The president of the Philippines has signed into law Republic Act No. 11659 (“RA 11659”), which: (a) removes foreign equity restrictions on most public service companies, except those considered as ‘public utility’ and ‘critical infrastructure’; (b) limits the scope of ‘public utility’ to public service companies involved in distribution and transmission of electricity, petroleum and petroleum products pipeline transmission systems, water pipeline distribution systems, wastewater and sewerage pipeline systems, seaports, and public utility vehicles (PUVs); and (c) limits the scope of ‘critical infrastructure’ to public service companies that own, use or operate systems and assets that are “vital to the Republic of the Philippines that the incapacity or destruction of such systems or assets would have a detrimental impact on national security, including telecommunications and other such vital services as may be declared by the President of the Philippines”.

In an announcement made on 4 March 2022, the Philippine National Privacy Commission officially extended the validity of all existing Certificates of Registration issued in 2021 from 8 March 2022 to 8 March 2023. For Certificates of Registration issued in 2020 or earlier, which are expiring this 8 March 2022, the NPC is directing all affected personal information controllers and personal information processors to renew their registration with the Commission.

On 3 February 2022, the Congress’ Bicameral Conference Committee approved a final version of the Bill that seeks to amend the Public Service Act with a view to limiting the foreign equity restrictions imposed by the Philippine Constitution on ‘public utilities.’

As Asia Pacific business leaders continue to make important decisions to meet business needs, they need to navigate post-pandemic challenges and future complexities around strategic M&A activity. The third report in Baker & McKenzie’s Asia Pacific Business Renewal Series, explores how digital transformation has become a driving force in business decision making, and how it will shape the business landscape over the decade to come.

On 4 June 2021, the Philippine National Privacy Commission (NPC) announced that it will be holding off the launch of its eRehistro system in order “to make way for a complete solution that integrates all the services related to data privacy compliance.”

The Philippine National Privacy Commission (NPC) highlighted in its official Facebook page the main distinctions between the current registration process and the upcoming eRehistro system, specifically with regard to (1) the registration form, (2) the registration of data processing systems (DPS), (3) the certificate of registration, and (4) addressing deficiencies and concerns.

The Philippine National Privacy Commission (NPC) released on its official Facebook page two announcements regarding the soon-to-be launched eRehistro system. The NPC announced: (1) the system’s process and requirements for account creation, data processing systems (DPS) inventory; and (2) the amendment of registration information for covered personal information controllers (PIC) and personal information processors (PIP).

On 20 March 2021, the Philippine National Privacy Commission (NPC) answered a new batch of frequently asked questions regarding eRehistro, specifically with regard to the commission’s validation process, user credentials and the certificate of registration.

For previous responses from the NPC on this topic, check out our earlier client alert here.

On 6 March 2021, the Philippine National Privacy Commission (NPC) posted on its official Facebook page its answers to some frequently asked questions involving eRehistro — NPC’s newly announced online registration and renewal platform for both Phase 1: Data Protection Officer (DPO) and Phase 2: Data Processing System (DPS) registrations. Learn more about the eRehistro system from our earlier client alert here.

On 1 March 2021, the Philippine National Privacy Commission (NPC) announced its new online registration and renewal platform called “eRehistro,” which can be used by Personal Information Controllers (PICs) and Personal Information Processors (PIPs) to register, amend or renew their Data Protection Officer (DPO) and Data Processing Systems (DPS) registrations.1

In addition, the NPC extended the validity of existing DPO registrations, from 7 March 2021 to 30 June 2021, in order to give way to the launch of the eRehistro platform. According to the NPC, this extension is also meant to give PICs and PIPs ample time to prepare for the creation of their eRehistro accounts as it will now include both Phase 1: DPO and Phase 2: DPS of the registration process.