If you were scammed in the Philippines, act quickly but carefully. Your first goal is to stop further loss, preserve evidence, and alert the bank, e-wallet, platform, or agency that can still help trace or hold the money. Your second goal is to build a proper legal record so the case can move from a simple “report” to an investigation, prosecutor’s complaint, civil recovery action, or regulatory complaint. In practice, many scam victims lose valuable time because they only send angry messages to the scammer, delete conversations out of frustration, or wait for the bank to “investigate” without filing a formal report.
What Counts as a Scam Under Philippine Law?
A scam usually involves deceit: someone makes a false representation, hides the truth, uses another person’s identity, or pretends to have authority so you will give money, goods, account access, personal information, or other property.
In the Philippines, scams may fall under several laws depending on how the fraud was done:
| Type of scam | Possible legal basis | Common examples |
|---|---|---|
| Traditional fraud or swindling | Article 315 of the Revised Penal Code on estafa | Fake seller, fake loan agent, fake job placement, fake broker, fake property transaction |
| Online or technology-enabled fraud | RA 10175, Cybercrime Prevention Act of 2012 | Phishing links, hacked accounts, fake online stores, fake payment pages, identity theft |
| Bank, e-wallet, or account takeover scam | RA 12010, Anti-Financial Account Scamming Act or AFASA | OTP scam, “bank representative” call, mule account, social engineering, suspicious transfer |
| Investment scam | RA 8799, Securities Regulation Code, Revised Penal Code, and sometimes syndicated estafa rules | Ponzi scheme, fake crypto pool, “guaranteed returns,” unauthorized investment solicitation |
| Data or identity misuse | RA 10173, Data Privacy Act of 2012 and RA 10175 | Use of stolen ID, fake account under your name, unauthorized processing of personal data |
| Scam texts or spoofed numbers | RA 11934, SIM Registration Act, RA 10175, AFASA | Spoofed bank SMS, fake delivery notice, fake government aid link |
The most common criminal charge is estafa under Article 315 of the Revised Penal Code. In simple terms, estafa happens when someone defrauds another by abuse of confidence, false pretenses, fraudulent acts, or similar deceit. For estafa by deceit, Philippine jurisprudence usually looks for four things: a false pretense or fraudulent act, made before or at the time of the fraud, reliance by the victim, and damage.
If the scam happened through Facebook, Messenger, Viber, Telegram, email, a website, online banking, an e-wallet, or another digital system, the Cybercrime Prevention Act may apply. RA 10175 specifically penalizes computer-related fraud and identity theft, and Section 6 provides that crimes under the Revised Penal Code or special laws committed through information and communications technology may be punished one degree higher.
What to Do Immediately After You Realize You Were Scammed
1. Stop communicating with the scammer except to preserve evidence
Do not keep negotiating if the scammer is asking for more money to “unlock,” “refund,” “verify,” or “process” your funds. Many victims are scammed twice through fake recovery fees.
Do not delete:
- Chat messages
- Call logs
- SMS messages
- Emails
- Payment confirmations
- Transaction reference numbers
- Account names and account numbers
- Delivery details
- Profile links
- Website URLs
- Screenshots of posts, ads, or marketplace listings
Take screenshots, but do not rely on screenshots alone. Save the original messages, links, email headers if available, transaction receipts, and profile URLs.
2. Contact your bank or e-wallet immediately
If money was sent through a bank, e-wallet, remittance center, card, or payment app, report the transaction immediately through the institution’s fraud hotline or official app support.
Use clear language:
“I am reporting a disputed transaction caused by fraud/social engineering. Please create a case number, coordinate with the receiving institution, and check if the funds can be temporarily held under applicable rules, including AFASA.”
Under RA 12010 or AFASA, covered institutions such as banks, non-banks, payment service providers, and e-wallet operators are expected to have risk controls such as multi-factor authentication and fraud management systems. AFASA also allows institutions to temporarily hold funds subject of a disputed transaction for a period prescribed by the BSP, not exceeding 30 calendar days, unless extended by a court. The law also states that conviction is not required before restitution where the institution is liable for failure to employ adequate risk controls or failure to exercise the required diligence.
Ask for:
- Case or ticket number
- Name of the receiving institution, if available
- Written confirmation of your fraud report
- Status of any fund hold or recall request
- Instructions for submitting supporting documents
If you are not satisfied with the bank or e-wallet’s response, you may escalate through the BSP Consumer Assistance Mechanism. The BSP instructs consumers to report first to the financial institution’s own Financial Consumer Protection Assistance Mechanism, then escalate to BSP through its channels if unresolved. See the BSP guide on how to file a complaint against a BSP-supervised institution.
