Back to Home

Terms of Use

The Incident Notification Management System (INMS) Internal Portal is operated by the National Telecommunications Commission (NTC) for the exclusive use of its Central Office divisions (ICTD, NFD, and others), as well as all NTC Regional Offices. By accessing or using this system, you agree to comply with the terms and conditions outlined below.

Purpose

The INMS Internal Portal is a secure platform established to:

  • Support the Organizational CERT, led by the Information and Communications and Technology Division (ICTD), in reporting, logging, and managing cybersecurity incidents affecting NTC’s internal ICT infrastructure (e.g., servers, staff devices, email systems, and networks).
  • Support the Sectoral CERT, led by the Networks and Facilities Division (NFD), in coordinating telecom-related incident reports escalated internally by telcos, ISPs, and other sectoral partners.
  • Facilitate collaboration between Central Office divisions and Regional Offices for unified incident response.
  • Maintain official records, compliance documentation, and lessons learned in accordance with national and international cybersecurity standards.

Authorized Use

  • Access is strictly limited to NTC personnel with authorized accounts.
  • The system may only be used for official NTC operations and CERT functions.
  • Unauthorized access, credential sharing, or attempts to bypass system controls are prohibited.

User Responsibilities

All users of the INMS Internal Portal are required to:

  • Submit accurate, complete, and timely incident reports.
  • Include all required details such as detection time, affected systems, attack type, containment measures, and supporting logs.
  • Maintain the confidentiality of sensitive data and follow Traffic Light Protocol (TLP) classifications where applicable.
  • Immediately report any suspected unauthorized access or account misuse to the ICTD/Organizational CERT.

Data Handling

  • Incident data is stored securely and processed solely for internal response, coordination, and compliance reporting.
  • Information may only be shared externally with DICT, NCERT, law enforcement agencies (PNP-ACG, NBI, CICC), NPC, or international CERTs if escalation is required due to criticality.
  • All reports and data handling must comply with the INMS Internal Privacy Policy and the Data Privacy Act of 2012 (RA 10173).

Prohibited Activities

Users must not:

  • Submit false, misleading, or incomplete reports.
  • Use the system for personal, non-official, or malicious purposes.
  • Attempt to disable, tamper with, or disrupt portal functionality or security mechanisms.
  • Share or disclose incident data outside NTC without prior authorization.

Accountability

Violations of this Terms of Use may result in:

  • Disciplinary actions under NTC’s internal policies and Civil Service rules.
  • Suspension or revocation of system access privileges.
  • Administrative or legal sanctions, where applicable under national law.

System Availability

NTC will maintain the INMS Internal Portal for continuous availability to support CERT operations. However, in the event of downtime due to system maintenance, technical issues, or outages:

  • Fallback procedures, including the use of manual Incident Report Forms (IRFs) and secure email submissions, will be applied to ensure continuity of reporting.

Contact

For assistance, troubleshooting, or system-related concerns, users may contact:

  • Email: techsupport.inms@ntc.gov.ph