The Philippine Data Privacy Act of 2012 (
DPA) requires personal information controllers (
PICs) and personal information processors (
PIPs) to appoint a Data Protection Officer (
DPO).
A DPO should have expertise in relevant privacy or data protection policies and practices. The DPO should have sufficient understanding of the processing operations being carried out by OCSI, including its information systems, data security and/or data protection needs. Knowledge by the DPO of the sector or field in which OCSI operates and its internal structure, policies, and processes is also useful.
Duties And Functions
- monitor OCSI’s compliance with the DPA, the Implementing Rules and Regulations of the DPA, issuances by the National Privacy Commission (NPC) and other applicable laws and policies;
- ensure proper data breach and security incident management by OCSI, including the preparation and submission to the NPC of reports and other documentation concerning security incidents or data breaches within the prescribed period;
- inform and cultivate awareness on privacy and data protection within the organization, including all relevant laws, rules and regulations and issuances of the NPC;
- advocate for the development, review and/or revision of policies, guidelines, projects and/or programs of OCSI relating to privacy and data protection, by adopting a privacy by design approach;
- ensure the conduct of Privacy Impact Assessments relative to activities, measures, projects, programs, or systems of OCSI (in conjunction with the Australian Privacy Team at TPG Telecom Limited);
- advise OCSI regarding complaints and/or the exercise by data subjects of their rights (e.g., requests for information, clarifications, rectification or deletion of personal data);
- serve as the contact person of OCSI vis-à-vis data subjects, the NPC and other authorities in all matters concerning data privacy or security issues or concerns;
- cooperate, coordinate and seek advice of the NPC regarding matters concerning data privacy and security; and
- perform other duties and tasks that may be assigned by OCSI that will further the interest of data privacy and security and uphold the rights of the data subjects.
The DPO will report to the Privacy Officer at TPG Telecom Limited and work closely with its Australian Privacy Team. The DPO will be supported by external legal counsel in the Philippines where appropriate.
Key Skills
- Legally qualified with a minimum experience 3 years post qualification experience
- Strong experience in handling privacy and data security issues and knowledge of Philippine privacy legislation.
- Excellent communication skills and an independent thinker.
- Excellent interpersonal skills with a commercial and pragmatic approach.
- Ability to adapt to a fast paced and dynamic work environment.
How We Work
As a combined business we have several amazing brands across fixed and mobile, these are the principals we are using to help us create something even better together.
What makes TPG great is our people, we are a strong and mighty team that do a lot and we do it well. TPG is a Company where you can truly gain experience in a dynamic and diverse work environment. Working at TPG means taking on new and exciting challenges that help you grow and develop your career.
Interested? Send your resume today, we are excited to hear from you!
TPG Philippines is continuing to hire for all open roles with all interviewing and on-boarding done virtually due to COVID-19.