3. Report cyber fraud through government cybercrime channels
For online scams, report as early as possible to cybercrime authorities. The Cybercrime Investigation and Coordinating Center has promoted reporting through the Inter-Agency Response Center Hotline 1326 and the eGovPH app’s eReport feature for scam messages and cyber fraud reports.
Useful official or government-linked reporting channels include:
| Office or agency | Use this when | Link |
|---|---|---|
| CICC | Initial cyber fraud, scam SMS, phishing, online scam reports | CICC report page |
| PNP Anti-Cybercrime Group | Online fraud, identity theft, cybercrime evidence, tracing requests | PNP ACG e-Complaint |
| NBI Cybercrime Division / NBI | Cybercrime, fraud, large or complex scams, digital evidence | NBI official website |
| DOJ Office of Cybercrime | Cybercrime coordination and cybercrime-related concerns | DOJ Office of Cybercrime |
| SEC | Investment scams, unauthorized solicitation, fake corporations, Ponzi schemes | SEC iMessage complaint portal |
| DTI | Online seller issues involving consumer transactions | DTI Consumer Care |
| NPC | Personal data misuse, identity theft involving privacy violations | NPC filing a complaint |
4. Secure your accounts and devices
If you clicked a link, gave an OTP, installed an app, or shared IDs, assume your accounts may still be compromised.
Do these immediately:
- Change passwords for email, bank, e-wallet, social media, and shopping apps.
- Turn on multi-factor authentication using an authenticator app where possible.
- Log out all devices from your email and social media accounts.
- Call your mobile provider if your SIM may have been compromised.
- Scan your phone or computer for suspicious apps.
- Freeze or replace affected cards.
- Warn contacts if the scammer may impersonate you.
Do not send your PIN, OTP, CVV, password, recovery codes, or full ID documents through chat or email unless you are using a verified official channel and the information is truly required.
How to File a Formal Complaint in the Philippines
A report is not always the same as a criminal complaint. A hotline or online report may help preserve leads, but a case usually needs a complaint-affidavit and supporting evidence before law enforcement, the prosecutor, or the proper regulatory agency can act formally.
Step-by-step process
Prepare a timeline. Write the story in order: when you first saw the ad or message, who contacted whom, what was promised, how much you sent, where you sent it, and what happened after payment.
Organize your evidence. Put receipts, screenshots, links, account names, transaction numbers, and IDs in chronological order.
Identify the possible respondents. Use full names if known. If not, list usernames, mobile numbers, bank or e-wallet account names, profile links, email addresses, and any delivery or remittance information.
Go to the proper law enforcement unit or prosecutor’s office. For online scams, many victims start with PNP ACG or NBI Cybercrime. For investment scams, file with the SEC as well. For bank or e-wallet scams, report to the institution and BSP channels in parallel.
Execute a complaint-affidavit. This is a sworn written statement of facts. It should be signed under oath before a prosecutor, notary public, or authorized officer, depending on where you file.
Attach supporting affidavits if needed. If another person witnessed the transaction, paid from their account, received the goods, or communicated with the scammer, that person may need a separate affidavit.
Follow up using the docket, reference, or case number. Always ask for a receiving copy or electronic acknowledgment.
Documents usually needed
| Document | Why it matters |
|---|---|
| Government ID | Establishes your identity as complainant |
| Complaint-affidavit | Main sworn narrative of what happened |
| Screenshots of chats, posts, ads, and profiles | Shows representations made by the scammer |
| Transaction receipts and reference numbers | Proves payment and amount lost |
| Bank or e-wallet statement | Helps trace source and destination of funds |
| URLs, usernames, email addresses, phone numbers | Helps cybercrime investigators preserve leads |
| Demand letter, if any | Useful in some civil or quasi-civil disputes, but not always required |
| Platform reports | Shows you reported the fake account, listing, or transaction |
| SEC, DTI, BSP, NPC, or CICC reference numbers | Shows parallel regulatory or cybercrime reporting |
Can You Get Your Money Back?
Sometimes, but recovery is often the hardest part.
A criminal complaint may punish the scammer, but it does not guarantee immediate refund. Money recovery usually depends on whether funds are still traceable, whether the receiving account can be held, whether the scammer or money mule is identified, and whether assets remain available.
