Vietnam’s Ministry of Information and Communications has updated the Cybersecurity Law (PDF) to make it mandatory for tech giants and telecommunications companies to store user data within its borders, with entities in the country controlling the data. User data covered by cybersecurity laws is not limited to names, emails, credit cards, phone numbers, and IPs, but also to groups a user joins, social interactions, and more. Basically any data users create online must be stored in Vietnam. The law applies to telecommunications services, storing and sharing data, domain name services, e-commerce, online payments, social media, online gaming, messaging services, and voice or video calls, among others. The new rules will come into effect on October 1, 2022, and foreign tech companies have 12 months to comply. They are required to store data in Vietnam for at least 24 months and system logs for 12 months. After the grace period, the Vietnamese government reserves the right to ensure that companies comply with the law through investigations and data collection requests, as well as content removal orders.
This article is reprinted from: https://www.solidot.org/story?sid=72525
This site is for inclusion only, and the copyright belongs to the original author.