Government Cybersecurity Threats Prompt Calls for Action and Education on Data Privacy

Government websites are facing significant cyberattack threats, as evidenced by successful interceptions by the Department of Information and Communications Technology (DICT) against attacks originating from China, with a focus on entities like the Overseas Workers Welfare Administration.

Responding to these concerning incidents, Senator Grace Poe has urged rapid improvements to government agency website firewall mechanisms. She stressed the collective responsibility of reinforcing these systems, underlining the government’s commitment to utilizing all available means to protect people’s data security and integrity.

In alignment with this, the National Privacy Commission (NPC) has outlined its key objectives for the year, reflecting its dedication to safeguarding Filipinos’ personal information and fostering a privacy-conscious culture conducive to a competitive, knowledge-based, and innovative nation.

With its mandate to implement the provisions of the Data Privacy Act of 2012 and ensure the country’s adherence to international data protection standards, the agency aims to address ongoing challenges in understanding fundamental data privacy concepts and laws this year.

During the January 30 fireside chat titled “Insights into the Future: Fireside conversations on data privacy for 2024,” hosted by the International Association of Privacy Professionals Knowledgenet Philippines, NPC Deputy Commissioner Leandro Angelo Y. Aguirre emphasized expanding basic data privacy education beyond Metro Manila as a key goal for 2024.

This includes plans for a Data Privacy Foundational Course that can be easily implemented by training providers outside the capital, designed to be operational and practical, benefiting senior management, legal professionals, and data protection officers.

Aguirre expressed the desire to democratize access to privacy education, with intentions to release course materials before Privacy Awareness Week in May, enabling groups outside Metro Manila to conduct their own courses using agency materials.

He also underscored NPC’s commitment to transparency through the launch of “Calls For Public Input In Addition To Public Consultation,” aiming to engage affected parties before drafting regulations to ensure their meaningfulness and informed nature.

Further initiatives mentioned include a Notice for Public Consultation on CCTV issuance, planned issuance of model contractual terms for cross-border transfers, a circular on privacy codes, and Guidelines on Children’s Privacy, all emphasizing a risk-based approach and considering unique Filipino cultural and sociological factors.

NPC also plans to release rules on tracking mechanisms, focusing on consent cookies compliance with the Circular on Consent, and an advisory for the protection of lawful rights and interests in court proceedings.

Aguirre discussed NPC’s upcoming circular on security measures, aiming to revise NPC Circular 16-01 to provide basic measures for both private and public sectors. It is intended as a benchmark for organizations to evaluate their existing security measures rather than establishing new requirements.

In conclusion, the NPC official expressed optimism that these initiatives would fortify the foundation of data privacy in the coming years.

About Author