1. Information collection
Service information collection: Customer information, service usage information, and other information from affiliated sources.
Customers agree that we may collect and store customers’ information.
We are committed to collecting only necessary information and to the minimum extent to serve the purposes specified in Part 2 of this Policy.
2. Use of information
Purpose of use of information
Information is used for the purpose of providing services to the Customers, specifically:
- Manage and grant permission for use of Services; Send notifications to Customers in case there are changes to the Services.
- Send notifications to remind Customers of registering, upgrading products, or renewing services when the Service term is about to expire.
- Carry out after-sales customer care and support activities.
- Communicate and resolve complaints.
Information update, modification, and deletion
We update, modify, and delete the currently stored Information upon Customer’s request from time to time. However, the deletion, modification, restriction, or termination of the right to process Information may lead to changes and limitations to the use of relevant Services that we provide to the Customers.
Transfer of Information to third parties
The Information may be transferred to our affiliates and subcontractors. When doing so, we are committed to transffering the Information to the above-mentioned third parties only for the purposes specified in Part 2 of this Policy. The third parties receiving the Information will be required to sign Information safety commitment, the contents of the commitment comply with the provisions of this Policy.
3. Information protection
Methods of protection
We establish and maintain an internal network information security and safety system to minimize the impacts, loss, leakage, unauthorized access or use of Information during the process of Information handling, meanwhile, build incident response and information system restoring plans in case unexpected incidents occur. Our Information Storage Center is compliant with international standards and certificates on quality and information security, specifically:
- ISO 9001:2015 on Quality Management System;
- ISO 27001:2013 on Information Security Management System;
- ISO 22301:2012 on Business Continuity Management.
Notifications
- We provide Customers the rights to access and make reasonable edits to the Customer Information page.
- In case of a breach or loss of Information security, we will immediately notify the Information owner and competent state agencies in order to minimize possible loss and damage.
4. Waivers
Our commitments under this Policy do not apply where the use and disclosure of Information is for the purpose of complying with relevant laws and upon legal requests of competent state agencies to ensure national security, or protect the legitimate rights and interests of Customers. In case the Information is used and disclosed for the aforementioned purposes, we will immediately notify the Customer. Meanwhile, we ensure that the use and disclosure of Information will be done in a confidential manner.
5. Governing law and validity
This Policy is construed and governed by Vietnamese laws.
This policy is valid from June 1, 2021, and may subject to changes and updates from time to time.
