • penalties
  • default interest
  • collection fees
  • repayment schedule
  • annualized or true cost disclosure
  • consent language for personal data processing
  • forum selection and dispute clauses
  • acceleration clauses
  • assignment clauses
  • authority of signatories

The absence of clear disclosure is a major legal problem.

8. Examine advertising and app disclosures

For online and app-based lenders, the website, app store page, terms of service, and privacy policy may reveal:

  • true lender identity,
  • whether the platform is only a facilitator or the actual lender,
  • whether there is misleading advertising,
  • whether the app harvests unnecessary permissions,
  • whether there are deceptive “processing fees” that distort the true cost.

9. Assess collection practices

A company may be licensed yet still violate law through collection methods. Authority to lend is not authority to harass.

Illegal practices can include:

  • threats of imprisonment for ordinary nonpayment,
  • contacting unrelated persons to shame the borrower,
  • mass messaging of contacts,
  • posting or threatening to post personal data,
  • use of profanity, obscenity, or intimidation,
  • pretending to be lawyers, police, or government authorities without basis,
  • fabricated court notices,
  • repeated late-night harassment,
  • coercion to give phonebook access unrelated to legitimate underwriting.

These are often where the strongest causes of action lie.

10. Check for sanctions, warnings, and public enforcement history

Even without a full case file, any indication that an entity or its app has been previously warned, suspended, or linked to illegal collection practices is highly relevant to risk assessment.

VIII. Online lending apps: a special Philippine concern

In the Philippines, verification of authority has become especially important in relation to online lending applications.

Many digital lenders operate through:

  • mobile apps,
  • websites,
  • social media pages,
  • messaging channels,
  • agent networks.

The legal inquiry becomes more complex because the visible “app” may not be the same as the underlying legal lender. There may be:

  • an app developer,
  • a technology provider,
  • a marketing company,
  • a collection agency,
  • and a separate financing or lending corporation.

A. The true lender problem

A borrower should identify which entity is the actual creditor. Questions include:

  • Who disburses the funds?
  • In whose name is the promissory note issued?
  • To whom is payment owed?
  • Which entity appears in the disclosure statement?
  • Which company is named in the privacy policy?

If the app name is prominent but the legal lender is buried in fine print or absent, that is problematic.

B. App permissions and data privacy

In the Philippine setting, one of the biggest compliance issues has been overbroad data collection, especially:

  • access to contact lists,
  • photos,
  • messages,
  • location,
  • device data,
  • and other permissions not strictly necessary.

Even if a company is licensed to lend, it still must comply with the Data Privacy Act and the principles of transparency, legitimate purpose, and proportionality.

C. Public shaming and contact list harassment

Using a borrower’s contact list to shame them is legally dangerous and often unlawful. Consent language inserted in fine print does not automatically validate abusive or disproportionate data use. Even contractual consent can fail if it violates law, public policy, or privacy principles.

D. Digital interface transparency

A lawful digital lender should make it reasonably easy to identify:

  • its legal entity name,
  • regulatory status,
  • fees and charges,
  • complaint channels,
  • privacy practices.

Opacity is a warning sign.

IX. Interest, fees, and usury: what verification should really ask

A common misconception is that Philippine loan legality turns solely on whether interest is “too high.” The legal landscape is more nuanced.

A. Usury is not the whole story

Historically, usury ceilings have not functioned as the main constraint in ordinary lending in the way many assume. The more reliable legal controls today often arise from:

  • disclosure obligations,
  • unconscionability doctrine,
  • public policy,
  • consumer protection rules,
  • court review of penalty clauses,
  • regulatory action against abusive pricing or unfair terms.

B. The real issue is total cost and lawful disclosure

A lender may advertise a low nominal rate while imposing:

  • processing fees,
  • service fees,
  • disbursement deductions,
  • rollover fees,
  • default penalties,
  • daily charges,
  • attorney’s fees,
  • collection fees.

The legally significant inquiry is often the true finance charge and whether it was properly disclosed.

