Ensures and monitors the compliance of Operation Blessing Foundation (OBF) with the Data Protection Act (DPA) of 2012, its Implementing Rules and Regulations (IRR), issuances by the National Privacy Commission and other applicable laws and policies.
Develops, review and/or revise policies, guidelines, projects and/or programs of the foundation relating to privacy and data protection. Proactively conduct audits to ensure compliance and address potential issues.
Conducts Privacy Impact Assessments (PIA) relative to activities, measures, projects, programs, or systems of the company.
Collects information to identify the company’s processing operations, activities, measures, projects, programs, or systems and maintain a record thereof.
Devise training plans and provide data protection advice and support for the foundation.
Informs and cultivates awareness on privacy and data protection within the foundation, including all relevant laws, rules and regulations and issuances of the NPC;
Acts as the primary point of contact within the organization for staffs, donors, partners, and any third-party contractors, etc. on issues related to data protection.
Ensures proper data breach and security incident management by the company including the preparation and submission to the NPC of reports and other documentation concerning security incidents or data breaches within the prescribed period.
Advise the foundation regarding complaints and/or the exercise by clients of their rights (e.g., requests for information, clarifications, rectification, or deletion of personal data)
10. Perform other duties and tasks that may be assigned by the foundation that will further the interest of data privacy and security and uphold the rights of the data subjects.
Experience in privacy and security risk assessment.