Event Details
Training Overview:
This is an unparalleled opportunity to streamline your journey toward Data Privacy Act (DPA) of 2012 compliance. Over the past six years, our dedicated team has refined a methodology that stands as the most efficient path to DPA compliance—significantly reducing complexity and expediting the process.
Take advantage of this advanced version of our Full-Build model, a re-engineered approach designed to fast-track your assessment and compliance journey. With this enhanced strategy, we can reduce the typical compliance timeline from five weeks to a mere two weeks, provided your team is primed and prepared for an active, hands-on workshop experience.
This is not just a learning session; it's a transformative workshop where your data privacy officers will engage, apply, and emerge with actionable strategies to ensure your organization's compliance.
Training Objectives:
At the end of this training, participants should be able to:
• Achieve Rapid Compliance: Streamline their organization’s journey toward Data Privacy Act (DPA) compliance by applying proven methodologies and practical tools.
• Develop Robust Privacy Frameworks: Establish and implement effective privacy management programs, policy manuals, and governance structures to safeguard organizational data.
• Enhance Breach Response Capabilities: Proactively manage, report, and mitigate data breaches through well-defined procedures and hands-on simulations.
Training Outline:
Session 1: Assessing the Current State of Data Privacy Compliance
Objective: Enable participants to evaluate their organization's current data privacy compliance level.
Topics:
• Introduction to Data Privacy Compliance in the Philippines
• Overview of the Data Privacy Act of 2012
• Self-Assessment Tools for Compliance Status
• Identifying Gaps and Prioritizing Actions
Session 2: Governance of the Office of the Data Protection Officer (DPO)
Objective: Empower participants to establish or enhance the governance structure of their DPO's office.
Topics:
• Roles and Responsibilities of the DPO
• Setting Up the DPO's Office: Structure and Functions
• Enhancing DPO's Effectiveness through Governance
Session 3: Conduct of Privacy Impact Assessments (PIAs)
Objective: Equip participants with the knowledge and skills to conduct effective PIAs.
Topics:
• Fundamentals of Privacy Impact Assessment
• Steps for Conducting a PIA
• Integrating PIA into Project Management
• Practical Exercises and Simulations
Session 4: Implementing the Privacy Management Program (PMP) and Privacy Policy Manual
Objective: Guide participants in developing and implementing a comprehensive PMP and Privacy Policy Manual.
Topics:
• Overview of Privacy Management Program
• Components of a Privacy Policy Manual
• Customizing PMP and Manual to Your Organization
• Monitoring and Continual Improvement
Session 5: Breach and Incident Reporting Procedure
Objective: Prepare participants to effectively manage and report data breaches and incidents.
Topics:
• Understanding Data Breaches and Incident Response
• Breach Reporting Procedures and Notification Requirements
• Simulated Breach Incident Workshop
• Post-Incident Analysis and Improvement Planning
Documentation for Compliance: The 5-Pillar Proof of Compliance (National Privacy Commission)
1. Office of the DPO: Documenting the DP Office and its function in the organization.
2. Privacy Impact Assessment (PIA) Report: Records of PIAs conducted, showing how risks are identified and mitigated.
3. Privacy Management Program: A comprehensive program document that outlines the organization's approach to privacy management, including roles, policies, processes, and monitoring mechanisms. Includes a complete PMP Manual.
4. Privacy Manual: This document should encapsulate the organization's privacy policies, detailing how personal data is handled, protected, processed, and disposed.
5. Breach and Incident Management: Documentation of the processes for managing data breaches and incidents, including detection, reporting, and remediation steps.
01:00 PM - 05:00 PM
May 6-9, 2025
Via Zoom
Jun Malacaman
Jun Malacaman is one of the country’s top IT professional and a former President of the Information Systems Security Society of the Philippines (ISSSP). He is one among the very first active advocates of Data Privacy in the country when enforced, in 2017, as a law, under penalty of imprisonment and heavy fines. He has since then provided Data Privacy Compliance training and implementation to hundreds of Data Privacy practitioners and more than a dozen medium and large organizations over the past 5 years.
In this MasterClass Edition, he is focusing on the mastery of planning and conducting the Privacy Impact Assessment (PIA) into an artful experience, and integrating a fully functional, documented Privacy Management Program PMP to embed into the privacy governance of your organization.
Mr. Malacaman has applied his unique but practical approach to training and IT security systems implementation gained over the past 40 years into the challenge of complying with the requirements of the Data Privacy Act of 2012; in accordance with and under the 5-Pillar “proof of compliance” of the National Privacy Commission (NPC).
