Personal data protection policy for customers of VMG Media Joint Stock Company and Subsidiaries of VMG Media Joint Stock Company (hereinafter referred to as "Policy") is for information purposes. Notify Customer of Customer's Personal Data collected by VMG Media Joint Stock Company (“VMG”) and/or by Subsidiaries with 100% charter capital of VMG (“VMG Subsidiaries” ) processing, processing purpose, processing method, storage period, Customer's rights and obligations regarding his/her Personal Data according to the provisions of Vietnamese law on personal data protection, etc. This Policy also provides recommendations to help Customers increase awareness of Personal Data protection.
This policy is an inseparable part of the Contracts, General Transaction Conditions, Terms and Conditions of using products and services of VMG/VMG Subsidiaries. This policy applies to all platforms including but not limited to: electronic information pages, interface channels, means, tools on websites/wapsite/applications of VMG/Subsidiaries of VMG. VMG, consulting and signing service provision contracts at telecommunications service provision points of VMG/VMG Subsidiaries, at the address designated by the Customer and/or at another location designated by the Customer. selected by VMG/Subsidiary of VMG.
To the extent permitted by law, VMG/VMG Subsidiaries may amend this Policy at any time and publicly post the adjusted Policy on VMG/VMG's official information channels. VMG subsidiary.
By checking the box "I have read and accepted" or "I agree to the Policy and Terms of Use of VMG/VMG Subsidiary" or by signing a contract with VMG/VMG Subsidiary with reference to this Policy (and amendments thereto), or by continuing to register, log in, use the website/wapsite/application of VMG/VMG Subsidiary or use the product, services of VMG/VMG Subsidiaries without any complaints regarding this Policy (and amendments thereto), Customer confirms that he has carefully read, understood and accepted all of its contents. VMG's Personal Data Protection Policy.
Article 1. Explanation of terms and abbreviations
Within the scope of this Policy, the following terms are understood and explained as follows:
1.1. VMG is the VMG Media Joint Stock Company.
1.2. VMG's subsidiaries are businesses whose charter capital is 100% owned by VMG.
1.3. Customers are:
- Individuals or legal representatives of individuals who use and/or are interested in products and services of VMG/VMG Subsidiaries;
- The individual or the legal representative of the individual has accessed and/or registered an account at websites/wapsite/applications owned by VMG/Subsidiary of VMG.
1.4. Products and services of VMG/VMG Subsidiaries are:
- Products and services directly researched, developed and provided to Customers by VMG or its Subsidiaries;
Article 2. Processing of Personal Data
1. VMG/VMG Subsidiary processes Personal Data in the following cases including but not limited to:
a) When the Customer or the Customer's legal representative contacts VMG/VMG's Subsidiary to request advice on products and services of VMG/VMG's Subsidiary or express interest in products and services of VMG/VMG Subsidiaries;
b) When the Customer signs a contract, registers, uses products and services of VMG/VMG Subsidiaries;
c) When Customers access and/or register accounts at websites/wapsite/applications for products and services of VMG/VMG Subsidiaries;
d) When the Customer agrees to provide personal data to VMG/VMG's Subsidiary through public sources, including but not limited to: website/wapsite/product and service application of VMG/Company VMG's children; meetings, events, seminars, conferences, social networks, or dialogue and discussion programs organized, sponsored or attended by VMG/VMG Subsidiaries and/or from archived files ( cookies) recorded on the website of VMG/Subsidiary of VMG;
e) When a customer of an organization or business allows that organization or business to share the customer's personal data with VMG/VMG Subsidiary;
g) Being a customer of an organization or business to which VMG/VMG's Subsidiary contributes capital and purchases shares; or are a customer of an organization or business that cooperates in providing products and services with VMG/VMG Subsidiary.
h) When requested by competent state agencies.
i) When VMG/VMG Subsidiary conducts work according to the purpose of processing Personal Data specified in Article 3 of this Policy.
