Global Compliance: NPC Seal of Registration reaches Singapore
The National Privacy Commission (NPC) applauds the compliance of personal information controllers (PICs) and personal information processors (PIPs) abroad with the Data Privacy Act of 2012 (DPA), as evidenced by the display of the NPC Seal of Registration in Singapore.
Section 6 of the DPA on Extraterritorial Application provides that the DPA applies to acts done or practices engaged in and outside of the Philippines if they relate to personal information about a Philippine citizen or resident. The DPA also applies if the entity has a link with the Philippines, and the entity is processing personal information within or outside the country as long as it is about Philippine citizens or residents.
Privacy Commissioner Atty. John Henry D. Naga, who is attending the Personal Data Protection Week 2024 in Singapore, personally inspected and observed the display of the NPC Seal of Registration on the door of the Philippine National Bank’s (PNB) branch office. “It’s impressive to see the NPC Seal of Registration in Singapore”, said Privacy Commissioner Naga. He added that “This underscores the extraterritorial reach of the Data Privacy Act of 2012, ensuring that organizations processing personal and sensitive information of Filipinos comply with the law, no matter where they are located.” The Privacy Commissioner commended the PNB for its commitment to protect the personal data of Filipinos even beyond the Philippine borders.
The NPC mandates that PICs and PIPs prominently display the NPC Seal of Registration at the main entrance of their business premises, office, or in the most conspicuous place to ensure visibility to all data subjects. For those PICs and PIPs with an online presence, it is imperative that the NPC Seal of Registration be made visible to website visitors. Additionally, the NPC Public Advisory on the Mandatory Display of the NPC Seal of Registration provides that the NPC Seal of Registration must also be posted within all the PICs and PIPs’ offices, including branches, sub-branches, and satellite offices where personal data processing occurs. This is especially vital for locations involved in daily interactions with data subjects.
The NPC is continuously conducting on-the-spot privacy sweeps and compliance checks on PICs and PIPs to ensure compliance with the DPA and NPC issuances. The NPC shall enforce penalties and fines on organizations found in violation of the law.
For more information, visit our website at https://privacy.gov.ph/.
###