BIG companies Toyota Motor Philippines Corp. and Robinsons Land Corp. (RLC) have been hit by data breaches.
The National Privacy Commission (NPC) yesterday said it received data breach notifications from RLC on June 1 and in TMP on May 14.
No details were provided by the NPC said the reports are currently under evaluation.
NPC said the Philippine National Police has also reported six data breach notifications last month.
NPC said companies and individuals processing personal data must notify affected data subjects individually and report to the Commission via the Data Breach Notification Management System within 72 hours of discovering a breach.
The NPC said it is actively monitoring the situation to ensure the security and privacy of all concerned data subjects and urged data subjects who believe they may be part of any breach to contact the data protection officers of the respective companies and report the same to the NPC.
Meanwhile, NPC has warned it would issue show-cause orders to all businesses which process personal data of their clients and/or employees yet remain unregistered with the Commission.
Show cause orders shall be issued for non-compliance with the Data Privacy Act of 2012 and
relevant NPC issuances, the Commission said.
NPC Circular No. 2022-04 mandates the registration of data processing systems and data protection officers for all businesses that process personal data of 250 or more employees, or 1,000 or more customers, or those processing data that will likely pose a risk to the rights and freedoms of data subjects. Businesses that do not reach specified thresholds must still submit a declaration and undertaking for exemption.
The Commission will also continue to issue mission orders on the conduct of compliance checks to businesses throughout the country to ensure compliance to the mandatory registration requirements.
The NPC already conducted an on-the-spot privacy sweep at a certain mall establishment last May 15 and found 65 mall tenants unregistered with the NPC.