Group 1 ●​ The processing of personal data is being done in

DATA PRIVACY AND PROTECTION the Philippines

●​ The act, practice or processing of personal data
RA 10173 is done by an entity with links to the Philippines,
- “Act” refers to Republic Act No. 10173, also known subjectc to international law and comity
as the Data Privacy Act of 2012.
- ” RA 10173 is a National Privacy Law that GENERAL PRINCIPLES
establishes standards and rules for the protection of RULE IV. DATA PRIVACY PRINCIPLES
personal data in the Philippines. ●​ Section 17. General Data Privacy Principles.
- It also created the National Privacy Commission The processing of personal data shall be allowed,
(NPC) to implement and enforce the Act. subject to compliance with the requirements of the Act
and other laws allowing disclosure of information to
The purpose of the Data Privacy Act is to: the public, and adherence to the principles of
●​ Safeguard the fundamental human right to transparency, legitimate purpose, and
privacy. proportionality
●​ Ensure the free flow of information needed for ●​ Section 18. Principles of Transparency,
innovation, growth, and national development. Legitimate Purpose and Proportionality.
●​ Adopt international standards for personal data The processing of personal data shall be allowed
protection. subject to adherence to the transparency, legitimate
●​ Recognize the vital role of ICT in nation-building. principles of purpose, proportionality. and
●​ Ensure personal data held by both government 1.​ a. Transparency. The data subject must
and private sector are secured and protected. be aware of the nature, purpose, and
extent of the processing of his or her
RA 10173 HISTORY personal data, including the risks and
Republic Act 10173, known as the Data Privacy Act of safeguards involved, the identity of
2012 was signed into law on August 15, 2012 by personal information controller, his or
President Benigno S. Aquino ||| her rights as a data subject, and how
these can be exercised. Any information
●​ The law became fully effective after issuance and communication relating to the
of its Implementing Rules and Regulations processing of personal data should be easy
(IRR) on August 24, 2016 to access and understand, using clear and
●​ The National Privacy Commission (NPC) plain language.
was established under this law to oversee 2.​ b. Legitimate purpose. The processing of
compliance, investigate violations, and ensure information shall be compatible with a
that government and private sectors protect declared and specified purpose which must
personal data not be contrary to law, morals, or public
●​ This act was influenced by global data policy.
protection standards such as the EU Data 3.​ c. Proportionality. The processing of
Protection Directive to align the Philippines information shall be adequate, relevant,
with international policy norms and improve suitable, necessary, and not excessive
trust in digital transaction. in relation to a declared and specified
purpose. Personal data shall be processed
SCOPE OF RA 10173 only if the purpose of the processing could
RA 10173 APPLIES TO: not reasonably be fulfilled by other means.
●​ The natural or juridical person involved in the
processing of personal data is found or RIGHTS OF DATA SUBJECT
established in the Philippines Section 34: Rights of the Data Subject
●​ The act, practice or processing relates to a.) Right to be informed
personal data about a Philippine citizen or b.) Right to object
Philippine resident. c.) Right to access
d.) Right to correct
e.) Right to rectification, erasure or block [Link] personal data is needed pursuant to a
subpoena;
RIGHT TO BE INFORMED [Link] collection and processing are for obvious
[Link] data subject has a right to be informed whether purposes, including, when it is necessary for the
personal data pertaining to him or her shall be, are performance of or in relation to a contract or service
being, or have been making and profiling. processed, to which the data subject is a party, or when
including the existence of automated decision necessary or desirable in the context of an
2. The data subject shall be notified and furnished with employe-employee relationship between the
information indicated here under before the entry of collector and the data subject is subject; or;
his or her personal data into the processing system of [Link] information is being collected and processed
the person information controller, or at the next as a result of a legal obligation
practical opportunity:
a.) Description of the personal data to be entered RIGHT TO ACCESS
into the system. The data subject has the right to reasonable access
b.) Purposes for which they are being or will be to, upon demand, the following :
processed, including processing for direct [Link] of his or her data that were processed;
marketing profiling or historical, statistical or [Link] from which personal data were obtained;
scientific purpose; [Link] and addresses of recipients of the personal
c.) Basis of processing, when processing is not data;
based on the consent of the data subject; [Link] by which such data were processed;
d.) Scope and method of the personal data [Link] for the disclosure of the personal data to
processing; recipient, if any;
e.) The recipients or classes of recipients to whom [Link] on automated processes where that
the personal data are or may be disclosed;. data will, or likely to, be made as the sole basis for
f.) Methods utilized for automated access, if the any decision that significantly affects or will affect the
same is allowed by the data subject, and the extent data subject;
to which such access is authorize, including [Link] when his or her personal data concerning the
significance and the envisaged consequences of data subject were last accessed and modified; and
such processing for the data subject; [Link] designation, name or identity, and address of
g.) The identity and contact details of the personal the personal information controller.
