SlideShare a Scribd company logo

Data Privacy - Penalties for Non-Compliance

JDP Consulting
JDP Consulting

Stiff penalties are provided in the Philippine Data Privacy Law for non-compliance Summary: 1) Data Privacy Law has severe penalties for non-compliance. 2) Penalties are harsher when violations involve sensitive personal information compared to personal information. 3) Public officers and employees, as well as private individuals who are responsible officers in juridical entities, are made liable. 4) The law provides for a combination or series of acts that could result in increasing the penalty. 5) Maximum penalty is imposed for large scale offense when at least 100 persons are harmed, affected, or involved.

Law
1 of 22
Download to read offline
Penalties for Non-Compliance with Data Privacy Law Basics of Philippine Data Privacy Law for Non-Lawyers
Unauthorized processing of Personal Information Unauthorized Processing of Personal Information: • Without the consent of the data subject • Without being authorized by the Data Privacy Law or any other law Reference: Section 25 (a), R.A. 10173 PENALTIES Imprisonment Fine 1 year to 3 years Php500K – Php2M Notice: Both are imposed – i.e. imprisonment and fine
Unauthorized processing of Sensitive Personal Information Unauthorized Processing of Sensitive Personal Information: • Without the consent of the data subject • Without being authorized by the Data Privacy Law or any other law Reference: Section 25 (b), R.A. 10173 PENALTIES Imprisonment Fine 3 years to 6 years Php500K – Php4M Notice: Both are imposed – i.e. imprisonment and fine
Accessing of Personal Information Providing access to Personal Information – Due to Negligence: • Without being authorized by the Data Privacy Law or any other law Reference: Section 26 (a), R.A. 10173 PENALTIES Imprisonment Fine 1 year to 3 years Php500K – Php2M Notice: Both are imposed – i.e. imprisonment and fine
Accessing of Sensitive Personal Information Providing access to Sensitive Personal Information – Due to Negligence: • Without being authorized by the Data Privacy Law or any other law Reference: Section 26 (b), R.A. 10173 PENALTIES Imprisonment Fine 3 years to 6 years Php500K – Php4M Notice: Both are imposed – i.e. imprisonment and fine
Improper disposal of Personal Information Improper disposal of Personal Information – Knowingly or Negligently: • Dispose, Discard or Abandon the personal information of an individual in an area accessible to the public; or • Has otherwise placed the personal information of an individual in its container for trash collection. Reference: Section 27 (a), R.A. 10173 PENALTIES Imprisonment Fine 6 months to 2 years Php100K – Php500K Notice: Both are imposed – i.e. imprisonment and fine
Improper disposal of Sensitive Personal Information Improper disposal of Sensitive Personal Information – Knowingly or Negligently: • Dispose, Discard or Abandon the personal information of an individual in an area accessible to the public; or • Has otherwise placed the personal information of an individual in its container for trash collection. Reference: Section 27 (b), R.A. 10173 PENALTIES Imprisonment Fine 1 year to 3 years Php100K – Php1M Notice: Both are imposed – i.e. imprisonment and fine
Processing for unauthorized purposes of Personal Information Processing of Personal Information: • For purposes not authorized by the data subject; or • Otherwise authorized under the Data Privacy Law or existing law. Reference: Section 28, R.A. 10173 PENALTIES Imprisonment Fine 6 months to 5 years Php500K – Php1M Notice: Both are imposed – i.e. imprisonment and fine
Processing for unauthorized purposes of Sensitive Personal Information Processing of Sensitive Personal Information: • For purposes not authorized by the data subject; or • Otherwise authorized under the Data Privacy Law or existing law. Reference: Section 28, R.A. 10173 PENALTIES Imprisonment Fine 2 years to 7 years Php500K – Php2M Notice: Both are imposed – i.e. imprisonment and fine
Unauthorized Access or Intentional Breach Breaking – in any way – into any system where personal and sensitive personal information is stored: • Knowingly or and unlawfully; or • Violating data confidentiality and security data systems Reference: Section 29, R.A. 10173 PENALTIES Imprisonment Fine 1 year to 3 years Php500K – Php2M Notice: Both are imposed – i.e. imprisonment and fine
Concealment of Security Breaches Involving Sensitive Personal Information Sensitive Personal Information After having knowledge of a security breach and of the obligation to notify the National Privacy Commission pursuant to Section 20 (f): • Intentionally or by omission, conceals the fact of such security breach Reference: Section 30, R.A. 10173 PENALTIES Imprisonment Fine 1 year and 6 months to 5 years Php500K – Php1M Notice: Both are imposed – i.e. imprisonment and fine
Malicious Disclosure Any personal information controller (PIC) or personal information processor (PIP) or any of its officials, employees or agents, who: • With malice or in bad faith, • Discloses unwarranted or false information relative to any personal information or personal sensitive information obtained by him or her Reference: Section 31, R.A. 10173 PENALTIES Imprisonment Fine 1 year and 6 months to 5 years Php500K – Php1M Notice: Both are imposed – i.e. imprisonment and fine
Personal Information’s Unauthorized Disclosure Any personal information controller (PIC) or personal information processor (PIP) or any of its officials, employees or agents, who: • Discloses to a third party personal information not covered by the immediately preceding section (on Malicious Disclosure) • Without the consent of the data subject Reference: Section 32 (a), R.A. 10173 PENALTIES Imprisonment Fine 1 year to 3 years Php500K – Php1M Notice: Both are imposed – i.e. imprisonment and fine
Sensitive Personal Information’s Unauthorized Disclosure Any personal information controller (PIC) or personal information processor (PIP) or any of its officials, employees or agents, who: • Discloses to a third party sensitive personal information not covered by the immediately preceding section (on Malicious Disclosure) • Without the consent of the data subject Reference: Section 32 (b), R.A. 10173 PENALTIES Imprisonment Fine 3 years to 5 years Php500K – Php2M Notice: Both are imposed – i.e. imprisonment and fine
Combination or Series of Acts For any combination or series of acts of the violations mentioned in the preceding slides: Reference: Section 33, R.A. 10173 PENALTIES Imprisonment Fine 3 years to 6 years Php1M – Php5M Notice: Both are imposed – i.e. imprisonment and fine
Liability: Responsible Officers If the offender is a corporation, partnership or any juridical person, the penalty shall be imposed upon the responsible officers, as the case may be, who participated in, or by their gross negligence, allowed the commission of the crime. If the offender is a juridical person, the court may suspend or revoke any of its rights under this Act. If the offender is an alien, he or she shall, in addition to the penalties herein prescribed, be deported without further proceedings after serving the penalties prescribed. If the offender is a public official or employee and he or she is found guilty of acts penalized under Sections 27 and 28 of this Act, he or she shall, in addition to the penalties prescribed herein, suffer perpetual or temporary absolute disqualification from office, as the case may be. By default, responsible officers are made liable for juridical entities. Reference: Section 34, R.A. 10173
Large Scale: Maximum Penalty The maximum penalty in the scale of penalties respectively provided for the preceding offenses shall be imposed when the personal information of at least one hundred (100) persons is harmed, affected or involved as the result of the above mentioned actions. Benchmark for imposing maximum penalty: 100 persons. Reference: Section 35, R.A. 10173
Public Officers When the offender or the person responsible for the offense is a public officer as defined in the Administrative Code of the Philippines in the exercise of his or her duties, an accessory penalty consisting in the disqualification to occupy public office for a term double the term of criminal penalty imposed shall he applied. Double-term disqualification to occupy public office for any public officer found liable. The term is based on the criminal penalty imposed. Reference: Section 36, R.A. 10173
Restitution Restitution for any aggrieved party shall be governed by the provisions of the New Civil Code. Complainants may seek restitution against the offenders as may be provided by the Civil Code. This may be in the form damages. Reference: Section 37, R.A. 10173
Summary 1) Data Privacy Law has severe penalties for non-compliance. 2) Penalties are harsher when violations involve sensitive personal information compared to personal information. 3) Public officers and employees, as well as private individuals who are responsible officers in juridical entities, are made liable. 4) The law provides for a combination or series of acts that could result in increasing the penalty. 5) Maximum penalty is imposed for large scale offense when at least 100 persons are harmed, affected, or involved.
Basics of Philippine Data Privacy Law for Non-Lawyers Atty. Jericho B. Del Puerto SME Business Lawyer For inquiries, comment, or permission to use slides, send us an email : info@jdpconsulting.ph. Penalties for Non-Compliance with Data Privacy Law
Data Privacy - Penalties for Non-Compliance