C. Unconscionability and inequity

Even where interest is not subject to a classic usury ceiling, courts can still strike down or reduce iniquitous, unconscionable, or exorbitant interest and penalties. Therefore, verification of a lender’s lawfulness includes review of pricing fairness and drafting structure.

X. Truth in Lending and mandatory disclosures

The Truth in Lending Act is central to lawful lending operations in the Philippines. Its goal is informed borrower consent.

Before consummation of the transaction, the borrower should be clearly informed of key financial terms, including the true cost of credit. The precise format depends on the applicable rules and product structure, but the legal principle is consistent: a lender should not conceal the actual cost of borrowing.

A proper disclosure review asks:

  • Was the borrower informed before being bound?
  • Was the finance charge shown clearly?
  • Were deductions from proceeds disclosed?
  • Were penalties and default charges explained?
  • Was the schedule of payment clear?
  • Was the disclosure intelligible, not hidden in unusable text?

Defects in disclosure may support regulatory complaints, civil arguments, and defenses against abusive claims.

XI. Corporate authority issues inside the lender itself

Verification is not just about whether the company exists. It also asks whether the persons acting for it had authority.

Important internal authority issues include:

  • Was the loan approved by an authorized officer?
  • Was the signatory properly authorized by board resolution or delegated authority?
  • Are agents using valid special powers or accreditation?
  • Is the collector actually authorized by the lender?

This becomes crucial in litigation and fraud cases. Many disputes arise where:

  • a supposed “agent” pocketed payments,
  • a collector used a personal account,
  • a manager signed without authority,
  • or a brand operated under a different entity without clean delegation.

XII. Foreign ownership and cross-border issues

Cross-border structures complicate the analysis.

Questions include:

  • Is the lender a Philippine corporation or a foreign corporation?
  • If foreign, is it licensed to do business in the Philippines where required?
  • Is the loan merely cross-border to a Philippine borrower, or is there sustained business activity in the Philippines?
  • Who owns the platform and who owns the receivables?
  • Are there nominee or front arrangements?

A foreign company doing business in the Philippines may need to comply with domestic licensing and corporate rules. One cannot assume that a foreign website may freely conduct local consumer lending without Philippine legal consequences.

XIII. Financing through platforms, agents, and “service providers”

Some market participants try to avoid the label “lending company” by structuring operations through service contracts.

Examples:

  • a platform claims it is only matching borrowers and lenders,
  • a company says it is only a “marketing arm,”
  • a local entity claims the foreign partner is the real lender,
  • a collection company acts as if it owns the debt without clear assignment.

Philippine legal analysis looks to substance over labels. The key questions are:

  • Who bears the credit risk?
  • Who funds the disbursement?
  • Who receives repayment?
  • Who sets the loan terms?
  • Who appears as creditor in the contract?
  • Who may sue on default?

If the entity is the functional lender, it may need lending or financing authority regardless of how it describes itself.

XIV. Collection agencies and outsourced collectors

A licensed lender may use agents or collection agencies, but outsourcing does not immunize it from liability.

Verification should ask:

  • Is the collection agency properly identified?
  • Is there a valid engagement by the lender?
  • Are collectors using lawful scripts and notices?
  • Are they misrepresenting criminal consequences?
  • Are they contacting third parties unlawfully?
  • Are they processing personal data lawfully?

The lender can face liability for acts done on its behalf, especially if it authorized, tolerated, or failed to control abusive practices.

XV. Consequences of operating without authority

A lender operating without the required authority may face several layers of liability.

A. Administrative consequences

Possible consequences include:

  • cease and desist orders,
  • suspension,
  • revocation,
  • fines,
  • blacklisting,
  • denial of future registration,
  • sanctions against directors or officers.

B. Civil consequences

Depending on the facts, affected parties may raise:

  • damages claims,
  • actions for return of unlawfully collected amounts,
  • defenses based on illegality or defective disclosure,
  • injunction claims,
  • privacy-based civil claims,
  • contract-based challenges.