data controller or its representative;
h.) The period for which the information will be RIGHT TO RECTIFICATION
store; and The data subject has the right to challenge an
I.) The existence of their rights as data subject, inaccuracy or error in personal data and have the
including the right to access, correction , and object personal information controller remedy it immediately
to the processing, as well as the right to lodge a and appropriately, unless the request is frivolous or
complaint before the Commission unreasonably inappropriate. If the personal data has
been corrected, the personal information controller
RIGHT TO OBJECT must ensure the accessibility of both the new and
- The data subject shall have the right to object to the retracted information, as well as the simultaneous
processing of his or her personal data, including receipt of the new and retracted information by the
processing for direct marketing profiling or, automated intended recipients; provided, however, that recipients
processing or profiling. The data subject shall also be or third parties who have previously received such
notified and furnished and given an opportunity to processed personal data must be informed of its
withhold consent to the processing in case of changes inaccuracy and rectification upon the data subject's
or my amendment to the information supplied or reasonable request.
declared to the data subject in the preceding
paragraph.
- When a data subject objects or withholds consent, RIGHT TO ERASURE OR BLOCKING
the personal information controller shall no longer The data subject shall have the right to suspend,
process data, unless: withdraw or order the blocking, removal or destruction
of his or her personal data from the personal b. Sensitive Personal Information (SPI): Negligently
information controller’s filling system. providing unauthorized access is punishable by 3–6
years imprisonment and a ₱500,000–₱4,000,000 fine.
OBLIGATIONS
SECTION 51. ACCOUNTABILITY FOR VIOLATION SECTION 54. IMPROPER DISPOSAL OF
OF THE ACT, THESE RULES AND OTHER PERSONAL INFORMATION AND SENSITIVE
ISSUANCES OF THE COMMISSION. PERSONAL INFORMATION.
a. Any natural or juridical person, or other body a. Personal Information (PI): Improperly discarding
involved in the processing of personal data, who fails or abandoning PI in public areas (knowingly or
to comply with the Act, these Rules, and other negligently) is punishable by 6 months–2 years
issuances of the Commission, shall be liable for imprisonment and a ₱100,000–₱500,000 fine.
such violation, and shall be subject to its b. Sensitive Personal Information (SPI): Improper
corresponding sanction, penalty, or fine, without disposal of SPI is punishable by 1–3 years
prejudice to any civil or criminal liability, as may be imprisonment and a ₱100,000–₱1,000,000 fine.
applicable.
b. In cases where a data subject files a complaint SECTION 55: PROCESSING FOR UNAUTHORIZED
for violation of his or her rights as data subject, and PURPOSES:
for any injury suffered as a result of the processing of a. Personal Information (PI): Using PI for purposes
his or her personal data, the Commission may award not authorized by the data subject or by law is
indemnity on the basis of the applicable provisions of punishable by 1 year 6 months–5 years imprisonment
the New Civil Code. and a ₱500,000 ₱1,000,000 fine.