Recommended

Basic Data Privacy for Non Lawyers
Basic Data Privacy for Non LawyersBasic Data Privacy for Non Lawyers
Basic Data Privacy for Non Lawyers
JDP Consulting
 
Data Privacy Act in the Philippines
Data Privacy Act in the PhilippinesData Privacy Act in the Philippines
Data Privacy Act in the Philippines
Shirley Ingles-Cruz
 
Data privacy act
Data privacy actData privacy act
Data privacy act
ansherina erika dejan
 
Philippine Data Privacy Act of 2012 (RA 10173)
Philippine Data Privacy Act of 2012 (RA 10173)Philippine Data Privacy Act of 2012 (RA 10173)
Philippine Data Privacy Act of 2012 (RA 10173)
Kirk Go
 
Data privacy act of 2012 presentation
Data privacy act of 2012 presentationData privacy act of 2012 presentation
Data privacy act of 2012 presentation
Kittelson & Carpo Consulting
 
RA 9344-PRESENTATION.ppt.pptx
RA 9344-PRESENTATION.ppt.pptxRA 9344-PRESENTATION.ppt.pptx
RA 9344-PRESENTATION.ppt.pptx
ArthurLegaspina3
 
Data Privacy Act of 2012.pptx
Data Privacy Act of 2012.pptxData Privacy Act of 2012.pptx
Data Privacy Act of 2012.pptx
CeresMargaretMangibi
 
Data Privacy Act of 2012 implication to cooperatives
Data Privacy Act of 2012 implication to cooperativesData Privacy Act of 2012 implication to cooperatives
Data Privacy Act of 2012 implication to cooperatives
jo bitonio
 

Recommended

Basic Data Privacy for Non Lawyers
Basic Data Privacy for Non LawyersBasic Data Privacy for Non Lawyers
Basic Data Privacy for Non Lawyers
JDP Consulting
 
Data Privacy Act in the Philippines
Data Privacy Act in the PhilippinesData Privacy Act in the Philippines
Data Privacy Act in the Philippines
Shirley Ingles-Cruz
 
Data privacy act
Data privacy actData privacy act
Data privacy act
ansherina erika dejan
 
Philippine Data Privacy Act of 2012 (RA 10173)
Philippine Data Privacy Act of 2012 (RA 10173)Philippine Data Privacy Act of 2012 (RA 10173)
Philippine Data Privacy Act of 2012 (RA 10173)
Kirk Go
 
Data privacy act of 2012 presentation
Data privacy act of 2012 presentationData privacy act of 2012 presentation
Data privacy act of 2012 presentation
Kittelson & Carpo Consulting
 
RA 9344-PRESENTATION.ppt.pptx
RA 9344-PRESENTATION.ppt.pptxRA 9344-PRESENTATION.ppt.pptx
RA 9344-PRESENTATION.ppt.pptx
ArthurLegaspina3
 
Data Privacy Act of 2012.pptx
Data Privacy Act of 2012.pptxData Privacy Act of 2012.pptx
Data Privacy Act of 2012.pptx
CeresMargaretMangibi
 
Data Privacy Act of 2012 implication to cooperatives
Data Privacy Act of 2012 implication to cooperativesData Privacy Act of 2012 implication to cooperatives
Data Privacy Act of 2012 implication to cooperatives
jo bitonio
 
Data Privacy Act of 2012 (R.A. 10173) Briefing 2017
Data Privacy Act of 2012 (R.A. 10173) Briefing 2017Data Privacy Act of 2012 (R.A. 10173) Briefing 2017
Data Privacy Act of 2012 (R.A. 10173) Briefing 2017
Jay Castillo
 
Republic Act 10175: Cybercrime Prevention Act of 2012
Republic Act 10175: Cybercrime Prevention Act of 2012Republic Act 10175: Cybercrime Prevention Act of 2012
Republic Act 10175: Cybercrime Prevention Act of 2012
Michael Roa
 
section 1-3 Bill of rights
section 1-3 Bill of rightssection 1-3 Bill of rights
section 1-3 Bill of rightslowell0916
 
Special laws on children 8353, 9262, 9231, 7877, 7610, 920
Special laws on children 8353, 9262, 9231, 7877, 7610, 920Special laws on children 8353, 9262, 9231, 7877, 7610, 920
Special laws on children 8353, 9262, 9231, 7877, 7610, 920Omar Jacalne
 
Bill of rights (lecture 2)
Bill of rights (lecture 2)Bill of rights (lecture 2)
Bill of rights (lecture 2)John Torres
 
Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...
Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...
Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...
REVULN
 
Bill of rights (lecture 3)
Bill of rights (lecture 3)Bill of rights (lecture 3)
Bill of rights (lecture 3)
John Torres
 
Child and the law
Child and the lawChild and the law
Child and the lawMaria Carline Cabizares
 
Arrest
ArrestArrest
Arrest
Cheldy S, Elumba-Pableo
 
Ra 7610
Ra 7610Ra 7610
Ra 7610Richelle Alegria
 
Labor code of the philippines
Labor code of the philippinesLabor code of the philippines
Labor code of the philippinesAllain Flores
 
RA 9775 - Anti-Child Pornography Act of 2009
RA 9775 - Anti-Child Pornography Act of 2009RA 9775 - Anti-Child Pornography Act of 2009
RA 9775 - Anti-Child Pornography Act of 2009
Jasmine Nikki Versoza
 
Anti-voyeurism in the Philippines presentation
Anti-voyeurism in the Philippines presentationAnti-voyeurism in the Philippines presentation
Anti-voyeurism in the Philippines presentation
Trix Rodriguez
 
Diversion
DiversionDiversion
DiversionMayomi Lee
 
Ra 7610
Ra 7610Ra 7610
Ra 7610Chameleon Association, Inc.
 
