On 1 March 2021, the Philippine National Privacy Commission (NPC) announced its new online registration and renewal platform called “eRehistro,” which can be used by Personal Information Controllers (PICs) and Personal Information Processors (PIPs) to register, amend or renew their Data Protection Officer (DPO) and Data Processing Systems (DPS) registrations.1

In addition, the NPC extended the validity of existing DPO registrations, from 7 March 2021 to 30 June 2021, in order to give way to the launch of the eRehistro platform. According to the NPC, this extension is also meant to give PICs and PIPs ample time to prepare for the creation of their eRehistro accounts as it will now include both Phase 1: DPO and Phase 2: DPS of the registration process.

The Philippine National Privacy Commission (NPC) recently issued NPC Circular No. 2020-03 on Data Sharing Agreements (Circular). The Circular applies to the disclosure of personal data from a personal information controller (PIC) to another PIC. It likewise applies to personal data that is consolidated by several PICs and shared or made available to each other and/or to one or more PICs. It excludes outsourcing or subcontracting arrangements between a PIC and a personal information processor (PIP).

The Philippine National Privacy Commission (NPC) recently issued NPC Circular No. 2020-02 on the Rules on the Issuance of Cease and Desist Orders (Circular). The Circular applies to all applications for a Cease-and- Desist Order (CDO) on the processing of personal data and other matters cognizable by the NPC.

To ensure the lawful processing of personal data in the use of closed-circuit television (CCTV)1 systems, the Philippine National Privacy Commission (NPC) released on 16 November 2020, Advisory No. 2020-04 on the “Guidelines on the Use of Closed-Circuit Television (CCTV) Systems” (Advisory). The Advisory guides personal information controllers (PICs) and personal information processors (PIPs) in the processing of personal data via CCTV systems used in public or semi-public places, as well as in responding to requests by the data subject or by third parties for disclosure of CCTV footage. The Advisory applies to CCTV systems with either video and audio capabilities or those which only record videos. Lawful surveillance conducted by law enforcement agencies and other government agencies, however, are not covered by the Advisory.

On 8 July 2020, the National Privacy Commission (NPC) released NPC PHE Bulletin No. 15 to guide establishments on the proper handling and protection of personal data collected from customers and visitors of barbershops, salons, restaurants, and fast-food businesses, in relation to the guidelines covering such establishments issued by the Department of Trade and Industry (DTI).

Welcome to Quisumbing Torres’ Video Chat Series! In these bite-sized video chats, our lawyers and guests from various areas of law team up to discuss the most pressing issues for Philippine business operators. Each Q&A session is less than 20 minutes long and offers targeted insights into the critical questions…

As the COVID-19 pandemic continues to have a profound impact on businesses, companies have started to focus on navigating the medium- to long-term implications of this crisis. While disruption may pose challenges, we have also seen how various sectors are embracing and accelerating digital transformation as a way to achieve…

The National Privacy Commission (NPC), the National Telecommunications Commission (NTC), the Department of Trade and Industry – Fair Trade Enforcement Bureau (DTI-FTEB), and the Optical Media Board (OMB) have issued advisories regarding changes in their operations in response to the declaration of an Enhanced Community Quarantine (ECQ) over the island…

On 6 March 2020, the National Privacy Commission (NPC) announced that the validity of current registration of personal information controllers (PICs) and processors (PIPs)1 is extended from 8 March 2020 to 31 August 2020. The extension is to make way for the launching of an automated registration system by July…

The DICT Act created the Department of Information and Communications Technology which is mandated to be the primary policy, planning, coordinating, implementing and administrative agency of Philippine Government.