Stiff penalties are provided in the Philippine Data Privacy Law for non-compliance
Summary:
1) Data Privacy Law has severe penalties for non-compliance.
2) Penalties are harsher when violations involve sensitive personal information compared to personal information.
3) Public officers and employees, as well as private individuals who are responsible officers in juridical entities, are made liable.
4) The law provides for a combination or series of acts that could result in increasing the penalty.
5) Maximum penalty is imposed for large scale offense when at least 100 persons are harmed, affected, or involved.
Philippine Data Privacy Law is in Republic Act No. 10173, otherwise known as the " Data Privacy Act of 2012".
In summary:
1) Processing of personal information is allowed – so long as it complies with the law.
2) As much as possible, consent should be obtained from the Data Subject for the processing of personal information.
3) The confidentiality, integrity, and availability of the personal information should be ensured.
4) Sensitive and personal information are prohibited – unless in exceptional cases.
5) Philippine Data Privacy Law has extraterritorial application and thus violations may be penalized even if done outside the Philippines.
Republic Act 10173 Data Privacy Act of 2012 (DPA)
“An act protecting individual personal information in information and communications systems in the government and the private sector, creating for this purpose a National Privacy Commission, and for other purposes”
Philippine Data Privacy Act of 2012 (RA 10173)Kirk Go
Republic Act 10173 otherwise known as the Data Privacy Act of 2012. This version presents Implementing Rules and Regulations (IRR) for the Act. It outlines provisions, scope, privacy principles, lawful processing of data, security measures, rights of data subject, accountability, penalties, and others.
Data Privacy Act of 2012 implication to cooperativesjo bitonio
Whether the cooperatives registered under the Cooperative Development Authority (CDA) are covered by the DPA;
If indeed the cooperatives are covered by the law, determine the following:
Obligations of cooperatives
Reportorial requirements to be submitted to the NPC
Compliance period for such requirements
Penalties for non-compliance; and
Where cooperatives may course through or communicate other concerns regarding data privacy.
Philippine Data Privacy Law is in Republic Act No. 10173, otherwise known as the " Data Privacy Act of 2012".
In summary:
1) Processing of personal information is allowed – so long as it complies with the law.
2) As much as possible, consent should be obtained from the Data Subject for the processing of personal information.
3) The confidentiality, integrity, and availability of the personal information should be ensured.
4) Sensitive and personal information are prohibited – unless in exceptional cases.
5) Philippine Data Privacy Law has extraterritorial application and thus violations may be penalized even if done outside the Philippines.
Republic Act 10173 Data Privacy Act of 2012 (DPA)
“An act protecting individual personal information in information and communications systems in the government and the private sector, creating for this purpose a National Privacy Commission, and for other purposes”
Philippine Data Privacy Act of 2012 (RA 10173)Kirk Go
Republic Act 10173 otherwise known as the Data Privacy Act of 2012. This version presents Implementing Rules and Regulations (IRR) for the Act. It outlines provisions, scope, privacy principles, lawful processing of data, security measures, rights of data subject, accountability, penalties, and others.
Data Privacy Act of 2012 implication to cooperativesjo bitonio
Whether the cooperatives registered under the Cooperative Development Authority (CDA) are covered by the DPA;
If indeed the cooperatives are covered by the law, determine the following:
Obligations of cooperatives
Reportorial requirements to be submitted to the NPC
Compliance period for such requirements
Penalties for non-compliance; and
Where cooperatives may course through or communicate other concerns regarding data privacy.
Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...REVULN
The Data Privacy Act of the Philippines was enacted into law in March of 2012. Thus, the creation of the National Privacy Commission (NPC) last 2016, which is mandated to administer its implementation. After more than two years after its creation, NPC had successfully championed its cause from awareness, compliance and enforcement with the registration of more than 30,000 Data Protection Officers (DPO), accepted more than 1,000 complaints and cases and has made headlines in the Philippines as one of the most popular government because of its strict implementation of the law. Among its most popular implementation is its Five Pillars of Compliance which was regarded as one of the most successful implementation among other countries. Republic Act 10173, otherwise known as the Data Privacy Act (DPA) of 2012 was passed into law last 2012 in the Philippines. The law requires that all Personal Information Controllers (PIC) and Personal Information Processors (PIP) must appoint a Data Protection Officer (DPO) to manage compliance with the DPA and other applicable laws and policies. In addition, having a DPO will ensure the protection of personal data collection and processing in accordance with the requirement of the law.
