NPC SERVICES





I WANT TO

Know More

Know Your Rights
The Data Privacy Act and Its IRR
Memorandum Circulars
Advisories
Advisory Opinions
30 Ways to Love Yourself Online
Other Resources
Questions? AskPriva




I WANT TO

Comply

Register
Appointing a Data Protection Officer
Conducting a Privacy Impact Assessment
Creating a Privacy Manual
Implementing Privacy and Data Protection Measures
Exercising Breach Reporting Procedures




I WANT TO

Complain

Mechanics
Submit a Complaint






What is Data Privacy?

The right of an individual not to have private information about himself disclosed, and to live freely from surveillance and intrusion.


News & Events





NPC launches online registration system for data processing systems
February 3, 2023

PASAY CITY – The National Privacy Commission (NPC) launched its online registration system today February 3, 2023. The NPC Registration System (NPCRS) is an online platform that provides a secure and seamless portal for both government and private organizations to register their data processing systems with the Commission. It is the latest system developed and […]

READ MORE



NPC conducts on-site visits among telcos to check compliance with DPA while implementing SIM Registration Act
January 16, 2023

January 13, 2023, METRO MANILA — The National Privacy Commission (NPC), through its Compliance and Monitoring Division conducts simultaneous Compliance Check On-site Visits to the head offices of telecommunication companies, such as Smart Communications, Globe Telecom, and Dito Telecommunity to ensure that they are implementing appropriate security measures to protect the personal data of Filipinos […]

READ MORE



NPC amends Circular on the processing of personal data for loan-related transactions
January 4, 2023

The National Privacy Commission (NPC) has amended certain provisions of its NPC Circular No. 2020-01 providing for the guidelines on the processing of personal data for loanrelated transactions which was published on September 14, 2020. Under NPC Circular No. 2022-02, the amendments cover the processing of personal data for evaluating loan applications, granting loans, collection […]

READ MORE



More Updates

Announcement

ANNOUNCEMENT ON DPS REGISTRATION

With the launch of the National Privacy Commission Registration System (“NPCRS”) and the effectivity of NPC Circular No. 2022-04 on 11 January 2023, the Commission will no longer accept new registration, amendments, and renewal of registration except through the NPCRS portal. Submission through email, personal filing, ordinary mail, licensed courier service and other mode of physical submission shall not be considered valid.

Personal Information Controllers (PICs), Personal Information Processors (PIPs), and Individual Professionals processing personal data who are covered by mandatory registration (Sec. 5 NPC Cir. 22-04) have 180 days or until 10 July 2023 to comply.

NPC Circular No. 2022-04 can be accessed through this Link

All PICs/PIPs are directed to create an account, through its Data Protection Officer, and register Data Processing Systems at Link

For registration related inquiries, you may reach the us through email at [email protected]

For system [NPCRS] related inquiries, please email us at [email protected]

For PICs/PIPs who do not fall under Section 5 on Mandatory Registration of NPC Circular No. 2022-04, You are required to submit a notarized document of Annex 1 - Sworn Declaration and Undertaking for Exemption from Registration of Data Processing Systems at [email protected]

All Certificates of Registration with effectivity dates until the 8th of March 2023 are EXTENDED to 10 July 2023.

PICs, PIPs, and Individual Professionals holding OLD Certificates of Registration bearing a different effectivity date shall be considered not-registered.

Compliance and Monitoring Division

NOTICE OF EXTENSION OF COMMENTS

Submission of comments/suggestions/opinions and other valuable inputs regarding the new draft circulars to be adopted by the National Privacy Commission (NPC) - Draft Repeal of NPC Circular 16-01 (Security of Personal Data In Government Agencies) and Draft NPC Circular on The Prerequisites For The Philippine Privacy Trust Mark Certification Program is extended to 11 January 2022.

To access the draft NPC Circular on the Security of Personal Data in Public and Private Sectors, please click here.

To access the draft NPC Circular on the Prerequisites for the Philippine Privacy Trust Mark (PPTM) Certification Program, please click here.

Please send your comments/suggestions/opinions to [email protected]

Thank you.

NOTICE OF PUBLIC CONSULTATION

Concerned organizations, stakeholders, and other interested parties are invited to
submit their comments/suggestions/opinions and other valuable inputs regarding the draft
Circular on the Amendments to National Privacy Commission 2021 Rules of Procedure.

