Appointing a Data Protection Officer (DPO) is a legal requirement for personal information controllers (PICs) and personal information processors (PIPs), under the Data Privacy Act of 2012.
Apart from complying with the legal obligation, having a DPO will do your organization a lot of good. In this information age, where personal data serve as building blocks of any organization, assigning a focal person to ensure the protection of your personal data collection and processing is a must. A DPO increases your chance to remain competitive in the dynamic global landscape of data protection. At the same time, it improves your customer service and enhances your responsiveness to growing public awareness and regard for personal data protection.
THE DATA PRIVACY ACT OF 2012 is a 21st century law to address 21st century crimes and concerns. It (1) protects the privacy of individuals while ensuring free flow of information to promote innovation and growth; (2) regulates the collection, recording, organization, storage, updating or modification, retrieval, consultation, use, consolidation, blocking, erasure or destruction of personal data; and (3) ensures that the Philippines complies with international standards set for data protection through National Privacy Commission (NPC).Source: National Privacy Commission