Ƶ

GDPR Notice Template for Philippines

Create a bespoke document in minutes, or upload and review your own.

4.6 / 5
4.8 / 5

Let's create your GDPR Notice

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Get your first 2 documents free

Your data doesn't train Genie's AI

You keep IP ownership of your information

Key Requirements PROMPT example:

GDPR Notice

"I need a GDPR Notice for my e-commerce business based in Manila that will be launching an online marketplace in March 2025, targeting both Philippine and EU customers, with features including user profiling and automated decision-making for personalized recommendations."

What is a GDPR Notice?

This GDPR Notice is essential for organizations that process personal data in the Philippines while falling under the scope of the EU GDPR, either through offering goods or services to EU residents or monitoring their behavior. The document ensures compliance with both the GDPR's transparency requirements (Articles 13 and 14) and the Philippines' Data Privacy Act of 2012. It should be used when an organization needs to inform data subjects about their data processing activities, rights, and protections in a clear and comprehensive manner. The notice includes mandatory information about the data controller, purposes of processing, data subject rights, transfer mechanisms, and security measures. It's particularly important for Philippine-based organizations with EU customers or employees, or those part of a larger multinational operation involving EU data subjects.

What sections should be included in a GDPR Notice?

1. Introduction: Overview of the notice and its purpose

2. Data Controller Information: Identity and contact details of the data controller and, where applicable, its representative in the EU

3. Data Protection Officer: Contact details of the Data Protection Officer (DPO) or Privacy Officer

4. Categories of Personal Data: Types of personal data collected and processed

5. Purposes of Processing: Detailed explanation of why personal data is collected and how it will be used

6. Legal Basis for Processing: Legal grounds under GDPR and DPA for processing personal data

7. Recipients of Personal Data: Categories of recipients with whom data may be shared

8. International Transfers: Information about transfers to third countries and safeguards

9. Retention Periods: How long personal data will be stored

10. Data Subject Rights: Explanation of individual rights under GDPR and DPA

11. Right to Lodge Complaints: Information about the right to complain to supervisory authorities

12. Security Measures: Overview of measures to protect personal data

13. Updates to Privacy Notice: Information about how changes to the notice will be communicated

What sections are optional to include in a GDPR Notice?

1. Automated Decision Making: Include when automated decision-making or profiling is used

2. Cookies and Tracking: Include when website tracking or cookies are used

3. Children's Privacy: Include when services may involve processing children's data

4. Specific Processing Activities: Include when there are unique or specific processing activities that need detailed explanation

5. Job Applicant Data: Include when the notice covers recruitment processing

6. Marketing Communications: Include when personal data is used for marketing purposes

7. CCTV Monitoring: Include when video surveillance is used on premises

What schedules should be included in a GDPR Notice?

1. Cookie List: Detailed list of cookies used, their purposes and duration

2. Third Party Processors: List of data processors and their roles

3. Technical and Organizational Measures: Detailed description of security measures implemented

4. Data Retention Schedule: Detailed retention periods for different categories of data

5. Specific Processing Activities: Detailed information about particular processing activities

Authors

Alex Denne

Head of Growth (Open Source Law) @ Ƶ | 3 x UCL-Certified in Contract Law & Drafting | 4+ Years Managing 1M+ Legal Documents | Serial Founder & Legal AI Author

Relevant legal definitions








































Clauses




























Relevant Industries

Technology

Healthcare

Financial Services

Education

Retail

E-commerce

Manufacturing

Professional Services

Telecommunications

Tourism and Hospitality

Real Estate

Insurance

Non-profit Organizations

Government Services

Media and Entertainment

Relevant Teams

Legal

Compliance

Information Security

Human Resources

Information Technology

Risk Management

Data Protection

Privacy

Operations

Customer Service

Marketing

Internal Audit

Relevant Roles

Data Protection Officer

Privacy Officer

Compliance Manager

Legal Counsel

Information Security Manager

Risk Manager

HR Director

IT Manager

Operations Manager

Chief Privacy Officer

Chief Information Security Officer

Chief Legal Officer

Chief Compliance Officer

Data Protection Specialist

Privacy Analyst

Industries






Teams

Employer, Employee, Start Date, Job Title, Department, Location, Probationary Period, Notice Period, Salary, Overtime, Vacation Pay, Statutory Holidays, Benefits, Bonus, Expenses, Working Hours, Rest Breaks,  Leaves of Absence, Confidentiality, Intellectual Property, Non-Solicitation, Non-Competition, Code of Conduct, Termination,  Severance Pay, Governing Law, Entire Agreemen

Find the exact document you need

GDPR Notice

A dual-compliant GDPR Notice meeting both EU GDPR and Philippines' Data Privacy Act requirements for organizations processing personal data in the Philippines.

find out more

Download our whitepaper on the future of AI in Legal

By providing your email address you are consenting to our Privacy Notice.
Thank you for downloading our whitepaper. This should arrive in your inbox shortly. In the meantime, why not jump straight to a section that interests you here: /our-research
Oops! Something went wrong while submitting the form.

ұԾ’s Security Promise

Genie is the safest place to draft. Here’s how we prioritise your privacy and security.

Your documents are private:

We do not train on your data; ұԾ’s AI improves independently

All data stored on Genie is private to your organisation

Your documents are protected:

Your documents are protected by ultra-secure 256-bit encryption

Our bank-grade security infrastructure undergoes regular external audits

We are ISO27001 certified, so your data is secure

Organizational security

You retain IP ownership of your documents

You have full control over your data and who gets to see it

Innovation in privacy:

Genie partnered with the Computational Privacy Department at Imperial College London

Together, we ran a £1 million research project on privacy and anonymity in legal contracts

Want to know more?

Visit our for more details and real-time security updates.