Which entity is mainly responsible for implementing the Data Privacy Act?

The National Privacy Commission (NPC) is primarily responsible for implementing the Data Privacy Act. Established in the Philippines, the NPC oversees the enforcement of this law, which aims to protect the privacy of individuals by regulating the processing of personal information and ensuring that data handling practices align with the principles of transparency, legitimate purpose, and proportionality.

The NPC's responsibilities include formulating policies, conducting investigations, and ensuring compliance with data protection laws by public and private sectors alike. It serves as the main authority that individuals and organizations must consult regarding privacy issues and data protection rights.

The other entities mentioned have roles related to oversight or assistance but do not hold the main responsibility for implementing the Data Privacy Act. The Commission on Human Rights focuses on broader human rights issues, the Department of Justice handles legal matters but does not enforce the Data Privacy Act directly, and while the Department of Information and Communications Technology may be involved in initiatives that relate to data and technology, it is not the primary body responsible for the act's implementation and enforcement.