PRIVACY POLICY

Latest update on April 2024

Toyota Financial Services Philippines Corporation (TFSPH) Privacy Policy Statement

In large companies such as TFSPH with hundreds of employees, numerous suppliers, and a wide customer base, the careful handling of personal data may be at risk of unauthorized access, use, processing, and disclosure. In line with the commitment to providing you with wonderful customer experience, we want you to know that you can trust us in protecting your personal data.

TFSPH ensures the security and protection of personal information stored in the information and communication systems in TFSPH in line with the objective of Republic Act (R.A.) No. 10173, otherwise known as the Data Privacy Act of 2012, which provides for the protection of the privacy of communication while ensuring free flow of information to promote innovation and growth.

The information below provides for the general practices of TFSPH relevant to processes and content which are made available through the website. You will understand how we collect, use, and share your personal data when you use our products and services.

SEAL OF REGISTRATION

NPC-Seal_PNG

Toyota Financial Services Philippines Corporation (TFSPH) has complied with the registration requirements provided in the Data Privacy Act (DPA) of 2012, its Implementing Rules and Regulations (IRR), and other relevant issuances, through the NPC Registration System (NPCRS).

With the NPC Seal of Registration, our Clients and Partners are assured that TFSPH is fully compliant with the mandate of the National Privacy Commission (NPC).

For concerns/queries, you may contact our Data Protection Officer (“DPO”) through the following:

DATA PRIVACY UNIT

32/F G.T. Tower International, Ayala Avenue
corner H.V. Dela Costa Street, Salcedo Village,
Makati City, Philippines 1227
Telephone Number: (02) 7757-8500
E-mail Address: privacy@toyotafinancial.ph

COLLECTION AND USE OF PERSONAL DATA

TFSPH collects only the personal data needed to effectively serve you with our products and services. We may also use the personal data collected for various purposes such as customer service, investor relations, market research, and business development. This will also enable us to respond to your queries, process your requests and applications, and create services that will respond to your needs, and otherwise carry out our business operations. We may also collect, use, and process your personal data for the following general purposes:

  • to conduct due diligence prior to executing a contract, and to facilitate the fulfillment of the terms of the contract thereafter

  • to provide information about our services

  • to conduct research and analysis to improve customer experience

  • to maintain security

  • to comply with legal, regulatory, and contractual requirements or obligations.

The use and processing of your personal data also depend on your transactions with us. If you inquire about, or avail yourself of our services, we may collect, use, or process your personal data to:

  • conduct appropriate credit investigation to assess the risk of transacting with you

  • prepare and execute the necessary contract to cover the transaction

  • update our records and keep your contact details and billing address up-to-date

  • communicate any advisories, changes, and other information relevant to your contact with us.

If you are a vendor/supplier, a potential vendor/supplier, or a contractor, we may collect, use, or process your personal data to:

  • conduct the appropriate due diligence checks

  • evaluate your proposal, including your technical, financial, and operation capacity

  • assess the viability of your proposal and process your accreditation

  • communicate any decision on such proposal

  • perform any other action as may be necessary to implement the terms and conditions of our contract.

If you are a visitor to TFSPH, we may use, collect, or process your personal data to:

  • grant access to our premises; and

  • maintain the security within our premises

Such collection and processing stems from the following bases:

  • Contractual Obligation

  • Legal Obligation

  • Legitimate Interest

  • Consent

WHAT WE PROCESS

TFSPH processes your personal data in electronic and manual format. We receive your personal data through electronic, written and verbal communications, depending on how you avail our products and services.

The personal data we process and collect may include among others:

  • Name

  • E-mail

  • Other contact details

  • Address

  • Any information relevant to the feedback you have provided or the request or transaction you have made.

Further transactions with us may require the processing of other personal data, such as, but not limited to the following:

  • Financial details such as credit history, bank account, credit card, and debit card information.

  • Sensitive personal information, such as age, nationality, marital status, gender, health, education, date of birth, and government-issued identification documents.

  • Employment history, payroll and benefit information, and salary wages.

SHARING OF PERSONAL DATA

TFSPH will not share or disclose your personal data to third parties without your consent except when required by Philippine laws and regulations.


