Privacy Policy

PRIVACY POLICY NOTICE FOR APPLICANTS, STUDENTS, AND ALUMNI 

STATEMENT OF PRIVACY POLICY  

Manila Central University (MCU) is committed to protecting the privacy of its data subjects and ensuring the safety and security of their personal data under its control and custody. This policy provides information on how MCU will collect, use, process, share, secure and dispose of personal data, in accordance with Republic Act. No. 10173, also known as the Data Privacy Act of 2012 and its Implementing Rules and Regulations.    

 This Data Privacy Notice may be amended at any time without prior notice, and such amendments will be notified to you through MCU’s website.   

PRIVACY NOTICE

a. Information Collected  

We collect your personal data that include those you provide us during your application for admission, upon your enrollment and during the course of your stay with us, and after graduation as an MCU alumnus or alumna. This will include, but not limited to:   

1. Names, addresses, telephone numbers, email addresses, and other contact details;  
2. Personal information, such as date and place of birth, nationality, immigration status, religion, civil status, student ID, government-issued IDs, web and social media information, recommendations and assessment forms from previous schools, and other similar documents;  
3. Family background, including information on parents, guardians, siblings, related MCU alumni;  
4. Health records, psychological evaluation results, disciplinary records and the like;  
5. Photographic and biometric data, such as photos, audio visual information, CCTV videos, fingerprints, handwriting, and signature specimens;  
6. Academic or curricular undertakings, school works, including data from third party online learning and video recording tools, performance assessments and attendance records;  
7. Financial and billing information;  
8. Information to support student’s well-being and to provide medical, dental services, and guidance counseling;  
9. Co-curricular matters such as outreach activities, as well as extra-curricular activities such as membership in student organizations, leadership positions, and participation and attendance in seminars, competitions, and programs, resumes, job interview forms; and  
10. Any additional information provided to us by the student in the course of enrollment and after graduation.  

 

b. Use of Information  

The personal information collected is used for MCU’s legitimate purposes, such as but not limited to the following:   

1. Evaluation of eligibility and processing for admission, scholarship, financial aid and enrollment in the University  
2. Promoting, measuring, evaluating and validating academic progression, program of study, curricula Documentation of students’ data  
3. Research and support services  
4. Posting of academic and non-academic achievements within the University premises and/or website  
5. Processing of application for issuance of school records (Transcripts, Diploma, Certificates)  
6. Processing of grades and generation of the statement of accounts  
7. Processing of application for graduation  
8. Alumni services  
9. Evaluation for board examinations  
10. Accreditation purposes  
11. Public relations, marketing and promoting the University and other academic and non-academic activities   
12. Providing library, research, community outreach, medical and dental services, alumni and other student support services  
13. Career services including references, work and other placements  
14. Safety and security of the MCU community 

 

c. Information Sharing 

MCU will keep all personal information in strict confidence if not intended for public disclosure. There are instances, however, where we will share or disclose personal information pursuant to MCU’s legitimate purposes. The purposes for which MCU may share or disclose your personal information include among others:    

1. Posting of class lists and class schedules in school bulletin boards or other places within the campus;  
2. Sharing of information to persons, including parents, guardians or next of kin, as required by law or on a need-to-know basis as determined by the school to promote your best interests, or protect your health, safety, and security, or that of others;   
3. Providing academic institutions, companies, business partners and linkages, government agencies, private or public corporations, organizations or the like, upon their request, with scholastic ranking and academic information, certification of good moral character, and the like for purposes of admission, student exchange, internships, further studies, and job placements and verification;   
4. Sharing information to potential donors, funders, or benefactors for purposes of scholarship, grants, and other forms of assistance;   
5. Distributing the list of graduates and awardees during commencement exercises;   
6. Reporting and/or disclosing information to the government bodies, agencies or the courts (e.g., Commission on Higher Education, Department of Education and Department of Education);  
7. Sharing information for accreditation and university ranking purposes;   
8. Responding to inquiries verifying that you are a bona fide student or graduate of the school;  
9. Conducting research or surveys for purposes of institutional development;   
10. Sharing your directory information to the schools’ alumni association;   
11. Publishing academic, co-curricular, and extra-curricular achievements and success, including honors lists and names of awardees in school bulletin boards, website, social media sites, and publications;  
12. Sharing your academic accomplishments or honors and co-curricular or extracurricular achievements with schools you graduated from or was previously enrolled in, upon their request;  
13. Live-streaming of MCU events;  
14. Service providers who perform services to help us support your learning and manage operations of our school;  
15. Promoting the school, including its activities and events, through photos, audios, videos, brochures, website posting, newspaper advertisements, physical and electronic bulletin boards, and other media;   
16. Publishing communications such as news information in MCU’s publications, social media sites, and other news and media organization. 