Bill of Rights - 1987 Philippine Constitution
Bill of Rights - 1987 Philippine ConstitutionBill of Rights - 1987 Philippine Constitution
Bill of Rights - 1987 Philippine Constitution
Phaura Reinz
 
Republic act no 8049 final report
Republic act no 8049 final reportRepublic act no 8049 final report
Republic act no 8049 final reportOmar Jacalne
 
Types of offenses and corresponding penalties
Types of offenses and corresponding penalties Types of offenses and corresponding penalties
Types of offenses and corresponding penalties
Department of Education-Bogo
 
VIOLENCE AGAINST WOMEN AND THEIR CHILDREN ACT of 2004
VIOLENCE AGAINST WOMEN AND THEIR CHILDREN ACT of 2004VIOLENCE AGAINST WOMEN AND THEIR CHILDREN ACT of 2004
VIOLENCE AGAINST WOMEN AND THEIR CHILDREN ACT of 2004Sharon Geroquia
 
CEU DPA
CEU DPACEU DPA
CEU DPA
BERBERGRACEMARJORIE
 
Security Act 2007
Security Act 2007Security Act 2007
Security Act 2007Jo Balucanag - Bitonio
 
Information Technology Act 2000
Information Technology Act 2000Information Technology Act 2000
Information Technology Act 2000
ShashankBajpai24
 

More Related Content

What's hot

Data Privacy Act of 2012 (R.A. 10173) Briefing 2017
Data Privacy Act of 2012 (R.A. 10173) Briefing 2017Data Privacy Act of 2012 (R.A. 10173) Briefing 2017
Data Privacy Act of 2012 (R.A. 10173) Briefing 2017
Jay Castillo
 
Republic Act 10175: Cybercrime Prevention Act of 2012
Republic Act 10175: Cybercrime Prevention Act of 2012Republic Act 10175: Cybercrime Prevention Act of 2012
Republic Act 10175: Cybercrime Prevention Act of 2012
Michael Roa
 
section 1-3 Bill of rights
section 1-3 Bill of rightssection 1-3 Bill of rights
section 1-3 Bill of rightslowell0916
 
Special laws on children 8353, 9262, 9231, 7877, 7610, 920
Special laws on children 8353, 9262, 9231, 7877, 7610, 920Special laws on children 8353, 9262, 9231, 7877, 7610, 920
Special laws on children 8353, 9262, 9231, 7877, 7610, 920Omar Jacalne
 
Bill of rights (lecture 2)
Bill of rights (lecture 2)Bill of rights (lecture 2)
Bill of rights (lecture 2)John Torres
 
Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...
Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...
Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...
REVULN
 
Bill of rights (lecture 3)
Bill of rights (lecture 3)Bill of rights (lecture 3)
Bill of rights (lecture 3)
John Torres
 
Arrest
ArrestArrest
Arrest
Cheldy S, Elumba-Pableo
 
Labor code of the philippines
Labor code of the philippinesLabor code of the philippines
Labor code of the philippinesAllain Flores
 
RA 9775 - Anti-Child Pornography Act of 2009
RA 9775 - Anti-Child Pornography Act of 2009RA 9775 - Anti-Child Pornography Act of 2009
RA 9775 - Anti-Child Pornography Act of 2009
Jasmine Nikki Versoza
 
Anti-voyeurism in the Philippines presentation
Anti-voyeurism in the Philippines presentationAnti-voyeurism in the Philippines presentation
Anti-voyeurism in the Philippines presentation
Trix Rodriguez
 
Bill of Rights - 1987 Philippine Constitution
Bill of Rights - 1987 Philippine ConstitutionBill of Rights - 1987 Philippine Constitution
Bill of Rights - 1987 Philippine Constitution
Phaura Reinz
 
Republic act no 8049 final report
Republic act no 8049 final reportRepublic act no 8049 final report
Republic act no 8049 final reportOmar Jacalne
 
Types of offenses and corresponding penalties
Types of offenses and corresponding penalties Types of offenses and corresponding penalties
Types of offenses and corresponding penalties
Department of Education-Bogo
 
VIOLENCE AGAINST WOMEN AND THEIR CHILDREN ACT of 2004
VIOLENCE AGAINST WOMEN AND THEIR CHILDREN ACT of 2004VIOLENCE AGAINST WOMEN AND THEIR CHILDREN ACT of 2004
VIOLENCE AGAINST WOMEN AND THEIR CHILDREN ACT of 2004Sharon Geroquia
 
CEU DPA
CEU DPACEU DPA
CEU DPA
BERBERGRACEMARJORIE
 

What's hot (20)

Data Privacy Act of 2012 (R.A. 10173) Briefing 2017
Data Privacy Act of 2012 (R.A. 10173) Briefing 2017Data Privacy Act of 2012 (R.A. 10173) Briefing 2017
Data Privacy Act of 2012 (R.A. 10173) Briefing 2017
 
Republic Act 10175: Cybercrime Prevention Act of 2012
Republic Act 10175: Cybercrime Prevention Act of 2012Republic Act 10175: Cybercrime Prevention Act of 2012
Republic Act 10175: Cybercrime Prevention Act of 2012
 
section 1-3 Bill of rights
section 1-3 Bill of rightssection 1-3 Bill of rights
section 1-3 Bill of rights
 
Special laws on children 8353, 9262, 9231, 7877, 7610, 920
Special laws on children 8353, 9262, 9231, 7877, 7610, 920Special laws on children 8353, 9262, 9231, 7877, 7610, 920
Special laws on children 8353, 9262, 9231, 7877, 7610, 920
 
Bill of rights (lecture 2)
Bill of rights (lecture 2)Bill of rights (lecture 2)
Bill of rights (lecture 2)
 
Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...
Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...
Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...
 
