Statement of Privacy Policy

Digido Finance Corp. (DFC) is committed to protecting the privacy of its data subjects, and ensuring the safety and security of personal data under its control and custody. This policy provides information on what personal data is gathered by DFC about its current, past, and prospective clients and employees; how it will use and process this; how it will keep this secure; and how it will dispose of it when it is no longer needed.

This information is provided in compliance with the Philippine Republic Act No. 10173, also known as, the Data Privacy Act of 2012 (DPA) and its Implementing Rules and Regulations (DPA-IRR). It sets out DFC’s data protection practices designed to safeguard the personal data of individuals it deals with, and also to inform such individuals of their rights under the Act.

This Data Privacy Notice and Consent Form may be amended at any time without prior notice, and such amendments will be notified to you in via DFC’s website or by email.

Privacy Notice Information Collected

DFC collects, stores, and processes personal data from its current, past and prospective clients and employees, starting with the information provided at application and to information collected throughout the whole course of the transaction by the client or in the course of their employment or engagement by the employee or consultant with DFC and its affiliates and/or subsidiaries. This will include but not limited to the following:

DFC may also collect, store, and process personal data and information of persons in the data subject’s contact list in his or her mobile device, whom he or she nominated as her reference and/or guarantor, for proper identification and verification of data subject’s identity, fraud prevention, credit scoring and credit verification to establish credit worthiness of the data subject, and compliance to the Anti-Money Laundering and Terrorist Prevention Laws of the Republic of The Philippines. The disclosing data subject may be requested to give consent in sharing the personal data of those persons in his contact list, and may include but not limited to personal data such as name, mobile number, relationship with the disclosing data subject, residence and email address, and employment details. For this, it is the obligation of the disclosing data subject to inform the nominated reference and/or guarantor and obtain the appropriate consent of the latter.

Relative to the immediately preceding paragraph, data subject is also informed that DFC may make and manage phone calls for proper identification and verification of data subject’s identity, fraud prevention, credit scoring and credit verification to establish credit worthiness of the data subject, compliance to the Anti-Money Laundering Laws of the Republic of The Philippines, and enhance user experience of data subjects.

Furthermore, data subjects may also allow DFC to access the mobile devices location for purposes of fraud prevention and detection, compliance to the Anti-Money Laundering and Terrorist Prevention Laws of the Republic of The Philippines, and enhancement of user experience of data subjects.

The information we collect will include but not limited to:

For DFC Clients

Channels of Data Collection

DFC shall collect information about the data subject in the following ways:

  1. Information that the data subject provided DFC through communications with DFC employees or its mobile and/or website application;

  2. Information that the data subject authorized DFC to collect through its applications, such as photographs obtained via access to data subject’s smartphone camera or photo gallery, phone, email, or social media contact lists and metadata for the purpose of KYC and preventing fraud, or credit scoring and/or verification;

  3. Information from outside sources such as credit bureaus and customer service providers to help us with customer verification and credit-related decisions.

Use of Information

For Clients

The collected personal data is used solely for the following purposes:

  1. Processing of credit application of client and confirmation of the identity of prospective client and their reference or guarantors;

  2. Processing of credit application, including verification and confirmation of all disclosed personal and sensitive information.;

  3. Conduct of the ‘Know Your Client’ exercises to establish and verify the identity of the prospective client, prevent and/or detect possible attempts to commit fraud and other related criminal offenses, credit scoring, credit verification, and comply with the regulations of the Anti-Money Laundering Council;

  4. Conduct credit checking and other verification procedures with the nominated Character References, subject to the provisions of the application regulations of the National Privacy Commission;

  5. Analyze disclosed personal data of the data subjects and data subject’s reference or guarantor/s, to be able to craft products and services tailored the needs and requirements of the data subjects;

  6. Verifying authenticity of financial and personal records and documents;

  7. Analysis, validation and evaluation of the financial documents, to establish credit worthiness of the client and determine potential risks. This includes sharing of client’s personal data and sensitive personal information to Third-Party Service Providers (TPSPs) such as JuicyScore ( and Finscore, for risk profiling, risk scoring, identity verification and validation, and fraud detection and/or prevention, using automated-identity verification systems. TPSP such as JuicyScore uses these shared personal data and sensitive personal information, for and in behalf of DFC, only for the purposes specified in the Service Level Agreement and as described herein, to which the existing and prospective clients consents. JuicyScore, Finscore, and all other TPSPs DFC contracted to process personal data and/or sensitive personal information shall not keep, retain, and/or maintain DFC’s existing and prospective client’s personal data or sensitive personal information DFC shared to them;

  8. Facilitate and complete the transaction applied, share it within our group of companies and offer the clients products suitable or relevant to their requirements and/or profile;

  9. Protect personal information and sensitive personal information disclosed to secure accounts from fraud and other illegal activities;

  10. Perform legal and regulatory duties to further improve due diligence in anti-money laundering and counter-terrorism efforts as well as other mandatory and required activities by the law or regulations by our supervising agencies;

  11. Settle claims or disputes involving DFC’s products and services. The personal data or sensitive personal information may also be used for prosecuting or defending DFC or its employees when needed;

  12. Store collected personal data in a secured onsite and/or cloud storage, within the allowed retention period set by the law;

  13. Share or disclose personal data and/or sensitive personal information to third-party service provider, as may be required by law, regulation, or by a court order;

    Information Sharing

    All personal data and information collected and/or were disclosed by the data subjects by reason of their application, transaction, and/or any interaction with the Corporation will be uploaded and stored on our server (, and will not be shared with any third party.

    DFC will not share your personal data with third parties unless necessary for the above-mentioned purposes and unless you give your consent thereto. Such third parties may include DFC’s business units, subsidiaries, affiliates, agents, outsourced service providers and other third parties for marketing and related activities, enhance customer experience, enhance security and anti-fraud efforts, strengthen AML and Data Privacy Protocols between the data subjects and partner-merchants, and to upgrade but simplify and unify KYC Processes between and platform users.

    DFC engages outsourced service providers to support it in delivering services to its data subjects. DFC’s third parties include government regulators, judicial, supervisory bodies, tax authorities or courts of competent jurisdiction. DFC engages third parties for the following reasons:

Personal data shared with third parties shall be covered by the appropriate agreement to ensure that all personal data is adequately safeguarded.

DFC does not, will not, sell personal data to any third party. All our engagements with third parties shall be fully-compliant with our obligation of confidentiality imposed on us under applicable agreements and/or terms and conditions or any applicable laws that govern our relationship with you.

Personal data under the custody of DFC shall be disclosed only to authorized recipients of such data. Otherwise, we will share your personal data with third parties only with your consent, or when required or permitted by our policies and applicable law, such as with:

Data Transfer

Where DFC consider it necessary, indispensable or appropriate, for the purposes of data storage, enhanced security, account processing, providing any service or product on our behalf to you, or

implementing new or enhanced system for our products and services, we may transfer the custody of your personal data to third parties within or outside of the Philippines, under conditions of confidentiality and similar levels of security safeguards.


DFC strictly enforces data privacy and information security policies. It implements technological, organizational and physical security measures to protect your personal data against loss, misuse, modification, unauthorized or accidental access or disclosure, alteration or destruction. We put safeguards such as the following:

Consenting to this Privacy Notice, however, does not waive any of the data subject’s rights under the Data Privacy Act of 2012.

For complete reference on the Data Privacy Act, please visit the National Privacy Commission website at