The National Privacy Commission (NPC) is investigating a probable personal data breach involving unlawful transactions…
New web portal to make it easier for data systems to comply with privacy laws: NPC
By enabling online registration of data processing systems, the recently created National Privacy Commission (NPC) Registration System (NPCRS) is expected to make it easier for both government and private enterprises to comply with the Data Privacy Act of 2012.
The NPC said in a statement on Friday that the portal offers simple request and application approval monitoring, a secure site for the monitoring unit to access registration data, and real-time visibility in the documentation requirements validation.
Additionally, it will make it possible to collect data from sectors and subsectors accurately, verify whether a registration is active or inactive, retrieve the contact information for the data protection officer (DPO), and create documents easily, like certificates of registration or statistical reports on registered entities.
NPC Circular No. 2022-04, dated December 5, 2022, entitled “Registration of Personal Data Processing System, Notification Regarding Automated Decision-Making or Profiling, Designation of DPO, and the NPC Seal of Registration,” was finalized at the same time as the NPCRS was being built.
The notice became effective on January 11th.
The circular, according to Rainier Anthony Milanes, head of the NPC’s Compliance and Monitoring Division, intends to address problems that came up when implementing previous circulars on numerous or shared DPOs.
The requirement to show the NPC mark of registration is one of the new laws that Milanes noted “provides data subjects with the necessary trust that companies processing their personal data have fulfilled the first level of DPA compliance.”
According to Section 5 of the circular, PICs or PIPs must register all of their data processing systems if they employ 250 or more people, process 1,000 or more people’s sensitive personal information, or process data that could potentially endanger the rights and freedoms of data subjects.
“Privacy by design and development, security, and operations were used in the development of the registration system” (DevSecOps). Before making changes involving the processing of personal data, throughout planning, and just before the system went live, privacy impact assessments were carried out, he added.
According to NPC Commissioner John Henry Naga, their attempts to fulfill President Ferdinand R. Marcos Jr.’s directive to digitize government services include the NPCRS and the introduction of the Data Breach Notification Management System in April 2022.***
We appreciate your reading. 😊Simple Ways To Say Thanks & Support Us:
1.) ❤️Give a Tip. If you would like to make a small donation to support us, please give a tip thru PayPal at https://paypal.me/SocialBoostVA😊❤️
Subscribers in the Philippines can make donations to mobile number 0917 906 3081, by using the GCash website or GCash mobile application.
2.) Be one of our SPONSOR. We can published your promotions, PR stories/news articles with contact details as an additional exposure of your company products and services.
3.) 👍 Give this news article a Thumbs Up, Leave a Comment (at Least Five Words), and Share!
Cebuano English Filipino