e-Mando
Back to Home

Data Protection

Compliance with Data Privacy Act of 2012 (Republic Act No. 10173)

Last updated: November 30, 2025

1. Our Commitment to Data Protection

e-Mando Emergency Helpline is fully committed to complying with the Data Privacy Act of 2012 (Republic Act No. 10173) and its implementing rules and regulations. We recognize the importance of protecting personal data, especially in emergency response situations where sensitive information is processed.

2. Data Protection Principles

We adhere to the following data protection principles:

Lawful and Transparent Processing

We process personal data only for legitimate purposes and with proper consent.

Purpose Limitation

Data is collected only for specified and legitimate emergency response purposes.

Data Minimization

We collect only data that is adequate, relevant, and necessary for emergency services.

Accuracy

We ensure personal data is accurate and kept up-to-date for effective emergency response.

3. Categories of Personal Data Collected

Emergency Response Data

  • Personal identification information (name, age, gender)
  • Contact details (phone number, email address)
  • Real-time location data (GPS coordinates)
  • Emergency contact information
  • Medical information (when relevant to emergency)

LGU Partnership Data

  • LGU/organization details
  • Authorized representative information
  • Contact information for coordination
  • Geographic coverage areas

4. Legal Basis for Processing

We process personal data based on the following legal grounds:

Vital Interests: Processing is necessary to protect vital interests in life-threatening emergencies.

  • Consent: Explicit consent obtained for non-emergency data processing
  • Legal Obligation: Compliance with emergency response regulations
  • Public Interest: Processing for public safety and emergency management
  • Vital Interests: Protection of life in emergency situations

5. Data Security Measures

Technical Security

  • End-to-end encryption for sensitive data
  • Secure socket layer (SSL) technology
  • Regular security vulnerability assessments
  • Multi-factor authentication for admin access

Organizational Security

  • Strict access controls and authorization
  • Regular staff training on data privacy
  • Confidentiality agreements with personnel
  • Incident response and breach management

Security Certification: Our systems undergo regular security audits and comply with National Privacy Commission (NPC) standards for emergency service providers.

6. Data Sharing and Third Parties

Emergency Service Partners

We share necessary information with:

  • Police departments and law enforcement agencies
  • Medical emergency response teams
  • Fire and rescue services
  • Local Government Units (LGUs)
  • Hospital and healthcare facilities

Data Sharing Principles

  • Minimum necessary data shared for emergency response
  • Data sharing agreements with all partners
  • Regular compliance audits of third parties
  • Immediate data revocation when no longer needed

7. Your Data Privacy Rights

Right to Access

You have the right to request access to your personal data in our possession.

Right to Rectification

You may request correction of inaccurate or incomplete personal data.

Right to Erasure

You may request deletion of personal data under certain circumstances.

Right to Restrict Processing

You may request temporary suspension of data processing.

Emergency Service Limitation: Certain rights may be limited during active emergency response operations to ensure life-saving services are not interrupted.

8. Data Retention Period

Data Type Retention Period Basis
Emergency Call Records 5 years Legal and regulatory requirements
LGU Partnership Data 7 years after contract termination Contractual obligations
User Account Information 2 years after account deletion Service improvement
Location Data 30 days (anonymized thereafter) Operational necessity

9. Data Breach Response

Immediate Response Protocol: In the event of a data breach, we will:

  • Notify the National Privacy Commission within 72 hours
  • Inform affected data subjects immediately
  • Implement containment measures
  • Conduct thorough investigation

10. Contact Our Data Protection Officer

Data Protection Officer

  • Designated Data Protection Officer
  • support@e-mando.com
  • +63 (962) 947-4962

Privacy Concerns

For any data privacy concerns, exercise of rights, or complaints, please contact our Data Protection Officer.

Response Time: Within 3 working days

Complaint Resolution: Within 30 calendar days

11. Policy Updates

This Data Protection Policy may be updated periodically to reflect changes in legal requirements and our services. Significant changes will be communicated through our platform and via email to registered users.

Note: This policy is designed to comply with the Philippines' Data Privacy Act of 2012 (RA 10173) and aligns with international data protection standards for emergency service providers.