The SECURITIES AND EXCHANGE COMMISSION (SEC) is committed to protect and respect your personal data privacy. We are at the forefront of not only implementing but also complying with the Data Privacy Act of 2012 (RA No. 10173), and pertinent issuances of the National Privacy Commission (NPC)

1. What services does the SEC Events Platform provide?

   The SEC Events Platform allows users to register in advance, confirm their attendance, and manage participation, while also featuring a list of upcoming SEC events to keep users informed about future opportunities.

   Link: https://events.sec.gov.ph/events

2. What personal information do we collect?

   We collect the following personal information:

   • Full Name
   • Mobile Phone Number
   • Email Address
   • Gender
   • Age
   • Industry
   • Dietary Restrictions
   • Images and Video footage captured during the event

3. Why do we need to collect personal information?

   The collected personal information will be utilized in the processing of the above mentioned applications for registration pursuant to RA 11032 Ease of Doing Business, and Data Privacy Act of 2012.

   1. Event Registration and Management: To register you for the event, communicate event details, and facilitate your participation in event activities.
   2. Communication: To provide you with event updates, reminders, or additional information regarding the event and related activities.
   3. Marketing and Promotion: To send you information about future events, news, or offers that may be of interest to you. You can opt-out of these communications at any time.
   4. Event Documentation: To document the event through photographs and video recordings, which may be used for promotional purposes, including marketing materials, social media, or on our website.

4. When do we collect personal information?

   We collect personal information at the time of event registration and throughout the event process. This information will be collected from the moment you submit your registration form and during the event itself.

   We may retain certain personal information for a period after the event to assist with follow-up communications, event evaluations, and for any necessary legal or regulatory purposes. Any personal information that is no longer required will be securely disposed of in accordance with our data retention policy.

5. Why do we collect personal information, and is all information necessary?

   Pursuant to RA 11232 Revised Corporation Code of the Philippines (RCC), RA 8799 The Securities Regulation Code, RA 11032 Ease of Doing Business, Anti-Money Laundering Act (AMLA) of 2001, Data Privacy Act of 2012.

   Each piece of personal information we collect is necessary to fulfill specific purposes related to the event you are attending:

   • Full Name: To identify and register you for the event, and to issue relevant communications.
   • Mobile Phone Number & Email Address: To send event-related updates, reminders, and communication.
   • Gender & Age: To ensure event planning accommodates all participants appropriately.
   • Industry: To tailor event content and interactions that may be relevant to your specific field.
   • Dietary Restrictions: To ensure your needs are addressed during meals and other event-related provisions.
   • Images and Video Footage: For documentation and promotional purposes, to showcase the success of our events and for marketing material.

6. How do we collect personal information?

   We collect, use, and process the personal information provided through electronic or automated means to proceed with this event's registration system.

7. How do we store the data collected?

   The SEC ensures the protection of personal data against accidental or unlawful destruction, alteration, disclosure, and other unlawful processing by implementing appropriate security measures based on the nature of the data.

   Personal information of SEC personnel is retained and disposed of in accordance with civil service laws and the National Archives of the Philippines Act of 2007.

   Personal data from contractors and service providers are retained for one year after contract expiration. After this period, hard copies are securely destroyed, and soft copies are deleted.

   Similarly, personal data from job applicants are retained for one year from collection. After this period, hard copies are securely disposed of, and soft copies are deleted.

8. How do we dispose of the data collected?

   Once a record has passed its retention period and is no longer needed, all hard and soft copies of personal information will be securely disposed of and destroyed. Authorized disposal methods include shredding, burial, or sale to a buyer. This process will be carried out in the presence of a Records Management Analyst from the National Archives of the Philippines (NAP), a SEC COA representative, and members of the SEC RMIC, such as the Chairperson, Vice-Chairperson, and relevant Departmental Directors/Records Focals (or their alternates).

9. What are the risks involved in processing your personal information?

   Risk refers to the potential for incidents that may harm a data subject or organization, including unauthorized collection, use, disclosure, or access to personal data. It involves threats to the confidentiality, integrity, and availability of personal data or violations of data privacy principles and rights.

   The SEC implements physical, technical, and organizational security measures to protect personal data but acknowledges that risks like cyberattacks, malware, and unauthorized access to manual records may still occur.

   Adequate policies are in place to manage security incidents, in alignment with NPC policies, circulars, and other relevant issuances.

10. How do we keep your personal information secure?

    Only authorized SEC personnel are granted access to the personal information collected through this system. The collected personal information via the internet or other electronic methods is stored in a secured database. We use reasonable security safeguards to protect the information gathered from any loss, unauthorized access, use or disclosure.

11. What are the rights of the data subjects?

    Under the Data Privacy Act of 2012, data subject refers to an individual whose personal information is collected and processed. We are duly bound to observe and respect your privacy rights, including your right to information, right to access, right to correct, right to remove, right to damages and right to data portability.

12. How can data subjects exercise these rights?

    Data subjects may file a request with the Data Protection Officer (DPO). They may contact the DPO at 8818-7204, send an email to [email protected] or file a complaint through imessage.sec.gov.ph.

CONSENT FORM OF SYSTEM USER

By using this facility and by proceeding to the registration form, you hereby authorize the Securities and Exchange Commission (SEC) to collect, store, and process the above data, with the use of electronic or automated means, shall be stored within the period allowed under applicable laws, rules and regulations, for the purpose of processing your registration and attendance on our various events. You also acknowledge and consent to the collection and processing of your personal data as part of the requirements for the said submission.

FEEDBACK ON THE PRIVACY NOTICE

If you have any questions, concerns, or requests related to this Privacy Notice, or if you would like to exercise your rights under applicable data protection laws, please contact our Data Protection Officer, Director Oliver V. Chato:

• Email: [email protected]
• Phone: 8818-7204