2. Customer's personal data processed by VMG/VMG Subsidiary (hereinafter referred to as "Personal Data") includes but is not limited to the information below and is subject to change. Depending on the type of product or service, how the Customer interacts with VMG/VMG Subsidiary:
2.1. Basic personal data
a) Surname, middle name, birth name, other names (if any);
b) Date, month and year of birth; date, month, year of death or disappearance;
c) Gender;
d) Place of birth, place of birth registration, permanent residence, temporary residence, current residence, hometown, contact address;
d) Nationality;
e) Image of the individual;
g) Phone number, ID card number, personal identification number, passport number, driver's license number, license plate number, personal tax code number, social insurance number, insurance card number medical;
h) Marital status;
i) Information about family relationships (parents, children);
k) Information about individuals' digital accounts; Personal data reflecting activities and history of activities in cyberspace;
2.2. Sensitive personal data
a) Data on crimes and criminal acts are collected and stored by law enforcement agencies;
b) Customer information of credit institutions, foreign bank branches, payment intermediary service providers, and other authorized organizations, including: Customer identification information according to the provisions of law law, account information, deposit information, deposited asset information, transaction information, information about organizations and individuals that are guarantors at credit institutions, bank branches, organizations providing intermediary payment services;
c) Data about the individual's location determined through location services.
2.3. Other personal data does not belong to the groups of Basic Personal Data and Sensitive Personal Data specified in Clause 2.1 and Clause 2.2 of this Article.
a) Derivative personal data: Telecommunications credit score is expressed in the form of scores, which is rating information from the synthesis and analysis of customers' telecommunications service usage data to evaluate customers. , analyze and predict customers' habits, preferences, trust levels, credibility, behavior, trends... and other information, supporting the provision of products and services of customers. VMG/VMG Subsidiaries in the most appropriate and best way.
b) Other personal data arising during the process of VMG/VMG Subsidiaries providing products and services and during the process of Customers using products and services, interacting with product suppliers, service.
2.4. VMG/VMG's Subsidiary will notify the Customer of the Personal Data required to be provided and/or optionally provided at the time the Customer contacts, exchanges or registers, or signs a contract with VMG. /Subsidiary of VMG. If the required Personal Data is not provided as requested, the Customer will not be able to use some products and services of VMG/VMG Subsidiaries. In this case, VMG/VMG's Subsidiary may refuse to provide products and services to the Customer without incurring any compensation and/or penalty.
2.5. From time to time, Customers may voluntarily provide VMG/VMG's Subsidiaries with Personal Data beyond the request of VMG/VMG's Subsidiaries. When the Customer provides Personal Data beyond the requirements of VMG/VMG's Subsidiary, it means that the Customer only o allow VMG/VMG Subsidiaries to process Customer's Personal Data for the Purposes stated in this Policy or for the purposes stated at the time Customer provides such Personal Data. In addition, when Customers proactively provide information beyond the requirements of VMG/VMG Subsidiaries, Customers please do not provide sensitive personal data as prescribed by law from time to time. VMG/VMG's Subsidiaries will not process and bear no legal responsibility for sensitive Personal Data voluntarily provided by Customers beyond the request of VMG/VMG's Subsidiaries. VMG.
Article 3. Purpose of processing Personal Data
VMG/VMG Subsidiaries may process Customer Personal Data for one or more of the following listed purposes (“Purposes”):
1. Verify the accuracy and completeness of the information provided by the Customer; determine or authenticate the Customer's identity and perform Customer authentication procedures; Handling registration to use products and services of VMG/VMG Subsidiaries;
2. Evaluate the Customer's documents and eligibility to use products and services of VMG/VMG Subsidiaries. VMG/VMG Subsidiaries can use scoring methods, assign hot charge thresholds, check the history of customers using products and services of VMG/VMG Subsidiaries to evaluate and manage risks. credit risk, ensuring solvency for payment obligations and other related obligations throughout the process of providing products and services of VMG/VMG Subsidiaries to Customers;
3. Manage and evaluate business activities including designing, improving and enhancing the quality of products and services of VMG/VMG Subsidiaries or performing marketing communication activities; Carry out market research, surveys and data analysis related to products and services of VMG/VMG Subsidiaries; Research and develop new products, services, new supply models, etc. meet customers' needs;
4. Provide services to Customers, contact Customers to advise, exchange information, resolve requests, complaints, deliver invoices, statements, reports or other related documents. related to products and services of VMG/VMG Subsidiaries through various channels (eg email, chat) and to respond to Customer requests. Contact Customers (or other necessary parties) to notify Customers of information related to the use of products and services of VMG/VMG Subsidiaries.
