Back to Blog

Protecting Customer Data in the New Normal

Mobile360 launched its first-ever webinar series for micro, small, and medium enterprises. The three-part webinar series aims to help MSME entrepreneurs weather the challenges brought by the COVID-19 pandemic.

Its first webinar launched last September, talked about one of the most crucial topics for businesses today: data privacy. Mobile360 Product Manager and Compliance Officer Carmie Enriquez shed light on how to protect customer data as people share more information online.

Yondu’s Information Security Manager and Data Protection Officer Joel Gacosta joined Enriquez to share more insights about the crucial topic. If you’ve missed it, don’t worry because we’ve rounded up the key points of the webinar in this blog.

How to Protect Customer Data in the “New Normal”

Data privacy is a major concern for Filipino consumers. Thirty-six percent (36%) of Filipinos revealed that they had suffered a data breach in 2018.

This includes email hacking, social engineering scams, and social media hacking. Data security attacks remain a top concern for Filipinos, as revealed in a 2019 security index.

Ninety-percent (90%) of Filipinos are afraid to fall victim to unauthorized personal information access. Eighty-seven percent (87%) are concerned about internet hacking and viruses. Meantime, 84% of Filipinos are worried about bank card fraud.

An Inquirer article revealed that 24% of Filipinos respond to breaches by filing a lawsuit, while 18% take to social media to call out businesses. In 2019, a data breach hit a beauty retailer, which exposed customer information to unauthorized parties.

It only takes 39 seconds for a hacker to attack, but it takes an average of 196 days to identify a data breach. This is the reason why data privacy plays a major role in enterprises as businesses shift to digital.

What is data privacy, and what are your rights as a customer?

Data Privacy is defined as the right of an individual not to have his/her private information disclosed and live free from surveillance and intrusion. In the Philippines, people have the right to:

  • Information
  • Access
  • Object
  • Erasure or blocking
  • Damages
  • File a complaint
  • Rectify
  • Data portability

The Data Privacy Act of 2012 (RA 10173) protects Filipinos’ data privacy rights. The DPA applies to the collection, consultation, recording, use, organization, consolidation, and storage of data. Additionally, the law applies to data blocking, updating and modification, erasure, retrieval, and destruction.

How to ensure data privacy?

As a customer yourself, you know how vital your data privacy is. Now that you know your rights as one and the rights of your customers, it’s time to learn how to protect customer data as a business owner.

Ensuring your customer data’s privacy and security is crucial for the reputation and growth of your business. Keep these things in mind to keep your business reputation untarnished:

1. There are three general principles to data processing that you must follow:

  • Transparency
  • Legitimate purpose
  • Proportionality

2. Customer consent is key. Consent of data subjects must be:

  • Express and specific
  • Time-bound
  • Documented
  • Specifies the purpose
  • Confirms data sharing

3. Have data security measures in place. Remember that breach prevention is better than cure.

There are organization, physical, and technical security measures you can take.

4. Be emphatic. Practice data protection by heart. Here are a few tips to remember:

  • Keep secure if unsure.
  • Always be vigilant.
  • Appoint a data champion.
  • Obtain consent from data subjects.
  • Secure information.
  • Be aware of your data storage.
  • Have information, communication, and privacy policy in place.
  • Have a process in place in case of a breach.

5. Keep yourself up-to-date.

  • Check online NPC resources.
  • Attend regular training and seminar.
  • Conduct internal training.

6. Advocate platforms and services that value data privacy.

  • When using platforms and services, look out for an SSL certificate (“https” in the URL).
  • Utilize platforms that have two-factor authentication.
  • Look for platforms that share their privacy policy.
  • For transactional platforms, look for PCI-DSS for payments.
  • Use platforms that have ISO 27001 (international standard for information security).

Mobile360 is compliant and registered with the National Privacy Commission and National Telecommunications Commission. We put utmost importance on the security of our clients’ data to ensure their business growth.

Are you looking for an SMS service provider for your business? Head over to our website to find the best SMS solution based on your goals.

Maximize the power of SMS

Tick one business goal at a time
by engaging with your target
audience efficiently.

Looking for SMS
provider?

Talk to our Mobile360 sales team and find out
how bulk SMS can help achieve your goals!