Jurisdictions / Philippines
PHILIPPINES · PH

Philippines

Republic of the Philippines
Republika ng Pilipinas
117M (PSA, 2024)

A living snapshot of AI, privacy and cybersecurity regulation in Philippines - what's in force, who enforces it, and what's moving.

What's happening

Loading…

Key Legislation

Tracked instruments shaping AI, privacy and cybersecurity in Philippines.

24Tracked
19Verified
Instrument
DPCP Moratorium Advisory
Needs Review
Status: Needs Review. View source for full text.
Instrument
Public Advisory on Online Lending Platforms (DICT-NPC-SEC)
Needs Review
Status: Needs Review. View source for full text.
Instrument
Philippines National AI Strategy Roadmap 2.0 (NAISR 2.0)
Verified
Status: Verified. View source for full text.
Instrument
Data Privacy Act of 2012 (RA 10173)
Verified
RA 10173. Core framework governing personal data processing including AI-enabled processing. Section 6 provides extraterritorial reach.
Instrument
Data Privacy Competency Program (DPCP)
Needs Review
Status: Needs Review. View source for full text.
Instrument
NPC Fees Advisory (March 2024)
Needs Review
Status: Needs Review. View source for full text.
Instrument
NPC Circular 2022-04 (ADM & profiling registration)
Verified
Imposes registration of data processing systems with mandatory notification of automated decision-making and profiling that significantly affects data subjects.
Instrument
Philippines NPC Advisory No. 2024-04 on AI Systems
Verified
Establishes deployer (PIC) accountability for AI systems under the Data Privacy Act, including for biased or unlawful automated decisions.
Bill (Senate)
Philippines AI Regulation Act (SB 25)
Verified
Pending in the 20th Congress. Proposes a comprehensive Philippine AI regulatory framework with tiered obligations for high-risk systems.
Bill (House)
Deepfake Accountability and Transparency Act (HB 10567)
Verified
Pending. Targets accountability and disclosure obligations for AI-generated synthetic media.

Implementation status - AI · Privacy · Cybersecurity

From PH AI Note
AI · Sectoral risk-based
No comprehensive AI statute in force. Risk-based classification (prohibited / high-risk / limited-risk / minimal-risk) operates in two sectoral instruments — Supreme Court A.M. No. 25-11-28-SC (judiciary) and DepEd Order No. 003 s. 2026 (education). Pending: 17+ House Bills (HB 13, 1920, 2827, 3195 …) and SB 25 propose a national framework.
Privacy · Operational
Data Privacy Act of 2012 (RA 10173) is the core regime, administered by the National Privacy Commission. NPC Circular 2022-04 governs registration and notification of automated decision-making and profiling; NPC Advisory 2024-04 anchors deployer accountability for AI systems. Section 6 reach is extraterritorial.
Cyber · Operational
Cybercrime Prevention Act of 2012 covers AI-enabled offences (computer-related fraud, identity theft, illegal access). Konektadong Pinoy Act IRR imposes incident reporting on AI-relevant systems via NCERT. BSP Circular 1153 + Memo M-2024-029 (AFASA) regulate AI/ML in financial services.

Practical guidance & research

8 documents tracked · curated from regulators
NPC + IC · March 2025Joint Advisory

Philippines NPC–IC Joint Advisory on PETs in the Insurance Industry

Considerations on the use of Privacy Enhancing Technologies (PETs) in the insurance industry. Non-binding but informs how regulators assess accountability and security under the Data Privacy Act.
BSP · 2024Thematic

Philippines BSP Project Sapiens — AI/ML in Financial Services

BSP Technology Risk and Innovation Supervision Department thematic review surveying AI/ML use across Philippine financial services. Identifies risks and supervisory expectations.
BSP · 2024Thematic

Philippines BSP Project Sapiens — AI/ML in Financial Services

BSP Technology Risk and Innovation Supervision Department thematic review surveying AI/ML use across Philippine financial services. Identifies risks and supervisory expectations.

DOST · Dec 2024Strategy

Philippines DOST AI Roadmap (Dec 2024)

National priorities and strategic directions for AI development and adoption — issued via PCIEERD. Non-binding policy document.

Authorities 15 tracked

All 15 →

Legislation 24 tracked

All 24 →

Practical guidance 8 documents

All 8 →
Loading…
Settings · Preferences

Default page view

Your global default applies to every jurisdiction. Per-country pins (set from any jurisdiction page) layer on top and always win.

Default for all jurisdictions

The view a fresh juris page opens in. Same control as the top of any country page.

Currently: Newsroom

Per-country pins

Countries you've set to override the global default. Click × to remove.

No per-country pins.
State (mockup, persisted in localStorage):   global default = A   ·   philippines override = none (follows global)   ·   effective view = A