All Countries
Data Privacy
Privacy Agreement

Privacy Agreement Template for Philippines

Create a bespoke document in minutes,  or upload and review your own.

4.6 / 5
4.8 / 5

Let's create your Privacy Agreement

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Get your first 2 documents free

Your data doesn't train Genie's AI

You keep IP ownership of your information

Key Requirements PROMPT example:

Privacy Agreement

"I need a Privacy Agreement for my e-commerce business based in Manila, which will handle customer payment data and shipping information, compliant with Philippine data protection laws and including specific provisions for international data transfers to our warehouse management system in Singapore."

Celebrated by
Collaborations with
Investors
Document background
This Privacy Agreement is essential for organizations operating in the Philippines that collect, process, or store personal information of individuals. It serves as a crucial compliance document under the Data Privacy Act of 2012 and its Implementing Rules and Regulations. The agreement should be implemented when establishing new data processing relationships or updating existing privacy practices to ensure compliance with Philippine privacy laws. It covers key aspects such as consent mechanisms, data subject rights, security measures, breach notification procedures, and data retention policies. The Privacy Agreement is particularly important given the increasing focus on data protection by the National Privacy Commission and the potential penalties for non-compliance with Philippine privacy regulations. This document helps organizations demonstrate their commitment to protecting personal information while maintaining transparency in their data processing activities.
Suggested Sections

1. Parties: Identification of the data controller/processor and the data subject or their representatives

2. Background: Context of the agreement and the relationship between the parties

3. Definitions: Key terms used in the agreement, aligned with definitions from the Data Privacy Act

4. Scope and Purpose: Clear statement of what personal data will be collected and processed, and for what specific purposes

5. Consent: Express consent provisions and conditions for data collection and processing

6. Data Collection Practices: Details of how personal data is collected, including direct and indirect methods

7. Use and Processing of Personal Data: Specific ways the collected data will be used, processed, and stored

8. Data Subject Rights: Enumeration of all rights under the Data Privacy Act, including access, correction, and erasure

9. Security Measures: Technical and organizational measures implemented to protect personal data

10. Data Retention and Disposal: Period for which data will be retained and methods of secure disposal

11. Data Breach Notification: Procedures for handling and reporting data breaches

12. Governing Law and Jurisdiction: Specification of Philippine law and relevant jurisdictional matters

13. Term and Termination: Duration of the agreement and conditions for termination

Optional Sections

1. International Data Transfers: Required when personal data may be transferred outside the Philippines

2. Third-Party Processing: Include when external processors will handle the personal data

3. Special Categories of Data: Required when sensitive personal information is being processed

4. Children's Privacy: Include when data of minors may be collected or processed

5. Direct Marketing Provisions: Required when data will be used for marketing purposes

6. Automated Decision Making: Include when automated processing or profiling is used

7. Cookie Policy Integration: Required for online services using cookies or similar technologies

8. Employee Data Processing: Include when agreement covers employment-related data processing

Suggested Schedules

1. Schedule 1: Data Processing Activities: Detailed list of specific data processing activities and purposes

2. Schedule 2: Technical Security Measures: Detailed description of security protocols and measures

3. Schedule 3: Data Retention Schedule: Specific retention periods for different categories of data

4. Appendix A: Data Subject Request Forms: Standard forms for exercising data subject rights

5. Appendix B: Breach Response Protocol: Detailed procedures for handling data breaches

6. Appendix C: Consent Forms: Template consent forms for different data processing activities

7. Appendix D: Processing Locations: List of all locations where data processing occurs

Authors

Alex Denne

Head of Growth (Open Source Law) @ Genie AI | 3 x UCL-Certified in Contract Law & Drafting | 4+ Years Managing 1M+ Legal Documents | Serial Founder & Legal AI Author

Linkedin in social icon imageX social icon image
alex.den.21@genieai.co
Relevant legal definitions
Agreement
Applicable Privacy Laws
Authorized Representative
Consent
Data Breach
Data Controller
Data Processing System
Data Processor
Data Protection Officer
Data Subject
Direct Marketing
Information and Communications System
Personal Data
Personal Information
Personal Information Controller
Personal Information Processor
Processing
Profiling
Security Incident
Sensitive Personal Information
Special Categories of Data
Technical and Organizational Measures
Third Party
Third Party Processing
Transmission of Personal Data
Data Sharing
Data Subject Rights
Privacy Impact Assessment
Data Protection Principles
Cross-border Transfer
Automated Processing
Anonymization
Pseudonymization
Data Retention Period
Security Measures
Confidential Information
Privacy Notice
Breach Notification
Consent Withdrawal
Data Access Request
Clauses
Definitions
Scope
Consent
Data Collection
Data Processing
Data Subject Rights
Data Security
Confidentiality
Data Retention
Data Deletion
Data Transfer
Breach Notification
Liability
Indemnification
Force Majeure
Assignment
Termination
Governing Law
Dispute Resolution
Severability
Entire Agreement
Amendment
Notice
Warranties
Compliance
Audit Rights
Third-Party Processing
International Transfer
Security Measures
Breach Reporting
Data Recovery
Emergency Procedures
Subcontracting
Insurance
Service Levels
Personnel Obligations
Intellectual Property
Regulatory Compliance
Records Management
Relevant Industries