5. Advertising and marketing based on Customers' interests and service usage habits: VMG/VMG Subsidiaries may use Personal Data to advertise and market to Customers about products , services of VMG/VMG Subsidiaries, promotions, research, surveys, news, updated information, events, contests with prizes, relevant prizes, advertisements Reports and related content about products and services of VMG/VMG Subsidiaries or of partners cooperating with VMG/VMG Subsidiaries.
In case the Customer does not want to receive periodic emails, text messages and/or newsletters for advertising and marketing purposes from VMG/VMG Subsidiaries with a frequency depending on the Policy of VMG/VMG Subsidiaries From time to time and in accordance with legal regulations, Customers can refuse in the manner instructed by VMG/VMG Subsidiaries on channels and means such as SMS, calls, traces on website/wapsite/application etc. or contact the VMG Customer Service Hotline/VMG Subsidiary;
6. Prepare financial reports, activity reports or other related reports as prescribed by law;
7. Comply with legal obligations as prescribed by law;
8. Prevent fraud or minimize threats to the lives, health of others and public interests: VMG/VMG Subsidiaries may use Customer's personal information to prevent and detect fraud and abuse to protect Customers, VMG/VMG Subsidiaries and related entities;
9. Internal administration;
10. Other purposes related to the purposes mentioned above.
Article 4. How Personal Data is processed
VMG/VMG Subsidiaries apply one or more activities affecting Personal Data such as: collection, recording, analysis, validation, storage, correction, disclosure, combination, access, retrieval export, retrieve, encrypt, decrypt, copy, share, transmit, provide, transfer, delete, destroy Personal Data or other related actions.
Article 5. Start time and end time of data processing
1. Time to start data processing
From the time the Purposes specified in Article 3 of this Policy arise.
2. End time of data processing
VMG/VMG Subsidiaries terminate the processing of Personal Data when the Purposes specified in this Policy have been completed, unless otherwise required by law or the Customer withdraws consent to the processing of Data. personal data or when requested in writing by a competent state agency.
Article 6. Sharing of Personal Data
By accepting this Policy, Customers understand and agree that VMG/VMG Subsidiaries may share Customer's Personal Data with the following organizations and individuals to carry out the specified Purposes. at Policy, specifically:
1. VMG, Subsidiary of VMG, affiliated company of VMG, affiliated company of Subsidiary of VMG;
2. Third parties providing services or partners in business cooperation contracts (with or without profit sharing): VMG/VMG's subsidiaries use and/or cooperate with other companies and individuals to carry out a number of tasks and programs such as advertising and promotional programs for customers, market research, product analysis and development, strategic consulting, providing fare collection service etc. These Third Party service providers and/or partners have the right to access, collect, use and process Customer Personal Data to the extent permitted by VMG/VMG Subsidiaries to do so. their functions and must comply with personal Data protection laws as a Data Processor;
3. Business restructuring: During the business development process, VMG/VMG Subsidiaries may sell or buy businesses or restructure businesses in accordance with legal regulations and production needs. business. In such transactions, Personal Data will be transferred and the transferee will remain subject to the provisions of this Policy;
4. VMG/VMG Subsidiaries are allowed to disclose Personal Data as required by law or by competent state management agencies;
5. VMG/VMG Subsidiaries are allowed to disclose Personal Data to other telecommunications businesses to serve the purpose of calculating rates, billing and preventing acts of evading contractual obligations. of cutomer.