Where MCU considers it necessary or appropriate for data storage, processing, or providing any service or product on our behalf to you, we may transfer your personal data to third parties inside or outside the Philippines under conditions of confidentiality and similar levels of security safeguards.   

d. Storage and Retention    

Your personal data are stored and transmitted securely in a variety of paper and electronic formats, including databases that are shared between the University’s different units or offices. Access to your personal data is limited to University personnel who have a legitimate interest in them to carry out their contractual duties. Unless otherwise provided by law or by appropriate University policies, we will retain your relevant personal data indefinitely for historical and statistical purposes. Where a retention period is provided by law and/or a University policy, all affected records will be securely disposed of after such a period.   

e. Your Rights   

As provided by the Data Privacy Act, you may object to the processing of your personal data, request to access your personal information, and/or have it corrected, erased, or blocked on reasonable grounds. For the details of your rights as a data subject, you can get in touch with our Data Protection Officer at the contact details below or at the National Privacy Commission at https://privacy.gov.ph/.    

If you have further questions or concerns regarding your data privacy rights, or any matter regarding the Data Privacy Act of 2012, you may contact our Data Protection Officer through the following details:   

The Data Protection Officer   

Trunkline #: +632 8364 1071 to 78 Local 148   

Email Address: dataprivacy@mcu.edu.ph   

Write to: Data Protection Officer   

MCU Campus, EDSA, Monumento, Caloocan City, Philippines 1400  

 

 

PRIVACY POLICY NOTICE FOR JOB APPLICANTS, EMPLOYEES AND TRAINEES 

STATEMENT OF PRIVACY POLICY   

MANILA CENTRAL UNIVERSITY (MCU) is committed to protect and respect your personal data privacy. This Personal Data Privacy Notice, prepared in accordance with the Data Privacy Act of 2012 and its Implementing Rules and Regulations, sets out our personal information protection practices that are put in place to protect the personal information of individuals whom we deal with. Please note that we may amend this Data Privacy Notice at any time without prior notice and we will notify you of any such amendment via our website or by email. 

Application of this Policy 

This Policy applies to all persons engaged in a contract of service with MCU (whether on a part-time, temporary, contractual/casual or full-time basis/item positions) and trainees working at or affiliated with/attached to us (collectively referred to as “employees”) as well as persons who have applied for any such position with the Company (“job applicants”), and all references to “employment” shall apply equally to training (or on-job-trainees’ OJT) (as may be applicable) 

PRIVACY NOTICE  

a. Personal Information 

We collect and process the following personal information from you when you manually or electronically submit to us upon your hiring and in the course of your employment with MCU:  

1. full name, address, email address, date of birth, civil status;  
2. family background;  
3. face/photo, fingerprints, or handwriting;  
4. contact numbers;  
5. government-issued ID numbers;  
6. medical, psychological, and dental history and condition;  
7. psychological evaluation results;  
8. educational history;  
9. employment history and work experience;  
10. background investigation results and character reference;  
11. interview assessment; and  
12. other similar information.

