The ST. PETER GROUP OF COMPANIES values the privacy and the confidentiality of the Personal Data of St. Peter Life Plan, Inc.’s planholders, borrowers and the clients of St. Peter Chapels and also undertakes to safekeep and manage the personal data and information of planholders, borrowers and clients of St. Peter Chapels accurately, and secure and protected against manipulation, and unwarranted disclosure. The ST. PETER GROUP OF COMPANIES also undertakes to comply with the Data Privacy Act of 2012 (“DPA”), (Republic Act No. 10173), and its Implementing Rules and Regulations (“IRR”), and all circulars and issuances of the National Privacy Commission and ensures compliance by its staff with strict standards of security and confidentiality.
The following covered corporations are members of the ST. PETER GROUP OF COMPANIES:
The Personal Data that ST. PETER GROUP OF COMPANIES processes are as follows:
The St. Peter Group of Companies will not collect any information that identifies one personally through this website unless and until one buys products or avails of services, registers as a member, or submits personal information for job application purposes or similar purposes. By providing personal information to the St. Peter Group of Companies, one accepts that the St. Peter Group of Companies may retain one’s information for as long as necessary, to fulfill the purpose(s) for which it is collected in compliance with applicable laws and regulations.
For any withdrawal of consent intended for ST. PETER GROUP OF COMPANIES or its members/covered corporations please send any request to St. Peter Group of Companies’ website www.stpeter.com.ph or to its official email address at firstname.lastname@example.org. Depending on the nature and extent of the consent to be withdrawn, the ST. PETER GROUP OF COMPANIES or its members/covered corporations may not be in a position to continue to extend or properly deliver its services in such a case. The St. Peter Group of Companies has the right to charge costs which are directly related to and necessary for the processing of any personal data access request.
The ST. PETER GROUP OF COMPANIES may collect and store Personal Data through the following ways and for the following purposes:
In cases wherein Personal Data is submitted through the accomplishment of standard business forms (e.g. application form, contract form, etc.), through this website, or via digital surveys, social media (such as the St. Peter Group Facebook Page), or when making any comment or feedback, and via mobile applications. The St. Peter Group of Companies may also collect some information about the computer or other devices used by the visitor when visiting this website.
In using any social media features or platforms, either on this website, an application, or otherwise through a social media provider, the St. Peter Group of Companies may access and collect information via those social media features or platforms, or via this website or via the said social media provider in accordance with its policies. When using a social media feature, the St. Peter Group of Companies may access and collect information which was made available and included in one’s social media profile or account, including but not limited to the name, gender, birthday, email address, address, location etc. The access of the St. Peter Group of Companies to these information may be limited or blocked based on one’s privacy settings with the relevant social media provider, social media feature or application.
Through availment of the offers, promos, benefits, services from partner merchants and other third-person service providers and ST. PETER GROUP OF COMPANIES subsidiaries. Where permitted by law, the St. Peter Group of Companies may access names and contact details for promotional or marketing purposes including the communication of promotional materials and conducting direct marketing in relation to products and services, promos, offers and research (surveys, etc.). In relation to any Personal Data collected by the St. Peter Group of Companies, such Personal Data would only be used for promoting or marketing any products or services.
For the purposes of direct marketing, the St. Peter Group of Companies may, where permitted by law, provide one’s personal information (with the exception of any Personal Data collected by the St. Peter Group of Companies while providing any services) to providers (whether within or outside of the St. Peter Group of Companies) of any of the purposes described herein and marketing or research services to enable the sending of promotional materials and for the conduct of direct marketing in relation to the products and services offered (these materials may be sent by postal mail, email, short message service [SMS] or other means). Where permitted by law, the St. Peter Group of Companies may provide Personal Data to providers (whether within or outside of the St. Peter Group of Companies) related to any of the above purposes.
The ST. PETER GROUP OF COMPANIES uses and processes Personal Data for its Pre-need business operations, memorial services, updates of planholders’ accounts, marketing, communication, analysis and research objectives for purposes of providing information, updates, advisories, promotional offers and as maybe necessary in the performance and delivery of memorial services.
Towards these purposes, the ST. PETER GROUP OF COMPANIES may disclose Personal Data to its employees, duly authorized representatives, related companies (including member-companies of the St. Peter Group of Companies), assignees and third-party service providers.
