SERVICES

Data Privacy and Protection

Data Privacy and Protection is a specialized area of law that safeguards an individual’s fundamental right to privacy in the collection, processing, storage, and sharing of personal and sensitive personal information. Grounded in the Data Privacy Act of 2012 (Republic Act No. 10173) and guided by issuances of the National Privacy Commission (NPC), this field has grown increasingly vital in the face of rapid digitalization, automation, and cross-border data flows.

Though relatively new in the legal landscape, the firm has built a solid reputation in this domain. Our lawyers provide pragmatic, risk-based legal advice on privacy and data governance, whether for compliance, business continuity, or technological innovation.

Our services include:

  • Data Privacy Compliance Advisory: Legal audits and advisory on compliance with the Data Privacy Act, including sector-specific regulations for healthcare, education, financial services, and outsourcing.
  • Privacy Program Development: Drafting of Privacy Manuals, Data Sharing Agreements, Outsourcing Contracts, and internal policies tailored to an organization's data ecosystem.
  • DPO Capacity Building: Customized seminars and workshops for Data Protection Officers (DPOs), compliance personnel, and executive leadership.
  • Incident and Breach Response: Assistance in managing data breach incidents, from containment to NPC notification and regulatory coordination.
  • Data Subject Rights and Representation: Advisory on the lawful handling of access, correction, erasure, and objection requests, as well as administrative complaints and litigation arising from data privacy violations.\

Recognizing the evolving risks and ethical questions surrounding Artificial Intelligence (AI) and automated decision-making systems, the firm also offers advisory services in the responsible development and deployment of AI systems, including:

  • Privacy Impact Assessments (PIAs) for AI technologies
  • Legal risk assessments for AI-driven profiling, scoring, and behavioral targeting
  • Review of algorithmic fairness, transparency, and accountability measures
  • Guidance on emerging international frameworks such as the EU’s AI Act and OECD AI Principles
  • AI governance policies integrated with corporate compliance and data ethics programs

Our approach is not only regulatory but strategic—helping organizations embed privacy, transparency, and ethical safeguards into their operations as they adopt emerging technologies like AI, big data analytics, and machine learning.

REACH US

Have any inquiries?