 

b. Use  

The collected personal information is utilized solely for the following purposes, among other legitimate purposes:  

1. recruitment and hiring of employees;  
2. promotion, evaluation, and ranking of employees;  
3. attendance and timekeeping of employees;  
4. employee discipline;  
5. conduct of administrative investigation of employee cases;  
6. processing of compensation and benefits and payroll of employees;  
7. distribution of teaching loads and work assignments;  
8. updating and verification of employee service records;  
9. training and development;  
10. performance evaluation; 
11. HR development plans and reports 

 

c. Protection Measures 

Only authorized MCU personnel have access to this personal information, the exchange of which will be facilitated through email and hard copy. They will be stored in a database for as long as necessary after which physical records shall be disposed of through shredding, while digital files shall be kept in our files for as long as necessary. 

d.Retention of Personal Data 

MCU may retain your personal data for as long as it is necessary to fulfill the purposes for which they were collected, or as required or permitted by applicable laws. We will cease to retain your personal data or remove how the data can be associated with you, as soon as it is reasonable to assume that such retention no longer serves the purposes for which the personal data were collected, and are no longer necessary for legal or business purposes. 

e. Data Transfer and Sharing 

Where MCU considers it necessary or appropriate for data storage or processing or for providing any service or product on our behalf to you, we may transfer your personal information to third parties within or outside the Philippines under conditions of confidentiality and similar levels of security safeguards. 

f, Access and Correction 

You have the right to ask for a copy of any personal information we hold about you, including an existing data-sharing agreement with third parties as well as to ask for it to be corrected if you think it is wrong. To do so, please contact the Data Protection Officer at the following contact information: 

The Data Protection Officer   

Trunkline #: +632 8364 1071 to 78 Local 148   

Email Address: dataprivacy@mcu.edu.ph   

Write to: Data Protection Officer   

MCU Campus, EDSA, Monumento, Caloocan City, Philippines 1400  

g. Withdrawing Consent 

The consent that you provide for the collection, use, and disclosure of your personal data will remain valid until such time it is being withdrawn by you in writing. If you are a job applicant, you may withdraw consent and request us to stop using and/or disclosing your personal data for any of all the purposes listed above by submitting your request in writing or via email to our Data Protection Officer at the contact details provided above. 

 

 

PRIVACY POLICY NOTICE FOR THIRD PARTIES 

STATEMENT OF PRIVACY POLICY 

Manila Central University (MCU) is committed to protecting the privacy of its data subjects and ensuring the safety and security of personal data under its control and custody. We aim to comply with the Data Privacy Act of 2012 (DPA) and cooperate fully with the National Privacy Commission (NPC) by giving importance to the privacy and security of personal data entrusted by our stakeholders (e.g. suppliers, visitors, and other third parties) for legitimate purposes.  

This notice applies to the personal data of natural persons working for our suppliers or acting as agents or representatives of our suppliers (“you”, “your”). Suppliers are understood as any third party that provides goods or services to Manila Central University (e.g., visitor, service providers, agencies/company, consultant, contractor, advisor, or vendor). Board members under a non-employee status are also considered as suppliers. This notice explains what types of personal data are gathered from our suppliers, how the personal data are used, and with whom the personal data are shared. It also sets out our suppliers’ rights with personal data. For their exact definitions, you may refer to the text of the DPA. The Consent Form may be amended at any time without prior notice, and such amendments will be notified to you through MCU’s website or by email. 

PRIVACY NOTICE 

a. Personal Information

 The primary reason we process your data is to approve, manage, administer, or effect an agreement between Manila Central University and the supplier you represent or work for. In this respect, we use your data to organize our sourcing activities, issue purchase orders, process payments, perform accounting, manage our contract or review the services or products you supply us with.  