c. In case of criminal acts and their corresponding b. Sensitive Personal Information (SPI):
personal penalties, the person who committed the Unauthorized use of SPI is punishable by 2–7 years
unlawful act or omission shall be recommended for imprisonment and a ₱500,000–₱2,000,000 fine.
prosecution by the Commission based on substantial
evidence. If the offender is a corporation, SECTION 56: UNAUTHORIZED ACCESS OR
partnership, or any juridical person, the responsible INTENTIONAL BREACH:
officers, as the case may be, who participated in, or by Knowingly and unlawfully breaking into any system
their gross negligence, allowed the commission of containing personal or sensitive personal
the crime, shall be recommended for prosecution by information— violating data confidentiality or
the Commission based on substantial evidence. security—is punishable by 1–3 years imprisonment
and a ₱500,000–₱2,000,000 fine.
PENALTIES
SECTION : 52 UNAUTHORIZED PROCESSING OF SECTION 57: CONCEALMENT OF SECURITY
PERSONAL AND SENSITIVE PERSONAL BREACHES (SEC. 30):
INFORMATION Failing to report a known security breach involving
a. Personal Information (PI): Processing without sensitive personal information—whether intentionally
consent or legal authority is punishable by 1–3 years or by omission—is punishable by 1 year 6 months–5
imprisonment and a ₱500,000–₱2,000,000 fine. years imprisonment and a ₱500,000–₱1,000,000 fine.
b. Sensitive Personal Information (SPI):
Unauthorized processing is punishable by 3–6 years SECTION 58: MALICIOUS DISCLOSURE (SEC. 31):
imprisonment and a ₱500,000–₱4,000,000 fine. Any person who, with malice or bad faith, discloses
false or unwarranted personal or sensitive personal
SECTION 53. ACCESSING PERSONAL information faces 1 year 6 months–5 years
INFORMATION AND SENSITIVE PERSONAL imprisonment and a ₱500,000–₱1,000,000 fine.
INFORMATION DUE TO NEGLIGENCE.
a. Personal Information (PI): Negligently allowing SECTION 59. UNAUTHORIZED DISCLOSURE.
unauthorized access is punishable by 1–3 years a. Any personal information controller or processor
imprisonment and a ₱500,000–₱2,000,000 fine. who discloses personal information without the
consent of the data subject may face imprisonment of
1 to 3 years and fines between Php500,000.00 and SECTION 65. FINES AND PENALTIES.
Php1,000,000.00. Violations of the Act, these Rules, other issuances and
b. Any personal information controller or processor, orders of the Commission, shall, upon notice and
along with its officials, employees, or agents, who hearing, be subject to compliance and enforcement
discloses sensitive personal information without the orders, cease and desist orders, temporary or
data subject's consent may face imprisonment from permanent ban on the processing of personal data, or
three to five years, along with a fine ranging from payment of fines, in accordance with a schedule to be
Php500,000 to Php2,000,000. published by the Commission.

SECTION 60. COMBINATION OR SERIES OF ACTS. Group 2

Any combination or series of acts as defined in BENEFITS AND CHALLENGES OF TECHNOLOGY
Sections 52 to 59 shall make the person subject to
imprisonment ranging from three (3) years to six (6) - Technology has become deeply integrated into
years and a fine of not less than One million pesos modern health care, with digital tools such as
(Php1,000,000.00) but not more than Five million electronic health records, telemedicine, advanced
pesos (Php5,000,000.00). imaging, and mobile health applications transforming
the way care is delivered. These systems provide
SECTION 61. EXTENT OF LIABILITY. faster access to information, support more accurate
If an organization is the offender, penalties target decision-making, and strengthen coordination among
responsible officers involved or negligent, with providers, all of which contribute to better patient
potential rights suspension. Alien offenders face outcomes. At the same time, technology enables
deportation post penalty. Public officials guilty of earlier detection of problems, safer treatments, and
specific offenses face disqualification from office improved communication, making it essential to
beyond set penalties. high-quality care. However, as health care continues
to adopt new innovations, it is important to understand
SECTION 62. LARGE-SCALE. both their benefits and the challenges they bring, such
The maximum penalty in the corresponding scale of as usability issues, implementation difficulties, and
penalties provided for the preceding offenses shall be possible unintended effects, so that technology can be
imposed when the personal data of at least one used effectively and truly enhance patient care.