With this, TFSPH may outsource the processing of your personal data to external parties including subsidiaries, affiliate companies, credit bureaus, vendors, and service providers who may process your personal data to fulfill the purposes described in this Privacy Policy. When we do so, we make sure they can only process your personal data strictly with the purpose for which it was originally collected and to which you consented, the Data Privacy Act, its Implementing Rules and Regulations, and all other relevant regulations and issuances on privacy and data protection. We also require them to protect your personal data with organizational, physical, and technical security measures consistent with our internal policies and ensure they return or dispose of your personal data upon the end of our engagement or as otherwise specified in our contract.


We may also share your personal data with unrelated third parties upon your request or when we are legally required to do so. Nevertheless, we will take all the necessary steps to protect your personal data.


RETENTION OF PERSONAL DATA

Your personal information shall be retained for as long as the purpose for which it was collected, and such other purposes that you may have consented to from time to time, remains in effect and until such time it is no longer required nor necessary to keep for any other legal, regulatory, or business purposes.

However, it may be necessary for us to keep your personal data for a longer period for legitimate business or legal purposes such as security, fraud prevention, or financial record-keeping. In general, our retention and disposal schedule is as follows:

  • Customer/Client Information
  • For records relating to ongoing investigation or transactions that have been the subject of disclosure
  • For records gathered through the TFSPH Website (Newsletter or Inquiry)
  • Five (5) years from termination or closure of accounts.
  • Five (5) years from the time it is officially confirmed by relevant government agency, if any, that the case has been resolved, decided or terminated with finality.
  • One (1) year from receipt of the inquiry or request to unsubscribe from newsletter subscription.
  • Contract of Lease (Motor Vehicle)
  • Five (5) years from termination or closure of accounts.
  • Ten (10) years from termination (if not settled.
  • PN with Chattel Mortgage
  • Five (5) years from termination or closure of accounts.
  • Ten (10) years from termination (if not settled.

Upon expiration of the retention period, all physical and electronic copies of the personal data shall be destroyed and disposed of using secured means that would render the personal data unreadable, irretrievable, and prevent the occurrence of any personal data breach and other security incidents. TFSPH have established procedures to securely dispose of files that contain your personal data whether in digital or physical form (e.g. shredding, purging, forensic wiping, degaussing).

HOW WE STORE YOUR PERSONAL DATA

Your Personal Data is controlled by TFSPH. We store your personal data using secure systems and processes designed to protect it from unauthorized access, alteration, or loss.

Depending on how you interact with us, your data may be stored:

PHYSICALLY In filing cabinets, vaults, among others, ensuring dual control as required by the Bangko Sentral ng Piipinas (BSP).
ELECTRONICALLY In secured databases, on premise, cloud platforms, or secure servers, ensuring continuous compliance with Bangko Sentral ng Piipinas (BSP) and National Privacy Commission (NPC) regulations.

PROTECTION OF PERSONAL INFORMATION

The security of your personal information is our priority. We protect this information by maintaining physical, electronic, and procedural safeguards that exceed applicable law. Our employees are trained in the proper handling of our clients' personal information ensuring physical, organizational, and technical measures are observed accordingly. When we use other companies to provide services for us, we require them to protect the confidentiality of personal information they receive with the same standards.

We acknowledge that your role is also equally important in ensuring your security. To ensure the full protection of your transactions and the whole TFSPH facility against unauthorized third parties, we need you to do your share in protecting your information.

When you visit this website, you can find information about our products and services, read our corporate reports, check on further career opportunities with TFSPH, receive the latest information, or use other value-added services without giving us any information about yourself.

If you provide us with personal information, such information shall not be shared, sold, or divulged by us to any third party without your prior knowledge and consent. We shall treat such personal information as well as any information related to your business activities and transactions in full compliance with our usual standards of the strictest safety and security as well as in compliance with the principles governing the maintenance of banking secrecy and data privacy.

We may also use third-party cookies to report usage statistics, deliver advertisements, and so on. These include (a) Session Cookie used to maintain the user’s active session while navigating the site, (b) CSRF Token Cookie used as a security measure to protect against unauthorized or malicious requests, and (c) Consent Cookie used to remember the user’s cookie consent preferences.

