ASA Philippines is dedicated to safeguarding the privacy of your personal data in accordance with Republic Act No. 10173, commonly known as the Data Privacy Act of 2012 (DPA). We will outline the procedures for processing your personal data and furnish a distinct privacy notice in a suitable format whenever we gather personal data through alternative channels (such as publicly accessible data processing systems, notifications displayed at ASA Philippines’ reception area during events where participants’ personal data is collected through attendance sheets or registration forms, as required by the NPC).
Rest assured that, in every instance, the processing of your personal data will strictly adhere to the provisions of the DPA, with a particular emphasis on the general data privacy principles of Transparency, Legitimate Purpose, and Proportionality.
ASA Philippines Website Privacy Notice
Our official website www.asaphil.org
This Privacy Notice pertains to the website of ASA Philippines. This feature empowers ASA Philippines toto collect and process your personal information.
Personal Data Collected and Manner of Collection
We obtain the subsequent personal information from you when you submit your inquiries or requests to us, whether manually or electronically:
“Contact Us“ Page
This form is used by the data subject to submit inquiries and concerns to ASA Philippines.
Basis, Use, and Purpose for Processing of Personal Data
Although we may seek your consent to process your personal data, there are instances where we may process personal data without your explicit consent. This includes situations where processing aligns with our organizational charter or is permissible under Section 12 or Section 13 of the Data Privacy Act (DPA).
In such cases, your personal data is utilized for the following purposes:
Documentation and processing of inquiries and requests within ASA Philippines, ensuring proper addressing and forwarding to the relevant internal units for action and response;
Soliciting feedback for the services we offer;
Providing timely updates and advisories in an orderly and appropriate format;
Fulfilling legal obligations imposed on ASA Philippines;
Complying with public order and safety requirements or performing public authority functions, including processing personal data to fulfill ASA Philippines’ charter; or
Facilitating appropriate actions in response to data subjects’ requests related to their data privacy rights.
Additionally, we may collect other pertinent personal data necessary to fulfill our mandate as outlined in our charter.
Methods utilized for automated access
ASA Philippines employs ____________________, a third-party service, to analyze the data traffic on our website. This aids us in assessing the engagement of our website and enhancing its services and features. The utilization of cookies is involved in this service, and any data generated is not shared with any external parties.
For this objective, the subsequent data related to web traffic is processed:
Your IP address
The pages and internal links accessed on our site
The date and time you visited the site
The referring site or platform (if any) through which you accessed this site
Your operating system
Web browser type
Disclosure of Personal Data
The Personal data processed by ASA Philippines is not shared with any other party unless such disclosure is allowed under Section 12 or 13 of the DPA.
Risk pertains to the potential of an incident causing harm or danger to either a data subject or an organization. These risks may result in the unauthorized collection, use, disclosure, or access to personal data, encompassing threats to the confidentiality, integrity, and availability of personal data, or the risk of processing violating general data privacy principles and the rights of data subjects.
ASA Philippines guarantees the implementation of sufficient physical, technical, and organizational security measures to safeguard the confidentiality, integrity, and availability of personal information. However, it’s important to note that this assurance doesn’t ensure absolute protection against specific risks associated with personal data processing, such as targeted cyberattacks, malware, ransomware, computer viruses, or unauthorized access to manual records.
Nevertheless, comprehensive policies are in effect to ensure proper security incident management, aligning with established ASA Philippines policies, circulars, and other directives.
Data Protection and Security Measures
ASA Philippines ensure the confidentiality, integrity, and availability of your personal information through a combination of organizational, physical, and technical security measures in line with Republic Act No. 10173 and widely accepted data privacy and information security standards. Some of the measures we put in place include:
• Access control policies implemented in both digital and physical infrastructures to prevent unauthorized access to personal information.
• Acceptable use policies.
• Application of end-to-end encryption and data classification whenever appropriate.
• Implementation of security measures to mitigate risks related to natural disasters, power disturbances, external access, and similar threats.
• Employment of technical measures to safeguard our computers and databases against accidental, unlawful, or unauthorized usage, interference, or access.
Storage and Retention
We save files containing personal information on our computers and servers, maintained in a secure environment. Additionally, your personal information might be stored with third-party data storage providers using cloud-based services. We commit to implementing appropriate measures to safeguard your information.
Personal data will be retained in a database for a duration of two (2) years after the resolution of inquiries and requests. Subsequently, records will be securely disposed of.
Certain categories of data may be retained for a period longer than two (2) years if the retention period is dictated by pertinent laws and regulations.
Physical records will undergo shredding as a method of disposal, while digital files will be anonymized. In every case, our disposal procedures will guarantee that personal information is no longer retrievable, processed, or accessed by unauthorized individuals.
Rights of a Data Subject
According to the Data Privacy Act (DPA), you possess the right to be informed about the processing of the personal information we have on record about you.
Moreover, you have the right to request:
• Access to the personal data we are processing about you. This entails confirming whether or not data related to you is undergoing processing.
• Rectification of your personal data. You have the right to have inaccuracies or incompleteness in your personal data corrected.
• Erasure or blocking of your personal data when warranted.
• The right to object if the processing of personal data is based on consent or legitimate interest.
• The right to data portability, allowing you to securely obtain, move, copy, or transfer your data for further use.
If you believe you have suffered damages due to inaccurate, incomplete, outdated, false, unlawfully obtained, or unauthorized use of personal data, or if your rights and freedoms as a data subject have been violated, you have the right to seek compensation.
In case you suspect that your personal information has been misused, disclosed maliciously, improperly disposed of, or that your data privacy rights have been violated, you are entitled to file a complaint with ASA Philippines.
Changes to the Privacy Notice
ASA Philippines retains the right to update or revise this privacy notice at any time and will furnish a new notice for substantial changes. Previous versions of the notice will be kept by ASA Philippines and provided to data subjects upon request.
Feedback on our Privacy Notice
If you have suggestions or comments regarding our privacy statement and notice or any concerns about ASA Philippines’ data privacy practices, you can contact us through our Data Protection Officer at Joel Abing, via this address: 25th Floor, Prestige Tower, F. Ortigas Jr Rd. Ortigas Center, Pasig City 1605, Philippines or via Email at firstname.lastname@example.org.