Data Privacy Act of 2012

Privacy is an inviolable human right, violations of the Data Privacy Act are punishable by law.

In September 8, 2012, Republic Act No. 10173, also known as Data Privacy Act of 2012 was passed into law. The National Privacy Commission (NPC) also adopted on September 9, 2016, the Implementing Rules and Regulations (IRR). The Act provides that those who are proven to be in violation of the law can be fined and even imprisoned.

The NPC recommends 5 data privacy guidelines to build your organization’s capacity to comply with the Data Privacy Act:

1. Appoint a Data Protection Officer (DPO)

2. Conduct a Privacy Impact Assessment (PIA)

3. Create your Privacy Management Program (PMP)

4. Implement your privacy and data protection (PDP) measures

5.  Regularly exercise your Breach Reporting Procedures (BRP)

Understanding and adherence to this law is particularly important in this digital age.

For more detailed information, please ask PRIVA @ https://privacy.gov.ph

Click me