TERMS AND CONDITIONS

Good day everyone,

Here are things to remember regarding data privacy:
IF YOU COLLECT IT, PROTECT IT - meaning treat all of the collected information like your own, don't let anyone take it! follow reasonable security measures to keep individuals' personal information safe from inappropriate and unauthorized access.

Here are sample scenarios:
a. when an outsider goes to you showing some ID of a bank saying they need to get information about a person, DO NOT GIVE ANY DETAILS!

  • i. if you give the information without asking any explicit consent from the owner of the information you are already subjected to the Chapter VIII Sec 25 A of RA 10173 (Data privacy act of 2012) Reference: https://privacy.gov.ph/data-privacy-act/#w25 saying: "The unauthorized processing of personal information shall be penalized by imprisonment ranging from one (1) year to three (3) years and a fine of not less than Five hundred thousand pesos (Php500,000.00) but not more than Two million pesos (Php2,000,000.00) shall be imposed on persons who process personal information without the consent of the data subject, or without being authorized under this Act or any existing law."
  • ii. What can you do?
    1. ask for the personnel asking for the information if he/she has a signed consent form?
    2. check your email or call the personal information owner if he/she authorize to give the personnel in the bank about his/her information and if he/she can email his/her consent a simple email like: "Good day, I ________ give my consent for Mr./Ms. ________ to conduct ____________" make sure that the email came from that person's registered email with us or else we cannot honor the digital consent form and we should ask for a signed consent form photo of a letter will do.

b. when someone called on the phone saying they're doing a background check for Mr/Ms _______ for anything, DO NOT GIVE ANY DETAILS!
  • i. same with letter a, if you do give any details the owner of the personal information actually can file a case against you with the data privacy commission and you will be penalized.
  • ii. What can you do?
    1. ask them to email you what details they need and the personal information owner's consent form (signed)
    2. or you could same A.ii.2

c. as IT always tell everyone DO NOT CONNECT TO ANY PUBLIC WIFI!
  • i. Why?
    1. if you connect to a an open network anyone can copy that network and pick up your login cache which means you can be hacked not only your bank but also your personal and company email and microsoft can be logged in!

d.Keep your company issued devices safe like it's your own!!
  • i. besides the fact that we show you how much you would pay if you lose your device, we as registered in NPC are required to report any device lost within 72 hours upon notice, because we have to inform them about the security features we put up so whoever picks/snatch your company device will not be able to get in the details inside the device and possibly scam/threaten anyone of your contacts be it crew/friends/partners/applicants/customers
  • ii. Be open and honest about how you collect, use and share personal information. - meaning make sure to have them sign the Data Privacy Policy consent form 🙂 and give them a copy our data privacy policy covers all on how we collect/share/process their collected personal data.
  • iii. Build trust by doing what you say you will do! - communicate clearly and concisely to our customer's/partners/crewmembers/applicants what privacy means to our organization and the steps we take to achieve and maintain privacy you can achieve this by reading actually our privacy policy

if you want to read the full law please see below reference: https://privacy.gov.ph/data-privacy-act/#w25

Thanks,
Data Privacy Officer


CONFIDENTIALITY NOTICE: The information contained in this e-mail message, including any attachments, is for the sole use of the intended recipient(s) and may contain confidential and privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, and have received this communication in error, please contact the sender by reply e-mail and destroy all copies of the original message. Thank you!