All Countries
Data Privacy
GDPR Notice

GDPR Notice Template for Philippines

Create a bespoke document in minutes,  or upload and review your own.

4.6 / 5
4.8 / 5

Let's create your GDPR Notice

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Get your first 2 documents free

Your data doesn't train Genie's AI

You keep IP ownership of your information

Key Requirements PROMPT example:

GDPR Notice

"I need a GDPR Notice for my e-commerce business based in Manila that will be launching an online marketplace in March 2025, targeting both Philippine and EU customers, with features including user profiling and automated decision-making for personalized recommendations."

Celebrated by
Collaborations with
Investors
Document background
This GDPR Notice is essential for organizations that process personal data in the Philippines while falling under the scope of the EU GDPR, either through offering goods or services to EU residents or monitoring their behavior. The document ensures compliance with both the GDPR's transparency requirements (Articles 13 and 14) and the Philippines' Data Privacy Act of 2012. It should be used when an organization needs to inform data subjects about their data processing activities, rights, and protections in a clear and comprehensive manner. The notice includes mandatory information about the data controller, purposes of processing, data subject rights, transfer mechanisms, and security measures. It's particularly important for Philippine-based organizations with EU customers or employees, or those part of a larger multinational operation involving EU data subjects.
Suggested Sections

1. Introduction: Overview of the notice and its purpose

2. Data Controller Information: Identity and contact details of the data controller and, where applicable, its representative in the EU

3. Data Protection Officer: Contact details of the Data Protection Officer (DPO) or Privacy Officer

4. Categories of Personal Data: Types of personal data collected and processed

5. Purposes of Processing: Detailed explanation of why personal data is collected and how it will be used

6. Legal Basis for Processing: Legal grounds under GDPR and DPA for processing personal data

7. Recipients of Personal Data: Categories of recipients with whom data may be shared

8. International Transfers: Information about transfers to third countries and safeguards

9. Retention Periods: How long personal data will be stored

10. Data Subject Rights: Explanation of individual rights under GDPR and DPA

11. Right to Lodge Complaints: Information about the right to complain to supervisory authorities

12. Security Measures: Overview of measures to protect personal data

13. Updates to Privacy Notice: Information about how changes to the notice will be communicated

Optional Sections

1. Automated Decision Making: Include when automated decision-making or profiling is used

2. Cookies and Tracking: Include when website tracking or cookies are used

3. Children's Privacy: Include when services may involve processing children's data

4. Specific Processing Activities: Include when there are unique or specific processing activities that need detailed explanation

5. Job Applicant Data: Include when the notice covers recruitment processing

6. Marketing Communications: Include when personal data is used for marketing purposes

7. CCTV Monitoring: Include when video surveillance is used on premises

Suggested Schedules

1. Cookie List: Detailed list of cookies used, their purposes and duration

2. Third Party Processors: List of data processors and their roles

3. Technical and Organizational Measures: Detailed description of security measures implemented

4. Data Retention Schedule: Detailed retention periods for different categories of data

5. Specific Processing Activities: Detailed information about particular processing activities

Authors

Alex Denne

Head of Growth (Open Source Law) @ Genie AI | 3 x UCL-Certified in Contract Law & Drafting | 4+ Years Managing 1M+ Legal Documents | Serial Founder & Legal AI Author

Linkedin in social icon imageX social icon image
alex.den.21@genieai.co
Relevant legal definitions
Personal Data
Processing
Data Subject
Data Controller
Data Processor
Consent
Special Categories of Personal Data
Data Protection Officer
Privacy Commission
Supervisory Authority
Data Protection Impact Assessment
Personal Data Breach
Cross-border Processing
Third Party
Filing System
Recipient
Profiling
Pseudonymization
Encryption
Information Security
Data Transfer
Data Sharing
Automated Decision Making
Data Portability
Privacy Notice
Legitimate Interests
Data Minimization
Storage Limitation
Transparency
Accountability
Privacy by Design
Privacy by Default
Security Measures
Data Protection Principles
Sensitive Personal Information
Data Subject Rights
Marketing Communications
Cookies
Log Data
Child's Consent
Clauses
Data Collection
Purpose Limitation
Legal Basis
Consent
Data Subject Rights
Data Security
Data Retention
International Transfer
Third Party Sharing
Data Protection
Breach Notification
Complaints Procedure
Marketing Communications
Cookie Usage
Children's Privacy
Updates and Amendments
Contact Information
Accountability
Automated Processing
Data Minimization
Transparency
Record Keeping
Technical Measures
Organizational Measures
Cross-border Processing
Direct Marketing
Security Safeguards
Regulatory Compliance
Relevant Industries

