DATA PRIVACY
OVERVIEW
Vietnam’s Personal Data Protection Decree (Decree 13/2023) ushers in strict consent rules, cross‑border transfer restrictions, and heavy fines for non‑compliance. Foreign‑invested companies must align global data‑governance frameworks with Vietnam’s unique security and registration requirements. Henrison Law delivers pragmatic, business‑driven data‑privacy solutions that preserve compliance, enable innovation, and protect brand trust.
WHAT WE DO
- Map data flows and classify personal data to determine lawful processing bases and consent needs.
- Perform privacy gap assessments and Data Protection Impact Assessments (DPIAs) to identify and remedy compliance shortfalls.
- Draft and localise privacy notices, consent forms, internal data‑handling policies, cross‑border data‑transfer agreements, and third‑party processing contracts.
- Prepare and file mandatory registrations and Transfer Impact Assessments with the Ministry of Public Security; liaise with regulators on approvals.
- Design and implement data‑breach response plans, incident‑notification procedures, and evidence‑preservation protocols.
- Deliver employee training and executive workshops on data‑privacy obligations and cyber‑hygiene.
- Advise on cybersecurity standards, data‑localisation requirements, and sector‑specific IT security rules.
- Represent clients in regulatory inspections, investigations, and enforcement actions, negotiating remedial undertakings where necessary.
- Provide ongoing monitoring of legal developments, issuing privacy alerts and updating compliance frameworks to keep pace with change.
CONTACT OUR TEAM