hundred (100) persons are harmed, affected, or
involved, as the result of any of the above-mentioned II. Benefits of Technology in Health Care
offenses. A. Improved Patient Care and Safety
- They include medications, surgical techniques,
SECTION 63. OFFENSE COMMITTED BY PUBLIC machines and equipment, diagnostic procedures,
OFFICER. specialized treatments, expanded understanding of
When the offender or the person responsible for the the causes of and progression of disease, gene
offense is a public officer, as defined in the diagnosis and therapy, and greater insight into what is
Administrative Code of 1987, in the exercise of his or required for people to stay healthy.
her duties, he or she shall likewise suffer an accessory ●​ Enhanced accuracy in diagnosis (e.g., CT scan,
penalty consisting of disqualification to occupy public MRI, AI-assisted diagnosis)
office for a term double the term of the criminal penalty ●​ Reduced medical errors through computerized
imposed. provider order entry (CPOE)
●​ Real-time monitoring via wearable devices
SECTION 64. RESTITUTION.
Pursuant to the exercise of its quasi-judicial functions, B. Increased Efficiency in Health Care Delivery
the Commission shall award indemnity to an - Increased efficiency in health care delivery refers to
aggrieved party on the basis of the provisions of the providing high-quality care while minimizing wasted
New Civil Code. Any complaint filed by a data subject time, effort, and resources.
shall be subject to the payment of filing fees, unless ●​ Faster processing of patient information
the data subject is an indigent. ●​ Streamlined hospital workflow (digital charting,
automated scheduling)
 ●​ Reduced paperwork and administrative burden
2. Genomics and personalized medicine
C. Better Access to Health Care - Genomics focuses on examining an individual’s
- Telehealth improves access by removing physical DNA, including the genes that affect their likelihood of
and logistical barriers such as transportation developing certain diseases and how they respond to
challenges, long travel times, and scheduling medications. Personalized medicine applies this
difficulties, which are especially impactful for people genetic data to design treatments that are uniquely
with disabilities, chronic illnesses, or those living in suited to each patient.
rural or underserved areas. ●​ Targeted therapies
●​ Telemedicine for remote or rural patients ●​ Precise dosing
●​ Mobile health apps for patient education and ●​ Predictive health
monitoring
●​ Online consultations and follow-ups III. Challenges of Technology in Health Care
A. Data Privacy and Security Issues
D. Enhanced Data Management and Record Keeping - Cybersecurity Threats : hackers often target
- Through technology, especially via Electronic Health healthcare organizations for money or to steal
Records (EHRs), substantially benefits healthcare sensitive data in their networks. Hacktivists may also
delivery. EHRs provide accurate, up-to-date, and attack hospitals to make a point, such as disagreeing
comprehensive patient information at the point of care, with a decision about patient's treatment.
improving clinical decision making and patient safety - Risks of unauthorized access to patient records :
by reducing medical errors and unnecessary duplicate healthcare organizations have a diverse mix of
testing. employees, contractors, and vendors accessing the
●​ Electronic Health Records (EHR) for easy network. If hacker gets malware onto someone's
retrieval device, every time they access the network, it
●​ Improved coordination among health providers becomes exposed to the attacker's malware.
