Loading

Cavite State University Privacy Notice

Welcome to Cavite State University. This Privacy Notice informs you about our policy regarding the data that we collect, store, process, and share including your personal data. If you are the parent or legal guardian of an applicant, a student who is minor (below 18 years old), understand that this Policy refers to the personal data of your child/ward.

It is our policy to respect and uphold data privacy rights and to ensure that all personal data collected from students, their parents or guardians are processed pursuant to the general principles of transparency, legitimate purpose, and proportionality as stated in the Data Privacy Act of 2012 (DPA).

What data does CvSU collect, acquire, or generate?

Cavite State University collects including but not limited to the following Personal Data:

    1. Personal details such as name, birth, gender, civil status, affiliations, address, signature and biometrics;
    2. Contact information such as address, email, mobile and telephone numbers;
    3. Academic information such as grades, course, and academic standing;
    4. Employment information such as government-issued numbers, position and functions;
    5. Applicant information such as academic background and previous employments;
    6. Medical information such as physical, psychiatric, and psychological information.

How does CvSU use your personal data?

Cavite State University processes Personal Data to:

    1. Perform its obligations, exercise its rights, and conduct its associated functions as:
      1. An instrumentality of the government;
      2. A higher education institution.
    2. Pursue its purposes and mandates under Republic Act 8468 as a “State University
    3. For each particular campus and unit of Cavite State University, conduct all acts reasonably foreseeable from and customarily performed by similar bodies;
    4. Decide and act for the holistic welfare of its students, their parents and guardians, faculty, employees staff, researchers, alumni and community; and
    5. Managing and administering its internal and external affairs as an academic and research institution with extension services, as an instrumentality of the government, and as a juridical entity with its own rights and interests.

 

Specifically, Cavite State University processes personal data for the following purposes:

    1. Academic, research, extra-curricular, student welfare and disciplinary purposes;
    2. Supervision of academic and researchers endeavors;
    3. Management of human resources and supervision of work conduct;
    4. Student and employee application processing and identity verification purposes;
    5. Documentation and record-keeping purposes;
    6. Medical, physical, psychiatric, and psychological attention purposes;
    7. Alumni linkage, donation, and funding purposes;
    8. Community service or extension activity purposes;
    9. Contractual and financial purposes;
    10. Regulatory, and audit purposes.

 

How does CvSU manage your information?

The University collects only personal data of data subjects that are necessary in the course of transaction with the University such as upon application of the student, faculty, staff or other personnel; or before the commencement of the engagement of the student, faculty and personnel.

The University collects Personal Data physically through printed forms, attachments and other documents requested by the University, its academic units, and its administrative officers.

The University may also collect Personal Data electronically through electronic forms, email, or inputting of information by the data subject or concerned faculty and administrative staff.

 

How will CvSU store and retain your personal data?

Personal Data are stored in physical and electronic data processing systems managed by various units and offices of Cavite State University. Physical records are generally stored in folders or envelopes in drawers or shelves. Electronic records are generally stored in servers in the possession or control of Cavite State University or cloud storage controlled by Cavite State University.

Personal Information shall only be retained as long as necessary to serve its declared purpose or comply with regulatory and legal requirements. Depending on the nature of data and purpose it serves, the retention period could range for days to years. The University shall adhere to the provision of the Archives of the Philippines Act of 2007 ( R.A. 9470) in the disposal of official public records containing personal information.

 

What are your Rights as the data subjects under the Data Privacy Law of 2012?

(a) Right to be informed, whether personal information pertaining to him or her shall be, are being or have been processed;

(b) Right to object to prevent the processing of your personal data, including processing for direct marketing, automated processing or profiling subject to CvSU’s possible consequent failure to conduct academic, administrative and other functions or services

(c) Right to Access to, upon demand, the following:

(1) Contents of the data subject’s personal information that were processed;

(2) Sources from which personal information were obtained;

(3) Names and addresses of recipients of the personal information;

(4) Manner by which such data were processed;

(5) Reasons for the disclosure of the personal information to recipients;

(6) Information on automated processes where the data will or likely to be made as the sole basis for any decision significantly affecting or will affect the data subject;

(7) Date when the data subject’s personal information concerning the data subject were last accessed and modified; and

(8) The designation, or name or identity and address of the personal information controller;

(d) Right to Rectification or to dispute the inaccuracy or error in the personal information and have the personal information controller correct it immediately and accordingly, unless the request is vexatious or otherwise unreasonable. If the personal information have been corrected, the personal information controller shall ensure the accessibility of both the new and the retracted information and the simultaneous receipt of the new and the retracted information by recipients thereof: Provided, That the third parties who have previously received such processed personal information shall he informed of its inaccuracy and its rectification upon reasonable request of the data subject;

(e) Right to erasure or blocking of Personal Data. To suspend, withdraw or order the blocking, removal or destruction of his or her personal information from the personal information controller’s filing system upon discovery and substantial proof that the personal information are incomplete, outdated, false, unlawfully obtained, used for unauthorized purposes or are no longer necessary for the purposes for which they were collected. In this case, the personal information controller may notify third parties who have previously received such processed personal information; and

(f) Right to Damages or be indemnified for any damages sustained due to such inaccurate, incomplete, outdated, false, unlawfully obtained or unauthorized use of personal information.

(g) Right to data portability or to be furnished a copy of personal data that the data subject provided to the University (in a structured, commonly used and machine-readable format).

 

 

Should an employee, student, graduate, parent or guardian want further information about the way CvSU manages the personal information it holds, or wish to complain about breach of the Act, please contact CvSU’s duly designated Data Privacy Officer:

Mailing Address: Legal Services Office, Administration Building, Cavite State University Main Campus, Indang Cavite

Email Address: dpo@cvsu.edu.ph

CvSU may, from time to time, make changes to this Policy. On such occasions, we will let you know through the website of the University, and, when permissible, other means of communication. Any modification is effective immediately upon posting on the website.