Description

Implemented Notice of violation of personal data protection regulations (Decision No. 4660/QD-BCA-A05)

On 4 July 2023, the Ministry of Public Security enacted Decision No. 4660/QD-BCA-A05, which pertains to the notification of violations of personal data protection regulations (Form No. 03). The aforementioned notification must be submitted to the Cyber Security and High-Tech Crime Prevention Department, which is under the authority of the Ministry of Public Security. The document delineates the procedures for organisations and individuals to report infringements of personal data protection regulations, including the utilisation of the National Portal for Personal Data Protection. The document stipulates that reports must be submitted within 72 hours of the discovery of a breach and provides a reference to the Decree on Protection of Personal Data (No. 13/2023) for the types of personal data, including basic and sensitive data, and the responsibilities of data controllers and processors. The legal basis for this document is Article 23 of Decree 13/2023.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Data protection regulation
Regulated Economic Activity
cross-cutting
Implementation Level
national
Government Branch
executive
Government Body
data protection authority

Complete timeline of this policy change

Hide details
2023-07-04
in force

On 4 July 2023, the Ministry of Public Security enacted Decision No. 4660/QD-BCA-A05, which pertain…

We use cookies and other technologies to perform analytics on our website. By opting in, you consent to the use by us and our third-party partners of cookies and data gathered from your use of our platform. See our Privacy Policy to learn more about the use of data and your rights.