Search by job, company or skills

St. Luke's Medical Center

Data Protection Officer

St. Luke's Medical Center
Philippines
5-7 Years
new job description bg glownew job description bg glownew job description bg svg
  • Posted a month ago
  • Be among the first 10 applicants
Early Applicant

Job Description

The Data Protection Officer (DPO) ensures the SLMC's One Healthcare System (SLMC QC, SLMC GC, SLEC & COM) compliance with data privacy laws by developing policies, embedding privacy practices in processes, and maintaining accurate records. The role also involves managing risks through incident investigation, reporting, and providing guidance on emerging privacy issues. He/she will strengthen privacy culture through staff training, internal coordination, and external liaison with regulatory bodies such as the National Privacy Commission.

Job Description:

Advisory and Policy Development

  • Provide expert opinions and guidance on privacy and data protection issues affecting the organization.
  • Draft, review, and enforce SLMC policies and procedures on data privacy, including privacy in research activities.
  • Monitor developments in data protection regulations, advising management on risks, emerging issues, and necessary compliance measures.

Program Management and Compliance

  • Develop, implement, and oversee programs and initiatives that embed privacy practices into business processes and workflows.
  • Support the SLMC in ensuring compliance with corporate governance frameworks and applicable data protection laws.
  • Maintain records of processing activities and ensure appropriate documentation to demonstrate compliance with legal and regulatory requirements.

Incident and Risk Management

  • Conduct investigations on suspected data breaches or security incidents and prepare reports with recommendations for corrective action.

Training and Coordination

  • Deliver training sessions and awareness programs for employees, management, and other stakeholders on privacy rights and compliance obligations.
  • Coordinate with internal teams and departments to monitor adherence to data privacy policies and standards.

External Relations

  • Serve as the primary liaison with external entities such as regulators, including the National Privacy Commission, and represent the medical center in privacy-related matters.

Qualifications:

  • Graduate of Bachelor of Arts in legal management, political science, or related courses.
  • At least five (5) years experience in privacy or compliance, with two (2) years of experience as a Data Protection Officer.
  • Strong understanding of the Data Privacy Act, corporate governance, and labor regulations in the Philippines.
  • Excellent communication and negotiation skills, with the ability to interact confidently with senior management.
  • Excellent research and writing skills. Preferably, experience in drafting opinions.
  • Implement organization-wide programs, including liaising with units.
  • Knowledge of the implementing rules and regulations of the data privacy act and the National Privacy Commission's issuances and advisory.
  • Detail-oriented, organized, and able to manage multiple priorities efficiently.
  • Ability to work independently and as part of a team in a fast-paced environment.

Work Set-up:

  • Individual contributor
  • Onsite and willing to work in BGC, Taguig City and E. Rodriguez, Quezon City
  • Day shift ( 8:00am to 5:00pm)

More Info

Job Type:
Permanent Job
Industry:
Other
Function:
Data Protection
Employment Type:
Full time

Job ID: 134806401

Jobs by Skill - IT
Jobs by Skill - Non IT
Jobs By Industry
International Jobs
Last Updated: 13-01-2026 01:30:06 PM
Homejobs in PhilippinesData Protection Officer