The participants bring the following educational and professional background:

• College Degree or above education AND
• 2 years relevant work experience

AND

• Participation in the training course "Data Protection Officer (DPO) (TÜV)" of TÜV Rheinland approved by the certification body. The course duration is 5 days with a total of 40 hours. The presentce is documented by the provider by signature of the participant. Admission to the examination is granted upon a minimum attendance of 80%.

         OR

• Documented participation in 40hours accumulated data privacy protection related trainings, conferences and seminars (e.g. DPO ACE) organized by the regulating body (NPC), state-recognized learning institutions (colleges and universities), relevant professional organizations /associations (e.g., NADPOP) and legally operating local and international training providers.

• Written exam

In the examination participants prove their knowledge in the following areas:

For Philippines:

• Data Privacy Act of 2012 and its Implementing Rules (IRR), as well as other applicable International Data Protection Laws;
• Organization of data protection and data security in the company;
• Duties, roles, responsibilities and authorities of Data Protection.

For Thailand:

• Personnel Data Protection Act (PDPA) and its Implementing Rules (IRR), and other applicable International Data Protection Laws;
• Organization of data protection and data security in the company;
• Duties, roles, responsibilities and authorities of Data Protection Officer.

Successful candidates have the competence in order to:

• Apply knowledge pertaining data privacy protection concepts, duties and responsibilities, compliance and audit management related to Personnel Data Protection Act and applicable laws and regulations.

Participants prove the relevance of their competence in a recertification process.