Operasyon ng JuanHand, 3 pang online lending apps, ipinasasara ng NPC

Robie de Guzman   •   August 27, 2021   •   346

MANILA, Philippines – Ipinatitigil na ng National Privacy Commission (NPC) ang operasyon ng apat na online lending applications dahil sa umano’y hindi tamang paggamit ng personal data ng ilan nitong mga kliyente.

Kabilang sa mga ipinasasara ng NPC ang JuanHand, PesoPop, Cash Jeep, at Lemon Loan.

Ayon kay NPC Raymond Liboro, ang hakbang ay kasunod ng nakaa-alarmang mga reklamo laban sa mga nasabing online lending application na umano’y ginagamit ang personal na impormasyon ng mga kliyente upang i-harass o siraan ang mga ito kapag hindi nakakabayad ng utang.

Kabilang sa mga reklamo laban sa mga naturang lending app ay ang umano’y pagpapadala ng mensahe at pagtawag sa kanilang mga contact o kaanak para ipahiya at pilitin silang magbayad ng hiniram nilang halaga.

Malaki rin umano ng sinisingil nitong patubo kaya nahihirapang magbayad ng buo ang kanilang mga kliyente.

Ayon sa financial adviser na si Rizza Muyot, may mga kumpanya talagang sadyang kumukuha ng personal na impormasyon ng mga nangungutang upang maiwasan na takasan sila nito kapag hindi nakapagbayad ng utang.

Upang maiwasang mabiktima ng abusadong online lenders, payo ni Muyot na alamin ang terms at interest ng pagbabayad at kung ano ang maaaring mangyari sa kanila sakaling hindi nila maibalik ang pera sa takdang petsa.

“Wag kang mangutang kung hindi mo naman kayang bayaran. Ang marami kasi basta lang mangungutang hindi tinitignan kung magkano yung interest kasi ang iniisip lang sa ngayon. May iba naman talaga is wala namang kapasidad tapos bahala na. Mangungutang ka lang kung ang paggagamitan mo ng pera ay yung talagang mayroon ka ring pagkukunan ng pambabayad,” ang payo ni Muyot.

Ayon sa NPC, nakikipag-ugnayan na sila sa mga otoridad para maalis ang mga nasabing lending app at hindi na mai-download mula sa Google Playstore. – RRD (mula sa ulat ni Correspondent JP Nuñez)

Nat’l Privacy Commission probing alleged COMELEC data hacking

Robie de Guzman   •   January 12, 2022

MANILA, Philippines – The National Privacy Commission (NPC) on Wednesday said it is looking into the alleged hacking of Commission on Elections (COMELEC) data as reported by a local media publication.

In a statement, the NPC said it has issued separate orders to the COMELEC, Manila Bulletin and Mr. Art Samaniego to appear for a clarificatory meeting via teleconference on January 25 on the alleged hacking and data breach incident involving the COMELEC servers.

The NPC issued the statement two days after the Manila Bulletin published a report claiming a breach on COMELEC servers.

The commission said it received information about the report on January 8 from Samaniego, Technology Editor & IT Head of the Manila Bulletin, regarding a suspected breach on COMELEC servers wherein an estimated 60 gigabytes of data, which possibly contain personal information and sensitive personal information, were allegedly accessed and downloaded by a certain group of hackers.

The NPC said its Complaints and Investigation Division commenced an independent investigation and issued a notice to COMELEC requiring them to explain the alleged hacking and data breach.

“The COMELEC must address the serious allegations made in the Manila Bulletin news report and determine whether personal data were indeed compromised, particularly personal information, sensitive personal information, or data affecting the same, which were processed in connection with the upcoming 2022 national and local elections,” NPC Commissioner John Henry Naga said.

“COMELEC is also directed to conduct a comprehensive investigation on the matter and submit to the NPC the results thereof no later than January 21, 2022,” he added.

The poll body earlier said it is still validating the alleged hacking of poll data.

“Rest assured that the NPC does not tolerate any act in violation of the Data Privacy Act including negligence in implementing organizational, physical, and technical security measures on personal data processing systems, whether in government or private institutions,” Naga said.

Duterte appoints Naga as Privacy Commission chief

Robie de Guzman   •   December 17, 2021

MANILA, Philippines – President Rodrigo Duterte has designated a new chief for the National Privacy Commission (NPC), Malacañang announced Friday.

Acting Presidential Spokesperson and Cabinet Secretary Karlo Nograles said Duterte has named John Henry Du Naga as NPC Commissioner for a term of three years.

The president signed Naga’s appointment paper on December 14, he added.

“We wish Mr. Naga success as we are confident that his years of professional experience in the Department of Information and Communications Technology and the NPC will contribute to our goal of a competitive, knowledge-based and innovative nation where the flow of information remains free while upholding people’s right to privacy and data protection,” Nograles said.

Prior to his appointment, Naga served as deputy commission of NPC.

He will replace Privacy Commissioner Raymund Liboro, whose term expired in March 2019 but remained in his office in a holdover capacity.

He also served as Department of Information and Communications Technology (DICT) assistant secretary in 2016 then became the chief of staff of then DICT Acting Secretary Eliseo Rio in June 2018.

Before joining the government service, Naga served as a Provincial Board Member for two terms in the Province of Masbate, and a telecommunications lawyer.

Cyberattack on S&R compromised 22,000 data subjects – NPC

Robie de Guzman   •   November 25, 2021

MANILA, Philippines – The National Privacy Commission (NPC) reported that some 22,000 data subjects were affected in the ransomware attack on S&R Membership Shopping.

In a statement, the NPC said it has received an initial breach notification report on November 15, 2021, 4:47 PM, from S&R Membership Shopping in relation to a cyber-attack that may have compromised its members’ contact information.

The NPC said the firm discovered the cyberattack incident on November 14, 2021.

“The company has then submitted an supplemental breach report today, November 24, 2021, confirming that the subject of the ransomware attack was the S&R membership system affecting twenty-two thousand (22,000) data subjects,” the commission said.

Citing the company’s report, the NPC said the attack compromised S&R’s personal data such as date of birth, contact number, and gender.

“Based on the S&R’s disclosure and confirmation from their data protection officer (DPO), credit cards and other financial information were not among the compromised personal data,” the agency said.

“They informed the Commission that they instituted measures to secure their system, recover compromised data, prevent further disclosure, and recurrence of similar attacks,” it added.

The company earlier said that its team has implemented cybersecurity protocols that enabled them to resume system operations. It also assured that the data affected in the attack were only confined to contact information and its members’ financial data are safe as these are protected by encryption measures as required by regulation.

The NPC reminded the S&R of its obligation to fully disclose and individually notify the affected data subject.

The commission likewise directed them to provide the technical report of the incident from the third-party cyber security firm.

REACH US

The Philippine Broadcast Hub

UNTV, 915 Barangay Philam,

EDSA, Quezon City M.M. 1104

(+632) 8396-8688 (Tel)

info@untv-newsandrescue.com (General inquiries)

ABOUT UNTV

UNTV is a major TV broadcast network with 24-hour programming. An Ultra High Frequency station with strong brand content that appeal to everyone, UNTV is one of the most trusted and successful Philippine networks that guarantees wholesome and quality viewing experience.