Article 7. Customer Rights
1. Right to Know and Right to Consent
By means of this Policy, VMG/VMG Subsidiaries notify Customers about the processing of Personal Data before processing Personal Data. At the same time, Customers have the right to agree or disagree with the terms and conditions of this Policy in the manner instructed by VMG/VMG's Subsidiaries on channels and means such as SMS, phone calls, etc. call, traces on website/wapsite/application etc. or contact the customer care hotline of VMG/VMG Subsidiary;
2. Right to access and request provision of Personal Data
Customers have the right to access applications/websites/wapsite of VMG/VMG Subsidiaries and/or contact VMG/VMG Subsidiaries directly to view and extract Personal Data that Customers provided to VMG/VMG Subsidiaries for the Purposes specified in this Policy.
In case the Customer cannot access, extract or has difficulty accessing or extracting Personal Data, the Customer can contact VMG/VMG Subsidiaries for support.
3. Editing rights
Customers have the right to edit their Personal Data provided that this correction does not violate the provisions of law. In case the Customer cannot edit or has difficulty editing Personal Data, the Customer can contact VMG/VMG Subsidiaries for support.
4. Right to object, restrict, withdraw consent to data processing
a) The Customer has the right to object, restrict or withdraw consent to the processing of the Customer's Personal Data. However, objecting, restricting or withdrawing consent to process Customer's Personal Data in some cases may result in VMG/VMG Subsidiaries being unable to provide Products and services. for the Customer, this means that VMG/VMG Subsidiaries can unilaterally terminate the contract without having to compensate the Customer because the conditions for performing the contract have changed. Therefore, VMG/VMG Subsidiaries recommend that Customers consider carefully before objecting, restricting or withdrawing consent to process Customer Personal Data.
b) In case the Customer wants to limit receiving marketing, advertising and promotional content from VMG/VMG Subsidiaries and wants to withdraw previous consent (if any) and/or object to continued use personal information for the purposes specified in Clause 5, Article 3 of this Policy, Customers please follow the instructions of VMG/VMG Subsidiaries at the time VMG/VMG Subsidiaries collect Personal data or contact VMG/VMG Subsidiaries according to the information provided in this Policy. If Customer does not want to receive notifications from VMG/VMG Subsidiaries' applications, please adjust the notification settings in your application or device.
5. Right to erasure of Personal Data
Customers have the right to request VMG/VMG Subsidiaries to delete Customer's Personal Data provided that the Customer's request is in accordance with the provisions of law. However, requests to delete Customer's Personal Data in some cases may result in VMG/VMG's Subsidiaries being unable to provide Products and services to Customers, which means that VMG /VMG's subsidiary can unilaterally terminate the contract without having to compensate the Customer because the conditions for performing the contract have changed. Therefore, VMG/VMG Subsidiaries recommend that Customers consider carefully before requesting VMG/VMG Subsidiaries to delete Personal Data.
6. Right to complain, denounce and sue
Customers have the right to complain, denounce or sue according to the provisions of law
7. Right to claim compensation for damages
Customers have the right to request VMG/VMG Subsidiaries to compensate for damages according to the provisions of law when violations of regulations on personal data protection occur when the following conditions are simultaneously satisfied:
- There are violations of legal regulations on personal data protection of VMG/VMG Subsidiaries;
- The above violations lead to actual damages incurred for the Customer;
- The Customer has fully fulfilled its obligations to protect its Personal Data in accordance with the law, this Policy and other agreements between VMG/VMG Subsidiaries and the Customer.
8. Right to self-defense
Customers have the right to protect themselves according to the provisions of the Civil Code, other relevant laws and Decree 13/2023/ND-CP on the protection of Personal Data (and accompanying amendments), or request Request competent agencies and organizations to implement methods to protect civil rights as prescribed in Article 11 of the Civil Code.