Bill of rights (lecture 3)
Bill of rights (lecture 3)Bill of rights (lecture 3)
Bill of rights (lecture 3)
 
Child and the law
Child and the lawChild and the law
Child and the law
 
Arrest
ArrestArrest
Arrest
 
Ra 7610
Ra 7610Ra 7610
Ra 7610
 
Labor code of the philippines
Labor code of the philippinesLabor code of the philippines
Labor code of the philippines
 
RA 9775 - Anti-Child Pornography Act of 2009
RA 9775 - Anti-Child Pornography Act of 2009RA 9775 - Anti-Child Pornography Act of 2009
RA 9775 - Anti-Child Pornography Act of 2009
 
Anti-voyeurism in the Philippines presentation
Anti-voyeurism in the Philippines presentationAnti-voyeurism in the Philippines presentation
Anti-voyeurism in the Philippines presentation
 
Diversion
DiversionDiversion
Diversion
 
Ra 7610
Ra 7610Ra 7610
Ra 7610
 
Bill of Rights - 1987 Philippine Constitution
Bill of Rights - 1987 Philippine ConstitutionBill of Rights - 1987 Philippine Constitution
Bill of Rights - 1987 Philippine Constitution
 
Republic act no 8049 final report
Republic act no 8049 final reportRepublic act no 8049 final report
Republic act no 8049 final report
 
Types of offenses and corresponding penalties
Types of offenses and corresponding penalties Types of offenses and corresponding penalties
Types of offenses and corresponding penalties
 
VIOLENCE AGAINST WOMEN AND THEIR CHILDREN ACT of 2004
VIOLENCE AGAINST WOMEN AND THEIR CHILDREN ACT of 2004VIOLENCE AGAINST WOMEN AND THEIR CHILDREN ACT of 2004
VIOLENCE AGAINST WOMEN AND THEIR CHILDREN ACT of 2004
 
CEU DPA
CEU DPACEU DPA
CEU DPA
 

Similar to Data Privacy - Penalties for Non-Compliance

Information Technology Act 2000
Information Technology Act 2000Information Technology Act 2000
Information Technology Act 2000
ShashankBajpai24
 
All_you_need_to Know_About_the_Data_Privacy_Act.pdf
All_you_need_to Know_About_the_Data_Privacy_Act.pdfAll_you_need_to Know_About_the_Data_Privacy_Act.pdf
All_you_need_to Know_About_the_Data_Privacy_Act.pdf
JakeAldrinDegala1
 
Sedition Offences against Property 20-5-2024.pptx
Sedition Offences against Property 20-5-2024.pptxSedition Offences against Property 20-5-2024.pptx
Sedition Offences against Property 20-5-2024.pptx
RashmiPandey862734
 
Hipaa training in diversido
Hipaa training in diversidoHipaa training in diversido
Hipaa training in diversido
Diversido
 
Criminology ppt presentation for 3rd years
Criminology ppt presentation for 3rd yearsCriminology ppt presentation for 3rd years
Criminology ppt presentation for 3rd years
XienahBambico
 
Syed imran
Syed imranSyed imran
Syed imran
Syed Imran Hossain
 
Promotional Compliance in the Life Sciences Industry
Promotional Compliance in the Life Sciences IndustryPromotional Compliance in the Life Sciences Industry
Promotional Compliance in the Life Sciences Industry
Darshan Kulkarni
 
Information Technology Act, 2000
Information Technology Act, 2000Information Technology Act, 2000
Information Technology Act, 2000
PrakharPrasoon
 
Proposed People's Initiative law by Scrap Pork Natwork
Proposed People's Initiative law by Scrap Pork NatworkProposed People's Initiative law by Scrap Pork Natwork
Proposed People's Initiative law by Scrap Pork Natwork
raissarobles
 
Data Privacy- Security of Sensitive Personal Information
Data Privacy- Security of Sensitive Personal InformationData Privacy- Security of Sensitive Personal Information
Data Privacy- Security of Sensitive Personal Information
JDP Consulting
 
Red-tagging in the Philippines_FINAL.pptx
Red-tagging in the Philippines_FINAL.pptxRed-tagging in the Philippines_FINAL.pptx
Red-tagging in the Philippines_FINAL.pptx
ramilpamatong
 
Cyber laws
Cyber lawsCyber laws
Cyber laws
Mohit Dholakiya
 
Prevention of corruption (amendment ) act, 2018
Prevention of corruption (amendment ) act, 2018Prevention of corruption (amendment ) act, 2018
Prevention of corruption (amendment ) act, 2018
DR SATYANARAYANA DASH,IAS (RETD.)
 
Lorson Resources Limited - Records & Information Presentation: Data Protectio...
Lorson Resources Limited - Records & Information Presentation: Data Protectio...Lorson Resources Limited - Records & Information Presentation: Data Protectio...
Lorson Resources Limited - Records & Information Presentation: Data Protectio...
Lorson Resources Limited
 
Prevention of corruption act 1988 & Lokpal act 2013
Prevention of corruption act 1988 & Lokpal act 2013Prevention of corruption act 1988 & Lokpal act 2013
Prevention of corruption act 1988 & Lokpal act 2013
Poushali Nandi
 
Data Privacy - Security of Personal Information
Data Privacy - Security of Personal InformationData Privacy - Security of Personal Information
Data Privacy - Security of Personal Information
JDP Consulting
 
Indian IT Act - Cybersecurity
Indian IT Act - CybersecurityIndian IT Act - Cybersecurity
Indian IT Act - Cybersecurity
Gautam GR
 
Offences and prosecutions
Offences and prosecutionsOffences and prosecutions
Offences and prosecutionsMohammad Ghori
 
The collection of statistics act, 2008
The collection of statistics act, 2008The collection of statistics act, 2008
The collection of statistics act, 2008
Diganth Raj Sehgal
 

Similar to Data Privacy - Penalties for Non-Compliance (20)

Security Act 2007
Security Act 2007Security Act 2007
Security Act 2007
 
Information Technology Act 2000
Information Technology Act 2000Information Technology Act 2000
Information Technology Act 2000
 
All_you_need_to Know_About_the_Data_Privacy_Act.pdf
All_you_need_to Know_About_the_Data_Privacy_Act.pdfAll_you_need_to Know_About_the_Data_Privacy_Act.pdf
All_you_need_to Know_About_the_Data_Privacy_Act.pdf
 
Sedition Offences against Property 20-5-2024.pptx
Sedition Offences against Property 20-5-2024.pptxSedition Offences against Property 20-5-2024.pptx
Sedition Offences against Property 20-5-2024.pptx
 
Hipaa training in diversido
Hipaa training in diversidoHipaa training in diversido
Hipaa training in diversido
 
Criminology ppt presentation for 3rd years
Criminology ppt presentation for 3rd yearsCriminology ppt presentation for 3rd years
Criminology ppt presentation for 3rd years
 
Syed imran
Syed imranSyed imran
Syed imran
 
Promotional Compliance in the Life Sciences Industry
Promotional Compliance in the Life Sciences IndustryPromotional Compliance in the Life Sciences Industry
Promotional Compliance in the Life Sciences Industry
 