Technology

Healthcare

Financial Services

Education

Retail

E-commerce

Manufacturing

Professional Services

Telecommunications

Tourism and Hospitality

Real Estate

Insurance

Non-profit Organizations

Government Services

Media and Entertainment

Relevant Teams

Legal

Compliance

Information Security

Human Resources

Information Technology

Risk Management

Data Protection

Privacy

Operations

Customer Service

Marketing

Internal Audit

Relevant Roles

Data Protection Officer

Privacy Officer

Compliance Manager

Legal Counsel

Information Security Manager

Risk Manager

HR Director

IT Manager

Operations Manager

Chief Privacy Officer

Chief Information Security Officer

Chief Legal Officer

Chief Compliance Officer

Data Protection Specialist

Privacy Analyst

Industries
EU General Data Protection Regulation (GDPR): The primary EU law on data protection and privacy, which has extraterritorial scope and applies to organizations handling EU residents' data
Republic Act 10173 (Data Privacy Act of 2012): The Philippines' comprehensive data protection law that governs the processing of personal information in the country
Implementing Rules and Regulations of the Data Privacy Act of 2012: Detailed regulations that provide specific requirements and guidelines for implementing the Data Privacy Act
NPC Circular No. 16-01: Guidelines for data privacy compliance in the Philippines, including requirements for privacy notices
NPC Advisory No. 2017-01: Guidelines on data sharing agreements involving government agencies in the Philippines
NPC Circular No. 2020-03: Guidelines on personal data breach management, which should be referenced in privacy notices
Teams

Employer, Employee, Start Date, Job Title, Department, Location, Probationary Period, Notice Period, Salary, Overtime, Vacation Pay, Statutory Holidays, Benefits, Bonus, Expenses, Working Hours, Rest Breaks,  Leaves of Absence, Confidentiality, Intellectual Property, Non-Solicitation, Non-Competition, Code of Conduct, Termination,  Severance Pay, Governing Law, Entire Agreemen

Find the exact document you need

GDPR Notice

A dual-compliant GDPR Notice meeting both EU GDPR and Philippines' Data Privacy Act requirements for organizations processing personal data in the Philippines.

find out more

Privacy Policy Consent

A Philippine-compliant privacy policy and consent document that outlines personal data handling practices and obtains explicit consent under the Data Privacy Act.

find out more

Cctv Privacy Notice

A Philippine-compliant privacy notice for CCTV systems that outlines data collection, processing, and subject rights under the Data Privacy Act.

find out more

Data Protection Privacy Notice

A privacy notice compliant with Philippines' Data Privacy Act (RA 10173), outlining how an organization handles personal data and protects data subject rights.

find out more

Online Privacy Notice

A legal document compliant with Philippine data privacy laws that explains how an organization handles personal information collected through its online platforms.

find out more

Cookie Consent Notice

A Philippine law-compliant Cookie Consent Notice explaining website cookie usage and user rights under local data protection regulations.

find out more

Global Privacy Notice

A Philippine law-compliant Global Privacy Notice outlining organizational practices for personal data processing and protection, aligned with both local and international privacy standards.

find out more

Cookie Notice Text

A legal notice for Philippine websites explaining cookie usage and data collection practices in compliance with local privacy laws.

find out more

Contact Form Privacy Policy

A legal document outlining the collection and processing of personal information through contact forms, compliant with Philippine data privacy laws.

find out more

Client Privacy Policy

A legal document outlining personal data handling practices in compliance with Philippine privacy laws, specifically the Data Privacy Act of 2012.

find out more

Recruitment Privacy Notice

A Philippine-compliant privacy notice outlining how job applicants' personal data is handled during recruitment, in accordance with the Data Privacy Act of 2012.

find out more

Privacy Policy Notice

A legal document outlining personal data handling practices in compliance with Philippine privacy laws and the Data Privacy Act of 2012.

find out more

Cookie Consent Policy

A Cookie Consent Policy compliant with Philippine data privacy laws, outlining website cookie usage and user rights.

find out more

Privacy Policy Agreement

A comprehensive Privacy Policy Agreement aligned with Philippine data protection laws, detailing an organization's personal data handling practices and compliance measures.

find out more

Privacy Agreement

A Philippine law-compliant agreement governing the collection, processing, and protection of personal data under the Data Privacy Act of 2012.

find out more

Download our whitepaper on the future of AI in Legal

By providing your email address you are consenting to our Privacy Notice.
Thank you for downloading our whitepaper. This should arrive in your inbox shortly. In the meantime, why not jump straight to a section that interests you here: https://www.genieai.co/our-research
Oops! Something went wrong while submitting the form.

Genie’s Security Promise

Genie is the safest place to draft. Here’s how we prioritise your privacy and security.

Your documents are private:

We do not train on your data; Genie’s AI improves independently

All data stored on Genie is private to your organisation

Your documents are protected:

Your documents are protected by ultra-secure 256-bit encryption

Our bank-grade security infrastructure undergoes regular external audits

We are ISO27001 certified, so your data is secure

Organizational security

You retain IP ownership of your documents

You have full control over your data and who gets to see it

Innovation in privacy:

Genie partnered with the Computational Privacy Department at Imperial College London

Together, we ran a £1 million research project on privacy and anonymity in legal contracts

Want to know more?

Visit our Trust Centre for more details and real-time security updates.

Read our Privacy Policy.