Article 8. Customer's obligations
Customers are responsible for protecting their Personal Data as follows:
1. Proactively take measures to protect, manage and safely use your accounts and mobile devices (including but not limited to smartphones, computers, tablets, laptops, etc. ) by logging out of your account after use, setting a strong and hard-to-guess password, and keeping your login information and password secret. The above measures to protect and manage the safe use of accounts and mobile devices help prevent unauthorized access to Customer accounts. VMG is excluded from liability for the Customer's damages in case the Customer's password is revealed/lost, or has its password stolen, leading to unauthorized access to the account, or any activity on the account. of the Customer using the mobile device is lost or misplaced, leading to unauthorized people using the service arbitrarily, or VMG's system being illegally violated by a third party even though VMG has done so. full measures to protect the system;
2. Customers are responsible for updating documents adjusting this Policy (if any) on official information channels of VMG/VMG Subsidiaries;
3. Once accepting all terms and conditions of this Policy, the Customer is responsible for providing complete and accurate Personal Data as requested by VMG/VMG Subsidiaries and is responsible for Notify VMG/VMG Subsidiaries immediately upon discovering violations of regulations on personal data protection. Customers can proactively provide Personal Data beyond the request of VMG/VMG Subsidiaries provided that Customers must comply with the provisions of Clause 2.5, Article 2 of this Policy;
4. Customers are responsible for respecting the Personal Data of other subjects and implementing the law on personal data protection, participating in preventing and combating violations of data protection regulations. individual.
Article 9. Storage of Personal Data
1. Customer's personal data stored by VMG/VMG Subsidiaries will be kept confidential. VMG/VMG Subsidiaries shall, within its capabilities, endeavor to take reasonable measures to protect Customer Personal Data.
2. Storage location of Personal Data
To the extent permitted by law, VMG/VMG Subsidiaries may store Customer Personal Data in Vietnam and abroad, including on cloud storage solutions. VMG/VMG Subsidiaries apply data security standards in accordance with current legal regulations.
3. Storage period of Personal Data
VMG/VMG Subsidiaries only store Customer Personal Data for the period of time necessary and reasonable to fulfill the Purposes specified in this Policy. However, in case the applicable law has different provisions on the period of storage of Personal Data, VMG/VMG Subsidiaries are obliged to comply with the provisions of the law.
Article 10. Obligations of VMG/VMG Subsidiaries
1. Customer's personal data is committed to confidentiality in accordance with the law and the Personal Data Protection Policy of VMG/VMG Subsidiaries.
2. VMG/VMG Subsidiaries endeavor to ensure that Customer's Personal Data is protected from violations of regulations on personal data protection. VMG/VMG Subsidiaries remain committed to securing Personal Data by applying physical, electronic and managerial measures to protect Personal Data, including:
a) VMG's official website servers and information systems containing VMG's personal data are protected by security measures and technologies such as firewalls, encryption, and anti-intrusion protection. illegal etc.; promulgate human control measures, develop inspection, evaluation and review processes to prevent violations of regulations on personal data protection.
b) VMG will take all appropriate measures to ensure that Customer Personal Data is processed in accordance with the stated Purposes. VMG/VMG Subsidiaries will at all times comply with legal requirements relating to the storage of Personal Data.
3. Carry out Customer's requests related to Customer's personal data provided that Customer's requests must comply with the provisions of law.
4. Other obligations as prescribed by law and this Policy.
Article 11. Unwanted consequences and damage are likely to occur
1. VMG/VMG Subsidiaries use many different information security measures and technologies to protect Customer's Personal Data from being used or shared unintentionally. VMG/VMG Subsidiaries are committed to ensuring maximum security of Customer's personal data. Some unwanted consequences and damages that may occur include but are not limited to:
a) Hardware and software errors during the processing of Personal Data cause unwanted effects (error, damage, loss, etc.) of Customer's personal data;
b) Security holes are beyond the control of VMG/VMG Subsidiaries, the system is attacked by hackers, causing the Customer's personal data to be exposed;
c) Customers self-disclose Customer's personal data due to: carelessness or fraud; accessing websites/downloading applications containing malware; voluntarily share information with others, etc.
