The National Privacy Commission (NPC) of the Philippines and the Office of the Privacy Commissioner of the Islands of Bermuda (PrivCom) have signed a memorandum of understanding (MOU) to bolster cooperation on personal data protection and cross-border enforcement.
The agreement, announced at the International Association of Privacy Professionals (IAPP) Global Privacy Summit 2025 in Washington D.C., is intended to facilitate more effective responses to cross-border privacy complaints, coordinate investigations and support the Filipino community in Bermuda.
NPC Privacy Commissioner John Henry Naga cited the importance of the partnership, particularly for Filipinos working in Bermuda.
“Cross-border data transfers are fundamental to economic growth and international cooperation,” Naga said.
“This strategic partnership with PrivCom is a concrete step towards operationalizing mutual accountability and enhancing enforcement cooperation on data protection,” he said.
Naga said the personal data of the significant Filipino community in Bermuda should be protected under the same standards upheld in the Philippines.
“This MOU allows us to respond more effectively to cross-border privacy complaints, coordinate investigations, and help our kababayans in Bermuda. It also sends a clear message that no matter where Filipinos are in the world, their data subject rights travel with them,” he said.
The MOU was signed by Naga and NPC deputy commissioner Nerissa De Jesus alongside PrivCom Bermuda Commissioner Alexander White.
The agreement outlines several key areas of collaboration, including information exchange, mutual assistance in investigations and support in enforcing data protection decisions across jurisdictions. Both agencies have also committed to conducting joint investigations into cross-border data incidents and breaches.
To ensure seamless and trusted data flows, the partnership provides for the development of compatible mechanisms, such as the mutual recognition of national trust marks and privacy certification frameworks, as well as participation in international certification systems.
The collaboration also includes knowledge-sharing initiatives, such as training, educational exchanges, and the creation of cross-jurisdictional sandbox environments for testing privacy solutions.