C. Criminal or quasi-criminal exposure

Where facts warrant, there may be exposure under:

  • fraud-related provisions,
  • cyber-related offenses,
  • data privacy offenses,
  • unauthorized collection conduct,
  • falsification,
  • and other penal statutes.

Not every licensing defect creates automatic criminal liability, but unauthorized lending combined with deception, harassment, identity misuse, or extortionate conduct can create serious exposure.

XVI. Does lack of license make the loan void?

This is one of the hardest questions in practice, and the answer is not always simplistic.

Philippine law does not always treat every regulatory violation as making every contract automatically void from the beginning. Much depends on:

  • the wording and purpose of the statute,
  • whether the law prohibits the act itself or merely regulates it,
  • whether public policy would be frustrated by enforcement,
  • whether the defect goes to corporate capacity or only compliance,
  • and the equities of the case.

That said, lack of authority is still a major legal defect. It can affect:

  • collectability,
  • entitlement to certain charges,
  • regulatory exposure,
  • litigation posture,
  • and the credibility of the lender’s claims.

In borrower disputes, even where the principal debt may still be argued, unlawful charges, abusive collection practices, and defective disclosures may still be attacked separately.

The better legal view is that the consequences must be analyzed with precision rather than by slogan.

XVII. Borrower verification checklist in Philippine practice

A borrower or counsel reviewing a lender should typically verify the following:

  1. Exact corporate name
  2. SEC registration details
  3. Whether the entity is a lending company, financing company, bank, cooperative, pawnshop, or another type
  4. Specific authority to operate in that capacity
  5. Good standing and absence of revocation or suspension
  6. Principal office and business address
  7. BIR and local permit indicators
  8. Full loan disclosure documents
  9. Identity of the actual creditor in the contract
  10. Legality of data collection and privacy consent
  11. Collection practices and complaint history
  12. Authorized channels for payment
  13. Identity and authority of agents and collectors
  14. Reasonableness and disclosure of charges and penalties
  15. Whether the app/brand matches the legal lender

This is the minimum responsible review.

XVIII. Red flags of an unauthorized or risky lender

In the Philippine setting, the following are major warning signs:

  • No clear legal entity name
  • Only an app name or nickname is given
  • Refusal to disclose SEC details
  • Payment demanded through personal accounts or e-wallets unrelated to the stated lender
  • Inconsistent names across contract, website, and collection notices
  • No physical office or unverifiable address
  • No pre-loan disclosure of charges
  • Extreme deductions from principal not clearly explained
  • Harassment of contacts or threats of public shaming
  • Threats of imprisonment for mere nonpayment of debt
  • Fake legal notices or misuse of court terminology
  • Vague privacy policy or excessive app permissions
  • Collectors using aliases only
  • Pressure to renew or roll over repeatedly
  • “Registration fee,” “unlock fee,” or “verification fee” scams before loan release
  • Lender identity changing midstream after default
  • No clear complaint handling process

One strong red flag may justify immediate caution. Multiple red flags strongly suggest a deeper legal problem.

XIX. The role of data privacy in lending verification

In modern Philippine lending disputes, data privacy is no longer secondary. It is central.

A lender usually processes:

  • identity documents,
  • contact details,
  • financial information,
  • employment information,
  • device information,
  • payment history,
  • and sometimes sensitive personal information.

A. Privacy principles that matter

The core principles are:

  • transparency
  • legitimate purpose
  • proportionality

A lender should collect only data necessary for legitimate credit underwriting, servicing, fraud prevention, lawful collection, and related compliance purposes. Excessive access can be disproportionate.

B. Consent is not a magic shield

Even if an app obtains click-through consent, the consent may still be challenged if:

  • it is not informed,
  • it is bundled unfairly,
  • it covers disproportionate processing,
  • or the resulting acts are abusive or unlawful.

C. Third-party disclosures

Contacting unrelated persons about the borrower’s debt can create privacy issues, especially where the contact is not a guarantor, co-maker, emergency contact for legitimate limited purposes, or otherwise lawfully involved.

XX. Consumer protection and unfair conduct

Verification of authority also requires review of conduct toward consumers.