Having a DPO will also ensure the organization’s competitive advantage in this digital age of data protection.
As a data protection officer, he/she must be must monitor the organization’s compliance with the DPA, its implementing rules and regulations and other issuances by the National Privacy Commission. Including the conduct of Privacy Impact Assessment, creation of a Privacy Management Program and Privacy Manual and the conduct of Breach Reporting Procedure.
In addition, a DPO should cultivate awareness to promote the culture of privacy not only within the organization, but as well as for the entire country.
The presentation will also present some issues surrounding the digital world. Including some potential breaches that may affect each individual and organization. Will also present a compilation of the most common breaches that has happened in the Philippines and how to avoid them. Technical, physical and organization security measures will also be discussed in the presentation.
Dr. Rolando Rivera Lansigan - The Privacy Act of 2012, its compliance and imp...REVULN
The Data Privacy Act of the Philippines was enacted into law in March of 2012. Thus, the creation of the National Privacy Commission (NPC) last 2016, which is mandated to administer its implementation. After more than two years after its creation, NPC had successfully championed its cause from awareness, compliance and enforcement with the registration of more than 30,000 Data Protection Officers (DPO), accepted more than 1,000 complaints and cases and has made headlines in the Philippines as one of the most popular government because of its strict implementation of the law. Among its most popular implementation is its Five Pillars of Compliance which was regarded as one of the most successful implementation among other countries. Republic Act 10173, otherwise known as the Data Privacy Act (DPA) of 2012 was passed into law last 2012 in the Philippines. The law requires that all Personal Information Controllers (PIC) and Personal Information Processors (PIP) must appoint a Data Protection Officer (DPO) to manage compliance with the DPA and other applicable laws and policies. In addition, having a DPO will ensure the protection of personal data collection and processing in accordance with the requirement of the law.
Having a DPO will also ensure the organization’s competitive advantage in this digital age of data protection.
As a data protection officer, he/she must be must monitor the organization’s compliance with the DPA, its implementing rules and regulations and other issuances by the National Privacy Commission. Including the conduct of Privacy Impact Assessment, creation of a Privacy Management Program and Privacy Manual and the conduct of Breach Reporting Procedure.
In addition, a DPO should cultivate awareness to promote the culture of privacy not only within the organization, but as well as for the entire country.
The presentation will also present some issues surrounding the digital world. Including some potential breaches that may affect each individual and organization. Will also present a compilation of the most common breaches that has happened in the Philippines and how to avoid them. Technical, physical and organization security measures will also be discussed in the presentation.
It provide legal recognition for transactions carried out by means of electronic data interchange and other means of electronic communication. Introduced by Pramod Mahajan, Minister of
Communications and Information Technology.
Data Privacy- Security of Sensitive Personal InformationJDP Consulting
Data Privacy Law applies to Government Agencies, particularly for the security of sensitive personal information.
Summary:
1) Data Privacy Law applies to Government Offices.
2) Heads of Agencies are the ones primarily responsible for compliance.
3) Security clearance is required for Government Employees who are accessing sensitive personal information.
4) A request approved by the Head of the Agency is required prior to transportation or access off-site of sensitive personal information.
5) NPC registration is required for Government Contractors for contracts involving access or requiring senstive personal information from at least 1,000 individuals.
Data Privacy - Security of Personal InformationJDP Consulting
Philippine Data Privacy Law (R.A. 10173) requires observance of Security of Personal Information.
Summary of Presentation:
1) Security of Personal Information is mandated of Personal Information Controller and their engaged Contractors (or 3rd Parties).
2) The standards for protection measures are two-fold: reasonable and appropriate.
3) Measures should be organizational, physical, and technical.
4) Strict confidentiality is required to be observed by: PIC Employees, PIC Agents, and PIC Representatives.
5) Notification requirement is mandated upon compromise of sensitive personal information and identity-fraud enabler information.
The Rights of the Data Subject encompasses all rights or interests over to personal information that has been collected, processed, and analyzed. Non-compliance with the rights results in liabilities, particularly on indemnity for damages.
Philippine Contract Law and Intellectual Property Law serve as the applicable laws on Franchising. Currently, there is no specific law on Franchising that regulates the agreements between the Franchisor and the Franchisee.
Labor Code: Unfair labor practices are violations of the constitutional rights of workers and employees to self-organization. These illegal practices are considered inimical to the legitimate interests of both labor and management. These unfair practices are likewise prejudicial to the labor and management’s right to bargain collectively, and otherwise deal with each other in an atmosphere of freedom and mutual respect. These practices disrupt industrial peace and hinder the promotion of healthy and stable labor-management relations.
