No. Sharing passwords in the Philippines is illegal under the Data Privacy Act of 2012 (DPA) and Cybercrime Prevention Act of 2012, exposing parties to civil, criminal, and administrative liabilities. The National Privacy Commission (NPC) enforces strict access controls, while the Department of Justice (DOJ) prosecutes unauthorized access cases. Recent NPC advisories (2024) emphasize heightened scrutiny under the 2026 DPA amendments, which expand penalties for non-compliance.
Key Regulations for Sharing Passwords in Philippines
- Data Privacy Act (DPA) of 2012 (Republic Act No. 10173): Prohibits unauthorized sharing of login credentials under Section 27, classifying it as a violation of data confidentiality. Organizations must implement access management policies to prevent credential leakage.
- Cybercrime Prevention Act (Republic Act No. 10175): Criminalizes unauthorized access to computer systems via shared passwords under Section 4(c)(2), punishable by up to 12 years imprisonment and fines up to ₱2 million.
- NPC Guidelines on Access Controls (2024): Mandates multi-factor authentication (MFA) for sensitive data systems and prohibits password sharing in corporate environments. Non-compliance may trigger NPC investigations or fines up to ₱5 million.