Also, we process personal data to meet our legal obligations (e.g., record-keeping obligations, screening duties of board members) as well as to manage our risks and operations (e.g., prevent and detect security threats, exercise or defend legal claims). We collect and process the following personal information from a visitor, service providers, agencies/company, consultant, contractor, advisor, or vendor:  

Purpose of Processing	Types of Personal Data
Security of Confidential Information located in the University’s premises   Recording, generating, and maintaining records, whether manually or electronically to establish the information and monitor the purpose of visit  Prevention of loss, fraud, theft, injuries, terrorism, and other events of such kind in the University’s premises	·             Basic personal information from you in our visitors database and/or visitors logbook, which includes Identification Card (ID), name, company name, phone number, the reason for visit, date & time, etc.   ·             Video footage is also being recorded on our CCTV system installed on University premises  ·             Plate number, date, and time of entry
Sourcing	·             We obtain company details such as Company Profile, Mayors Permit, DTI/SEC, BIR (2303), list of products, rates/prices, quotations, etc.  ·              Detailed Analysis of Suppliers to monitor compliance and understand any potential risk  ·              Financial Status
Contract Management	·             Business Card (Company’s name, Contact Person’s  Name and Contact Information)  ·             Data Sharing Agreement  ·             Management of Supplier Relationship  ·             Company Contact Person  ·             Financial Status
Assessment of Suppliers	·             Business Card (Company’s name, Contact Person’s  Name and Contact Information)  ·             Information about the Performance of the Supplier
Access and Security Management	·             Business Card (Company’s name, Contact Person’s  Name and Contact Information)  ·             Access and Authorities
Payment of Invoices	·             Business Card (Company’s name, Contact Person’s  Name and Contact Information)  ·             Financial Details  ·             Official Receipt and Invoice Details

The personal data we collect from you comes from the following sources: 

1. Personal data you give us 

We collect personal data from you when you: send us personal data on forms and e-forms such as your name, address, telephone number, tax identification number, date of birth, copy of passport or ID card; provide us personal data necessary to enter into a contract such as your name, address, professional phone number and e-mail address, function and/or position held within our supplier’s organization; or provide us personal data during the performance of your services.  

2. Information we receive from other sources 

We collect your data through background information from third-party providers; our employees or business relationships such as feedback on you we receive from other contractors or our employees; publicly available sources to confirm signatory powers; or details on your intervention in board meetings (i.e., through board minutes).  

The said data are not shared with any outside parties without your consent unless the law and our rules allow us to. We hold these personal information data and use them to monitor and report your progress, and assess the status of your employment with the University. 

b. Protection Measures 

Your data are maintained securely. Only authorized MCU personnel have access to this personal information, the exchange of which will be facilitated through email and hard copy. They will be stored in a database for as long as necessary after which physical records shall be disposed of through shredding, while digital files shall be kept in our files for as long as necessary. We implement risk-appropriate measures and processes that are designed to provide a level of security appropriate to the risk of processing your data to help us keep your data secure and to maintain their quality.  

c. Retention of Personal Data

MCU will only keep your data for as long as it is reasonably necessary for the purposes outlined above or to comply with legal requirements under applicable law(s). CCTV footages are stored for 90 days before being automatically deleted. MCU keeps personal data as long as we have a relationship with the supplier you represent or work for. After a contractual relationship ends, personal data are kept for 5 years.  

d. Data transfer and sharing 

Where MCU considers it necessary or appropriate for data storage or processing or providing any service or product on our behalf to you, we may transfer your personal information to third parties within or outside the Philippines, under conditions of confidentiality and similar levels of security safeguards. We do NOT transfer or share your data with other persons or organizations unless required or permitted by law.  

e. What if you choose not to give us your data? 

If you do not want to give us your data and the personal data are necessary to enter a contract or pursue business relations with our supplier, then we will not be able to enter into that contract or pursue our contractual relationship. If your contract or agreement with MCU as a third party provider has expired, you have the right to obtain and withdraw your data in hard copy and delete permanently all your information from our database files.  

f. Access and Correction 

You have the right to ask for a copy of any personal information we hold about you, including the existing data-sharing agreement with third parties, as well as to ask for it to be corrected if you think it is wrong. To do so, please contact the Data Privacy Compliance Officer at the following contact information: 

 The Data Protection Officer   

Trunkline #: +632 8364 1071 to 78 Local 148   

Email Address: dataprivacy@mcu.edu.ph   

Write to: Data Protection Officer   

MCU Campus, EDSA, Monumento, Caloocan City, Philippines 1400