Privacy Policy

Last Update: June 15, 2020

  1. Purpose and Scope

    2. The Securities Clearing Corporation of the Philippines and its parent company, The Philippine Stock Exchange, Inc. ("PSE"), (collectively, "SCCP", "we", "us", or "our"), are committed to respect and protect its stakeholders' personal data in accordance with the Data Privacy Act of 2012 ("DPA") and its Implementing Rules and Regulations ("IRR"). We will keep secure and confidential all personal data obtained over the course of performing business activities or that SCCP may collect unless required to be disclosed by law, rules and regulations, court, or with your authorization.

    Personal data refers to all types of personal information or any data about an individual who can be identified from that data, as more specifically defined under the DPA.

    This Privacy Policy ("Privacy Policy") explains how and why SCCP collects personal data from you when you:
    • Use our Services;
    • Apply for or maintain membership as clearing members;
    • Apply for accreditation as settlement banks;
    • submit reports to or request data from us;
    • Apply for employment or appointment or are employed, elected, or contracted;
    • Supply us with your products or services;
    • Visit our premises; or
    • Visit or use our Website - www.sccp.com.ph.


    This Privacy Policy also covers how we use, store, disclose, and process your personal data, our legal bases for processing, cookies that we use, how we protect your personal data, your rights under the DPA, and the means by which you can control, to a certain extent, these processes.

    Our Website uses cookies to improve and tailor your browsing experience. Please read part of the Privacy Policy on cookies provided below for more information. If at any time you choose not to accept the terms and conditions of this Privacy Policy or you do not want SCCP to collect, use, store, disclose, or process your personal data you should not: visit or use our Website, submit any application or document, transact with us, supply us with your products or services, use our services, attend an event or meeting, request any data, visit our premises, or seek employment or appointment.

    This Privacy Policy complements, and does not limit or replace, the purposes for which you provide SCCP with your personal data which may be expressly given in any form for submission of personal data to SCCP or as required under the laws or rules and regulations ("Rules") of SCCP. Your use of this Website and our services and any dispute over privacy are subject to this Privacy Policy. If at any time you choose not to accept the terms of this Privacy Policy, you should not use this Website or transact with us.

    This Privacy Policy applies only in circumstances governed by the Data Privacy Act of 2012 and its IRR. Please read this Privacy Policy carefully and revisit this page from time to time to review changes that may have been made as SCCP may, whenever necessary, update this Privacy Policy to ensure that it is consistent with future developments, industry trends, any change in legal or regulatory requirements, and corporate or business changes.

  2. Personal Data that SCCP collects and processes


    3. SCCP collects personal data fairly and lawfully. The legal bases for our collection and processing of your personal data will be one of the following:
    1. to fulfil our contractual obligations to you, for example to allow you to supply us with your products or services or use our services;
    2. to comply with our legal and/or regulatory obligations, for example obtaining your name to enable us to meet our obligations under the Securities Regulation Code ("SRC");
    3. to meet our legitimate interests, for example we want to know how you use our Website in order for us to enhance our services or to create new ones; to convey to you the issues or concerns relating to your application; to update you about the services that you use; to maintain our records; and to review and plan our marketing and business development programs. When we process personal data based on this ground, we implement necessary safeguards which are designed to protect your privacy interests, freedoms, and fundamental rights protected under the 1987 Constitution;
    4. when processing of your personal data is provided for by existing laws and regulations such as in relation to your employment or for compliance by trading participants ("TP"), PSE, or by us with the SRC, 2015 Implementing Rules and Regulations ("2015 SRC IRR"), and our Rules; and
    5. when we are required to obtain your consent by law, for example when we process sensitive personal information, when there is data sharing, or in relation to direct marketing activities. If we ask for your consent to process your personal data, you may withdraw your consent at any time by contacting us using the details at the end of this Privacy Policy. If consent is withdrawn, we will be constrained to terminate processing of your transaction, application, or request unless there is legal basis for further processing of your personal data without need of your consent.

    The personal data that SCCP may collect from you depend on the nature and purpose of your interaction, transaction, or application with SCCP such as, but not limited to:
    • your name, addresses (email, office, and residential), contact numbers (home, office, and mobile), title or job title, driver's license, Roll of Attorney's number, and passport information;
    • photograph, video footage through closed circuit television system, signature, gender, religion, employee number, company name and address, and community tax certificate number;
    • payroll information, payroll history, financial benefits, rank, bank account number, loan records, tax account number, tax status, and other financial information;
    • citizenship/nationality, information indicated in company ID, date and place of birth, age, blood type, civil status, education, health data, employment history, and other curriculum vitae related information;
    • government-issued numbers such as license numbers issued by Securities and Exchange Commission ("SEC"), Social Security System ("SSS"), Philhealth, Pag-ibig, and by Professional Regulation Commission;
    • any additional personal data that you may provide through your correspondence(s) with us in connection with your concerns which we shall also consider and treat as personal data.

