Regulations on the use of information and ensuring the safety and security of consumer information

iGuide Stories

Regulations on sUse information and Ensuring the safety and security of consumer information

This article helps you understand more about regulations regarding the use of information and ensuring the safety and security of consumer information. These regulations not only protect privacy but also ensure data safety in the digital environment.

According to Article 18 of Law BProtecting the rights of consumers stipulates that sUse consumer information as follows:

1. Use of consumer information

1. Before business organizations or individuals change the purpose or scope of use of information that has been notified to consumers, they must re-notify and obtain consumers' consent to the change.

2. The use of consumer information specified in this Law includes sharing, disclosing and transferring consumer information to third parties.

3. Business organizations and individuals must use consumer information accurately, in accordance with the announced purpose and scope and must obtain the consent of the consumer, except in the following cases:

a) Have a separate agreement with consumers on the purpose and scope of use other than the announced purposes and scope;

b) To sell and provide products, goods and services at the request of consumers and only within the scope of information agreed by consumers;

c) To perform obligations according to the provisions of law.

4. Business organizations and individuals that collect and use consumer information must have a mechanism for consumers to choose whether or not to allow the following acts:

a) Sharing, disclosing, transferring information to third parties, except in cases where organizations or individuals do business or transfer information that has been collected in accordance with the provisions of this Law and other provisions of law related to a third party for storage or analysis to serve the transferor's business activities and the two parties have a written agreement that the third party is responsible for protecting consumer information according to regulations. in this Law;

b) Using consumer information to advertise and introduce products, goods, services and other commercial activities.

2. Ensuring the safety and security of consumer information

1. Business organizations and individuals must ensure the safety and security of consumer information that they collect, store, and use and take measures to prevent the following acts:

a) Stealing or illegally accessing information;

b) Using information illegally;

c) Unauthorized editing, updating, or destruction of information.

2. Business organizations and individuals must receive and resolve feedback, requests, and complaints from consumers related to information being illegally collected, used for the wrong purpose, and within the notified scope. .

3. In case the information system is attacked, creating a risk of loss of information safety and security of consumers, organizations, business individuals or relevant information storage parties must notify the relevant agency. Competent state management agency within 24 hours from the time of discovering that the information system has been attacked and take necessary measures to ensure the safety and security of consumer information according to regulations. provisions of law on network security and information security networks, electronic transactions and other relevant laws.