2. VMG/VMG Subsidiary recommends that Customers strictly implement their Personal Data protection responsibilities as prescribed in Article 8 of this Policy and according to the provisions of law.
3. In case the data storage server is attacked by hackers leading to loss of Customer's personal data, VMG/VMG Subsidiary is responsible for reporting the incident to the competent authority for investigation and handling. promptly and notify customers.
Article 12. Use of cookies
1. Cookies may be used on the website of VMG/VMG Subsidiaries. “Cookies” are small text files saved on the Customer's computer hard drive to help customize the website experience for users. VMG/VMG Subsidiaries use cookies to make website navigation easier and facilitate the login process. Statistical data on the website of VMG/VMG Subsidiaries may be processed by third parties, and therefore the IP address of the Client when accessing the website will be transmitted to third parties only for statistical reporting purposes.
2. When collecting information through the website of VMG/VMG Subsidiaries, VMG/VMG Subsidiaries automatically collect non-personal, non-identifying information but related to the use of information. Website usage includes, but is not limited to: personal computer IP address, Internet service provider IP address, date and time of website access, operating system, items accessed on the website , the content downloaded from the website and the website address directly led the Customer to the website of VMG/VMG Subsidiary. VMG/VMG Subsidiaries may use this information for statistical reports on website traffic and website usage behavior.
3. In case the Customer does not want to allow the use of cookies, the Customer can refuse by changing the privacy settings on the web browser. Refusing to allow the use of cookies has virtually no effect on website navigation. However, some website functions may be affected. After completing the website visit, Customers can still delete cookies from the system if they wish.
Article 13. Advertising on the internet and third parties
VMG/VMG Subsidiaries' websites/wapsite/applications may include third-party advertisements and links to other websites/wapsite/applications. Third-party advertising partners may collect information about Customers when Customers interact with their content, advertising or services. Any access to and use of third party links or websites is not governed by this Policy, but instead is governed by the Privacy Policies of those third parties. VMG/VMG Subsidiaries are not responsible for the information practices of third parties.
Article 14. Processing of Personal Data without the consent of the data subject
VMG/VMG Subsidiaries may process Personal Data without the consent of the data subject in the following cases:
1. In case of emergency, it is necessary to immediately process relevant Personal Data to protect the life and health of the data subject or other people;
2. Disclosure of Personal Data as prescribed by law;
3. Data processing by competent state agencies in case of emergency situations related to national defense, national security, social order and safety, major disasters, dangerous epidemics; when there is a threat to security and national defense but not to the extent of declaring a state of emergency; prevent and combat riots, terrorism, prevent and combat crimes and violations of the law according to the provisions of law;
4. To perform the data subject's contractual obligations with relevant agencies, organizations and individuals according to the provisions of law;
5. Serving the activities of state agencies as prescribed by specialized laws.
Article 15. Contact information
If you have any questions about this Policy or wish to exercise your rights regarding Personal Data, please contact VMG/VMG Subsidiaries using the following methods and information: down here:
1. Contact the switchboard according to the information on the official websites/wapsite/applications of VMG/VMG Subsidiaries from time to time.
2. Send official dispatches to the following addresses:
a) VMG Media Joint Stock Company (VMG): at 6th floor PEAKVIEW Building, 36 Hoang Cau Street, O Cho Dua Ward, Dong Da District, Hanoi.
b) VMG Media Joint Stock Company - HCM Brand: at VMG Building, 96-98 Dao Duy Anh, 9 Ward, Phu Nhuan District, Ho Chi Minh city.
3. Contact directly at transaction points of VMG/VMG Subsidiaries nationwide.
4. Other contact methods such as Livechat, contact via the official fanpage of VMG/VMG Subsidiary, Customer care email are provided to Customers at all times.
Products belonging to the ecosystem