    Your personal data are collected by SCCP either through any of the following instances:
    1. directly from you or from your duly-authorized representative, PSE, external auditor, or third-party service providers (collectively, "related parties") collected and disclosed with your consent or authorization, or SCCP may receive your personal data from third-parties such as but not limited to TPs or settlement banks to whom you have given consent to transmit your personal data to SCCP;
    2. through contracts, agreements, or other legal arrangements you or your authorized person has with SCCP or its related parties; or
    3. when you browse our Website, we and our third-party service providers use cookies to store information about how you use this Website in order to enhance your user experience and to improve the quality of service provided to you. Examples of this information may include your Internet Protocol address, the type of the browser and operating system you are using, domain name, date and time of your use of our Website. For more information, please refer to the cookies policy below.

  3. Purposes of the collection, use, storage, and disclosure of personal data

    4. SCCP collects, uses, stores, and discloses your personal data for various lawful and legitimate purposes such as but not limited to:
    1. provide you with our services or in order for us to improve said services;
    2. undertake review and evaluation of application/s submitted to SCCP, including the conduct of background checks about you when necessary or required;
    3. convey to you matters pertinent to your relationship with or interest in SCCP or to act on your request/s;
    4. fulfil contractual or legal obligations under the contract, agreement, or other legal arrangement entered into between you and SCCP or with PSE;
    5. conduct audit and review of our processes and systems for purposes of managing risks, strategic and action planning, and compliance;
    6. protect and enforce contractual and legal rights and obligations of SCCP;
    7. comply with applicable laws, rules and regulations, circulars, codes of practice or corporate governance, guidelines, or policies issued by regulatory bodies, or to assist in law enforcement and investigations by relevant authorities, including court proceedings;
    8. prevent, detect, and investigate offenses, crimes, or violations of our policies, Rules, or laws, including assessment and management of business risks arising from said offenses or violations;
    9. manage the safety and security of SCCP's premises, information communication technologies, data, systems, services, personnel, and guests;
    10. send you information about our services or events that may be relevant to you;
    11. allow your use or visit of our Website;
    12. allow your visit of our premises;
    13. implement and enforce our Rules, memorandum circulars, guidelines, policies, and other issuances; or
    14. any other purposes related to any of the foregoing.

  4. Disclosure of personal data

    5. We may share your personal data within SCCP, PSE, Capital Markets Integrity Corporation, Premier Software Enterprise, Inc., and/or related parties in order to provide you with our services or to continue your relationship or transaction with us. Access to your personal data is limited to those employees, agents, and contractors of SCCP who need access to your personal data in order to provide you with our services and to carry out legal and regulatory obligations of SCCP. Only personal data pertinent or relevant to the purpose is shared.

    SCCP may also share your personal data to third-parties with your consent for the purposes for which the information was collected and for any other reasonable purposes relevant thereto. We use the services of third-party service providers to help us in certain areas such as, but not limited to, physical security, various maintenance needs, storage and records management, health maintenance coverage, insurance, and background checks. Where third-party service providers receive your personal data we will remain responsible for the use of your personal data. We also take appropriate steps to ensure that such third-parties treat your personal data with the same consideration that we do.

    As a central securities institution licensed by the SEC to manage and support the clearance and settlement of trades in securities traded at the Exchange, SCCP may disclose your personal data to the public through our Website, SEC, third-parties, courts, or other government agencies such as the Bangko Sentral ng Pilipinas or SSS pursuant to the SRC, 2015 SRC IRR, our Rules, when mandated to do so by the SEC or other government agencies, other applicable laws, upon order of the court, or with your authorization.

    We may disclose aggregated information that does not identify, or when combined with other information, does not directly and certainly identify any individual.

  5. Cookies

    6. We use cookies on our Website to provide you with a good user experience, allow us improve our Website, and to help your browser navigate through our Website and deliver the full features of our Website such as by allowing you to log in automatically or remembering settings (e.g. font size and other display preferences) you previously selected. Cookies are small, randomly encoded, text files that we store on your browser or computer or mobile devices. By clicking "I Agree" or by continuing to use our Website without changing your settings, you agree to our use and storing of cookies on your browser, hardware or device for purposes set forth in this Privacy Policy.

