image

Internet

Vietnam could give tech companies one year to obey new cybersecurity law

  • Bill would require tech companies to store data in the country, remove ‘toxic content’ from websites and hand over user information if asked
  • Any country in breach of the law could be barred from offering its services – from online payment systems to social networks – in Vietnam
PUBLISHED : Saturday, 03 November, 2018, 9:50pm
UPDATED : Saturday, 03 November, 2018, 9:50pm

Vietnam may give internet companies like Google and Facebook one year to comply with a controversial cybersecurity law, according to a draft decree that outlines how the draconian rule could be implemented.

The cybersecurity bill, which observers say mimic China’s repressive web control tools, is set to come into effect in January despite drawing sharp criticism from the US, the EU and internet freedom advocates.

The bill would require tech companies to store data in the country, and remove “toxic content” from websites and hand over user information if asked by the government to do so.

Critics of the bill say it will be a chokehold on criticism in the one-party state where activists have been imprisoned and independent media banned.

According to a draft decree published by the Ministry of Public Security on Friday, companies offering internet services in Vietnam may be given 12 months to comply.

Vietnam activists urge Facebook chief Zuckerberg to stop ‘aggressive practices’ of censoring content

“Enterprises … must archive data [and] set up branches or representative offices in Vietnam,” the decree said.

It did not outline the punishment for failing to comply, but any country in breach of the law could be barred from offering its services in Vietnam.

An enterprise can mean internet service providers, e-commerce sites, online payment firms and social networks.

The draft decree added that companies must store user data in the country for at least 36 months.

Personal data required to be stored includes everything from a user’s name to passport number, medical records, credit card information and biometric data.

How cybersecurity and data storage laws could pull the plug on Southeast Asia’s digital economy

Google declined to comment on Saturday, while Facebook did not immediately respond to a request from Agence France-Presse.

The public has two months to provide feedback on the decree, in line with Vietnamese law.

The law was passed by Vietnam’s parliament in June, part of a broader crackdown on internet freedom that has sparked complaints from the country’s activists.

This week, the government said it had set up a web monitoring unit that can scan up to 100 million items a day to sniff out “false information”. A few days later officials said 3,000 sites featuring “inappropriate content” had been blocked.