Book a demo Log in / Sign up

Cookie Consent Policy Template for the Philippines

Generate a bespoke document

  • England and Wales
  • Scotland
  • Northern Ireland
  • Ireland
  • United States
  • Alabama (USA)
  • Alaska (USA)
  • Arizona (USA)
  • Arkansas (USA)
  • California (USA)
  • Colorado (USA)
  • Connecticut (USA)
  • Delaware (USA)
  • Florida (USA)
  • Georgia (USA)
  • Hawaii (USA)
  • Idaho (USA)
  • Illinois (USA)
  • Indiana (USA)
  • Iowa (USA)
  • Kansas (USA)
  • Kentucky (USA)
  • Louisiana (USA)
  • Maine (USA)
  • Maryland (USA)
  • Massachusetts (USA)
  • Michigan (USA)
  • Minnesota (USA)
  • Mississippi (USA)
  • Missouri (USA)
  • Montana (USA)
  • Nebraska (USA)
  • Nevada (USA)
  • New Hampshire (USA)
  • New Jersey (USA)
  • New Mexico (USA)
  • New York (USA)
  • North Carolina (USA)
  • North Dakota (USA)
  • Ohio (USA)
  • Oklahoma (USA)
  • Oregon (USA)
  • Pennsylvania (USA)
  • Rhode Island (USA)
  • South Carolina (USA)
  • South Dakota (USA)
  • Tennessee (USA)
  • Texas (USA)
  • Utah (USA)
  • Vermont (USA)
  • Virginia (USA)
  • Washington (USA)
  • West Virginia (USA)
  • Wisconsin (USA)
  • Wyoming (USA)
  • Austria
  • Denmark
  • France
  • Germany
  • Lithuania
  • Luxembourg
  • Malta
  • Netherlands
  • Poland
  • Portugal
  • Romania
  • Slovakia
  • Slovenia
  • Spain
  • Sweden
  • Switzerland
  • Australia
  • New Zealand
  • Singapore
  • Hong Kong
  • India
  • Malaysia
  • Pakistan
  • United Arab Emirates
  • Qatar
  • Saudi Arabia
  • South Africa
  • Nigeria
  • Canada
  • Brasil
  • Monaco
  • Bermuda
  • Cayman Islands
  • Gibraltar
  • Isle of Man
  • Mauritius

What is a Cookie Consent Policy?

The Cookie Consent Policy serves as a crucial compliance document for organizations operating websites in the Philippines, addressing requirements under the Data Privacy Act of 2012 and related regulations. This policy is essential for any organization that uses cookies or similar tracking technologies on their website, providing necessary disclosures about data collection practices and user consent mechanisms. The document should be implemented when launching a new website or updating existing privacy practices, and must be regularly reviewed to ensure continued compliance with Philippine data protection laws and international standards. The Cookie Consent Policy includes detailed information about types of cookies used, purposes of data collection, user rights, and consent management options, serving as both a legal compliance tool and a transparency mechanism for users.

Frequently Asked Questions

Is a Cookie Consent Policy legally required for websites operating in the Philippines?

Yes, under the Data Privacy Act of 2012 (Republic Act 10173), websites that collect personal information through cookies must obtain proper consent and provide clear disclosures about their data collection practices. The National Privacy Commission requires transparency about tracking technologies and user consent mechanisms for Philippine-based websites or those targeting Filipino users.

Can I face penalties for not having a proper Cookie Consent Policy in the Philippines?

Yes, the National Privacy Commission can impose fines ranging from PHP 500,000 to PHP 5,000,000 for violations of the Data Privacy Act, including improper cookie consent practices. Non-compliance can also result in imprisonment of 1-6 years and additional civil liability for damages caused to data subjects.

How is a Cookie Consent Policy different from a Privacy Policy under Philippine law?

A Cookie Consent Policy specifically focuses on tracking technologies, cookies, and consent mechanisms, while a Privacy Policy covers broader data collection, processing, and storage practices. Under the Data Privacy Act, both documents work together - the Cookie Policy ensures proper consent for tracking, while the Privacy Policy provides comprehensive data protection disclosures.

How long does it typically take to implement a Cookie Consent Policy for a Philippine website?

Creating the policy document usually takes 1-3 days using templates, but full implementation including technical setup of consent banners and cookie management systems can take 1-2 weeks. The timeline depends on your website's complexity and whether you need custom consent mechanisms to comply with Data Privacy Act requirements.

Must Cookie Consent Policies in the Philippines be written in Filipino or English?

The Data Privacy Act requires that consent and privacy notices be provided in a language reasonably expected to be understood by the data subject. For websites targeting Filipino users, providing the policy in both Filipino and English is advisable, though English is generally acceptable for business websites.

Can I use international cookie consent templates for my Philippine website?

International templates like GDPR-compliant policies may not fully satisfy Philippine Data Privacy Act requirements, which have specific consent standards and disclosure obligations. It's better to use templates specifically designed for Philippine compliance or modify international templates to include Data Privacy Act provisions.

Which cookies require explicit consent under Philippine data privacy laws?

