PHILIPPINES Law and Practice Contributed by: Kerwin K. Tan, Veronica S. Balbin and Jose Maria B. Buenagua, Tan Hassani and Counsels
4. Contract Terms 4.1 Customer Protections
3.2 Alternative Contract Models The most common contract model is a bilateral ser - vices contract between the client and the outsourc - ing service provider. Joint ventures and multi-sourcing arrangements are rare in the outsourcing sector in the Philippines. 3.3 Digital Transformation Digital transformation has impacted the delivery of outsourced and offshored services, altering the con - tent of outsourcing contracts. While the contract structure remains largely the same, its contents have become more detailed, especially regarding data pri - vacy, intellectual property, security, and confidentiality. Increasingly, outsourcing contracts place greater emphasis on privacy, security, and intellectual prop - erty protection. Data processing clauses should specify security controls, breach response timelines, and the lawful basis for processing as determined by the data controller. Additionally, with the rise of AI in commercial transactions, adding practical guardrails in clauses is also advised. Defining ownership of data inputs, outputs, and resulting work products reduc - es the likelihood of disputes. Moreover, as the NPC strengthens its regulatory oversight, it is now manda - tory to ensure human oversight in processes involving material decisions, to prevent full automation without accountability. Due diligence processes for selecting outsourcing providers have also become significantly more robust. To guarantee that an outsourcing provider complies with privacy regulations and that its employees are adequately trained in data handling requirements, contracts now include additional, specific representa - tions and warranties concerning data privacy compli - ance. This thoroughness in due diligence has expand - ed beyond mere contractual warranties. Outsourcing partners are now subject to third-party review of their background, the training provided to their data han - dlers, and their established security protocols. Provid - ers who can effectively evidence compliance with this minimum standard typically achieve more favourable commercial outcomes.
The Philippines operates under a mixed legal system shaped by successive colonial rule. Spanish civil law forms the backbone of private law, later complement - ed by American common law influences. Customer protection is grounded in local statutes on contracts, privacy, and intellectual property. Contract law fol - lows the Western legal tradition, with a strong Span - ish lineage reflected in the Civil Code. Core rules on perfection, consummation, termination, and dispute resolution remain rooted in that tradition. A contract is the law between the parties, so customers may rely on clear terms and conditions together with statutory remedies when disputes arise. Privacy laws and regulations generally follow Euro - pean standards found in the General Data Protec - tion Regulation (GDPR). Intellectual property laws are shaped by the different treaties that the Philippines has acceded to, such as the Convention Establishing the World Intellectual Property Organization (1980), Agreement on Trade-Related Aspects of Intellectual Property Rights (TRIPS Agreement) (1994), Patent Cooperation Treaty (2001), and the WI PO Copyright Treaty (2002). 4.2 Termination Termination is generally based on grounds provided in the service contract between the customer and the BPO company, which is mostly based on breach of contractual provision. Termination may also be based on law, which is mostly based on the Civil Code of the Philippines. Likewise, customer rights upon termination are also based on the grounds provided in the service contract between the customer and the BPO company as well as the Civil Code. The allocation of liability for dam - ages will depend on which party is deemed to be in breach of the contract, with the responsible party held liable for any resulting damages. Upon termination, protocols on securing or destruc - tion of data of providers should be in place, including residual copies thereof. Data retention policies are also advised to be aligned with company policies, espe -
47 CHAMBERS.COM
Powered by FlippingBook