Professional Documents
Culture Documents
RA 10173, otherwise known as the Data Privacy Act, is a law that seeks to protect
all forms of information, be it private, personal, or sensitive.
Under the DPA, personal data is considered and treated as a person’s own
personal property.
Classification of Personal Data:
1) Personal Information
2) Sensitive Personal Information
3) Privileged Information
Privileged Information – any and all forms of data which under the Rules of
Court and other pertinent laws constitute privileged
communication
SCOPE OF THE DPA:
DPA applies to an act done or practice engaged in and outside of the Philippines by
an entity if:
1) Transparency
- The data subject must be aware of the nature, purpose, and extent of the
processing of his or her personal data
2) Legitimate Purpose
- The processing of information shall be compatible with a declared and
specified purpose which must not be contrary to law, morals, or public
policy.
3) Proportionality
- The processing of information shall be adequate, relevant, suitable,
necessary, and not excessive in relation to a declared and specified
purpose.
SUBCONTRACTING
PRIVILEGED COMMUNICATION
EXCEPTIONS/NON-APPLICABILITY:
a) If the processed personal information are used only for the needs of
scientific and statistical research and, on the basis of such, no activities
are carried out and no decisions are taken regarding the data subject; and