Cornersteel
Systems
Corporation

© 2025 Cornersteel Systems Corporation

Cornersteel
Systems
Corporation

Cornersteel
Systems
Corporation
Privacy Notice
Terms & Conditions
Contact Us
Cornersteel
Systems
Corporation

© 2025 Cornersteel Systems Corporation

Terms of Use

Home

Terms of Use

We Build A Better
Workplace

Combining technical expertise with advanced manufacturing to create collaborative workplaces.

Learn more

We Build A Better Workspace

No other Philippine workspace provider creates
customer values like us.

Learn More

We Build A Better Workspace

No other Philippine workspace provider creates customer values like us.

Learn More

1. Overview of Data Privacy Policy

  • A brief introduction explaining the importance of data privacy to Cornersteel
  • Mention compliance with the Data Privacy Act of 2012 (DPA) and related regulations.
  • Clarify the scope of the policy (e.g., applicable to all users, clients, and employees).

2. Rights of the Data Subject (Article III)

With compliance with Republic Act No. 10173, the Data Privacy Act of 2012:

1. Right to Be Informed: Information about how personal data is collected, processed, and used.
2. Right to Access: Mechanisms to view and retrieve stored personal data.
3. Right to Rectification: Amendments to inaccuracies in personal data.
4. Right to Erasure or Blocking: Request to remove or restrict data under specific conditions.
5. Right to Data Portability: Transfer of data in a portable format.
6. Right to Object: Refusal of data processing for certain purposes.
7. Right to Damages: Remedies for unauthorized data breaches.

3. Relevant Links to the Law

For a complete reference to the Data Privacy Act of 2012:

  • A Data Subject who seeks to access and/or modify his/her Personal Data with the Company shall accomplish this Data Privacy Right Form

4. Steps for Requesting Updates to Personal Data

Include a section on how users can update their personal data:

  • Any person, including an employee who is not an Authorized Personnel but wishes to access Personal Data of Data Subjects pursuant to his/her function in the Company, shall accomplish this Access Request Form.

DPA Access Request Form

  • A Data Subject who seeks to access and/or modify his/her Personal Data with the Company shall accomplish this Data Privacy Right Form

DPA Data Privacy Right Form

  • This is when cornersteel requests people to fill this up prior to being able to serve them.

Processing of Personal Data Consent Form

  • To be filled up by the Response Team with 24 hours, upon learning of an Incident.

DPA Security incident Report Form

5. Processing Timeline

  • 24 hours for Security Incidents

Contact DPO Email dpa@cornersteel.com with subject “Security” 

  • 48 hours for

Contact DPO Email dpa@cornersteel.com with subject “Security” 

  • Subject: “Access Request” Any person, including an employee who is not an Authorized Personnel but wishes to access Personal Data of Data Subjects pursuant to his/her function in the Company, shall accomplish this Access Request Form.
  • Subject: “Data Subject Request” A Data Subject who seeks to access and/or modify his/her Personal Data with the Company shall accomplish this Data Privacy Right Form.

6. Security Measures and Policy

Cornersteel Systems Corporation is committed to ensuring the confidentiality, integrity, and availability of personal data in compliance with the Data Privacy Act (DPA) and its implementing rules and regulations.

Below are the measures we implement to secure personal data under our control:

Roles and Responsibilities
  • Personal Information Controller (PIC): Ensures that personal data is processed in compliance with the law, policies, and procedures.
  • Personal Information Processor (PIP): Handles data processing tasks under strict instructions from the PIC.
  • Compliance Officer for Privacy (COP): Oversees data privacy compliance efforts, including risk assessments and privacy impact assessments.
  • External Compliance Office: Managed by Batuhan and Blando Law Firm, reachable at bblaw@batuhanblandolaw.com.
Technical Security Measures

1. Antivirus Protection: Regularly updated antivirus software protects all systems from malware and cyber threats.
2. Perimeter Firewall: A firewall protects our network from unauthorized access and cyberattacks.
3. Network Segmentation: Critical data is secured by segmenting the network to minimize risks from lateral movement of threats.
4. Proxy Systems: Proxy systems are in place to control and monitor internet traffic, enhancing security and privacy.
5. Two-Factor Authentication (2FA): Ensures secure access to sensitive systems and data by requiring a second level of authentication.

Physical Security Measures
  • Security Personnel: Trained personnel are stationed to monitor and protect our premises against unauthorized physical access
  • Access Control: Strict protocols ensure that only authorized personnel have access to secure areas.
Compliance and Audits
  • External Compliance Office: Batuhan and Blando Law Firm oversees compliance to ensure adherence to DPA standards and legal requirements.
  • Periodic Audits: Regular internal and external audits are conducted to assess security and compliance levels.
Cookie Policy
  • Cookies are used to enhance user experience on our website. Users have the option to manage their cookie preferences to align with their privacy choices

7. How to File Complaints

Procedure for Complaints:

1. Reporting Violations
  • Any suspected or actual violation of the Data Privacy Manual, the Data Privacy Act, or related government issuances, including breaches, losses, or unauthorized access/disclosures of personal data, must be reported immediately to the Data Privacy Response Team.
  • The Response Team will acknowledge receipt of the complaint within 24 hours.
2. Investigation Process:
  • The Data Protection Officer (DPO) or any two members of the Data Privacy Response Team will:

1. Verify the Allegations: Confirm the validity of the complaint.
2. Conduct an Investigation: If warranted, launch an official investigation for serious security breaches as per the Data Privacy Act and its Implementing Rules and Regulations (IRR).
3. Report to the Commission: Submit a report on the incident or breach to the National Privacy Commission (NPC) as outlined in the manual.

3. Committee Recommendations:
  • The Data Privacy Response Team may form an investigation committee for serious violations or those with potential material damage to the company or affected individuals.
  • The committee’s recommendations will be forwarded to the company’s management for approval.
For filing complaints, the Data Protection Officer can be contacted as follows:
  • Postal Address: 18F World Centre Building, #330 Sen. Gil Puyat Avenue, Barangay Bel-Air, Makati City, Philippines.
  • Telephone Number: +63 9209221092
  • Email Address: dpa@cornersteel.com

8. Contact Information

  • IT
  • DPA – Both Comfac-IT and Cornersteel Systems Corporation
Who We Are
Company Overview
Architectural Services
Technical Services
Showroom
Reach Out
Contact Us
Contacts
(632) 8867-8301 to 28
cscsalesinquiry@cornersteel.com
19/F The World Centre Building, 330 Sen. Gil Puyat Ave. Makati City, NCR 1200
Newsletter

Follow us

Sign up for Newsletter


Follow us on

Privacy NoticeTerms of UseLegal

© 1990 Cornersteel Systems Corporation

Who We Are
Company Overview
Architectural Services
Technical Services
Showroom
Reach Out
Contact Us
Contacts
(632) 8867-8301 to 28
cscsalesinquiry@cornersteel.com
19/F The World Centre Building, 330 Sen. Gil Puyat Ave. Makati City, NCR 1200
© 1990 Cornersteel Systems Corporation
Terms of Use
Legal
Powered by Comfac-IT

© 2025 Cornersteel Systems Corporation

Terms of Use
Legal
Powered by Comfac-IT