Financial Crime World

Here is the converted article in markdown format:

Vietnam Cracks Down on Cross-Border Data Transfer

Hanoi - The Vietnamese government has announced new measures to regulate the transfer of personal data across borders, citing concerns over data security and sovereignty.

Revised Personal Data Protection Decree (PDPD)

Under the revised PDPD, organizations processing personal data of Vietnamese citizens must submit a Transborder Information Flow Notification (TIA) to the competent authority before transferring such data overseas. The TIA must be made available for inspection at all times and any changes to its contents must be submitted within 10 days.

  • Organizations must submit a TIA notification before transferring personal data across borders
  • TIA must be available for inspection at all times
  • Any changes to the TIA content must be submitted within 10 days

Data Localization Requirements

Certain businesses providing services in Vietnam may be subject to data localization requirements, which mandate that they store personal data of Vietnamese citizens on servers located within the country.

  • Businesses providing services in Vietnam may be required to store personal data on servers within the country
  • Data localization requirements aim to ensure the security and confidentiality of personal data

Cybersecurity Law and Decree 53

The Cybersecurity Law and Decree 53 specify that domestic and foreign organizations providing telecoms and online services to customers in Vietnam must store certain customer-related data in Vietnam for a specified period. The types of data required to be stored include:

  • Personal information
  • Data created by service users
  • Data on relationships between service users

Foreign enterprises engaging in these services may also be required to establish branches or representative offices in Vietnam if their online platforms are used to commit violations of Vietnamese laws.

Importance of Data Security and Confidentiality

The government has emphasized the importance of ensuring the security and confidentiality of personal data, requiring organizations to take necessary managerial or technical measures to prevent loss, theft, disclosure, modification, or destruction of such data.

  • Organizations must take necessary measures to ensure the security and confidentiality of personal data
  • Measures include managerial and technical controls to prevent data breaches

Reaction from Privacy Advocates

The revised PDPD and data localization requirements have been welcomed by privacy advocates, who had long called for stronger protections against cross-border data transfer.

  • “Vietnam has taken a crucial step towards ensuring the protection of personal data,” said Vu Dinh Anh, a prominent cybersecurity expert
  • The regulations will help prevent unauthorized access to sensitive information and maintain trust in our digital economy

Effective Date

The new regulations come into effect on [insert date], giving organizations time to comply with the new requirements.

Related Articles

  • Vietnam’s Cybersecurity Law: What You Need to Know
  • Protecting Personal Data in the Digital Age

Contact Us

For more information or to request an interview, please contact our team at [insert contact information].