●​ Data analytics for public health decision-making
B. High Cost of Technology
E. Advancement in Treatment and Medical ●​ Expensive machines and software
Research ●​ Cost of maintenance, upgrades, and IT support
- These advancements enhance medical research by staff
enabling in silico trials and advanced biological ●​ Financial burden on small clinics and rural hospitals
modeling, which streamline the development process
and increase the safety and efficacy of new therapies. C. Technology Dependence
●​ Overdependence on digital systems, which can
●​ Robotics in surgery (more precise, minimally cause disruptions when there are connectivity or
invasive) bandwidth issues.
●​ AI for drug discovery ●​ Rushed appointments that reduce quality patient
●​ Genomics and personalized medicine interaction.
●​ Excessive reliance on electronic health records
1. AI for drug summary (EHRs), leading to less personalized care.
- Artificial Intelligence (AI) is reshaping how new ●​ Limited face-to-face interactions, which can weaken
medicines are developed by processing huge amounts patient–provider relationships.
of data much quicker than humans. AI systems can ●​ Decreased patient trust due to reduced meaningful
forecast how different molecules will react, pinpoint engagement.
possible drug targets, and examine thousands of ●​ Risk of medical records hacking, as seen in large
chemical compounds in just a short time. breaches like Anthem’s case.
●​ Faster drug development ●​ Concerns about data security in local clinics and
●​ Lower cost healthcare facilities
●​ Higher accuracy
 4. Equitable Access Across Facilities
D. Ethical and Legal Concerns - Innovation must be distributed fairly to avoid
1. Misuse of Patient Data widening healthcare gaps. Ensuring rural and
●​ Patient data stored digitally can be easily accessed, underserved facilities have equal access promotes
shared, or leaked if not properly protected. inclusivity and resilience in the healthcare system
●​ These breaches violate confidentiality and may lead
to serious legal actions against the facility or health Group 3
workers CURRENT TECHNOLOGY: Technology ISSUES &
2. AI-Driven Decisions Without Clear DILEMMAS Current Ethical Issues in Healthcare
Accountability
●​ When AI systems make incorrect decisions, it Bioethics is the study of ethical issues that arise from
becomes difficult to identify who is responsible for advances in biology, medicine, and technology. It
the error. examines what is “right” or “wrong” in healthcare
●​ This lack of clear accountability creates ethical decisions, medical research, and the use of new
issues and raises concerns about liability in patient technologies affecting human life.
care.
3. Unequal Access to Technology Text IMPORTANCE OF BIOETHICS IN MODERN
●​ Advanced healthcare technology is often available TECHNOLOGY
only in well-funded or urban facilities. - As medical technology becomes more advanced
●​ This unequal access leads to unfair gaps in care such as AI-driven diagnoses, gene editing, artificial
quality between rich and poor communities reproduction, and life sustaining machines—bioethics
helps guide responsible decision-making. It protects
E. Need for Continuous Training patient rights, promotes safe and fair use of
●​ Health workers must regularly learn new systems technology, prevents misuse, and ensures that both
●​ Lack of training leads to errors and resistance to healthcare providers and society consider moral,
adoption cultural, and human implications before applying these
●​ Adjustment period can disrupt workflow innovations.

IV. Balancing Benefits and Challenges CURRENT TECHNOLOGIES: ETHICAL ISSUES &
1. System Planning and Budgeting DILEMMAS IN HEALTHCARE TECHNOLOGY
- Proper planning ensures that technology investments ●​ Healthcare technology is advancing rapidly,
are sustainable and aligned with healthcare priorities. offering new treatments and interventions.
