Privacy Policy

1. Basic attitude

To implement the Privacy Policy, the Company has established its internal rules and management systems relating to handling of personal data and deliberately anonymized data. The Company shall fully verse its workers, including without limitation officers, employees, contracted employees, part-timers and dispatched personnel, etc., and shall maintain and improve the rules and systems for the appropriate implementation of the Privacy Policy.

2. Appropriate management

( 1 ) The Company shall hold personal data within the scope required to achieve the intended use of such data. The Company shall make efforts to keep such data accurate and up-to-date.
( 2 ) The Company shall take measures to ensure the appropriate safety management of personal data, and shall make the necessary improvements to prevent the loss, leaking, destruction, alteration, etc. of personal data.

3. Specification of the purposes of utilizing personal data

( 1 ) The Company shall obtain personal data appropriately, fairly and in compliance with provisions of Vietnamese law. Necessary explanations such as the purposes of collection and utilization of personal data, etc. shall be clearly announced and the Company obtains consent from the data subjects on such purposes and other relevant matters before the Company receives personal data directly from customers, or shall be announced on its website.
( 2 ) The Company shall announce necessary explanations on its website, including the purposes of collection and utilization of personal data, when such data is received indirectly.

4. Compliance with the purposes of personal data utilization

( 1 ) The Company shall use personal data within the scope of the purposes announced on its website.
( 2 ) Should the Company use personal data beyond the purposes announced on its website, the Company shall in advance notify it to persons concerned and shall get their prior consent.

5. Disclosure to third parties

The Company may provide personal data to its group companies, partners, or other such parties, subject to the consent obtained from data subject or as required by laws, regulations, and other rules.

6. Supervision of the processor

When the Company entrusts the processing of personal data, etc. to a processor party, it shall supervise that party appropriately to ensure that the data, etc. is processed safely.

7. Disclosure and correction, etc. of retained personal data

The Company shall respond within the timeframe prescribed under law to requests to disclose, correct, or cease using retained personal data, or other requests relating to such data, after confirming the identity of the person making the request.

8. Handling of deliberately anonymized data

( 1 ) The Company shall announce on its website or elsewhere the necessary explanations required under laws, regulations or other rules when it produces or provides deliberately anonymized data.
( 2 ) The Company shall enact safety measures stipulated under in-house regulations regarding deliberately anonymized data.
Date of enactment 31st December 2017
Date of publication 31st December 2017