Angelie T. Dela Cruz
Data Protection And Privacy | Risk Management | Paralegal | Librarian
Marikina, Metro Manila
Summary
Proactive and thorough yet strategic individual with over 7 years of experience in the privacy profession. Focused on helping clients balance privacy risk against benefits for optimal decision-making. Easily understands complex business models and corresponding personal data flow to determine potential impacts, break down risk and develop recommendations. Coming from the years of experience, believes that most data privacy and security risks can be mitigated with a strong Data Governance program in place.
Overview
10
10
years of professional experience
9
9
years of post-secondary education
1
1
Certificate
2
2
Languages
Work History
Manager, Privacy Program and Risk Management
PLDT Inc
Makati City
02.2020 - Current
- Oversees personal data processing activities of the groups where employees and patients are data subjects (e.g., PLDT Group's Human Resources Department, Medical Services, Marketing Department, Corporate Support, etc);
- Provides guidance to Proponents to ensure that the project design & implementation are compliant with the privacy laws;
- Reviews and approves Privacy Impact Assessments (PIA) and Privacy Threshold Analysis (PTA), including data sharing and processing agreements;
- Assesses Proponents' Risk Treatment Plan (RTP), as a result of a PIA or a Privacy Incident, to determine whether controls are sufficient to lower risk;
- Co-leading an automation project which aims to transform and streamline PIA and Privacy Risk Management processes; and
- Initiated the development and currently maintains Records of Processing Activities (ROPA) of the assigned groups;
- Provided inputs and recommendations to the PLDT Group Privacy Office's internal standards and processes;
- Invited as one of the 'Emerging Leaders' of the company.
Group Data Privacy Manager
UAE Exchange Group
Abu Dhabi UAE
06.2019 - 01.2020
- Served as Data Protection Officer of UAE Exchange Group's subsidiary based in the Philippines i.e., the Unimoni Global Business Services Inc.;
- Established Privacy Impact Assessments (PIA) process using the OneTrust tool;
- Facilitated end-to-end resolution of Data Subject Rights Requests of assigned subsidiaries within the given timeline;
- Managed awareness campaigns and mandatory privacy training for all the employees of the Group;
- Developed and managed the Data Privacy Risk Register of the Group; and
- Developed and monitored privacy and data protection metrics for all the subsidiaries.
Technical Assistant, Data Protection Office
Ateneo de Manila University
Quezon City
01.2018 - 05.2019
- Gathered information and materials on data privacy, data protection, and other related topics;
- Monitored news for key data protection issues that may affect or impact the University;
- Prepared educational materials and content related to data privacy such as articles published on Office’s website blog (such as "Data Protection Checklist for Event Organizers", "7 things to prepare prior to the conduct of PIA", "Privacy and Data Protection Laws in Southeast Asia", etc);
- Mentored offices / units of the University, as well as other stakeholders within or outside the University, in the resolution of policy questions and other legal issues relative to data protection;
- Provided assistance in the development, collection, documentation, analysis, and review of all internal and external policies and other documents relating to data privacy (e.g., Privacy Notices, Advisories, Data Sharing Agreements, Data Processing Agreements, Data Collection Forms, University Policies, etc)
- Acted as resource speaker on topics involving data privacy in trainings, workshops, and similar activities;
- Assisted in the development and maintaining networks with other offices and units of the University, other schools, civil society organizations, private groups, the National Privacy Commission, and other stakeholders to facilitate exchange of information and promote the interest of the University (e.g., organizing the first privacy and ICT conference in the University); and
- Managed and administered the Office’s website.
Information Officer
National Privacy Commission
Pasay City
10.2016 - 01.2018
- Provided support to the Commission's data privacy awareness programs and activities, and was involved in the development and distribution of information, education & campaign (IEC) materials, both online and offline.
- Facilitated the resolution of public queries relating to DPA, privacy and data protection.
- Acted as resource person in educating students about the DPA and their data subject rights;
- Led the management and monitoring of the project procurement management plan of the Commission's Public Information and Assistance Division to ensure that targets and corresponding budget are achieved;
- Facilitated the publications of DPA Implementing Rules and Regulations, and NPC issuances in coordination with other NPC divisions; and
- Established internal processes of the Commission (e.g., inquiry and complaints handling).
Coordinator for Library and Research
Korean Cultural Center
Taguig City
05.2013 - 08.2016
- Contributed to the promotion of Korean Culture in the Philippines through the Center's library of Korea-related printed and multimedia materials, and by organizing Korean Culture Caravans in more than 15 schools nationwide;
- Supervised nine (9) undergraduate interns from various universities completing their Library and Information Science degree;
- Acted as lead liaison for about 20 school partnership-related programs;
- Managed and maintained the Center's website including the Korean Culture section of the Republic of Korea (ROK) Embassy’s website; and
- Awarded as Second Best Staff in December 2013.
Education
Master of Technology Management -
University of The Philippines Diliman
Quezon City, Philippines 04.2018 - Current
Bachelor of Library And Information Science -
University of The Philippines Diliman
Quezon City, Philippines 06.2009 - 04.2013
Affiliations
- International Association of Privacy Professionals (2018 - present)
- DAMA International (2023 - present)
- UP Paralegal Training Program Alumni Association Inc. (2018 - present)
- Philippine Librarians Association Inc. (2013-2019)
Certification
Registered Librarian (Professional Regulation Commission)
Skills
Knowledgeable and experienced in privacy and data protection laws and frameworks (eg, Philippines DPA, EU GDPR, UK DPA, DP laws in SEA and MENA, GAPP, OECD Privacy Principles) in the Telecommunications, Financial Services, BPO and Academe industries
undefinedQuote
If you really look closely, most overnight successes took a long time.
Steve Jobs
Timeline
Manager, Privacy Program and Risk Management
PLDT Inc
02.2020 - Current
Group Data Privacy Manager
UAE Exchange Group
06.2019 - 01.2020
Master of Technology Management -
University of The Philippines Diliman
04.2018 - Current
Technical Assistant, Data Protection Office
Ateneo de Manila University
01.2018 - 05.2019
Information Officer
National Privacy Commission
10.2016 - 01.2018
Registered Librarian (Professional Regulation Commission)
11-2013
Coordinator for Library and Research
Korean Cultural Center
05.2013 - 08.2016
Bachelor of Library And Information Science -
University of The Philippines Diliman
06.2009 - 04.2013
Similar Profiles
Jessamyn VillanosJessamyn Villanos
Doctor at PLDT BalaraDoctor at PLDT Balara
Precious BoregasPrecious Boregas
Workforce Management Assistant at PLDTWorkforce Management Assistant at PLDT
Camille Victoria TermuloCamille Victoria Termulo
Learning and Development Specialist at PLDTLearning and Development Specialist at PLDT
Agatha Hyacinth HonoratoAgatha Hyacinth Honorato
OPERATIONS SUPPORT BET at WANFANG TECHNOLOGY INC.OPERATIONS SUPPORT BET at WANFANG TECHNOLOGY INC.
ADRIAN JOSEPH GODINEZ PRINCIPEADRIAN JOSEPH GODINEZ PRINCIPE
Senior Software Engineer at Accenture Inc.Senior Software Engineer at Accenture Inc.