These cookies are anonymous, don't store personally identifiable information, and store only user behavior on our website. If you do not wish to receive cookies, you may modify your web browser setting to turn them off or delete them from your computer.

RIGHTS OF THE DATA SUBJECT

We respect your rights as Data Subjects under Data Privacy Act. As such, the following rights are afforded to you:

  • Right to be Informed. You have the right to be informed how and why we collect and process your personal data, including where we collected it, with whom we share it and why, how we protect it, how long we keep it, and how we dispose of it, and any changes to our data processing activities prior implementation.

  • Right to Access. You have the right to demand reasonable access to your personal data. We, however, reserve the right to seek reasonable fees when providing such data presents certain challenges due to its volume as well as to restrict access to linked data that may be confidential, proprietary, or belong to other individuals.

  • Right to Object. You have the right to object to the processing of your personal data when the sole criterion for processing is our legitimate interest. You also have the right to withdraw any consent previously given for the processing and/or sharing of your personal data, unless:

    1. The processing of personal data is pursuant to a legal obligation.
    2. The processing is pursuant a contractual obligation, including when it is necessary for the performance of, or in relation to a contract or service to which the data subject is a party.

  • Right to Erasure or Blocking. You have the right to suspend, withdraw, or order the blocking, removal, or destruction of personal data, and may exercise such right, upon discovery and/or substantial proof of any of the following:

    1. Personal data is incomplete, outdated, false, or unlawfully obtained.
    2. Personal data is used for unauthorized/unlawful purposes.
    3. Personal data is no longer necessary for the purpose for which it was collected.
    4. You voluntarily withdraw consent or object to the processing, and there are no other legal grounds or overriding legitimate interest for the processing.
    5. Personal data concerns information prejudicial to you, unless justified by freedom of speech, of expression, or of the press, or otherwise authorized.
    6. Such other cases as provided in the Data Privacy Act of 2012.

  • Right to Rectification. You have the right to dispute any inaccuracy or error in your personal data and have TFSPH correct it immediately subject to its internal procedures, unless the request is vexatious or unreasonable.

  • Right to Data Portability. Where your personal data is processed by electronic means and in a structured and commonly used format, and upon your written request, you have the right to obtain a copy of your personal data or have it transmitted to other entities in a format that is portable and commonly accessible subject to TFSPH’ internal procedures.

  • Right to Complain before the Commission. You have the right to complain before the National Privacy Commission for any data privacy violation committed by TFSPH, if any.

  • Right to Damages. You have the right to be indemnified for sustained damages, if any, due to inaccurate, incomplete, outdated, false, unlawfully obtained or unauthorized use of personal data.

  • Transmissibility of Rights. Any lawful heir and/or assign of the data subject may invoke the rights of the latter to which he/she is an heir and/or assignee, at any time after the death of the data subject, or when the data subject is incapacitated or incapable of exercising his/her right, subject to proper legal proceedings and rules laid down under applicable laws.

CONTACT US

TFSPH welcomes feedback and questions on this Data Privacy Policy Statement. In the exercise of your rights pertaining to your personal information or to provide any feedback that you may have about our processing of personal information, you may get in touch with our Customer Service Hotline (7-757-8500) or send an email feedback@toyotafinancial.ph

If you have any questions, clarifications or concerns, you may also write to our Data Protection Officer at:

privacy@toyotafinancial.ph

Toyota Financial Services Philippines Corporation

32/F GT Tower International, Ayala Avenue,

corner HV dela Costa Street, Salcedo Village, Makati City 1226

TFSPH will make every reasonable effort to answer your questions and advise you of the steps we take to address your issues.

CHANGES TO OUR PRIVACY STATEMENT

We may modify or amend this privacy statement from time to time to keep up with any changes in relevant laws and regulations applicable to us or how we collect, use, protect, store, share or dispose of your personal information. Any relevant updates will be posted on the TFSPH website.

call_to_action_mockup call_to_action_mockup

Download today!

apple-store-btn google-play-btn
qr

Scan to download

You need to add cars to MY CARS first

This car has been added to MY CARS

This car is already on your list

You can only add up to 10 cars

Please select from the dropdown list

Can't uncheck all filters

Do you really want to clear the list?

You may attach a maximum of 5 files (JPG or PDF) with a total file size of 8MB.