Possible recovery routes include:
| Route | Best for | Practical reality |
|---|---|---|
| Bank or e-wallet recall/hold | Recent transfers | Fast reporting gives the best chance; funds may already be withdrawn |
| AFASA disputed transaction process | Social engineering, mule accounts, suspicious transfers | Institutions may coordinate verification and temporary holding |
| Criminal case with civil liability | Estafa or cybercrime | Restitution may be included, but collection depends on enforcement |
| Small claims case | Money-only claims up to the applicable limit | Useful if you know the defendant’s real identity and address |
| Ordinary civil action | Larger or more complex recovery | Slower and more expensive than small claims |
| SEC proceedings | Investment scams and unauthorized solicitation | Helps stop schemes and support enforcement, but refund may still require separate process |
| DTI mediation | Consumer purchases from identifiable sellers | Best for seller disputes, defective goods, or non-delivery where seller is traceable |
Under the Supreme Court’s Rules on Expedited Procedures, small claims cases cover purely civil claims for payment or reimbursement of money not exceeding ₱1,000,000, exclusive of interest and costs. The Supreme Court small claims page provides official forms and links to the rules.
Small claims can be useful when the issue is essentially: “I paid you, you did not deliver, return my money.” It is less useful when the scammer used fake identities, unreachable addresses, or mule accounts.
Which Office Should You Go To?
If it was an online selling scam
Report to:
- The platform where the sale happened
- Your bank or e-wallet
- PNP ACG or NBI Cybercrime if there was deception using online accounts
- DTI if it is a consumer transaction involving an identifiable seller or business
If the seller is a real person or business and the dispute is non-delivery or refund, DTI mediation or small claims may be practical. If the seller used fake identity, fake proof of shipment, or repeated deception against many buyers, a criminal complaint may be more appropriate.
If it was a phishing, OTP, or bank impersonation scam
Report to:
- Your bank or e-wallet immediately
- BSP if the institution’s response is inadequate
- CICC, PNP ACG, or NBI Cybercrime
- NPC if your personal data or identity documents were misused
This is where speed matters most. Under AFASA, a disputed transaction may be temporarily held if there are reasonable grounds and the funds are still within the financial system.
If it was an investment scam
Report to:
- SEC through iMessage
- NBI or PNP if there is clear fraud
- Your bank or e-wallet if payments were made through financial accounts
A common misconception is that “SEC registered” means “legal investment.” It does not. SEC corporate registration only means the entity exists as a corporation or partnership. It does not automatically authorize the entity to sell securities, solicit investments, or promise returns to the public. Under Section 8 of the Securities Regulation Code, securities generally cannot be sold or offered in the Philippines without a registration statement approved by the SEC.
If the scammer is abroad or you are abroad
You can still report a scam connected to the Philippines if:
- The victim is in the Philippines
- The money went to a Philippine bank, e-wallet, or remittance account
- The scammer used Philippine numbers, accounts, addresses, or platforms
- The scheme targeted Filipinos or Philippine residents
- The respondent is in the Philippines
If you are overseas, your affidavit may need to be notarized or consularized depending on how it will be used. Documents executed abroad may need apostille or Philippine Embassy/Consulate notarization. The DFA has official guidance on apostille requirements and apostille FAQs.
Common Mistakes That Hurt Scam Complaints
Deleting the conversation
Victims often delete chats because they feel embarrassed or angry. Do not do this. Investigators may need timestamps, profile IDs, links, and metadata.
Sending more money for a “refund”
Scammers often ask for a “clearance fee,” “tax,” “unlocking fee,” “processing fee,” or “anti-money laundering certificate.” Real banks, courts, and government offices do not require random private transfers to release scam refunds.
Posting accusations without filing a report
Public posts may warn others, but they do not replace a complaint. They may also expose you to defamation counterclaims if you publish unverified personal details.
Reporting only to the platform
Facebook, Telegram, Viber, online marketplaces, or delivery apps may suspend accounts, but they usually cannot prosecute the scammer or recover money by themselves.
Waiting too long before calling the bank
For digital transfers, minutes matter. Once funds are withdrawn, converted, or passed through multiple mule accounts, recovery becomes much harder.
Filing in the wrong place only
A bank report, cybercrime report, SEC complaint, DTI complaint, and prosecutor complaint serve different purposes. In many scam cases, you need more than one track.
Barangay, Police, Prosecutor, or Court?
Not every money dispute starts at the barangay.
For ordinary civil disputes between individuals in the same city or municipality, barangay conciliation under the Katarungang Pambarangay system may apply. But many scam cases are not suitable for barangay settlement because they involve cybercrime, unknown offenders, different cities, corporations, foreign parties, or offenses punishable beyond the barangay threshold.