The Department of Labor and Employment clarified and modified the rules and regulations on just causes and authorized causes - resulting in stricter implementation of due process. Labor Law compliance is required for valid termination. Non-compliance may result in liabilities, including illegal dismissal.
What is Control in Contracting and Subcontracting?JDP Consulting
The one who controls is the employer. DOLE D.O. 174-17 clearly emphasizes that a contractor who does not actively control the performance of the assigned personnel will be considered to be engaged in labor-only contracting. In such a case, the Principal shall be deemed the employer. Accordingly, the Principal may be held liable for monetary claims, and even illegal dismissal.
Rules on Contracting and Subcontracting in the Philippines: When is there a legitimate job contracting?
DOLE D.O. 174-17 superseded DOLE D.O. 18-A-11. Permissible job contracting still and remains allowed in the Philippines subject to stricter regulations and harsher consequences for the Principal who is deemed as the employer in various instances.
Learn the differences in this slide presentation
Pag-IBIG Benefits: Home Development Mutual Fund. Employees who can avail of housing loans as one of their Pag-IBIG Benefits from the Home Development Mutual Fund.
PhilHealth Benefits: National Health Insurance Program. Philippine Labor Law requires employers to contribute for the health insurance coverage of their employees through PhilHealth.
ECC Benefits: Employees' Compensation Program. Unknown to many employers and employees, there are ECC benefits granted to employees in the event of work-related illness, injury, and death.
Retirement Pay: Optional and Mandatory. Philippine Labor Law requires payment of retirement for employees who have rendered at least 5 years of service and are in their 60s (optional) and no more than 65 years old (mandatory).
Separation Pay: Authorized Causes. When an employee is separated due to authorized causes, Philippine Labor Law requires that the employer provide for separation pay.
Special Leave for Women: 2 months. For women employees who have undergone surgery for gynecological disorders, Philippine Labor Law grants them a 2-month special leave to recover.
VAWC Leave: 10 Days and Extendible. Philippine Labor Laws grants a woman employee subject of violence a 10-day VAWC leave to attend to medical and legal concerns. Currently, this is the only extendible leave among the benefits.
Solo Parental Leave: 7 working days. To attend to minors or wards, Philippine Labor Law grants solo parents a parental leave of 7 working days. The employee does not have to be the biological parent of the child or ward.
Paternity Leave: 7 Calendar Days. Philippine Labor Law grants married male employees a paternity leave consisting of 7-calendar days to attend to the their legitimate wife whom they are cohabiting and is about to or have given birth.
Service Incentive Leave: Vacation and Sick Leaves. By way of incentive to years of service, the Philippine Labor Code requires the employer to give a 5-day service incentive leave to the employees who have rendered at least one year of service.
Service Charges: Pooled Tips. If an establishment collects services charges, the Philippine Labor Code requires that such amounts be distributed to the covered employees and the management. The same rules apply for pooled tips.
Night Shift Differential Pay: Work Between 10PM and 6AM. The Philippine Labor Code requires payment of Night Shift Differential for work rendered in between 10PM and 6AM. This is also known as hazard pay in the business or corporate world.
A "File Trademark" is a legal term referring to the registration of a unique symbol, logo, or name used to identify and distinguish products or services. This process provides legal protection, granting exclusive rights to the trademark owner, and helps prevent unauthorized use by competitors.
Visit Now: https://www.tumblr.com/trademark-quick/751620857551634432/ensure-legal-protection-file-your-trademark-with?source=share
NATURE, ORIGIN AND DEVELOPMENT OF INTERNATIONAL LAW.pptxanvithaav
These slides helps the student of international law to understand what is the nature of international law? and how international law was originated and developed?.
The slides was well structured along with the highlighted points for better understanding .
Introducing New Government Regulation on Toll Road.pdfAHRP Law Firm
For nearly two decades, Government Regulation Number 15 of 2005 on Toll Roads ("GR No. 15/2005") has served as the cornerstone of toll road legislation. However, with the emergence of various new developments and legal requirements, the Government has enacted Government Regulation Number 23 of 2024 on Toll Roads to replace GR No. 15/2005. This new regulation introduces several provisions impacting toll business entities and toll road users. Find out more out insights about this topic in our Legal Brief publication.