Information Technology Act, 2000
Information Technology Act, 2000Information Technology Act, 2000
Information Technology Act, 2000
 
Proposed People's Initiative law by Scrap Pork Natwork
Proposed People's Initiative law by Scrap Pork NatworkProposed People's Initiative law by Scrap Pork Natwork
Proposed People's Initiative law by Scrap Pork Natwork
 
Data Privacy- Security of Sensitive Personal Information
Data Privacy- Security of Sensitive Personal InformationData Privacy- Security of Sensitive Personal Information
Data Privacy- Security of Sensitive Personal Information
 
Red-tagging in the Philippines_FINAL.pptx
Red-tagging in the Philippines_FINAL.pptxRed-tagging in the Philippines_FINAL.pptx
Red-tagging in the Philippines_FINAL.pptx
 
Cyber laws
Cyber lawsCyber laws
Cyber laws
 
Prevention of corruption (amendment ) act, 2018
Prevention of corruption (amendment ) act, 2018Prevention of corruption (amendment ) act, 2018
Prevention of corruption (amendment ) act, 2018
 
Lorson Resources Limited - Records & Information Presentation: Data Protectio...
Lorson Resources Limited - Records & Information Presentation: Data Protectio...Lorson Resources Limited - Records & Information Presentation: Data Protectio...
Lorson Resources Limited - Records & Information Presentation: Data Protectio...
 
Prevention of corruption act 1988 & Lokpal act 2013
Prevention of corruption act 1988 & Lokpal act 2013Prevention of corruption act 1988 & Lokpal act 2013
Prevention of corruption act 1988 & Lokpal act 2013
 
Data Privacy - Security of Personal Information
Data Privacy - Security of Personal InformationData Privacy - Security of Personal Information
Data Privacy - Security of Personal Information
 
Indian IT Act - Cybersecurity
Indian IT Act - CybersecurityIndian IT Act - Cybersecurity
Indian IT Act - Cybersecurity
 
Offences and prosecutions
Offences and prosecutionsOffences and prosecutions
Offences and prosecutions
 
The collection of statistics act, 2008
The collection of statistics act, 2008The collection of statistics act, 2008
The collection of statistics act, 2008
 

More from JDP Consulting

Data Privacy - Rights of the Data Subject
Data Privacy - Rights of the Data SubjectData Privacy - Rights of the Data Subject
Data Privacy - Rights of the Data Subject
JDP Consulting
 
Philippine Franchising Law
Philippine Franchising LawPhilippine Franchising Law
Philippine Franchising Law
JDP Consulting
 
Unfair Labor Practice
Unfair Labor PracticeUnfair Labor Practice
Unfair Labor Practice
JDP Consulting
 
DOLE D.O. 147-15
DOLE D.O. 147-15DOLE D.O. 147-15
DOLE D.O. 147-15
JDP Consulting
 
What is Control in Contracting and Subcontracting?
What is Control in Contracting and Subcontracting?What is Control in Contracting and Subcontracting?
What is Control in Contracting and Subcontracting?
JDP Consulting
 
DOLE D.O. 174-17 vs. DOLE D.O. 18-A-11
DOLE D.O. 174-17 vs. DOLE D.O. 18-A-11DOLE D.O. 174-17 vs. DOLE D.O. 18-A-11
DOLE D.O. 174-17 vs. DOLE D.O. 18-A-11
JDP Consulting
 
Pag-IBIG Benefits
Pag-IBIG BenefitsPag-IBIG Benefits
Pag-IBIG Benefits
JDP Consulting
 
SSS Benefits
SSS BenefitsSSS Benefits
SSS Benefits
JDP Consulting
 
PhilHealth Benefits
PhilHealth BenefitsPhilHealth Benefits
PhilHealth Benefits
JDP Consulting
 
ECC Benefits
ECC BenefitsECC Benefits
ECC Benefits
JDP Consulting
 
Retirement Pay
Retirement PayRetirement Pay
Retirement Pay
JDP Consulting
 
Separation Pay
Separation PaySeparation Pay
Separation Pay
JDP Consulting
 
13th Month Pay
13th Month Pay13th Month Pay
13th Month Pay
JDP Consulting
 
Special Leave for Women
Special Leave for WomenSpecial Leave for Women
Special Leave for Women
JDP Consulting
 
VAWC Leave
VAWC LeaveVAWC Leave
VAWC Leave
JDP Consulting
 
Solo Parental Leave
Solo Parental LeaveSolo Parental Leave
Solo Parental Leave
JDP Consulting
 
Paternity Leave
Paternity LeavePaternity Leave
Paternity Leave
JDP Consulting
 
Service Incentive Leave
Service Incentive LeaveService Incentive Leave
Service Incentive Leave
JDP Consulting
 
Service Charges
Service ChargesService Charges
Service Charges
JDP Consulting
 
Night Shift Differential Pay
Night Shift Differential PayNight Shift Differential Pay
Night Shift Differential Pay
JDP Consulting
 

More from JDP Consulting (20)

Data Privacy - Rights of the Data Subject
Data Privacy - Rights of the Data SubjectData Privacy - Rights of the Data Subject
Data Privacy - Rights of the Data Subject
 
Philippine Franchising Law
Philippine Franchising LawPhilippine Franchising Law
Philippine Franchising Law
 
Unfair Labor Practice
Unfair Labor PracticeUnfair Labor Practice
Unfair Labor Practice
 
DOLE D.O. 147-15
DOLE D.O. 147-15DOLE D.O. 147-15
DOLE D.O. 147-15
 
What is Control in Contracting and Subcontracting?
What is Control in Contracting and Subcontracting?What is Control in Contracting and Subcontracting?
What is Control in Contracting and Subcontracting?
 
