By: Matt Jerome Casequin
Bicutan, Taguig – On September 14, 2023, the Department of Science and Technology – Technology Application and Promotion Institute (DOST-TAPI) took a substantial step towards strengthening data privacy protocols and building public trust. The agency organized a comprehensive Data Privacy Impact Assessment Workshop and Training at the DOST-TAPI AVR.
Spearheaded by the Data Protection Team, Human Resource Unit, and Legal Unit of the agency, this initiative aimed to foster a deeper understanding and adherence to the National Privacy Commission (NPC) guidelines outlined in sections 4, 5, and 6 of NPC Circular 2016-01 and section 6 of NPC Circular 2016-03.
During her opening remarks, DOST-TAPI Director, Atty. Marion Ivy D. Decena, accentuated that adherence to data privacy regulations is not only a legal requirement but a cornerstone in building public trust and upholding ethical standards as a public service institution.
Atty. Marion Ivy Decena, DOST-TAPI Director on her opening remarks.
As a part of its mission to bolster data security, DOST-TAPI orchestrated this workshop to enhance the understanding and implementation of Privacy Impact Assessments (PIA) — a tool designed to help organizations manage the potential risks associated with handling personal data. The workshop emphasized creating PIAs for every program, process, or measure involving personal data within the agency, aligning with NPC recommendations to embed PIAs in the organization's security policy.
Sir Cleo Martinez, Information Technology Officer II of the National Privacy Commission as he discussed the Privacy Impact Assessment objectives.
Guiding the attendees through the intricacies of PIA was Sir Cleo Martinez, Information Technology Officer II at the National Privacy Commission and Head of the Compliance Support and Advocacy Unit of the commission. Martinez delineated the fundamental principles behind PIA — proportionality, transparency, and legitimate purpose — and underlined its pivotal role in safeguarding stakeholders' information.
Martinez adeptly navigated through the benefits and components of constructing a PIA, providing a deeper insight into the practical ways to mitigate risks associated with data handling. Participants later delved into a practical activity where they designed a mock- up PIA for DOST-TAPI’s Venture Financing program, a hands-on approach to understanding the theoretical concepts discussed earlier.
Atty. Israel Jacob Zaragoza, head of Legal Unit and Data Protection Team, on his closing remarks.
The event witnessed participation from representatives across all DOST-TAPI divisions, and was concluded by Atty. Israel Jacob Zaragoza, who urged everyone to cultivate a culture where data privacy is seen not just as a mandate but as a foundational principle entrenched in the agency's philosophy.
As DOST-TAPI navigates the path of advancing data privacy protocols, this workshop marks a significant stride in promoting a future where public trust and data security go hand in hand. It represents a commitment to not only adhering to the established regulatory frameworks but also fostering a culture of transparency and responsibility.
About National Privacy Commission
The National Privacy Commission is the Philippines’ privacy regulator; an independent body mandated to administer and implement the Data Privacy Act of 2012 and to monitor and guarantee compliance of the country with global standards set for data protection.
As the nations’ data privacy authority, the National Privacy Commission is committed to protect the personal information of data subjects and to foster a culture of privacy towards a competitive, knowledge-based, and innovative nation.