PRECEDENT AS A SOURCE OF LAW (SAIF JAVED).pptxOmGod1
Precedent, or stare decisis, is a cornerstone of common law systems where past judicial decisions guide future cases, ensuring consistency and predictability in the legal system. Binding precedents from higher courts must be followed by lower courts, while persuasive precedents may influence but are not obligatory. This principle promotes fairness and efficiency, allowing for the evolution of the law as higher courts can overrule outdated decisions. Despite criticisms of rigidity and complexity, precedent ensures similar cases are treated alike, balancing stability with flexibility in judicial decision-making.
Car Accident Injury Do I Have a Case....Knowyourright
Every year, thousands of Minnesotans are injured in car accidents. These injuries can be severe – even life-changing. Under Minnesota law, you can pursue compensation through a personal injury lawsuit.
In 2020, the Ministry of Home Affairs established a committee led by Prof. (Dr.) Ranbir Singh, former Vice Chancellor of National Law University (NLU), Delhi. This committee was tasked with reviewing the three codes of criminal law. The primary objective of the committee was to propose comprehensive reforms to the country’s criminal laws in a manner that is both principled and effective.
The committee’s focus was on ensuring the safety and security of individuals, communities, and the nation as a whole. Throughout its deliberations, the committee aimed to uphold constitutional values such as justice, dignity, and the intrinsic value of each individual. Their goal was to recommend amendments to the criminal laws that align with these values and priorities.
Subsequently, in February, the committee successfully submitted its recommendations regarding amendments to the criminal law. These recommendations are intended to serve as a foundation for enhancing the current legal framework, promoting safety and security, and upholding the constitutional principles of justice, dignity, and the inherent worth of every individual.
Military Commissions details LtCol Thomas Jasper as Detailed Defense CounselThomas (Tom) Jasper
Military Commissions Trial Judiciary, Guantanamo Bay, Cuba. Notice of the Chief Defense Counsel's detailing of LtCol Thomas F. Jasper, Jr. USMC, as Detailed Defense Counsel for Abd Al Hadi Al-Iraqi on 6 August 2014 in the case of United States v. Hadi al Iraqi (10026)
How to Obtain Permanent Residency in the NetherlandsBridgeWest.eu
You can rely on our assistance if you are ready to apply for permanent residency. Find out more at: https://immigration-netherlands.com/obtain-a-permanent-residence-permit-in-the-netherlands/.
WINDING UP of COMPANY, Modes of DissolutionKHURRAMWALI
Winding up, also known as liquidation, refers to the legal and financial process of dissolving a company. It involves ceasing operations, selling assets, settling debts, and ultimately removing the company from the official business registry.
Here's a breakdown of the key aspects of winding up:
Reasons for Winding Up:
Insolvency: This is the most common reason, where the company cannot pay its debts. Creditors may initiate a compulsory winding up to recover their dues.
Voluntary Closure: The owners may decide to close the company due to reasons like reaching business goals, facing losses, or merging with another company.
Deadlock: If shareholders or directors cannot agree on how to run the company, a court may order a winding up.
Types of Winding Up:
Voluntary Winding Up: This is initiated by the company's shareholders through a resolution passed by a majority vote. There are two main types:
Members' Voluntary Winding Up: The company is solvent (has enough assets to pay off its debts) and shareholders will receive any remaining assets after debts are settled.
Creditors' Voluntary Winding Up: The company is insolvent and creditors will be prioritized in receiving payment from the sale of assets.
Compulsory Winding Up: This is initiated by a court order, typically at the request of creditors, government agencies, or even by the company itself if it's insolvent.
Process of Winding Up:
Appointment of Liquidator: A qualified professional is appointed to oversee the winding-up process. They are responsible for selling assets, paying off debts, and distributing any remaining funds.
Cease Trading: The company stops its regular business operations.
Notification of Creditors: Creditors are informed about the winding up and invited to submit their claims.
Sale of Assets: The company's assets are sold to generate cash to pay off creditors.
Payment of Debts: Creditors are paid according to a set order of priority, with secured creditors receiving payment before unsecured creditors.
Distribution to Shareholders: If there are any remaining funds after all debts are settled, they are distributed to shareholders according to their ownership stake.
Dissolution: Once all claims are settled and distributions made, the company is officially dissolved and removed from the business register.
Impact of Winding Up:
Employees: Employees will likely lose their jobs during the winding-up process.
Creditors: Creditors may not recover their debts in full, especially if the company is insolvent.
Shareholders: Shareholders may not receive any payout if the company's debts exceed its assets.
Winding up is a complex legal and financial process that can have significant consequences for all parties involved. It's important to seek professional legal and financial advice when considering winding up a company.
