Data Privacy and ICT Law
Fajardo Law Offices is a full-service law firm composed of highly skilled and dedicated legal professionals with deep expertise in data privacy, cybersecurity, information and communications technology (ICT) law, regulatory compliance, and cybercrime litigation. The firm regularly advises foreign and domestic corporations, multinational firms, and other blue-chip enterprises on complex privacy, cybersecurity, and regulatory matters across highly regulated industries.
Its handling partners who are U.S. educated have advised the National Privacy Commission (NPC) on matters involving privacy policy, regulatory enforcement, and compliance frameworks, drawing from extensive experience in information privacy, corporate governance, technology law, and risk management. The Firm has likewise represented clients before key regulatory agencies, including the NPC, Bangko Sentral ng Pilipinas, and National Telecommunications Commission, providing strategic counsel on licensing, compliance, investigations, and regulatory disputes.
The Firm’s extensive data privacy and ICT law practice spans the banking, telecommunications, business process outsourcing, technology, automotive, and digital services sectors. It has assisted both domestic and foreign clients in navigating evolving cybersecurity, data protection and artificial intelligence regimes, responding to data breaches and cyber incidents, structuring cross-border data transfer arrangements, conducting privacy impact assessments, and implementing enterprise-wide compliance programs aligned with global standards and Philippine law.
1. Privacy Impact Assessments (PIAs) and the Development of Organizational Compliance Roadmaps and Data Privacy Management Programs;
2. Data Protection Officer (DPO) and Information Registration Assistance Services with the National Privacy Commission (NPC);
3. Development and organization of a Data Protection Office;
4. Development of privacy policies, fair use and acceptable use policies, confidentiality clauses, notice and consent forms and mechanisms, information request/access guidelines and procedures, and internal access control policies and procedures;
5. Preparation of data sharing agreements, outsourcing agreements, cloud services arrangement, and contractual terms covering other third-party data arrangements including trans-border data flows;
6. Preparation, review and/or revision of data breach management protocols, including the data breach notifications to the NPC and affected data subjects;
7. Preparation, review and/or revision of internal data retention and disposal policies and procedures;
8. Review of and participation in internal data privacy training for Human Resource Management;
9. Preparation and/or review of technology, software licensing, cloud computing, and other ICT and cybersecurity-related contracts;
10. Regulatory advisory and representation before government agencies, including the NPC, National Telecommunications Commission, Department of Information and
Communications Technology, Bangko Sentral ng Pilipinas, and other related regulatory bodies;
11. Advisory services relating to Artificial Intelligence, including AI governance, automated-decision making systems, and emerging technology regulation.
12. Representation in Data privacy, cybercrime litigation, and other technology-related disputes.
- Contract and portfolio management experience relating to major Telecom’s transformation initiatives
- Assisted in a Government Owned and Controlled Corporation in its IT Transformation initiatives.
- IT contract review for ICT startups and systems integrators.
- Practice in ICT and Telecommunications Law, including giving legal advice to companies and compliance with regulations and policies.
- Practiced Election Law specializing in the ICT component of the Automated Election System (“AES”) during the 2010, 2013 and 2016 elections.