DOLE D.O. 174-17 vs. DOLE D.O. 18-A-11
DOLE D.O. 174-17 vs. DOLE D.O. 18-A-11DOLE D.O. 174-17 vs. DOLE D.O. 18-A-11
DOLE D.O. 174-17 vs. DOLE D.O. 18-A-11
 
Pag-IBIG Benefits
Pag-IBIG BenefitsPag-IBIG Benefits
Pag-IBIG Benefits
 
SSS Benefits
SSS BenefitsSSS Benefits
SSS Benefits
 
PhilHealth Benefits
PhilHealth BenefitsPhilHealth Benefits
PhilHealth Benefits
 
ECC Benefits
ECC BenefitsECC Benefits
ECC Benefits
 
Retirement Pay
Retirement PayRetirement Pay
Retirement Pay
 
Separation Pay
Separation PaySeparation Pay
Separation Pay
 
13th Month Pay
13th Month Pay13th Month Pay
13th Month Pay
 
Special Leave for Women
Special Leave for WomenSpecial Leave for Women
Special Leave for Women
 
VAWC Leave
VAWC LeaveVAWC Leave
VAWC Leave
 
Solo Parental Leave
Solo Parental LeaveSolo Parental Leave
Solo Parental Leave
 
Paternity Leave
Paternity LeavePaternity Leave
Paternity Leave
 
Service Incentive Leave
Service Incentive LeaveService Incentive Leave
Service Incentive Leave
 
Service Charges
Service ChargesService Charges
Service Charges
 
Night Shift Differential Pay
Night Shift Differential PayNight Shift Differential Pay
Night Shift Differential Pay
 

Recently uploaded

Debt Mapping Camp bebas riba to know how much our debt
Debt Mapping Camp bebas riba to know how much our debtDebt Mapping Camp bebas riba to know how much our debt
Debt Mapping Camp bebas riba to know how much our debt
ssuser0576e4
 
The Main Procedures for Obtaining Cypriot Citizenship
The Main Procedures for Obtaining Cypriot CitizenshipThe Main Procedures for Obtaining Cypriot Citizenship
The Main Procedures for Obtaining Cypriot Citizenship
BridgeWest.eu
 
Secure Your Brand: File a Trademark Today
Secure Your Brand: File a Trademark TodaySecure Your Brand: File a Trademark Today
Secure Your Brand: File a Trademark Today
Trademark Quick
 
Cold War - 1, talks about cold water bro
Cold War - 1, talks about cold water broCold War - 1, talks about cold water bro
Cold War - 1, talks about cold water bro
SidharthKashyap5
 
NATURE, ORIGIN AND DEVELOPMENT OF INTERNATIONAL LAW.pptx
NATURE, ORIGIN AND DEVELOPMENT OF INTERNATIONAL LAW.pptxNATURE, ORIGIN AND DEVELOPMENT OF INTERNATIONAL LAW.pptx
NATURE, ORIGIN AND DEVELOPMENT OF INTERNATIONAL LAW.pptx
anvithaav
 
Notes-on-Prescription-Obligations-and-Contracts.doc
Notes-on-Prescription-Obligations-and-Contracts.docNotes-on-Prescription-Obligations-and-Contracts.doc
Notes-on-Prescription-Obligations-and-Contracts.doc
BRELGOSIMAT
 
Introducing New Government Regulation on Toll Road.pdf
Introducing New Government Regulation on Toll Road.pdfIntroducing New Government Regulation on Toll Road.pdf
Introducing New Government Regulation on Toll Road.pdf
AHRP Law Firm
 
怎么购买(massey毕业证书)新西兰梅西大学毕业证学位证书注册证明信原版一模一样
怎么购买(massey毕业证书)新西兰梅西大学毕业证学位证书注册证明信原版一模一样怎么购买(massey毕业证书)新西兰梅西大学毕业证学位证书注册证明信原版一模一样
怎么购买(massey毕业证书)新西兰梅西大学毕业证学位证书注册证明信原版一模一样
9ib5wiwt
 
ADR in criminal proceeding in Bangladesh with global perspective.
ADR in criminal proceeding in Bangladesh with global perspective.ADR in criminal proceeding in Bangladesh with global perspective.
ADR in criminal proceeding in Bangladesh with global perspective.
Daffodil International University
 
Business and Corporate Case Update (2024)
Business and Corporate Case Update (2024)Business and Corporate Case Update (2024)
Business and Corporate Case Update (2024)
Wendy Couture
 
PRECEDENT AS A SOURCE OF LAW (SAIF JAVED).pptx
PRECEDENT AS A SOURCE OF LAW (SAIF JAVED).pptxPRECEDENT AS A SOURCE OF LAW (SAIF JAVED).pptx
PRECEDENT AS A SOURCE OF LAW (SAIF JAVED).pptx
OmGod1
 
Car Accident Injury Do I Have a Case....
Car Accident Injury Do I Have a Case....Car Accident Injury Do I Have a Case....
Car Accident Injury Do I Have a Case....
Knowyourright
 
VIETNAM - DIRECT POWER PURCHASE AGREEMENTS (DPPA) - Latest development - What...
VIETNAM - DIRECT POWER PURCHASE AGREEMENTS (DPPA) - Latest development - What...VIETNAM - DIRECT POWER PURCHASE AGREEMENTS (DPPA) - Latest development - What...
VIETNAM - DIRECT POWER PURCHASE AGREEMENTS (DPPA) - Latest development - What...
Dr. Oliver Massmann
 
Rokita Releases Soccer Stadium Legal Opinion
Rokita Releases Soccer Stadium Legal OpinionRokita Releases Soccer Stadium Legal Opinion
Rokita Releases Soccer Stadium Legal Opinion
Abdul-Hakim Shabazz
 
Highlights_of_Bhartiya_Nyaya_Sanhita.pptx
Highlights_of_Bhartiya_Nyaya_Sanhita.pptxHighlights_of_Bhartiya_Nyaya_Sanhita.pptx
Highlights_of_Bhartiya_Nyaya_Sanhita.pptx
anjalidixit21
 
Military Commissions details LtCol Thomas Jasper as Detailed Defense Counsel
Military Commissions details LtCol Thomas Jasper as Detailed Defense CounselMilitary Commissions details LtCol Thomas Jasper as Detailed Defense Counsel
Military Commissions details LtCol Thomas Jasper as Detailed Defense Counsel
Thomas (Tom) Jasper
 
How to Obtain Permanent Residency in the Netherlands
How to Obtain Permanent Residency in the NetherlandsHow to Obtain Permanent Residency in the Netherlands
How to Obtain Permanent Residency in the Netherlands
BridgeWest.eu
 
Abdul Hakim Shabazz Deposition Hearing in Federal Court
Abdul Hakim Shabazz Deposition Hearing in Federal CourtAbdul Hakim Shabazz Deposition Hearing in Federal Court
Abdul Hakim Shabazz Deposition Hearing in Federal Court
Gabe Whitley
 
WINDING UP of COMPANY, Modes of Dissolution
WINDING UP of COMPANY, Modes of DissolutionWINDING UP of COMPANY, Modes of Dissolution
WINDING UP of COMPANY, Modes of Dissolution
KHURRAMWALI
 
RIGHTS OF VICTIM EDITED PRESENTATION(SAIF JAVED).pptx
RIGHTS OF VICTIM EDITED PRESENTATION(SAIF JAVED).pptxRIGHTS OF VICTIM EDITED PRESENTATION(SAIF JAVED).pptx
RIGHTS OF VICTIM EDITED PRESENTATION(SAIF JAVED).pptx
OmGod1
 

Recently uploaded (20)

Debt Mapping Camp bebas riba to know how much our debt
Debt Mapping Camp bebas riba to know how much our debtDebt Mapping Camp bebas riba to know how much our debt
Debt Mapping Camp bebas riba to know how much our debt
 
