Professional Documents
Culture Documents
NETIQUETTE GUIDELINES
SMILEYS
Responsible Agency:
- Republic of the Philippines
(Department of Information and
Communications Technology)
Awareness
Breach Management
Compliance
Data protection officer and
Security measures
● Creation of the Dept. of Information
NATIONAL PRIVACY COMMISSION and Communications Technology
- To administer and implement the (DITC in 2015 (R.A no. 10844)
provisions of this Act, and to monitor ● The activation of the National
and ensure compliance of the Privacy Commission (NPC) in 2016.
country with International standards ● DPA’s Implementing and
set for data protection. Regulations was put in effect on
sept. 09, 2016.
FUNCTION OF NPC
● Rule making
● Advisory
● Public education
● Compliance and monitoring
● Investigations and complaints
● Enforcement
COMPANY/AGENCY
Personal Information Controller (PIC)
- Controls the processing of personal
data, or instructs another to process
Which is more valuable?
personal data on its behalf.
DATA or MONEY
Personal Information Processor (PIP)
THE JOURNEY OF THE - Organization or individual who or
DATA PRIVACY ACT personal information controller may
outsource or instruct the processing
of personal data pertaining to the
● European Union’s 1995 Data
data of the subject.
Protection Directive
● Electronic commerce Act of 2000
Data Protection Officer (DPO)
(R.A. No 8792) - recognition and use
- Responsible for the overall
of electronic commercial and non
management of compliance to DPA.
commercial transactions and
documents.
REGULATOR
● Membership in the Asia-Pacific
National Privacy Commission
Economic Cooperation (APEC)
- Independent body mandated to
-privacy Framework in 2005.
administer and implement the DPA
● DTI Administrative Order No. in
of 2012, and to monitor and ensure
2006- which prescribed guidelines
compliance of the country with
for a Local data protection
informational standard set for
certification system.
personal data protection
● The DPA was signed into law in
2012, with the local BPO sector as
its most visible endorses.
CLASSIFICATION OF PERSONAL
DATA
PERSONAL INFORMATION
- Refers to any information whether
recorded in a material form or not,
from which the identity of an
individual is apparent or can be
reasonably and directly ascertained
by the entity holding the information ,
or when put together with other
information would directly and PERSONAL INFORMATION EXAMPLES
certainly identify an individual ● Name
● Address
SENSITIVE PERSONAL INFORMATION ● Place or work
Refers to personal information about an ● Telephone number
individual’s: ● Gender
- Race,ethnic origin,marital status, ● Location of an individual at a
age, color, religious, philosophical or particular time
political affiliations, health, ● IP address
education, genetics, sexual life, any ● Birthplace
proceeding for any offense ● Birthdate
committed or alleged to have been ● Country or citizenship
committed, the disposal os such ● Citizenship status
proceedings, the sentence of any ● Payroll and benefits information
court in such proceedings; ● Contact Information
3. Principle of Proportionally
- The processing of information shall
be adequate, relevant, suitable,
necessary, and not excessive in
relation to a declared and specified
purpose. Personal data shall be
processed only if the purpose of the
processing could not reasonably be
fulfilled by other means.
PENALTIES