Are your Personal Data Shared with Companies, Banks, or Institutions Protected?

Are your Personal Data Shared with Companies, Banks, or Institutions Protected?

Republic Act 10173 or the Data Privacy Act of 2012 now has its Implementing Rules and Regulations promulgated by the National Privacy Commission (Commission).

These Rules further enforce the Data Privacy Act and adopt generally accepted international principles and standards for personal data protection.

They safeguard the fundamental human right of every individual to privacy while ensuring free flow of information for innovation, growth, and national development. These Rules also recognize the vital role of information and communications technology in nation building and enforce the State’s inherent obligation to ensure that personal data in information and communications systems in the government and in the private sector are secured and protected.

“Personal data” refers to all types of personal information. While “Personal information” refers to any information, whether recorded in a material form or not, from which the identity of an individual is apparent or can be reasonably and directly ascertained by the entity holding the information, or when put together with other information would directly and certainly identify an individual.

“Personal information controller” refers to a natural or juridical person, or any other body who controls the processing of personal data, or instructs another to process personal data on its behalf. The term excludes:

  1. A natural or juridical person, or any other body, who performs such functions as instructed by another person or organization; or
  2. A natural person who processes personal data in connection with his or her personal, family, or household affairs.

There is control if the natural or juridical person or any other body decides on what information is collected, or the purpose or extent of its processing.

Personal information controllers are required to do the following:

  1. Registration of personal data processing systems operating in the country that involves accessing or requiring sensitive personal information of at least one thousand (1,000) individuals, including the personal data processing system of contractors, and their personnel, entering into contracts with government agencies;
  2. Notification of automated processing operations where the processing becomes the sole basis of making decisions that would significantly affect the data subject;
  3. Annual report of the summary of documented security incidents and personal data breaches;
  4. Compliance with other requirements that may be provided in other issuances of the Commission.

The obligation extends to contractor, sub-contractor or the personal information processor.

The personal information controller or personal information processor that employs fewer than two hundred fifty (250) persons shall not be required to register unless the processing it carries out is likely to pose a risk to the rights and freedoms of data subjects, the processing is not occasional, or the processing includes sensitive personal information of at least one thousand (1,000) individuals.

The following acts and omissions are penalized with imprisonment and a fine:

  1. Unauthorized Processing of Personal Information and Sensitive Personal Information
  2. Accessing Personal Information and Sensitive Personal Information Due to Negligence
  3. Improper Disposal of Personal Information and Sensitive Personal Information
  4. Processing of Personal Information and Sensitive Personal Information for Unauthorized Purposes
  5. Unauthorized Access or Intentional Breach
  6. Concealment of Security Breaches Involving Sensitive Personal Information
  7. Concealment of Security Breaches Involving Sensitive Personal Information
  8. Malicious Disclosure
  9. Unauthorized Disclosure

Businesses and industries affected are given one (1) year to comply from the effectivity of the IRR. The IRR was promulgated August 24, 2016. The Rules took effect fifteen (15) days after its publication in the Official Gazette. It was published in the Official Gazette on August 25, 2016. Thus, it took effect September 9, 2016.

Compliance however, begins September 9, 2017.

Share this post

Comments (17)

  • where to buy dmt online dmt products

    … [Trackback]

    […] Info on that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    July 15, 2022 at 8:15 pm
  • sbobet

    … [Trackback]

    […] Read More Info here on that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    July 26, 2022 at 2:04 pm
  • general labor

    … [Trackback]

    […] There you will find 89385 more Information on that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    July 31, 2022 at 11:42 pm
  • คลิปหลุดใหม่

    … [Trackback]

    […] Info to that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    August 23, 2022 at 1:11 am
  • bergara b14

    … [Trackback]

    […] Read More on that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    August 27, 2022 at 11:31 am
  • Colorado mushroom dispensary near me

    … [Trackback]

    […] There you will find 86403 more Information to that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    September 8, 2022 at 6:17 am
  • jav

    … [Trackback]

    […] Read More here on that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    September 13, 2022 at 3:01 am
  • 贏家娛樂

    … [Trackback]

    […] Find More Information here on that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    October 10, 2022 at 10:09 pm
  • bullet journal template

    … [Trackback]

    […] Info on that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    November 3, 2022 at 1:18 am
  • nova88

    … [Trackback]

    […] Find More on to that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    November 5, 2022 at 3:46 pm
  • holosun 507c for sale

    … [Trackback]

    […] Read More Information here to that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    November 18, 2022 at 11:27 pm
  • sbobet

    … [Trackback]

    […] Read More on to that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    December 2, 2022 at 11:42 pm
  • Get More Information

    … [Trackback]

    […] Find More on that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    February 27, 2023 at 1:18 am
  • wonka chocolate bar

    … [Trackback]

    […] There you will find 83382 additional Information on that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    March 7, 2023 at 9:47 pm
  • Where to Buy Changa DMT online Brisbane

    … [Trackback]

    […] Read More to that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    March 24, 2023 at 3:53 pm
  • あど うぶ

    … [Trackback]

    […] Find More on that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    April 18, 2023 at 8:36 pm
  • goxapp

    … [Trackback]

    […] Find More on that Topic: lvsbooks.com/personal-data-shared-companies-banks-institutions-protected/ […]

    May 4, 2023 at 2:08 am

Comments are closed.


error: Content is protected !!