Under the Data Privacy Act, cookies that collect personal information (including behavioral tracking, analytics with personal identifiers, and advertising cookies) require explicit consent. Strictly necessary cookies for website functionality may not require consent, but you must still disclose their use in your Cookie Consent Policy.

Reviewed by

Swetha Meenal

Legal Engineer, GenieAI

Swetha Meenal profile photo

A lawyer, legal researcher and legal tech founder, Swetha has built AI products deployed inside Tier 1 firms and enterprises. She ensures GenieAI's alignment with the latest regulation and executes testing on the legal robustness of Genie output.

LinkedIn

Reviewed by

Imad Mohammed Nazar

Legal Engineer, GenieAI

Imad Mohammed Nazar profile photo

A Skadden-trained M&A lawyer, Imad advised on cross-border transactions and contractual risk before moving into legal AI. He reviews GenieAI's output for compliance and enforceability across our 150+ supported jurisdictions, as well as facilitating external benchmarking.

LinkedIn

Jurisdiction

Philippines

Reviewed by

Swetha Meenal & Imad Mohammed Nazar

Publisher

GenieAI

Category

Privacy Policy

Sector

Business

Cost

Free to use

Last updated

About the Cookie Consent Policy

A Cookie Consent Policy is a legal document that helps your website comply with Philippine data protection laws, specifically the Data Privacy Act of 2012 and its implementing regulations. This policy informs users about cookies and tracking technologies used on your website, explains how their data is collected and processed, and provides mechanisms for obtaining proper consent. The document serves as a critical compliance tool that protects both your organization and your website users by ensuring transparency in data collection practices.

When do you need this document?

You need a Cookie Consent Policy whenever your website uses cookies, web beacons, or similar tracking technologies that collect personal information from visitors in the Philippines. This includes e-commerce platforms that track user behavior, marketing websites that use analytics tools, blogs with social media integration, and any site that collects user preferences or login information. The policy is required whether you operate a local Philippine business or an international company with Filipino users. You must also update your policy whenever you add new tracking technologies, change data processing purposes, or modify your consent mechanisms.

Key legal considerations

Your Cookie Consent Policy must clearly explain what cookies are, categorize the types you use (necessary, functional, analytical, marketing), and specify the legal basis for processing under the Data Privacy Act. The policy should detail how users can manage their cookie preferences, including opt-out mechanisms for non-essential cookies. You must identify any third-party cookie providers and explain international data transfers if applicable. The document should address user rights under Philippine law, including access, rectification, and data portability rights. Consider implementing cookie banners or consent management platforms that align with your policy statements and provide users with meaningful choice about their data.

Legal requirements in Philippines

Under the Data Privacy Act of 2012 and NPC Circular 16-01, your Cookie Consent Policy must provide clear and comprehensive information about your data collection practices. The National Privacy Commission requires that consent be freely given, specific, informed, and unambiguous, meaning pre-ticked boxes or implied consent through continued website use may not be sufficient. Your policy must be written in plain language that ordinary users can understand, available in Filipino or English, and easily accessible from your website's main pages. You must maintain records of user consent and provide mechanisms for users to withdraw consent at any time. The policy should also comply with the Electronic Commerce Act of 2000 regarding electronic transactions and specify how you handle cookies for users under 18 years of age, as parental consent may be required under certain circumstances.

GOVERNING LAW

Applicable law

This Cookie Consent Policy is drafted to comply with Philippines law. Key legislation includes:

Data Privacy Act of 2012 (Republic Act 10173): The primary data protection law in the Philippines that establishes guidelines for processing personal information, including requirements for consent and transparency in data collection methods like cookies
Implementing Rules and Regulations of the Data Privacy Act of 2012: Detailed regulations that provide specific requirements for compliance with the Data Privacy Act, including guidelines for obtaining valid consent and providing privacy notices
NPC Privacy Policy Guidelines (NPC Circular 16-01): Guidelines from the National Privacy Commission on what should be included in privacy notices and how to properly disclose data collection practices
Electronic Commerce Act of 2000 (Republic Act 8792): Provides legal framework for electronic transactions and may affect how cookies are used in e-commerce websites
Consumer Act of the Philippines (Republic Act 7394): General consumer protection law that may apply to transparency requirements regarding cookie usage and data collection practices
General Data Protection Regulation (GDPR): While not Philippine law, GDPR should be considered if the website may have EU visitors, as it sets strict requirements for cookie consent and transparency
NPC Circular No. 20-01: Guidelines on Security of Personal Data in a Work-From-Home Arrangement, which may affect how cookie data is processed and stored when accessed remotely

Explore 208,390+ legal templates

Explore 208,390+ legal templates

Genie's Security Promise

Genie is the safest place to draft. Here's how we prioritise your privacy and security.

Your data is private:

We do not train on your data; Genie's AI improves independently

All data stored on Genie is private to your organisation

Your documents are protected:

Your documents are protected by ultra-secure 256-bit encryption

We are ISO27001 certified, so your data is secure

Organizational security:

You retain IP ownership of your documents and their information

You have full control over your data and who gets to see it