In Philippine law, a financial service provider may incur liability not just for lack of a license but also for:

  • deceptive advertising,
  • unfair contract terms,
  • abusive collection methods,
  • hidden charges,
  • misleading processing fee structures,
  • and oppressive default practices.

The question is not only whether the lender may exist, but whether it may operate that way.

XXI. The special case of cooperatives, employers, and private credit clubs

Not every lender to the public is a lending company in the strict statutory sense.

A. Cooperatives

A cooperative extending credit to members may fall under the CDA regime rather than the lending company regime. Membership structure and cooperative law become essential.

B. Employers

An employer offering salary loans or emergency assistance to employees is not automatically a public lending company. The facts matter:

  • Is it incidental to employment?
  • Is it only for employees?
  • Is it a profit center?
  • Is there a separate lending subsidiary?

C. Informal private groups

Rotating savings clubs or private acquaintanceships may raise civil law issues, but they are not automatically lending companies. Once they scale into organized public lending, the analysis changes.

A verification review therefore begins with classification.

XXII. Documentary evidence that best proves authority

For legal due diligence, the most useful documents typically include:

  • SEC certificate of incorporation
  • Articles of incorporation and amendments
  • By-laws
  • General information sheet
  • Board resolutions authorizing officers
  • Specific SEC certificate of authority or equivalent lending/financing permission
  • Business permit / mayor’s permit
  • BIR certificate of registration
  • Loan contracts and disclosure statements
  • Privacy policy and consent forms
  • Collection agency appointment documents
  • Sample demand letters and scripts
  • Official receipts/invoices and payment instructions
  • App terms and conditions, if digital

Not all of these will always be available to a borrower, but this is the ideal legal file.

XXIII. Due diligence for lawyers, investors, and counterparties

For professional due diligence, the inquiry is broader than what an ordinary borrower performs.

A. Legal due diligence issues

Counsel should review:

  • chain of corporate authority,
  • compliance history,
  • pending cases,
  • interest and fee structure,
  • data privacy architecture,
  • outsourced processing contracts,
  • collections governance,
  • related-party transactions,
  • beneficial ownership and source of funds,
  • assignment of receivables,
  • consumer complaint patterns.

B. Investor risk

An investor buying into or funding a lending company should be especially concerned with:

  • whether its receivables were originated lawfully,
  • whether disclosures were compliant,
  • whether collections relied on illegal pressure,
  • whether app-based acquisition violated privacy law,
  • whether charge-offs or recovery figures are inflated by unenforceable penalties.

A lender can look profitable on paper while sitting on major regulatory risk.

XXIV. Practical legal issues in enforcement and litigation

When disputes reach lawyers or courts, the main contested issues often include:

  • identity of the true lender,
  • authenticity of the loan records,
  • disclosure of finance charges,
  • validity of penalties,
  • lawfulness of collection conduct,
  • authority of agents,
  • proof of assignment if the debt was sold,
  • admissibility of electronic records,
  • evidentiary value of app logs and screenshots,
  • privacy violations as basis for damages,
  • unconscionability of interest and fees.

Thus, verification at the front end can prevent difficult litigation later.

XXV. Electronic records, e-signatures, and app-based contracting

In the Philippines, loan agreements may be formed electronically, but the lender still bears the burden of proving the transaction and complying with law.

Key questions include:

  • Was there valid assent?
  • Are electronic records complete and reliable?
  • Can the lender prove the borrower accepted the terms?
  • Were the disclosures actually shown before acceptance?
  • Is there a secure audit trail?
  • Can the lender prove disbursement and the basis for every charge?

Electronic form does not reduce compliance obligations. It often increases the need for clean records.

XXVI. Complaint and enforcement pathways in the Philippines

A person confronting an unauthorized or abusive lender may consider different avenues depending on the issue:

  • Regulatory complaint where the problem is licensing or corporate authority
  • Consumer finance complaint where the issue is unfair treatment or nondisclosure
  • Privacy complaint where the issue is unlawful data processing or contact-list harassment
  • Civil action for damages, injunction, restitution, or contractual relief
  • Criminal complaint where there is fraud, threats, extortionate conduct, falsification, or other penal violations
  • Local government or tax complaints where ghost operations and permitting fraud are involved

The appropriate route depends on the facts. It is often not just one case but a bundle of remedies.