Healthcare

Financial Services

Technology

E-commerce

Education

Telecommunications

Insurance

Real Estate

Professional Services

Retail

Manufacturing

Hospitality

Transportation

Government Services

Non-profit Organizations

Media and Entertainment

Relevant Teams

Legal

Compliance

Information Technology

Information Security

Risk Management

Human Resources

Customer Service

Operations

Data Analytics

Privacy Office

Internal Audit

Project Management

Systems Administration

Database Administration

Relevant Roles

Data Protection Officer

Privacy Officer

Legal Counsel

Compliance Manager

Information Security Manager

Risk Manager

IT Director

Chief Technology Officer

Chief Information Officer

Chief Privacy Officer

General Counsel

Operations Manager

Human Resources Director

Customer Service Manager

Business Development Manager

Project Manager

Systems Administrator

Database Administrator

Industries
Data Privacy Act of 2012 (Republic Act No. 10173): The primary legislation governing personal data protection in the Philippines, establishing the framework for data privacy compliance, data subject rights, and obligations of personal information controllers and processors.
Implementing Rules and Regulations of the Data Privacy Act of 2012: Detailed regulations that implement the Data Privacy Act, providing specific requirements for compliance, security measures, and data protection procedures.
NPC Circular No. 16-01: Guidelines for data protection officers, providing requirements for the appointment and responsibilities of DPOs in organizations.
The 1987 Constitution of the Philippines, Article III, Section 3: Constitutional provision protecting the privacy of communication and correspondence, serving as the fundamental basis for privacy rights.
Electronic Commerce Act of 2000 (Republic Act No. 8792): Relevant for privacy agreements involving online transactions or electronic data collection, covering aspects of electronic data messages and privacy in electronic commerce.
NPC Circular No. 2020-03: Guidelines on personal data breach notification, relevant for including breach notification procedures in privacy agreements.
Consumer Act of the Philippines (Republic Act No. 7394): Provisions relating to consumer rights and privacy, particularly relevant if the privacy agreement involves consumer transactions.
Teams

Employer, Employee, Start Date, Job Title, Department, Location, Probationary Period, Notice Period, Salary, Overtime, Vacation Pay, Statutory Holidays, Benefits, Bonus, Expenses, Working Hours, Rest Breaks,  Leaves of Absence, Confidentiality, Intellectual Property, Non-Solicitation, Non-Competition, Code of Conduct, Termination,  Severance Pay, Governing Law, Entire Agreemen

Find the exact document you need

GDPR Notice

A dual-compliant GDPR Notice meeting both EU GDPR and Philippines' Data Privacy Act requirements for organizations processing personal data in the Philippines.

find out more

Privacy Policy Consent

A Philippine-compliant privacy policy and consent document that outlines personal data handling practices and obtains explicit consent under the Data Privacy Act.

find out more

Cctv Privacy Notice

A Philippine-compliant privacy notice for CCTV systems that outlines data collection, processing, and subject rights under the Data Privacy Act.

find out more

Data Protection Privacy Notice

A privacy notice compliant with Philippines' Data Privacy Act (RA 10173), outlining how an organization handles personal data and protects data subject rights.

find out more

Online Privacy Notice

A legal document compliant with Philippine data privacy laws that explains how an organization handles personal information collected through its online platforms.

find out more

Cookie Consent Notice

A Philippine law-compliant Cookie Consent Notice explaining website cookie usage and user rights under local data protection regulations.

find out more

Global Privacy Notice

A Philippine law-compliant Global Privacy Notice outlining organizational practices for personal data processing and protection, aligned with both local and international privacy standards.

find out more

Cookie Notice Text

A legal notice for Philippine websites explaining cookie usage and data collection practices in compliance with local privacy laws.

find out more

Contact Form Privacy Policy

A legal document outlining the collection and processing of personal information through contact forms, compliant with Philippine data privacy laws.

find out more

Client Privacy Policy

A legal document outlining personal data handling practices in compliance with Philippine privacy laws, specifically the Data Privacy Act of 2012.

find out more

Recruitment Privacy Notice

A Philippine-compliant privacy notice outlining how job applicants' personal data is handled during recruitment, in accordance with the Data Privacy Act of 2012.

find out more

Privacy Policy Notice

A legal document outlining personal data handling practices in compliance with Philippine privacy laws and the Data Privacy Act of 2012.

find out more

Cookie Consent Policy

A Cookie Consent Policy compliant with Philippine data privacy laws, outlining website cookie usage and user rights.

find out more

Privacy Policy Agreement

A comprehensive Privacy Policy Agreement aligned with Philippine data protection laws, detailing an organization's personal data handling practices and compliance measures.

find out more

Privacy Agreement

A Philippine law-compliant agreement governing the collection, processing, and protection of personal data under the Data Privacy Act of 2012.

find out more

Download our whitepaper on the future of AI in Legal

By providing your email address you are consenting to our Privacy Notice.
Thank you for downloading our whitepaper. This should arrive in your inbox shortly. In the meantime, why not jump straight to a section that interests you here: https://www.genieai.co/our-research
Oops! Something went wrong while submitting the form.

Genie’s Security Promise

Genie is the safest place to draft. Here’s how we prioritise your privacy and security.

Your documents are private:

We do not train on your data; Genie’s AI improves independently

All data stored on Genie is private to your organisation

Your documents are protected:

Your documents are protected by ultra-secure 256-bit encryption

Our bank-grade security infrastructure undergoes regular external audits

We are ISO27001 certified, so your data is secure

Organizational security

You retain IP ownership of your documents

You have full control over your data and who gets to see it

Innovation in privacy:

Genie partnered with the Computational Privacy Department at Imperial College London

Together, we ran a £1 million research project on privacy and anonymity in legal contracts

Want to know more?

Visit our Trust Centre for more details and real-time security updates.

Read our Privacy Policy.