PhilHealth EPRS Implements TOTP Authentication in 2025

The Philippine Health Insurance Corporation (PhilHealth) is enhancing the security of its Electronic Premium Remittance System (EPRS) by implementing a mandatory Time-Based One-Time Password (TOTP) authentication. This new security measure is scheduled to begin on June 3, 2025.

According to PhilHealth Advisory No. 2025-0032, signed by Acting President and Chief Executive Officer Edwin M. Mercado, this initiative aims to bolster user authentication and provide greater protection for the accounts of all EPRS users. The implementation is a significant step towards safeguarding sensitive data within the system.

What is TOTP Authentication?

Time-Based One-Time Password authentication adds an extra layer of security to the login process. Upon its implementation, users will be required to enter a unique, time-sensitive code generated by an authenticator app on their smartphone or other device, in addition to their standard username and password. This two-factor authentication method makes it significantly more difficult for unauthorized individuals to gain access to an account.

How Will This Affect Users?

Starting June 3, 2025, all individuals using the PhilHealth EPRS will need to use a TOTP to access the system. PhilHealth has stated that a comprehensive user guide will be distributed to all PhilHealth Accounts Information Management Specialists (PAIMS) to ensure a smooth transition for all concerned users.

For any assistance with setting up the new TOTP feature or for any related questions, users are encouraged to get in touch with their designated Accounts Officer or visit the nearest PhilHealth Local Health Insurance Office (LHIO).

This move by PhilHealth underscores its commitment to strengthening the security and integrity of its online systems, ensuring that member and employer data remains secure. Users are advised to prepare for this change to ensure uninterrupted access to the EPRS.