RIGHTS OF VICTIM EDITED PRESENTATION(SAIF JAVED).pptxOmGod1
Victims of crime have a range of rights designed to ensure their protection, support, and participation in the justice system. These rights include the right to be treated with dignity and respect, the right to be informed about the progress of their case, and the right to be heard during legal proceedings. Victims are entitled to protection from intimidation and harm, access to support services such as counseling and medical care, and the right to restitution from the offender. Additionally, many jurisdictions provide victims with the right to participate in parole hearings and the right to privacy to protect their personal information from public disclosure. These rights aim to acknowledge the impact of crime on victims and to provide them with the necessary resources and involvement in the judicial process.
2. Unauthorized processing of
Personal Information
Unauthorized Processing of Personal Information:
• Without the consent of the data subject
• Without being authorized by the Data Privacy Law or any other law
Reference: Section 25 (a), R.A. 10173
PENALTIES
Imprisonment Fine
1 year to 3 years Php500K – Php2M
Notice: Both are imposed – i.e. imprisonment and fine
3. Unauthorized processing of
Sensitive Personal Information
Unauthorized Processing of Sensitive Personal Information:
• Without the consent of the data subject
• Without being authorized by the Data Privacy Law or any other law
Reference: Section 25 (b), R.A. 10173
PENALTIES
Imprisonment Fine
3 years to 6 years Php500K – Php4M
Notice: Both are imposed – i.e. imprisonment and fine
4. Accessing of
Personal Information
Providing access to Personal Information – Due to Negligence:
• Without being authorized by the Data Privacy Law or any other law
Reference: Section 26 (a), R.A. 10173
PENALTIES
Imprisonment Fine
1 year to 3 years Php500K – Php2M
Notice: Both are imposed – i.e. imprisonment and fine
5. Accessing of
Sensitive Personal Information
Providing access to Sensitive Personal Information – Due to Negligence:
• Without being authorized by the Data Privacy Law or any other law
Reference: Section 26 (b), R.A. 10173
PENALTIES
Imprisonment Fine
3 years to 6 years Php500K – Php4M
Notice: Both are imposed – i.e. imprisonment and fine
6. Improper disposal of
Personal Information
Improper disposal of Personal Information – Knowingly or Negligently:
• Dispose, Discard or Abandon the personal information of an individual
in an area accessible to the public; or
• Has otherwise placed the personal information of an individual in its
container for trash collection.
Reference: Section 27 (a), R.A. 10173
PENALTIES
Imprisonment Fine
6 months to 2 years Php100K – Php500K
Notice: Both are imposed – i.e. imprisonment and fine
7. Improper disposal of
Sensitive Personal Information
Improper disposal of Sensitive Personal Information – Knowingly or
Negligently:
• Dispose, Discard or Abandon the personal information of an individual
in an area accessible to the public; or
• Has otherwise placed the personal information of an individual in its
container for trash collection.
Reference: Section 27 (b), R.A. 10173
PENALTIES
Imprisonment Fine
1 year to 3 years Php100K – Php1M
Notice: Both are imposed – i.e. imprisonment and fine
8. Processing for unauthorized purposes of
Personal Information
Processing of Personal Information:
• For purposes not authorized by the data subject; or
• Otherwise authorized under the Data Privacy Law or existing law.
Reference: Section 28, R.A. 10173
PENALTIES
Imprisonment Fine
6 months to 5 years Php500K – Php1M
Notice: Both are imposed – i.e. imprisonment and fine
9. Processing for unauthorized purposes of
Sensitive Personal Information
Processing of Sensitive Personal Information:
• For purposes not authorized by the data subject; or
• Otherwise authorized under the Data Privacy Law or existing law.
