Is the Konektadong Pinoy Act a Digital Leap or a Cybersecurity Risk Waiting to Happen?

The recent call by the Philippine Chamber of Telecommunication Operators (PCTO) to veto the Konektadong Pinoy Act is raising red flags across the telecom and cybersecurity communities. While the bill aims to make it easier for new data transmission industry participants (DTIPs) to enter the market, many experts are warning that its current form may introduce more problems than solutions particularly when it comes to cybersecurity and national security.

A key concern centers on the provision allowing new DTIPs to delay obtaining a cybersecurity certification for up to two years after starting operations. In today’s threat landscape, that’s more than just a regulatory oversight it’s a major vulnerability. As Globe’s VP Ariel Tubayan emphasized, a data breach doesn’t wait for compliance deadlines. It can happen the moment a system goes live, especially if proper safeguards aren’t in place from day one.

Another contentious issue is the bill’s stance on satellite providers. By allowing them to operate using spectrum without clear regulatory oversight, it potentially undermines the very goal of technology neutrality the bill claims to uphold. This creates an uneven playing field and opens the door to security loopholes something no country can afford in an era of increasingly sophisticated digital threats.

From the perspective of existing telco giants like PLDT, there’s also a sentiment that the bill overlooks the significant investments already being made in infrastructure and cybersecurity. With companies like PLDT spending tens of billions annually to upgrade and secure their networks, the legislation's perceived bias toward new entrants may seem to undercut the efforts of those who’ve long carried the weight of national connectivity.

The reality is that streamlining market entry shouldn’t come at the cost of weakening security standards or creating regulatory blind spots. New players should be welcomed, but not at the expense of a secure and equitable digital ecosystem.

This debate highlights why robust, proactive cybersecurity measures are essential not just as a box to tick after two years, but as a foundational requirement from the very beginning. Managed Security Service Providers (MSSPs) like Directpath Global Technologies (DGT) help businesses of all sizes, including telcos and startups, secure their operations from day one. DGT offers a comprehensive suite of services including Mobile Threat Defense (MTD), Extended Detection and Response (XDR), VAPT, SOC2 compliance, VRMaaS, WAF, and vCISO advisory, all enhanced by our AI-driven solutions tailored to meet diverse operational needs.

As the Konektadong Pinoy Act continues to stir debate, one thing is clear: growth and innovation must go hand-in-hand with cybersecurity. The cost of not getting this balance right could be far greater than the delay of a legislative signature. Source: PhilStar Global