XXVII. Common misconceptions

Misconception 1: “If it has an app, it must be legal.”

False. The app’s existence proves almost nothing.

Misconception 2: “SEC registration alone is enough.”

False. General corporate registration is not the same as authority to operate a lending business.

Misconception 3: “A business permit proves a company is licensed to lend.”

False. Local permits do not substitute for national regulatory authority.

Misconception 4: “If I clicked agree, all privacy abuses are allowed.”

False. Consent has legal limits.

Misconception 5: “Nonpayment of debt automatically leads to jail.”

False in ordinary civil debt contexts. Threats of imprisonment for simple nonpayment are often abusive and misleading.

Misconception 6: “Any high interest is automatically illegal because of usury.”

Overstated. The analysis usually turns on disclosure, unconscionability, public policy, and applicable rules, not simplistic slogans.

Misconception 7: “Collectors can message anyone in my contact list.”

False. That raises serious legal concerns.

XXVIII. Best legal approach to verification

A sound Philippine legal analysis uses a layered method:

First, classify the entity. Second, verify corporate existence. Third, verify the specific authority for the line of business. Fourth, review good standing and operational permits. Fifth, review the loan documents for disclosure compliance. Sixth, assess collection conduct and data privacy compliance. Seventh, identify red flags suggesting sham, front, or abusive operations.

This approach avoids the two most common mistakes:

  • stopping at SEC incorporation, and
  • focusing only on interest rates while ignoring identity, authority, disclosure, and collection conduct.

XXIX. A model legal conclusion

In Philippine law, the question whether a lending company is “authorized and licensed” cannot be answered by one document alone. A lawful lending operation generally requires a valid juridical personality, a corporate purpose that covers lending, the specific regulatory authority required for a lending company or other applicable financial entity, and continuing compliance with disclosure, fair collection, consumer protection, data privacy, tax, and local permit rules.

The most legally significant verification points are:

  1. the true identity of the lender,
  2. the existence of the specific authority to engage in lending as a business,
  3. the consistency of the lender’s operations with that authority,
  4. the lawfulness of the loan terms and disclosures, and
  5. the lawfulness of data processing and collection practices.

A lender may be incorporated yet not authorized. It may be authorized yet noncompliant. It may be compliant on paper yet abusive in practice. That is why real verification is both formal and substantive.

In the Philippine context, especially with digital and app-based lending, the safest legal view is that verification must be treated as a full regulatory due diligence exercise, not a superficial name check. The authority to lend is never just a matter of having a business name, an app, or a local permit. It is a structured legal status that must be proved and maintained.

XXX. Condensed practical standard

A lending company in the Philippines should generally be regarded as properly verified only when all of the following are satisfactorily established:

  • the entity is real and active,
  • its corporate documents authorize lending,
  • it holds the proper regulatory authority for the business it is conducting,
  • its permits and tax registrations are in order,
  • its loan documents comply with disclosure law,
  • its pricing and penalties are not hidden or unconscionable,
  • its collectors act lawfully,
  • its data practices comply with privacy law,
  • and its public-facing brand matches its legal identity.

Anything materially short of that calls for caution, deeper review, or challenge.

XXXI. Final doctrinal takeaway

The Philippine law of lending company authority is not merely about permission to make loans. It is about the lawful exercise of a regulated business affecting the public. Verification therefore protects not only borrowers but also the integrity of commerce, financial regulation, and the justice system. A legally sound inquiry asks not just whether the lender can produce a certificate, but whether the entire lending operation is anchored in valid authority, transparent terms, fair dealing, and lawful conduct.

Disclaimer: This content is not legal advice and may involve AI assistance. Information may be inaccurate.

Privacy Policy

Terms of Use

Lawyer Login

 
 
Privacy Policy         Terms of Use         Lawyer Login