As a practical guide:
| Situation | Likely starting point |
|---|---|
| Fake online seller, unknown identity | PNP ACG, NBI Cybercrime, bank/e-wallet report |
| Known person borrowed money using lies | Prosecutor complaint for estafa, or civil/small claims depending on facts |
| Pure refund dispute with known seller | DTI or small claims |
| Unauthorized investment solicitation | SEC, plus criminal complaint if fraud is clear |
| Account takeover or phishing | Bank/e-wallet, BSP escalation, PNP ACG or NBI |
| Personal data used to open accounts | NPC, PNP ACG/NBI, affected institution |
Typical Timelines and Bottlenecks
| Step | Typical timing | Common bottleneck |
|---|---|---|
| Bank/e-wallet fraud report | Same day | Funds already withdrawn; incomplete transaction details |
| Temporary hold or recall request | Urgent, usually must be requested immediately | Receiving institution may need verification and documentation |
| Cybercrime report | Same day to several days | Volume of reports; need for complete digital evidence |
| Complaint-affidavit preparation | 1–7 days depending on documents | Missing receipts, unclear timeline, no respondent details |
| Prosecutor preliminary investigation | Often several months | Subpoena service, counter-affidavits, clarificatory hearings, backlog |
| Court case | Months to years | Locating accused, arraignment delays, trial schedule |
| Small claims | Faster than ordinary civil cases | Need correct defendant name and address for service of summons |
These are practical estimates, not guaranteed timelines. The strongest cases are usually those with a clear timeline, traceable payment path, preserved digital evidence, and prompt reporting to the institution that handled the funds.
Frequently Asked Questions
Can I report a scammer in the Philippines even if I only know the mobile number or account name?
Yes. You can report using available identifiers such as mobile number, bank or e-wallet account name, username, email address, profile link, transaction reference number, and screenshots. However, a case becomes stronger if investigators can connect those details to a real person through lawful investigation.
Is a screenshot enough evidence for an online scam?
Screenshots help, but they are not always enough. Keep original chats, URLs, transaction receipts, email headers, bank statements, courier records, and platform reports. If possible, export conversations or preserve the device used.
Should I file with the PNP or NBI?
For cyber-related scams, either PNP ACG or NBI Cybercrime may be appropriate. Many victims choose the office that is more accessible or has jurisdictional familiarity with the case. For large, organized, or technically complex fraud, NBI may be preferred by some complainants; for immediate cybercrime reporting and regional access, PNP ACG is often used.
Can the bank reverse my transfer?
Not always. Banks and e-wallets can investigate, coordinate, and sometimes hold or recall funds if reported quickly. If the money has already been withdrawn or moved, reversal becomes difficult. AFASA improves the legal framework for disputed transactions, but it does not guarantee automatic refunds in every scam.
What if I gave my OTP to the scammer?
Report immediately. Giving an OTP may complicate the bank’s assessment, but it does not mean you should give up. Under AFASA and BSP financial consumer protection rules, the institution’s own risk controls, fraud detection, and diligence may still be relevant depending on the facts.
Can I file a case if the scammer used a fake name?
Yes. The complaint may initially name the respondent as “John/Jane Doe” or identify the person through account names, usernames, phone numbers, and other details. Investigators may seek subscriber, account, or financial information through proper legal processes.
Can foreigners file scam complaints in the Philippines?
Yes. Foreigners may file complaints in the Philippines if the scam has a Philippine connection. They should prepare identification, proof of payment, communications, and sworn statements. If documents are executed abroad, apostille or consular notarization may be required depending on the receiving office.
Is an investment company legal just because it has SEC registration?
No. A corporation’s SEC registration is not the same as authority to solicit investments from the public. Investment contracts, securities, and similar offerings generally require proper registration or authority under the Securities Regulation Code.
Can I go to small claims court for a scam?
Yes, if your claim is purely for payment or reimbursement of money, the amount falls within the small claims limit, and you know the correct defendant and address. Small claims is practical for known defendants, but it is difficult against anonymous scammers.
What should I do if my identity was used in a scam?
Report to the affected bank, e-wallet, platform, or telecom provider immediately. File reports with PNP ACG or NBI if your identity was used for fraud. If personal data was misused, you may also file with the National Privacy Commission.
Key Takeaways
- Act fast: report to your bank or e-wallet immediately and ask for a case number.
- Preserve everything: chats, receipts, URLs, account names, transaction references, and device records.
- Online scams may involve estafa, cybercrime, AFASA violations, data privacy violations, securities violations, or several laws at once.
- A hotline or platform report is helpful, but a formal complaint-affidavit is usually needed for prosecution.
- AFASA allows temporary holding of disputed funds in proper cases, but recovery is not automatic.
- Investment scams should be reported to the SEC; “SEC registered” does not mean authorized to solicit investments.
- Small claims can help recover money from known defendants, but anonymous or organized scams usually require cybercrime investigation.
- Do not pay “refund,” “tax,” “clearance,” or “recovery” fees demanded by the same scammer or a new person claiming they can get your money back.