Please see attached Draft NPC Circular for your reference. Click here

The issuance will amend certain provisions of the 2021 Rules of Procedure of the
National Privacy Commission.

Please send your comments/suggestions/opinions and other valuable inputs
to [email protected] not later than 03 January 2023.

The Commission will conduct an online public hearing on 10 January 2023 from 1: 00
to 3: 00 p.m. Interested participants who wish to join may send an email to the addresses
provided above on or before 04 January 2023.

Thank you.

NOTICE OF PUBLIC CONSULTATION ON THE DRAFT REPEAL OF NPC CIRCULAR 16-01 (SECURITY OF PERSONAL DATA IN GOVERNMENT AGENCIES)

Concerned organizations, stakeholders, and other interested parties are invited to submit their valuable inputs regarding the new draft circular to be adopted by the National Privacy Commission (NPC).

To access the draft NPC Circular on the Security of Personal Data in Public and Private Sectors, please click here.

This draft circular aims to repeal NPC Circular 16-01 and provide updated requirements for the security of personal data in the government and private sector due to the ever-changing security threat and technology landscape. It shall enable personal information controllers to meet the general security requirements and comply with the Data Privacy Act of 2012.

Please send your comments/suggestions/opinions and other valuable inputs to [email protected] no later than 29 December 2022.

The Commission will conduct a virtual public consultation on 21 December 2022 from 1:30 to 2:30 p.m. Interested participants who wish to join may email the above address on or before 20 December 2022.

Thank you.

NOTICE OF PUBLIC CONSULTATION ON THE DRAFT NPC CIRCULAR ON THE PREREQUISITES FOR THE PHILIPPINE PRIVACY TRUST MARK CERTIFICATION PROGRAM

Concerned organizations, stakeholders, and other interested parties are invited to submit their valuable inputs regarding the new draft circular to be adopted by the National Privacy Commission (NPC).

To access the draft NPC Circular on the Prerequisites for the Philippine Privacy Trust Mark (PPTM) Certification Program, please click here.

This draft circular aims to provide the prerequisites for certification of PICs or PIPs and accreditation of Certification Bodies under the PPTM.

Please send your comments/suggestions/opinions and other valuable inputs to [email protected] no later than 29 December 2022.

The Commission will conduct a virtual public consultation on 21 December 2022 from 10:00 to 11:00 a.m. Interested participants who wish to join may email the above address on or before 20 December 2022.

Thank you.

ACCEPTANCE OF THE PRINTED EPHILID AS VALID PROOF OF IDENTITY AND AGE IN ALL SERVICES OF THE NATIONAL PRIVACY COMMISSION

The National Privacy Commission accepts the various formats of the PhilSys digital ID, including the printed ePhilID, as a valid and sufficient proof of identity and age subject to authentication through the PhilSys Check. Please refer to the Philippine Statistics Authority Public Advisory dated 30 September 2022 and a sample of the official format of the printed ePhilID for reference.

Announcement regarding the submission of Personal Data Breach Notifications (PDBN) and Annual Security Incident Reports (ASIR)

With the launch of the DBNMS, the NPC will no longer accept Breach Notification and Annual Security Incident Report submissions except through the DBNMS online platform. Thus, submissions through email, personal filing, ordinary mail, licensed courier service, and any other mode of physical submission shall not be considered as valid.

All Personal Data Breach Notifications and Annual Security Incident Reports shall be submitted through https://dbnms.privacy.gov.ph .

See the Guidelines on the Issuance of Certificate of Pending/No Pending Case here and the Request for Certificate of Pending/No Pending Case Form here.

Send your requests to [email protected] with the subject "CPNPC Request_<name of entity/individual>"

Announcement regarding validity of existing Certificate of Registration, revised process on new application, renewal, and amendment of registration, and guidelines on common Data Protection Officers. For more information click here.

Advisory on modified in-person or face-to-face hearing of cases for all parties with pending hearings with the NPC download here

There is an easier and safer way to file your complaints before the National Privacy Commission through the improved COMPLAINTS-ASSISTED FORM (CAF). Download the new version of the form here. Do not forget to attach a copy of your supporting documents.

For inquiries, email us at [email protected]

For complaints, send your complaints-assisted form to [email protected]