What is the responsibility of an entity regarding its employees who access personal data?

What is the responsibility of an entity regarding its employees who access personal data?

Any entity dynamically involved in processing personal data holds the ultimate responsibility for carefully selecting and diligently supervising its engaged employees, agents, or representatives. This rigorous supervision is particularly vital for those specific individuals who will have direct operational access to highly sensitive personal data. To achieve this, the entity must actively conduct regular capacity building, comprehensive orientation, or relevant training programs regarding internal privacy and security policies. These critical human resource obligations are mandated under Section 26 IRR. “d. Management of Human Resources. Any natural or juridical person or other entity involved in the processing of personal data shall be responsible for selecting and supervising its employees, agents, or representatives, particularly those who will have access to personal data… There shall be capacity building, orientation or training programs for such employees, agents or representatives, regarding privacy or security policies.” 22-May-26

About Nicolas and De Vega Law Offices

 Nicolas and De Vega Law Offices is a full-service law firm in the Philippines.  You may visit us at the 16th Flr., Suite 1607 AIC Burgundy Empire Tower, ADB Ave., Ortigas Center, 1605 Pasig City, Metro Manila, Philippines.  You may also call us at +632 84706126, +632 84706130, +632 84016392 or e-mail us at [email protected]. Visit our website https://ndvlaw.com/.

SEARCH