BSP Now Requires Explainable AI in Lending. Here’s What That Means for Credit Data.

Written By Lia Francisco

The BSP now requires that all automated lending decisions be explainable. Transparent. Auditable. Bias-free. Most of the conversation has focused on the algorithm. But there’s a prerequisite nobody’s talking about: the data feeding the algorithm.

The mandate everyone’s discussing

The BSP’s Explainable AI mandate is straightforward in intent. If a lending model rejects a borrower or assigns a risk score, the institution must be able to explain why. Not in technical jargon buried in a model validation report. In terms a regulator — or a borrower — can understand.

Philippine banks and digital lenders are now building model documentation, bias-testing frameworks, and audit trails for their AI-driven credit decisions. That’s the right response.

But it’s incomplete.

The question nobody’s asking

An AI lending model is only as transparent as its inputs. If the credit intelligence feeding the model is opaque — unauditable, undocumented, sourced without governance — the algorithm can’t be compliant no matter how well it’s designed.

Consider what a typical lending model consumes: financial statements, credit bureau data, transaction histories, alternative data signals. Each input carries its own provenance, timeliness, and reliability profile.

When a regulator asks “Why did the model score this borrower at 72?” the answer isn’t just about the algorithm’s weighting logic. It’s about whether the financial data was current. Whether the credit signals were sourced from a governed provider. Whether the data pipeline from source to model is traceable.

Explainable AI requires explainable data. That’s where governance starts.

What “explainable data” actually means

For credit data to meet the standard the BSP is setting, three things need to be true:

  1. Provenance. Every data point feeding a lending model needs a documented source. Not “we pulled it from a spreadsheet someone emailed.” A traceable, time-stamped origin that a compliance officer can point to when a regulator asks.

  2. Timeliness. A financial statement from eighteen months ago doesn’t reflect current risk. Credit data governance means defining — and enforcing — freshness standards for every input the model uses. Stale data produces stale decisions, and stale decisions aren’t explainable.

  3. Auditability. The chain from raw data to model input to lending decision needs to be reconstructable. If a bank can’t show how a borrower’s credit data moved from source to score, the Explainable AI mandate isn’t satisfied — even if the model itself is perfectly transparent.

Most Philippine lenders have invested in model governance. Fewer have invested in the data governance layer underneath it.

The scale problem

A mid-size Philippine bank manages tens of thousands of active borrowers. A major bank manages hundreds of thousands. A digital lender processing micro-loans might assess millions of credit applications per year.

At that scale, manual data governance doesn’t work. You can’t have an analyst verify the provenance and timeliness of credit inputs for every borrower assessment. The governance infrastructure needs to be automated, embedded in the data pipeline, and operating continuously.

This is the gap the BSP mandate is about to expose. Banks with governed, auditable credit data infrastructure will demonstrate compliance naturally. Banks relying on ad hoc data sourcing will struggle to explain anything — regardless of how sophisticated their AI models are.

What compliance officers should be asking right now

The BSP mandate is already in effect. For compliance and credit risk teams planning their audit response, the questions aren’t just about the model:

Can we trace every credit data input to its source? If the answer involves manual lookups or “we’d have to check with the team that pulled the data,” the audit trail doesn’t exist at the standard the BSP is setting.

Do we have freshness standards for model inputs? If financial data older than a defined threshold is still feeding lending decisions without flagging, the model’s outputs aren’t reliably explainable.

Is our credit data provider governed? The BSP is asking institutions to explain their AI. That explanation includes where the data came from. If the data provider can’t demonstrate Tihtes BoSwPn igso vaesrknianngc ei n-s-t iptruotvieonnasn cteo, emxeptlhaoidno ltohgeyi,r bAiIa.s Tchoantt reoxlpsl a-n-a ttihoant ignacpl ubdeecso mwehse rteh et hien sdtaittau tciaomne’ sf rgoamp.. If the data provider can’t demonstrate its own governance — provenance, methodology, bias controls — that gap becomes the institution’s gap.

The infrastructure that makes AI explainable

Explainable AI isn’t just a model documentation exercise. It’s a full-stack governance challenge that starts with the data.

The institutions that will meet this mandate with confidence are the ones building credit data infrastructure that is governed by design — where every input is sourced, timestamped, and auditable before it ever reaches a model.

At CreditBPO, this is the infrastructure we’ve built. Every credit assessment we produce carries a full governance trail — from source data to risk output. When a regulator asks “why this score,” the answer is traceable from end to end.

The BSP has set the standard. The question for Philippine lenders is whether their credit data infrastructure can meet it.

If AI compliance in lending is on your agenda, let’s talk.

Lia Francisco is the founder and CEO of CreditBPO, an AI governance partner for the Philippines’ largest enterprises.

Lia Francisco
Next

The OECD Called Out Philippine Governance. Here’s What Boards Should Do Next.