    If you do not wish to accept cookies in connection with your use of our Website, you must stop using our Website or you should disable or delete the cookies associated with our Website by changing the settings on your web browser. Please be informed however that if you will disable cookies, certain functions and pages on our Website will not work in the usual way. To disable cookies, please visit the "Help" or "support" section of your browser to manage your cookies settings, for example:


    Types of cookies used

    Our Website uses both persistent and session cookies. A persistent cookie enables our Website to remember you on subsequent visits, resulting in faster and more convenient access to the services or functions offered by our Website. Persistent cookies stay in your browser until you delete them manually or your browser deletes them on expiry date. Session cookies are temporary cookies that are erased when you close your browser. A session cookie is essential to ensure the correct functioning of our Website and it is used to manage registration/login and access to the Website's reserved features. A complete list of the cookies we use is set out below, which list is subject to change from time to time.

    List of Cookies

  6. Protection Measures

    7. We store personal data collected in electronic and paper formats. The security of your personal data is important to us and we take reasonable and appropriate steps or measures to protect it from misuse, interference, loss, unauthorized access, modification, and unauthorized disclosure by (a) enforcing and establishing limitations, when applicable, on access to personal data; (b) documents storage security policies; (c) security measures to control access to our systems and premises; (d) stringent selection of third-party data processors and agents; (e) non-disclosure clauses in agreements and confidentiality agreements; (f) data privacy trainings of our officers and employees; and (g) technology-based security tools or measures to protect our Website, information communication technologies, systems, and data.

    We may store your personal data physically or electronically with third-party data storage service providers. For this purpose, we require non-disclosure agreement and make use of contractual arrangements to ensure those providers to take necessary and appropriate measures to protect that information and to restrict its access or use.

    We will not keep personal data longer than is necessary for the purpose for which they were collected, unless required otherwise by the SRC, 2015 SRC IRR, our Rules, other applicable laws, or rules and regulations. We will take reasonable steps to safely destroy or permanently de-identify personal data if it is no longer needed.

  7. Rights under the Data Privacy Act

    8. You have rights as a data subject provided under Section 16 of the DPA and Section 34, Rule VIII of the IRR such as:

    1. right to be informed of the processing of your personal data;
    2. right to object to its processing, except (i) when it is needed pursuant to a subpoena, or (ii) when processing is for obvious purposes, including when it is necessary for the performance of or in relation to a contract or service or when necessary or desirable in the context of an employer-employee relationship, (iii) when the information is being collected and processed as a result of legal obligation;
    3. right to suspend, withdraw or order the blocking, removal or destruction of personal data from the filing system upon discovery and substantial proof that the personal data is either: (a) incomplete, out-dated, false, unlawfully obtained; (b) being used for unauthorized purposes; (c) personal data is no longer necessary for the purposes for which they were collected; (d) the data subject withdraws consent or objects to the processing and there is no other legal ground or overriding legitimate interest for the processing; (e) when the personal data concerns private information that is prejudicial to data subject, unless justified by freedom of speech, of expression, or of the press or otherwise authorized; (f) processing is unlawful; or (g) when the personal information controller or personal information processor violated the rights of the data subject;
    4. right to be indemnified for any damages sustained due to such inaccurate, incomplete, out-dated, false, unlawfully obtained or unauthorized use of personal data;
    5. right to reasonable access to your personal data that we store and process;
    6. right to dispute any inaccuracy or error of your personal data in our records and to have it rectified immediately unless the request is vexatious or otherwise unreasonable;
    7. right to data portability of your personal data when it is processed by electronic means and in a structured and commonly used format; and
    8. right to lodge a complaint before the National Privacy Commission in case of violation of your rights.

    If you want to access, update, or correct inaccuracies in your personal data, or have your personal data removed from our databases under any of the grounds provided above, please email us at dataprivacy@sccp.com.ph and we will act on your request unless there are practical, contractual or legal reasons why we cannot process your request. We also reserve the right to refuse requests which, in our opinion, occur with unreasonable frequency or otherwise are unreasonable. For purposes of your request, kindly use the applicable form provided below:

    Request to Access Personal Data
    Request to Correct or Delete Personal Data
    Request to Cease Processing of Personal Data

    How to Contact Us

    If you have questions or comments about this Privacy Policy, you can contact our Data Protection Officer at dataprivacy@sccp.com.ph.
    You may also contact the National Privacy Commission at:
    Email: info@privacy.gov.ph or complaints@privacy.gov.ph
    Address: 5th Floor Delegation Building, PICC Complex, Roxas Blvd, Pasay, Metro Manila 1307