PhilHealth

home | contact us | disclaimer | privacy notice


Privacy Notice for PhilHealth Website

In carrying out its mandate under Republic Act (RA) No. 7875, as amended by RAs 9241 and 10606, which relates to the administration of the National Health Insurance Program (NHIP), the Philippine Health Insurance Corporation (“PhilHealth or “We”) collects and processes personal data, including those sourced from its official website.

As a responsible data custodian, it commits to keep such personal data secure from any unlawful or unauthorized processing, in line with RA 10173, also known as the Data Privacy Act of 2012 (DPA), and the fundamental right to privacy of every individual.

This Privacy Notice defines how we manage the information we collect or generate via our official website and other linked online services. Since this website also contains links to other websites, visitors are advised to read the privacy notice (privacy policy) of those sites since they are separate and distinct from ours.

Information We Collect

Collection is primarily carried out via the linked web applications found in My PhilHealth Portal under Online Services that record personal data including, but not limited to:

  1. 1. PhilHealth Identification Number;
  2. 2. last name;
  3. 3. first name;
  4. 4. middle name;
  5. 5. mobile number;
  6. 6. sex;
  7. 7. date of birth;
  8. 8. civil status; and
  9. 9. email address.

We also use cookies to help us maintain and improve the website to enhance user experience. Thus, when you visit our website, the following information are also recorded via Google Analytics:

  1. 1. browser type and version;
  2. 2. browser plug-in types and versions;
  3. 3. date and time of connection;
  4. 4. length of visits to certain pages;
  5. 5. IP address; and
  6. 6. page interaction information (eg, scrolling, clicks and mouse-overs).
Purpose of Collection

Personal data collected via the linked web applications are used for any or all the following purposes:

  1. 1. to facilitate electronic registration;
  2. 2. to verify the identity of a member and/ or his or her dependent;
  3. 3. to administer and update PhilHealth’s account records;
  4. 4. to provide appropriate services;
  5. 5. to guard against potential information security breaches;
  6. 6. to comply with legal and regulatory requirements; and
  7. 7. to respond to queries.

On the other hand, data gathered and processed by Google Analytics are used to generate a report on the following:

  1. 1. most viewed pages (per day and per month);
  2. 2. number of regular users and new users;
  3. 3. landing pages;
  4. 4. social networking site which has the most referrals;
  5. 5. location of most users; and
  6. 6. most common devices and browsers used to access the website.
Security Measures

PhilHealth has evolving controls and security policies in place in order to maintain the confidentiality, integrity and availability of the personal data it collects. All information collected by domains maintained by PhilHealth are stored in data centers accessible only to authorized personnel including third-party service providers.

Sharing of Information

Personal data collected via the linked web applications are not disclosed to external parties unless required or permitted by law.

Retention of Information

Except when otherwise required or permitted by law, collected data are kept only as long as they are necessary to achieve the purposes declared herein. After which, they are deleted or disposed of in a safe and secure manner.

Rights of Data Subjects

Individuals whose personal data we collect are accorded rights by the DPA as data subjects. They may invoke such rights at any time, in accordance with the provisions of the law. On the other hand, if there are inaccuracies in their records that need to be corrected or updated, members must notify PhilHealth immediately through any of its Local Health Insurance Offices or Branches.

Changes to this Notice

This Privacy Notice was issued January 16, 2019 and will remain effective unless there is a revision, which will be effective immediately after being posted on this site. PhilHealth will make every effort to announce to the public any changes made on this Notice.

Contact Information

If you have feedback, questions, complaints or other concerns regarding this Privacy Notice or PhilHealth’s data processing operations, you may relay them to us via our Data Protection Officer using the information below:

DATA PROTECTION OFFICER

(02) 8441-7444 local 7425
Callback Channel: 0917-8987442 (PHIC)
Text
"PHICcallback [space] Mobile No. or Metro Manila landline [space] details of your data privacy concern" and we will call you during office hours, weekdays only.

Callback requests will expire after 72 hours

Email: privacy.dpo@philhealth.gov.ph