The Philippines is currently navigating a high-stakes transition as artificial intelligence permeates its core industries, yet the legislative frameworks intended to manage this evolution remain strikingly detached from the country’s unique economic landscape. With over 1.5 million jobs in the business process outsourcing (BPO) sector facing immediate pressure from automated customer service agents and sophisticated language models, the stakes for accurate policy are incredibly high. The threat is not merely theoretical or confined to future projections; it is manifest in the proliferation of political deepfakes and algorithmic biases that are already shaping public discourse and financial accessibility. Despite these localized emergencies, the current legislative trajectory in Manila appears more concerned with mimicking international standards than addressing the specific vulnerabilities of a nation that primarily consumes, rather than develops, high-end AI technology. This misalignment creates a regulatory vacuum where the rules on paper offer little protection against the actual risks encountered by Filipino citizens in their daily interactions with automated systems. Furthermore, the absence of a grounded strategy risks stifling local innovation by imposing heavy compliance burdens on small-scale startups while leaving the largest foreign tech giants virtually untouched by domestic mandates.
The Pitfalls: Copying Foreign Regulations Without Context
A significant issue with current legislative drafts in the Philippine Congress is their heavy reliance on the European Union’s AI Act, a framework designed for jurisdictions that serve as global hubs for AI development and high-level computation. By adopting risk-based classifications intended for “frontier” developers, Philippine lawmakers are essentially duplicating a model that assumes the country has a domestic industry of foundational model creators to regulate. This approach fails to recognize that the Philippines is not the birthplace of large language models like GPT-4o or Claude 3.5, but is instead a massive user base for these tools. Implementing high-level compliance requirements for “providers” makes sense in Brussels, where the aim is to rein in domestic tech giants, but in Manila, it often targets non-existent entities. This mismatch results in a regulatory structure that is functionally hollow, as it seeks to control the production phase of artificial intelligence while the local economy is almost entirely focused on the implementation and service-delivery phase.
This “provider-facing” regulatory approach creates rules that exist only on paper because the nation lacks the international leverage to enforce these mandates on tech giants based in Silicon Valley or other foreign tech hubs. When a Philippine law dictates how an AI model should be trained or what datasets should be used, it essentially screams into a void, as the developers of the most widely used tools are beyond the reach of local subpoenas and audits. By focusing on the developer’s side of the equation, the government is neglecting the “deployer” side, which is where the actual harm occurs within the archipelago. Local businesses, government agencies, and individual users are the ones integrating these tools into the Philippine societal fabric. A law that cannot touch the maker of the tool should at least be robust enough to hold the local user of that tool accountable, yet the current drafts continue to prioritize abstract, foreign-inspired concepts of developer responsibility over the practicalities of domestic application and oversight.
The Accountability Gap: Navigating Jurisdictional Realities
Current policy efforts suffer from what experts call “uninformed transfer,” where foreign regulatory models are adopted without considering the local institutional infrastructure or the practical limits of domestic law. This has led to a jurisdictional gap where the Philippine state has little to no enforcement mechanism over international AI providers who operate through the cloud. If a developer is located in a different hemisphere, a local law targeting “providers” offers no real protection to Filipino citizens who might be harmed by a specific algorithm or automated decision-making tool used in a local bank or recruitment firm. The reliance on foreign legal definitions means that when a person is unfairly denied a loan due to a biased algorithm, the legal system struggles to identify who is at fault. Because the “provider” is an unreachable foreign entity and the local “deployer” is often shielded by the claim that they are merely using a third-party service, the victim is left in a legal “black hole” with no clear pathway for redress or compensation.
Furthermore, the rigid distinction between “providers” and “deployers” used in foreign legislation often collapses in the local context, creating significant confusion for domestic enterprises. For example, a Philippine fintech company might act as both a developer of proprietary models for credit scoring and a user of third-party systems for identity verification. Current legislative drafts fail to account for these overlapping roles, leading to a situation where a single company might be subject to contradictory or redundant regulations depending on which “hat” they are perceived to be wearing. This lack of clarity is particularly damaging for the burgeoning local tech startup scene, which requires a stable and predictable legal environment to attract investment. Without a more nuanced understanding of how AI is actually integrated into Philippine business workflows, the government risks creating a regime that is both too weak to protect the public and too confusing to support the growth of the domestic digital economy.
Shifting Focus: Moving Toward Function-Based Oversight
To address these shortcomings, the regulatory focus must shift from “actor-based” categories to “function-based” oversight that prioritizes the protection of the end user. Instead of trying to force a company into a static label like “provider,” the law should look at the specific function an entity is performing during a transaction, such as data processing or automated decision-making. This method ensures that obligations—such as the right to a human-in-the-loop explanation or the requirement for a regular algorithmic audit—are triggered by specific actions regardless of the company’s corporate structure or geographic location. By focusing on what the technology does rather than who made it, Philippine regulators can exert control over the domestic “deployment layer” where the most immediate risks reside. This would allow for a more agile governance style that can adapt as the technology evolves, ensuring that the law remains relevant even as new types of AI applications emerge in the market.
This approach allows for a more evidence-based governance style that targets documented risks specific to the Philippine experience, such as the automation of the BPO sector and the use of AI in local election cycles. By utilizing global risk repositories and incident monitors like the AI Incident Database, lawmakers can identify and mitigate the most pressing threats that have already caused harm in similar emerging markets. This strategy moves away from legislative guesswork and toward a system that centers on the actual impact of AI on the everyday lives of Filipino workers and consumers. Rather than drafting broad, sweeping bans on certain types of technology, the government can implement targeted interventions that address specific harms, such as requiring transparency in AI-generated political advertisements or mandate severance and retraining programs for workers displaced by automation in the service sector. This shifts the conversation from abstract existential threats to the tangible economic and social challenges that are currently unfolding.
Capacity Building: Empowering Existing Regulatory Agencies
The push to create a new “Philippine Council on Artificial Intelligence” is often seen by critics as a perfunctory measure that lacks the necessary enforcement power or technical depth. Rather than establishing new advisory bodies that have no real teeth, the government should empower existing sectoral agencies that already possess a deep understanding of their respective fields and established regulatory pipelines. Governing AI is not a standalone task that can be handled by a single centralized committee; it is a technical challenge that requires oversight in specific industries like finance, labor, and digital infrastructure. For instance, the Bangko Sentral ng Pilipinas is better equipped to handle AI-driven credit scoring issues than a general AI council, just as the Department of Labor and Employment is best suited to manage the transition of the BPO workforce. Centralizing all AI policy risks creating a bottleneck that slows down the regulatory process while providing little in the way of specialized expertise.
By providing agencies like the National Privacy Commission and the Department of Information and Communications Technology with the technical resources and legal mandates they need, the Philippines can create a more robust and realistic governance model. Focusing on the deployment layer ensures that the law remains protective rather than just bureaucratic, as it places the burden of responsibility on those who are closest to the impact. The analysis of current trends suggested that the most effective way forward involved integrating AI oversight into the existing legal fabric rather than treating it as a separate, isolated phenomenon. Experts concluded that the path to a resilient digital economy was found in strengthening the capacity of domestic institutions to audit and challenge the automated systems that affect the lives of the citizenry. This strategic shift was deemed essential to prevent a structural failure that left the public vulnerable while the nation struggled to adapt its outdated legislative templates to the rapid pace of technological change.