Reference: Section 28, R.A. 10173
PENALTIES
Imprisonment Fine
2 years to 7 years Php500K – Php2M
Notice: Both are imposed – i.e. imprisonment and fine
10. Unauthorized Access or Intentional Breach
Breaking – in any way – into any system where personal and sensitive
personal information is stored:
• Knowingly or and unlawfully; or
• Violating data confidentiality and security data systems
Reference: Section 29, R.A. 10173
PENALTIES
Imprisonment Fine
1 year to 3 years Php500K – Php2M
Notice: Both are imposed – i.e. imprisonment and fine
11. Concealment of Security Breaches Involving Sensitive Personal Information
Sensitive Personal Information
After having knowledge of a security breach and of the obligation to notify
the National Privacy Commission pursuant to Section 20 (f):
• Intentionally or by omission, conceals the fact of such security breach
Reference: Section 30, R.A. 10173
PENALTIES
Imprisonment Fine
1 year and 6 months to 5 years Php500K – Php1M
Notice: Both are imposed – i.e. imprisonment and fine
12. Malicious Disclosure
Any personal information controller (PIC) or personal information processor
(PIP) or any of its officials, employees or agents, who:
• With malice or in bad faith,
• Discloses unwarranted or false information relative to any personal
information or personal sensitive information obtained by him or her
Reference: Section 31, R.A. 10173
PENALTIES
Imprisonment Fine
1 year and 6 months to 5 years Php500K – Php1M
Notice: Both are imposed – i.e. imprisonment and fine
13. Personal Information’s
Unauthorized Disclosure
Any personal information controller (PIC) or personal information processor
(PIP) or any of its officials, employees or agents, who:
• Discloses to a third party personal information not covered by the
immediately preceding section (on Malicious Disclosure)
• Without the consent of the data subject
Reference: Section 32 (a), R.A. 10173
PENALTIES
Imprisonment Fine
1 year to 3 years Php500K – Php1M
Notice: Both are imposed – i.e. imprisonment and fine
14. Sensitive Personal Information’s
Unauthorized Disclosure
Any personal information controller (PIC) or personal information processor
(PIP) or any of its officials, employees or agents, who:
• Discloses to a third party sensitive personal information not covered by
the immediately preceding section (on Malicious Disclosure)
• Without the consent of the data subject
Reference: Section 32 (b), R.A. 10173
PENALTIES
Imprisonment Fine
3 years to 5 years Php500K – Php2M
Notice: Both are imposed – i.e. imprisonment and fine
15. Combination or Series of Acts
For any combination or series of acts of the violations mentioned in the
preceding slides:
Reference: Section 33, R.A. 10173
PENALTIES
Imprisonment Fine
3 years to 6 years Php1M – Php5M
Notice: Both are imposed – i.e. imprisonment and fine
16. Liability: Responsible Officers
If the offender is a corporation, partnership or any juridical person, the penalty shall be imposed upon the
responsible officers, as the case may be, who participated in, or by their gross negligence, allowed the
commission of the crime. If the offender is a juridical person, the court may suspend or revoke any of its
rights under this Act. If the offender is an alien, he or she shall, in addition to the penalties herein
prescribed, be deported without further proceedings after serving the penalties prescribed. If the offender
is a public official or employee and he or she is found guilty of acts penalized under Sections 27 and 28 of
this Act, he or she shall, in addition to the penalties prescribed herein, suffer perpetual or temporary
absolute disqualification from office, as the case may be.
By default, responsible officers are made liable for juridical entities.
Reference: Section 34, R.A. 10173
17. Large Scale: Maximum Penalty
The maximum penalty in the scale of penalties respectively provided for the preceding offenses shall be
imposed when the personal information of at least one hundred (100) persons is harmed, affected or
involved as the result of the above mentioned actions.
Benchmark for imposing maximum penalty: 100 persons.
Reference: Section 35, R.A. 10173
18. Public Officers
When the offender or the person responsible for the offense is a public officer as defined in the
Administrative Code of the Philippines in the exercise of his or her duties, an accessory penalty
consisting in the disqualification to occupy public office for a term double the term of criminal penalty
imposed shall he applied.
Double-term disqualification to occupy public office for any public officer
found liable. The term is based on the criminal penalty imposed.
Reference: Section 36, R.A. 10173
19. Restitution
Restitution for any aggrieved party shall be governed by the provisions of the New Civil Code.
Complainants may seek restitution against the offenders as may be
provided by the Civil Code. This may be in the form damages.
Reference: Section 37, R.A. 10173
20. Summary
1) Data Privacy Law has severe penalties for non-compliance.
2) Penalties are harsher when violations involve sensitive personal
information compared to personal information.
3) Public officers and employees, as well as private individuals who are
responsible officers in juridical entities, are made liable.
4) The law provides for a combination or series of acts that could result in
increasing the penalty.
5) Maximum penalty is imposed for large scale offense when at least 100
persons are harmed, affected, or involved.
21. Basics of Philippine Data Privacy Law
for Non-Lawyers
Atty. Jericho B. Del Puerto
SME Business Lawyer
For inquiries, comment, or permission to use slides, send us an email : info@jdpconsulting.ph.
Penalties for Non-Compliance
with Data Privacy Law