Where permitted by law and where such disclosure is necessary to satisfy the purpose or a directly related purpose for which the Personal Data was collected, the St. Peter Group of Companies may provide such Personal Data to the following parties:
In relation to the foregoing, where permitted by law, Personal Data may be provided to any of the above parties who may be located in the Philippines or outside of Philippines. Personal Data may be transferred to, stored, and processed in Philippines or any other jurisdictions where any member of St. Peter Group of Companies is located, or jurisdictions where a third party contractor is located or from which the third party contractor provides services. By providing the St. Peter Group of Companies with Personal Data or availing of services using this website or applications, one gives consent to the transfer of such Personal Data outside one’s jurisdiction to St. Peter Group of Companies facilities or to those third parties with whom the St. Peter Group of Companies share it as described above even outside the Philippines.
The data subjects can exercise the following rights:
Right to be informed
The Planholder or Customer shall be informed if his/her Personal Data shall be, is being or has been processed. The data subject should always be informed prior to processing the following:
Right to access Personal Data
The Planholder or Customer shall have the right to request access of the following:
Right to correct
The Planholder or Customer has the right to dispute and demand the correction, updating, or completion of Personal Data if the data collected or processed and stored is erroneous, incorrect, inaccurate, incomplete, or needs updating.
Right to object
The Planholder or Customer has the right to object to, or order the blocking or removal of his/her Personal Data if used for purposes other than it was actually intended for (i.e. advertising, market research, and opinion research).
Right to data portability
The Planholder or Customer has the right to obtain a copy of his/her Personal Data collected or processed in an electronic or structured format for legitimate use.
Right to block, remove or delete
The Planholder or Customer has the right to suspend, withdraw, or order the blocking, removal, or destruction of his/her personal data from ST. PETER GROUP OF COMPANIES' systems, provided that such Personal Data is not critical and not required by applicable laws and regulations in relation to the products and services that the Planholder or Customer availed of.
Right to file a complaint
The Planholder or Customer has the right to file a complaint with the National Privacy Commission in case of violation of his/her data privacy rights under the relevant laws.
Right to be indemnified
The Planholder or Customer has the right to be indemnified in case of damages sustained due to inaccurate, incomplete, false, outdated, unlawfully obtained, or unauthorized use of his/her Personal Data.
For a complete reference of the rights of data subjects under the Data Privacy Act, the Planholder or Customer may access the National Privacy Commission website at www.privacy.gov.ph.
The ST. PETER GROUP OF COMPANIES values the protection of the privacy of all Personal Data submitted and provided by St. Peter Life Plan, Inc. planholders, borrowers, and customers of St. Peter Chapels, including the information necessarily transferred or shared to third parties performing services on behalf of or for the ST. PETER GROUP OF COMPANIES and its members/covered corporations.
Any information provided (for example, by filling out the application form, contract form, and online registration form or survey, or via e-mail) shall be used only for the declared purpose of its collection or processing. Any activity on this website will not result in being added to a mailing list unless there is a specific request to do so. The ST. PETER GROUP OF COMPANIES and its members/covered corporations will not provide or sell any information from any business forms, surveys, e-mail lists, or electronic forms to any third party.
The ST. PETER GROUP OF COMPANIES has taken realistic, sufficient, and reasonable measures to prevent unauthorized access to, improper processing, or usage of Personal Data through these measures. The ST. PETER GROUP OF COMPANIES has procedural and electronic safeguards and security tools, such as password encryption of files, restricted file access to a limited number of employees, firewall security, and regular audit trails in place to help secure online Personal Data from unauthorized use. Although these procedures and electronic safeguards and systems are in place to adequately protect data, realistically speaking, these may still be subject to unforeseeable system errors and human and operational errors and are not completely infallible.
The collection of Personal Data is stored in a secured environment within the St. Peter premises. This secured environment has a server room and server computers that store the Information Systems and database containing Personal Data. All other manually recorded Personal Data will be retained and securely stored in accordance with the policies and procedures of the Administration Department. The appropriate physical, organizational, and technical controls in the storage of Personal Data have been established and developed for the purposes of maintaining the security, confidentiality, integrity, and availability of the Personal data of Planholders and Customers.