The Main Procedures for Obtaining Cypriot Citizenship
The Main Procedures for Obtaining Cypriot CitizenshipThe Main Procedures for Obtaining Cypriot Citizenship
The Main Procedures for Obtaining Cypriot Citizenship
 
Secure Your Brand: File a Trademark Today
Secure Your Brand: File a Trademark TodaySecure Your Brand: File a Trademark Today
Secure Your Brand: File a Trademark Today
 
Cold War - 1, talks about cold water bro
Cold War - 1, talks about cold water broCold War - 1, talks about cold water bro
Cold War - 1, talks about cold water bro
 
NATURE, ORIGIN AND DEVELOPMENT OF INTERNATIONAL LAW.pptx
NATURE, ORIGIN AND DEVELOPMENT OF INTERNATIONAL LAW.pptxNATURE, ORIGIN AND DEVELOPMENT OF INTERNATIONAL LAW.pptx
NATURE, ORIGIN AND DEVELOPMENT OF INTERNATIONAL LAW.pptx
 
Notes-on-Prescription-Obligations-and-Contracts.doc
Notes-on-Prescription-Obligations-and-Contracts.docNotes-on-Prescription-Obligations-and-Contracts.doc
Notes-on-Prescription-Obligations-and-Contracts.doc
 
Introducing New Government Regulation on Toll Road.pdf
Introducing New Government Regulation on Toll Road.pdfIntroducing New Government Regulation on Toll Road.pdf
Introducing New Government Regulation on Toll Road.pdf
 
怎么购买(massey毕业证书)新西兰梅西大学毕业证学位证书注册证明信原版一模一样
怎么购买(massey毕业证书)新西兰梅西大学毕业证学位证书注册证明信原版一模一样怎么购买(massey毕业证书)新西兰梅西大学毕业证学位证书注册证明信原版一模一样
怎么购买(massey毕业证书)新西兰梅西大学毕业证学位证书注册证明信原版一模一样
 
ADR in criminal proceeding in Bangladesh with global perspective.
ADR in criminal proceeding in Bangladesh with global perspective.ADR in criminal proceeding in Bangladesh with global perspective.
ADR in criminal proceeding in Bangladesh with global perspective.
 
Business and Corporate Case Update (2024)
Business and Corporate Case Update (2024)Business and Corporate Case Update (2024)
Business and Corporate Case Update (2024)
 
PRECEDENT AS A SOURCE OF LAW (SAIF JAVED).pptx
PRECEDENT AS A SOURCE OF LAW (SAIF JAVED).pptxPRECEDENT AS A SOURCE OF LAW (SAIF JAVED).pptx
PRECEDENT AS A SOURCE OF LAW (SAIF JAVED).pptx
 
Car Accident Injury Do I Have a Case....
Car Accident Injury Do I Have a Case....Car Accident Injury Do I Have a Case....
Car Accident Injury Do I Have a Case....
 
VIETNAM - DIRECT POWER PURCHASE AGREEMENTS (DPPA) - Latest development - What...
VIETNAM - DIRECT POWER PURCHASE AGREEMENTS (DPPA) - Latest development - What...VIETNAM - DIRECT POWER PURCHASE AGREEMENTS (DPPA) - Latest development - What...
VIETNAM - DIRECT POWER PURCHASE AGREEMENTS (DPPA) - Latest development - What...
 
Rokita Releases Soccer Stadium Legal Opinion
Rokita Releases Soccer Stadium Legal OpinionRokita Releases Soccer Stadium Legal Opinion
Rokita Releases Soccer Stadium Legal Opinion
 
Highlights_of_Bhartiya_Nyaya_Sanhita.pptx
Highlights_of_Bhartiya_Nyaya_Sanhita.pptxHighlights_of_Bhartiya_Nyaya_Sanhita.pptx
Highlights_of_Bhartiya_Nyaya_Sanhita.pptx
 
Military Commissions details LtCol Thomas Jasper as Detailed Defense Counsel
Military Commissions details LtCol Thomas Jasper as Detailed Defense CounselMilitary Commissions details LtCol Thomas Jasper as Detailed Defense Counsel
Military Commissions details LtCol Thomas Jasper as Detailed Defense Counsel
 
How to Obtain Permanent Residency in the Netherlands
How to Obtain Permanent Residency in the NetherlandsHow to Obtain Permanent Residency in the Netherlands
How to Obtain Permanent Residency in the Netherlands
 
Abdul Hakim Shabazz Deposition Hearing in Federal Court
Abdul Hakim Shabazz Deposition Hearing in Federal CourtAbdul Hakim Shabazz Deposition Hearing in Federal Court
Abdul Hakim Shabazz Deposition Hearing in Federal Court
 
WINDING UP of COMPANY, Modes of Dissolution
WINDING UP of COMPANY, Modes of DissolutionWINDING UP of COMPANY, Modes of Dissolution
WINDING UP of COMPANY, Modes of Dissolution
 
RIGHTS OF VICTIM EDITED PRESENTATION(SAIF JAVED).pptx
RIGHTS OF VICTIM EDITED PRESENTATION(SAIF JAVED).pptxRIGHTS OF VICTIM EDITED PRESENTATION(SAIF JAVED).pptx
RIGHTS OF VICTIM EDITED PRESENTATION(SAIF JAVED).pptx
 