Without clear budgeting, facilities risk overspending or ●​ These technologies present both opportunities
underutilizing tools. A recent healthcare IT budgeting and dilemmas for patients, families, professionals,
guide stresses that aligning financial planning with and society.
patient care goals is essential for long-term success. ●​ Nurses, as caregivers, play an essential role in
2. Cybersecurity and RA 10173 helping patients navigate these challenges.
- Compliance Patient trust depends on strong data
protection. The Data Privacy Act of 2012 (RA 10173) ARTIFICIAL INTELLIGENCE (AI) IN HEALTHCARE
requires healthcare institutions in the Philippines to - AI technologies like machine learning and predictive
safeguard sensitive information. The National Privacy analytics help diagnose diseases, interpret medical
Commission emphasizes that compliance not only images, personalize treatment plans, and manage
prevents breaches but also strengthens institutional patient data. While they improve accuracy and
credibility efficiency, concerns arise about privacy, data security,
3. Continuous Staff Training bias, and replacing human judgment.
- Technology adoption succeeds only when staff are
prepared to use it effectively. Studies highlight that GENETIC DIAGNOSIS, ENGINEERING, AND
ongoing training improves confidence, reduces SCREENING
resistance, and ensures digital tools enhance
workflows. Training programs are shown to directly GENETIC ENGINEERING - Genetic engineering
improve healthcare delivery and patient outcomes. allows scientists to modify DNA to correct genetic
disorders, improve immunity, or enhance crops. While exploitation in surrogacy, and access based on
it has potential to cure diseases, it also raises ethical socioeconomic class.
concerns about genetic inequality, designer babies,
and unknown long term consequences. ORGAN & TISSUE TRANSPLANTATION
- Organ transplantation saves lives, but there are
Genetic Diagnosis shortages of donor organs and issues about consent,
●​ usually done with in vitro fertilization program allocation fairness, and the possibility of organ
●​ involves a process of biopsy of embryos to trafficking. Life-support technologies connected to
determine the presence of genetic flaws before transplantation also introduce dilemmas withholding
implantation. or withdrawing treatment.
●​ generally aimed at couples who have a high risk
of conceiving a child with a serious genetic ETHICAL ISSUES RELATED TO SOCIAL MEDIA
disorder. - Professional organizations acknowledge the benefits
of using social media to access health promotion
Genetic Screenings information and programs and in helping nurses keep
helps in determining things like whether persons are a dialogue with other professionals, keep up with ever-
predisposed to certain diseases, whether couples changing health care developments, access
have the possibility of giving birth to genetically continuing education, and the like (ANA, 2011; ICN,
impaired infants. 2015; NCSBN, 2011)

GENETIC DIAGNOSIS, ENGINEERING, AND - Ethical issues related to nurses’ use of social media
SCREENING most frequently involve breaches of privacy and
- The implications of having technologies for genetic confidentiality.
modification available include the potential for - Examples of such breaches include posting to
correcting some genetic defects in the embryo, personal social media sites any patient-related
eliminating some very serious genetic diseases, and information such as photos, descriptions of care and
producing food that is more nourishing and resilient. interactions, or derogatory comments, even if the
nurse believes the patient cannot be identified.
Ethical Concerns
1. Genetical engineering of embryo: - Other violations: lateral violence against colleagues
- who holds copyright for the modification ? through derogatory or threatening online posts, failure
- how this practice might change us as a to report others for media posts that violate patient
species? privacy, violation of professional boundaries by
2. The ability to discard “undesirable” traits and contacting patients or former patients through social
improve those that are “desirable” may lead to a form media, and posts that reflect unethical or
of eugenics, meaning “good birth.” unprofessional conduct.
3. The potential for these technologies to lead to the
imposition of a skewed or harmful definition of what is “Nurses need to be aware that anything posted online
normal regarding human traits, as well as what is is discoverable, permanent, and easily public, even
considered abnormal or undesirable. within “private sites.”

REPRODUCTIVE TECHNOLOGIES ROLE OF HEALTHCARE PROFESSIONAL

- Techniques used to help with pregnancy, fertility, and ●​ Protect rights
reproductive health (like IVF, ultrasound, birth control ●​ Ensure consent
methods). ●​ Promote safety and fairness.
- Reproductive technologies assist individuals or
couples who have difficulty conceiving. These include
in vitro fertilization (IVF), sperm and egg donation,
surrogacy, and freezing of reproductive cells. Ethical
concerns include parental rights, embryo status,