Personal Data may be transferred to, stored, and processed in the Philippines or any other jurisdictions where any member of St. Peter Group of Companies is located, or jurisdictions where a third-party contractor is located or from which the third-party contractor provides services. The ST. PETER GROUP OF COMPANIES has a data protection solution engineered to manage and protect back-up data across cloud, data center, and endpoint workloads. This data protection solution is built on the Azure cloud platform which is delivered as a service.
ST. PETER GROUP OF COMPANIES developed security measures to ensure the confidentiality, integrity, and availability of Personal Data that is collected. In order to secure and safeguard the collected Personal data against any loss, misuse, unauthorized access, disclosure, alteration, and destruction, the ST. PETER GROUP OF COMPANIES implemented organizational, physical, and technical security measures. These security measures in place are constantly being reviewed, monitored, and enhanced. The ST. PETER GROUP OF COMPANIES has taken realistic, sufficient, and reasonable measures to prevent unauthorized access to, improper processing, or usage of Personal Data through these measures.
Only the authorized employees of the company shall be allowed to access such personal data, for official and authorized purposes. All employees of ST. PETER GROUP OF COMPANIES shall ensure that every time they are not at their workstations, it is their responsibility to log out their computers and devices, keep drawers under lock and key and secure all documents or devices containing Personal Data to prevent unauthorized access.
The Information Technology (IT) Department is responsible for monitoring software and information systems on computers and electronic devices to ensure that the software and information systems installed and stored are compatible and secured and to prevent unauthorized access.
As a rule, personal and unofficial/unauthorized USB and external storage devices are not allowed within the premises of ST. PETER GROUP OF COMPANIES. However, in case of need, any employee who will bring and use USB and external storage devices must register the same with the IT Department. The unauthorized use of USB and external storage devices is not allowed. The IT Department shall keep, maintain, and update a logbook of a list of external storage devices together with the names of the pertinent Departments/Divisions to whom the external storage devices were assigned.
The employees are discouraged from downloading media or attachments containing personal data to non-office and unauthorized computers or devices. When working on non-office-issued and unauthorized devices, it is the responsibility of the concerned employee to completely delete any electronic media or document containing personal data and erase any trace of the document once it is no longer needed.
Safeguards are developed to protect the Company’s computer network and systems against accidental, unlawful, or unauthorized usage, any interference which will affect data integrity or hinder the functioning or availability of the system, and unauthorized access.
Measures are developed to ensure and maintain the confidentiality, integrity, availability, and resilience of the Company’s data processing systems and services.
Processes are developed for regularly testing, assessing, and evaluating the effectiveness of security measures, and also an authentication process, and other technical security measures that control and limit access thereto.
For St. Peter Life Plan, Inc., the personal data will be stored for the required amount of time during which the plans and the contractual obligations and services have not yet fully been used or performed (since Pre-Need benefits and services will be delivered in the future upon need, specifically death).
For St. Peter Chapels (At-Need memorial services), and Finance and Lending units, the Personal Data will be stored for no longer than ten (10) years either from the last transaction with any member company of the ST. PETER GROUP OF COMPANIES or until the expiration of the retention or storage limits set by applicable laws, whichever comes later. After this duration, both physical and digital files or records will be disposed of unless otherwise required by applicable laws or regulations.
All Personal Data will be destroyed when no longer needed for the specific purpose for which it was provided, including any copies that may reside in the system backups, temporary files, or other storage media. In such cases, authorized Personal Data collectors and processors of the ST. PETER GROUP OF COMPANIES are required to properly dispose of all documents, physical or digital documents, or media containing Personal Data.
Electronic or digital files containing Personal Data will be deleted by either of the following methods:
In all instances, our manner of disposal shall ensure that the Personal Data shall no longer be retrieved, processed, or accessed by unauthorized persons.
Most web browsers are initially set up to accept cookies. If one does not want to receive cookies, he/she can disable this function in his/her browser settings. If these cookies are blocked or disabled, the full features of the ST. PETER GROUP OF COMPANIES website may not be accessed. However, by doing so one may not be able to fully enjoy the benefits of the websites and certain features may not work properly.
For Data Privacy concerns, you may contact:
The Data Protection Officer
MS. JOYCE BASILIO-RAMOS
ST. PETER CORPORATE CENTER
999 EDSA, QUEZON CITY, 1105
(Across SM North EDSA Annex)
The St. Peter Group of Companies has the right to charge costs which are directly related to and necessary for the processing of any personal data access request.