Data Privacy - Penalties for Non-Compliance

  • 1. Penalties for Non-Compliance with Data Privacy Law Basics of Philippine Data Privacy Law for Non-Lawyers
  • 2. Unauthorized processing of Personal Information Unauthorized Processing of Personal Information: • Without the consent of the data subject • Without being authorized by the Data Privacy Law or any other law Reference: Section 25 (a), R.A. 10173 PENALTIES Imprisonment Fine 1 year to 3 years Php500K – Php2M Notice: Both are imposed – i.e. imprisonment and fine
  • 3. Unauthorized processing of Sensitive Personal Information Unauthorized Processing of Sensitive Personal Information: • Without the consent of the data subject • Without being authorized by the Data Privacy Law or any other law Reference: Section 25 (b), R.A. 10173 PENALTIES Imprisonment Fine 3 years to 6 years Php500K – Php4M Notice: Both are imposed – i.e. imprisonment and fine
  • 4. Accessing of Personal Information Providing access to Personal Information – Due to Negligence: • Without being authorized by the Data Privacy Law or any other law Reference: Section 26 (a), R.A. 10173 PENALTIES Imprisonment Fine 1 year to 3 years Php500K – Php2M Notice: Both are imposed – i.e. imprisonment and fine
  • 5. Accessing of Sensitive Personal Information Providing access to Sensitive Personal Information – Due to Negligence: • Without being authorized by the Data Privacy Law or any other law Reference: Section 26 (b), R.A. 10173 PENALTIES Imprisonment Fine 3 years to 6 years Php500K – Php4M Notice: Both are imposed – i.e. imprisonment and fine
  • 6. Improper disposal of Personal Information Improper disposal of Personal Information – Knowingly or Negligently: • Dispose, Discard or Abandon the personal information of an individual in an area accessible to the public; or • Has otherwise placed the personal information of an individual in its container for trash collection. Reference: Section 27 (a), R.A. 10173 PENALTIES Imprisonment Fine 6 months to 2 years Php100K – Php500K Notice: Both are imposed – i.e. imprisonment and fine
  • 7. Improper disposal of Sensitive Personal Information Improper disposal of Sensitive Personal Information – Knowingly or Negligently: • Dispose, Discard or Abandon the personal information of an individual in an area accessible to the public; or • Has otherwise placed the personal information of an individual in its container for trash collection. Reference: Section 27 (b), R.A. 10173 PENALTIES Imprisonment Fine 1 year to 3 years Php100K – Php1M Notice: Both are imposed – i.e. imprisonment and fine
  • 8. Processing for unauthorized purposes of Personal Information Processing of Personal Information: • For purposes not authorized by the data subject; or • Otherwise authorized under the Data Privacy Law or existing law. Reference: Section 28, R.A. 10173 PENALTIES Imprisonment Fine 6 months to 5 years Php500K – Php1M Notice: Both are imposed – i.e. imprisonment and fine
  • 9. Processing for unauthorized purposes of Sensitive Personal Information Processing of Sensitive Personal Information: • For purposes not authorized by the data subject; or • Otherwise authorized under the Data Privacy Law or existing law. Reference: Section 28, R.A. 10173 PENALTIES Imprisonment Fine 2 years to 7 years Php500K – Php2M Notice: Both are imposed – i.e. imprisonment and fine
  • 10. Unauthorized Access or Intentional Breach Breaking – in any way – into any system where personal and sensitive personal information is stored: • Knowingly or and unlawfully; or • Violating data confidentiality and security data systems Reference: Section 29, R.A. 10173 PENALTIES Imprisonment Fine 1 year to 3 years Php500K – Php2M Notice: Both are imposed – i.e. imprisonment and fine
  • 11. Concealment of Security Breaches Involving Sensitive Personal Information Sensitive Personal Information After having knowledge of a security breach and of the obligation to notify the National Privacy Commission pursuant to Section 20 (f): • Intentionally or by omission, conceals the fact of such security breach Reference: Section 30, R.A. 10173 PENALTIES Imprisonment Fine 1 year and 6 months to 5 years Php500K – Php1M Notice: Both are imposed – i.e. imprisonment and fine
  • 12. Malicious Disclosure Any personal information controller (PIC) or personal information processor (PIP) or any of its officials, employees or agents, who: • With malice or in bad faith, • Discloses unwarranted or false information relative to any personal information or personal sensitive information obtained by him or her Reference: Section 31, R.A. 10173 PENALTIES Imprisonment Fine 1 year and 6 months to 5 years Php500K – Php1M Notice: Both are imposed – i.e. imprisonment and fine
  • 13. Personal Information’s Unauthorized Disclosure Any personal information controller (PIC) or personal information processor (PIP) or any of its officials, employees or agents, who: • Discloses to a third party personal information not covered by the immediately preceding section (on Malicious Disclosure) • Without the consent of the data subject Reference: Section 32 (a), R.A. 10173 PENALTIES Imprisonment Fine 1 year to 3 years Php500K – Php1M Notice: Both are imposed – i.e. imprisonment and fine
  • 14. Sensitive Personal Information’s Unauthorized Disclosure Any personal information controller (PIC) or personal information processor (PIP) or any of its officials, employees or agents, who: • Discloses to a third party sensitive personal information not covered by the immediately preceding section (on Malicious Disclosure) • Without the consent of the data subject Reference: Section 32 (b), R.A. 10173 PENALTIES Imprisonment Fine 3 years to 5 years Php500K – Php2M Notice: Both are imposed – i.e. imprisonment and fine
  • 15. Combination or Series of Acts For any combination or series of acts of the violations mentioned in the preceding slides: Reference: Section 33, R.A. 10173 PENALTIES Imprisonment Fine 3 years to 6 years Php1M – Php5M Notice: Both are imposed – i.e. imprisonment and fine
  • 16. Liability: Responsible Officers If the offender is a corporation, partnership or any juridical person, the penalty shall be imposed upon the responsible officers, as the case may be, who participated in, or by their gross negligence, allowed the commission of the crime. If the offender is a juridical person, the court may suspend or revoke any of its rights under this Act. If the offender is an alien, he or she shall, in addition to the penalties herein prescribed, be deported without further proceedings after serving the penalties prescribed. If the offender is a public official or employee and he or she is found guilty of acts penalized under Sections 27 and 28 of this Act, he or she shall, in addition to the penalties prescribed herein, suffer perpetual or temporary absolute disqualification from office, as the case may be. By default, responsible officers are made liable for juridical entities. Reference: Section 34, R.A. 10173
  • 17. Large Scale: Maximum Penalty The maximum penalty in the scale of penalties respectively provided for the preceding offenses shall be imposed when the personal information of at least one hundred (100) persons is harmed, affected or involved as the result of the above mentioned actions. Benchmark for imposing maximum penalty: 100 persons. Reference: Section 35, R.A. 10173
  • 18. Public Officers When the offender or the person responsible for the offense is a public officer as defined in the Administrative Code of the Philippines in the exercise of his or her duties, an accessory penalty consisting in the disqualification to occupy public office for a term double the term of criminal penalty imposed shall he applied. Double-term disqualification to occupy public office for any public officer found liable. The term is based on the criminal penalty imposed. Reference: Section 36, R.A. 10173
  • 19. Restitution Restitution for any aggrieved party shall be governed by the provisions of the New Civil Code. Complainants may seek restitution against the offenders as may be provided by the Civil Code. This may be in the form damages. Reference: Section 37, R.A. 10173
  • 20. Summary 1) Data Privacy Law has severe penalties for non-compliance. 2) Penalties are harsher when violations involve sensitive personal information compared to personal information. 3) Public officers and employees, as well as private individuals who are responsible officers in juridical entities, are made liable. 4) The law provides for a combination or series of acts that could result in increasing the penalty. 5) Maximum penalty is imposed for large scale offense when at least 100 persons are harmed, affected, or involved.
  • 21. Basics of Philippine Data Privacy Law for Non-Lawyers Atty. Jericho B. Del Puerto SME Business Lawyer For inquiries, comment, or permission to use slides, send us an email : info@jdpconsulting.ph. Penalties for Non-Compliance with Data Privacy Law