TAMI Philippines
Effective Date: 15 August 2024
- Introduction
TAMI Philippines (hereinafter referred to as “TAMI,” “we,” “our,” or “us”) is committed to protecting the privacy and security of the personal data we collect and process. This Data Protection Policy outlines our approach to data protection and privacy, in compliance with the applicable data protection laws, including the Data Privacy Act of 2012 (Republic Act No. 10173) in the Philippines.
- Purpose
The purpose of this policy is to ensure that TAMI manages personal data responsibly and transparently, safeguarding the rights of individuals and maintaining compliance with data protection regulations.
- Scope
This policy applies to all employees, volunteers, contractors, and third parties who have access to personal data held by TAMI. It covers all personal data collected, processed, and stored by TAMI in the course of its operations.
- Definitions
- Personal Data: Any information relating to an identified or identifiable individual, including but not limited to name, contact details, and identification numbers.
- Sensitive Personal Data: A category of personal data that includes, but is not limited to, information about an individual’s race, ethnic origin, health, or sexual orientation.
- Processing: Any operation or set of operations performed on personal data, including collection, storage, use, disclosure, and destruction.
- Data Collection
TAMI collects personal data for specific and legitimate purposes, including:
- Administering donations and financial contributions
- Managing relationships with supporters, volunteers, and partners
- Providing services to children and families
- Ensuring compliance with legal and regulatory requirements
Personal data collected will be relevant and limited to what is necessary to fulfil these purposes.
- Data Usage
Personal data will be used for the purposes for which it was collected, including:
- Processing donations and managing donor relationships
- Communicating with supporters, volunteers, and partners about our activities and events
- Maintaining records for operational and legal purposes
- Ensuring the safety and well-being of the children in our care
We will not use personal data for purposes beyond those initially specified unless we obtain additional consent from the data subjects or are required by law.
- Data Protection Principles
TAMI is committed to adhering to the following data protection principles:
- Lawfulness, Fairness, and Transparency: Personal data will be processed lawfully, fairly, and in a transparent manner.
- Purpose Limitation: Data will be collected for specific, legitimate purposes and not processed further in a manner incompatible with those purposes.
- Data Minimization: Personal data collected will be adequate, relevant, and limited to what is necessary for the intended purposes.
- Accuracy: Personal data will be accurate and kept up to date. Inaccurate data will be corrected or deleted as appropriate.
- Storage Limitation: Personal data will be retained only for as long as necessary to fulfil the purposes for which it was collected.
- Integrity and Confidentiality: Personal data will be processed securely to protect against unauthorised access, disclosure, alteration, and destruction.
- Data Subject Rights
Individuals have the following rights regarding their personal data:
- Right to Access: Individuals can request access to their personal data and information about how it is processed.
- Right to Rectification: Individuals can request correction of inaccurate or incomplete data.
- Right to Erasure: Individuals can request the deletion of their personal data under certain circumstances.
- Right to Restriction of Processing: Individuals can request restriction of processing in specific situations.
- Right to Data Portability: Individuals can request to receive their personal data in a structured, commonly used format and transfer it to another data controller.
- Right to Object: Individuals can object to the processing of their personal data in certain situations.
To exercise these rights, individuals should contact us using the contact information provided in this policy.
- Data Security
TAMI will implement appropriate technical and organisational measures to protect personal data from unauthorised access, disclosure, alteration, and destruction. These measures include:
- Access controls and authentication procedures
- Encryption and secure data transmission
- Regular security assessments and audits
- Staff training on data protection practices
- Data Breach Management
In the event of a data breach, TAMI will:
- Identify and contain the breach to prevent further harm
- Assess the impact and risk to individuals and the organisation
- Notify affected individuals and the National Privacy Commission (NPC) as required by law
- Take steps to mitigate the effects of the breach and prevent recurrence
- Data Retention
Personal data will be retained only for as long as necessary to fulfil the purposes for which it was collected or as required by law. Once the data is no longer needed, it will be securely disposed of or anonymised.
- Third-Party Data Processors
TAMI may engage third-party data processors to perform services on our behalf. We will ensure that any such processors are bound by contractual obligations to protect personal data and comply with applicable data protection laws.
- Policy Review
This Data Protection Policy will be reviewed periodically and updated as necessary to ensure continued compliance with data protection laws and to address any changes in our operations or data processing activities.
- Contact Information
For questions, concerns, or requests related to personal data, individuals can contact:
Data Protection Officer (DPO)
TAMI Philippines
Barangay Libato, San Juan Batangas, Philippines, 4226
tami20.ph@gmail.com
+639232510908
- Acknowledgment
By engaging with TAMI Philippines, individuals acknowledge that they have read, understood, and agree to the terms of this Data Protection Policy.
