× NPC Seal

Privacy Policy


At PhilFirst, we take your privacy seriously. This notice explains what personal information we collect, how we use it, and what controls you have over it.


Who we are

Philippines First Insurance Co., Inc. (“PhilFirst,” “we,” “our,” or “us”) is a non-life insurance provider operating under the regulations of the Insurance Commission and the Data Privacy Act of 2012. We serve policyholders across various non life lines, including property, motor, surety bonds, liability, and engineering insurance.


Our NPC Registration

In line with the National Privacy Commission’s (NPC) guidelines, and to maintain full transparency with the public, you can access our official NPC Seal of Registration and Certificate of Registration through the links below:

These confirm that PhilFirst is duly registered as a Personal Information Controller (PIC) and complies with current data privacy standards set by the NPC.


What personal data we collect

We collect personal, sensitive, and financial information only as necessary and in line with the Data Privacy Act of 2012. This includes:

Your full name, address, phone number, and email, which help us stay in touch with you. We may also collect demographic details such as your date of birth, age, gender, civil status, nationality, and location. To comply with legal and insurance requirements, we may request government-issued identification like your TIN, SSS number, or passport.

If relevant to your insurance application or claim, we may collect health or medical information. For billing and servicing purposes, we gather financial information, including bank details and payment history.

All of this is collected with your consent, for a specific and legitimate purpose a primarily to provide and support the insurance products and services you choose.


How we collect your data

We collect your personal data through various channels, depending on how you interact with us. This includes when you request for quotation, complete application or claim forms, submit supporting documents in connection with your insurance policy or request, or communicate with us by phone, email, or in person.

We may also collect your data through our secure online platforms, mobile services, or through authorized intermediaries such as licensed agents and brokers who assist in facilitating your insurance transactions with us.


Why we use your data

Your personal information is used to evaluate and process insurance applications, issue and manage policies, and assess and settle claims and benefits. It also enables us to provide policy servicing, respond to inquiries or requests, and ensure effective customer support.

We use the information to meet our legal and regulatory obligations, conduct internal reviews, and improve the quality and efficiency of our services. With your consent, we may also send updates on new products, promotions, or other relevant offerings.


Legal basis for processing

We use and process your personal data in accordance with the Data Privacy Act of 2012, the Insurance Code of the Philippines, and other applicable laws and regulations, including relevant circulars and guidelines issued by the Insurance Commission. This may be based on legal obligations, the performance of our contractual duties, your consent (when required), or our legitimate business interests. These interests may include fraud prevention, regulatory compliance, system improvement, and maintaining service quality.

Where we rely on your consent, you may withdraw it at any time by contacting our Data Protection Officer at [email protected] subject to legal or contractual limitations.


How long we keep your data

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations. This includes the duration of your active insurance policies and, for closed accounts, the legally prescribed retention period.

Unless a longer retention period is mandated by law or justified by regulatory obligations, we may retain your data for up to ten (10) years from the date of your last transaction or interaction with us. After this period, and once the data is no longer required, it will be securely deleted, destroyed, or anonymized in accordance with our data retention and disposal policies.


Who we share your data with

PhilFirst does not share your personal data with third parties unless it is permitted or required under applicable laws and regulations.

We may share your data in the following situations: when you have given your explicit consent; when disclosure is required by law, regulation, or regulatory authorities; or when necessary for the fulfillment of insurance-related services such as underwriting, claims evaluation, policy administration, or reinsurance arrangements.

In all cases, we ensure that any third party handling your information—such as adjusters, reinsurers, or accredited service providers—complies with strict data privacy and security standards, consistent with the guidelines set by the National Privacy Commission.


Your privacy rights

Under the Data Privacy Act, you can:

  • The right to be informed about how your personal data is processed
  • The right to access and request a copy of your personal data
  • The right to correct or update inaccurate or outdated information
  • The right to object to certain types of data processing
  • The right to request the deletion or blocking of your data, when applicable
  • The right to request the transfer of your data to another insurance provider, subject to legal, contractual, and technical limitations
  • The right to withdraw consent at any time, where processing is based on consent
  • The right to lodge a complaint with the National Privacy Commission if you believe your rights have been violated

To exercise any of these rights, please contact our Data Protection Officer at [email protected]


How your data is protected

We implement strict physical, technical, and organizational measures to ensure the security and confidentiality of your personal data. These include the use of secure servers, encryption technologies, access control protocols, regular internal audits, and ongoing staff training on data privacy and protection.

Your information is handled with the highest level of care and responsibility, in line with industry standards and the requirements of the Data Privacy Act of 2012.


How to contact us

If you need help, want to withdraw consent, submit a request, or report a problem, you can reach us at:

Data Protection Officer
Philippines First Insurance Co., Inc.
7th Floor, STI Holdings Center, 6764 Ayala Avenue, Makati City
Email: [email protected]
Phone: (02) 8892 8888 (Monday–Friday, 8 AM–5 PM)


Changes to this notice

We may update this Notice to reflect regulatory or operational changes. Any updates will be posted on our website at www.philfirst.com.ph. You will always see the latest version here.


Thank you for trusting PhilFirst. Your peace of mind, including the privacy of your data, matters to us.