PH promotes global cooperation on cross-border data protection and privacy enforcement

The Philippines, through the National Privacy Commission (NPC), is taking a proactive stance in fostering international cooperation on data privacy and protection through its participation in the Global Cross-Border Privacy Rules (CBPR) Forum and Global Cooperation Arrangement for Privacy Enforcement (Global CAPE).

“One of NPC’s missions is to promote global standards for data privacy and protection. Our participation in these international initiatives underscores this commitment,” said Privacy Commissioner Atty. John Henry D. Naga. “The NPC welcomes these advancements in international data privacy cooperation and look forward to a continued and sustainable collaboration with our data privacy counterparts."

Global Cooperation Arrangement for Privacy Enforcement

In March 2024, the NPC joined the Global CAPE, a multilateral arrangement for Privacy Enforcement Authorities (PEAs) to collaborate and cooperate in cross-border data protection and privacy enforcement. The Global CAPE creates a framework under which Participants may, on a voluntary basis, share information and request or render assistance in certain ways.

It aims to achieve three key objectives: facilitate information sharing among member PEAs; establish mechanisms for effective cross-border cooperation between member PEAs on the enforcement of Data Protection and Privacy Laws and Global CBPR Framework including referrals of matters and parallel or joint investigations or enforcement actions; and encourage information sharing and cooperation with non-participating authorities to ensure a seamless global data privacy enforcement network.

To date, PEAs from 12 jurisdictions are members of the Global CAPE, including Australia, Bermuda, Canada, Dubai International Financial Center, Japan, South Korea, Mexico, the Philippines, Singapore, Chinese Taipei, United Kingdom, and the United States.

Global CBPR and Global PRP Systems Launch

On April 30, 2024, the Global CBPR Forum announced the launch of the Global CBPR and Global Privacy Recognition for Processors (PRP) Systems.

The publication of System documents allows Accountability Agents to issue Global CBPR and Global PRP certifications to interested organizations. The Global CBPR and Global PRP System documents are as follows:

  • Global CBPR Forum Accountability Agent Application - This document sets forth the process and criteria for an organization seeking recognition as an Accountability Agent under the Global CBPR Forum. Forum-recognized Accountability Agents will be able to certify companies as Global CBPR and/or Global PRP-compliant.
  • Global CBPR and Global PRP Program Requirements and Intake Questionnaires - These set forth the requirements of the Global CBPR and Global PRP Systems which Forum-recognized Accountability Agents will use to assess companies seeking certification.
  • Global CBPR and Global PRP Systems Policies, Rules, and Guidelines - This describes the Global CBPR and Global PRP Systems, their core elements, governance structure, and the roles and responsibilities of certified companies, Forum-recognized Accountability Agents, Privacy Enforcement Authorities, and Forum Members.

The documents are available at the Global CBPR Forum website: link

The NPC is inviting organizations to apply for recognition as an Accountability Agent.

For queries concerning the application process, kindly send them to [email protected].

For reference, you may access the Global CBPR Forum news here: link