NBI designates Data Privacy Act compliance officers

Published September 16, 2020, 10:21 AM

by Jeffrey Damicog

The National Bureau of Investigation (NBI) has designated compliance officers who will ensure the implementation of Republic Act 10173, the Data Privacy Act.


The NBI said on Tuesday (Sept. 15) that NBI Officer-In-Charge Director Eric Distor has signed Memorandum Order No. 29 which designated as compliance officers for privacy (COP) the bureau’s regional directors (RD), agents-in-charge (AIC) and officers-in-charge (OIC).

“The Memorandum Order (MO) was issued by OIC Director Distor in compliance to National Privacy Commission’s (NPC) advisory for each government agency to designate a DPO (data privacy officer). The MO likewise states that where a government agency has regional, provincial, district, city, municipal offices, or any other similar sub-units, it may designate or appoint a COP for each sub-unit,” the NBI explained.

The bureau said among the functions of the COPs are COPs are to “assist the Data Protection Officer (DPO) in the performance of his functions.”

“The designation of COPs is to ensure that the Data Privacy Act, which was signed to law on August 15, 2012, its Implementing Rules and Regulations, issuances by the National Privacy Commission, and other applicable laws and regulations relating to privacy and data protection, are complied with at all NBI Regional, District, and Satellite Offices,” it added.

The bureau noted that it NBI has 17 Regional Offices and 25 District Offices.

Among their tasks, the NBI said COPs ensure that there are “proper data breach and security incident management in their respective offices including the preparation and submission to the NPC of reports and other documentation concerning security incidents or data breaches within the prescribed period.”

As COPs, the bureau said they should perform other duties and tasks that may be assigned by the NBI Director that will “further the interest of data privacy and security and uphold the rights of the data subjects.”

The COPs should also inform and cultivate awareness on privacy and data protection within their respective office; advocate for the development, review and/or revision of policies, guidelines, projects and/or programs of the NBI relating to privacy and data protection by adopting a privacy by design approach; serve as the contact person of the NBI Director to the NPC and other authorities in all matters concerning data privacy or security issues or concerns of their respective offices; and cooperate, coordinate, and seek advice of the NPC regarding matters concerning data privacy and security.