ISOFHCARE Information Privacy Policy

Privacy Policy of IVIE Bác Sĩ Ơi App

Article 1. Definition of Terms

The terms used in these Terms and Conditions for the Protection of Personal Data (“Terms and Conditions”) are understood as follows:

1. Data Recipient: Refers to ISOHFCARE Co., Ltd. (ISOFHCARE).

2. Data Provider: Refers to the individual(s) or organization(s) that provide personal data to the Data Recipient.

3. Data Subject: Refers to the individual whose Personal Data is being referenced.

4. Personal Data: Refers to personal information displayed in the form of symbols, letters, numbers, images, sounds, or similar forms in an electronic environment that are associated with or help identify a specific individual. Personal Data includes both Basic Data and Sensitive Data. Personal Data may include the personal data of the Data Provider or the personal data of another individual legally authorized by the Data Provider, in accordance with the provisions of these Terms and Conditions.

5. Basic Data includes:
a) Full name, middle name, and birth name, other names (if any);
b) Date of birth, date of death or disappearance;
c) Gender;
d) Place of birth, place of birth registration, permanent residence, temporary residence, current address, hometown, contact address;
e) Nationality;
f) Image of the individual;
g) Phone number, identity card number, personal identification number, passport number, driver's license number, vehicle registration number, personal tax code, social insurance number, health insurance card number;
h) Marital status;
i) Family relationships (parents, children);
k) Information about personal account numbers; personal data reflecting activities or activity history in cyberspace.

l) Other information associated with a specific individual or that helps identify a specific individual, which is not covered under Clause 6 of this Article.

6. Sensitive Data: This refers to Personal Data linked to an individual's privacy, which, if violated, directly affects their legal rights and interests, including:
a) Political opinions, religious views;
b) Health conditions and private life recorded in medical records, excluding blood group information;
c) Information related to racial and ethnic origins;
d) Information about inherited or acquired genetic traits of an individual;
e) Information about an individual's physical attributes and unique biological characteristics;
f) Information regarding an individual's sexual life and sexual orientation;
g) Data on criminal activities or offenses collected and stored by law enforcement agencies;
h) Customer information from credit institutions, foreign bank branches, intermediary payment service providers, or other authorized organizations, including customer identification information as per legal regulations, account information, deposit information, asset information, transaction information, and information regarding individuals or organizations acting as guarantors at the credit institution, foreign bank branches, or intermediary payment service providers;
i) Personal location data identified through location services;
k) Other Personal Data as prescribed by law that requires special security measures.

7. Personal Data Processing: Refers to one or more activities related to Personal Data, including but not limited to the collection, recording, analysis, verification, storage, modification, publication, combination, access, retrieval, recovery, encryption, decryption, copying, sharing, transmission, provision, transfer, deletion, destruction of personal data, or other related actions.

8. Third Party: Refers to individuals or organizations outside of ISOFHCARE and the Data Provider who are permitted to Process Personal Data in accordance with the law. This includes but is not limited to:
(i) The parent company of ISOFHCARE;
(ii) Subsidiaries, affiliates, branches, representatives, agents, contractors, or representatives of the parent company of ISOFHCARE, subsidiaries of the parent company, and ISOFHCARE itself;
(iii) Auditors, legal/tax/accounting insurance/valuation consultants of the parent company and ISOFHCARE;
(iv) System suppliers to ISOFHCARE and those who install and maintain such systems;
(v) Competent authorities in Vietnam or elsewhere;
(vi) Any legal organizations, partners, suppliers, and other third parties required by law, regulations, court orders, government actions, or required by the internal policies of ISOFHCARE or its parent company for the purpose of Personal Data Processing as stated in these Terms and Conditions.

9. Cross-Border Transfer of Personal Data: Refers to the activity of using cyberspace, electronic devices, or other means to transfer Personal Data to a location outside the territory of the Socialist Republic of Vietnam or using a location outside the territory of the Socialist Republic of Vietnam to process Personal Data when the individual is a Vietnamese citizen.

**10. To avoid misunderstanding, all terms "as prescribed by law" and "as prescribed by ISOFHCARE" in these Terms and Conditions shall be understood as being in accordance with the regulations at the time.

**11. In these Terms and Conditions, references to a defined concept in this Article shall be understood as referring to one or simultaneously several concepts and/or actions as described in each definition.

Article 2. Principles of Application

1. These Terms and Conditions govern the relationship between the Data Provider and ISOFHCARE concerning the provision of Personal Data, the Processing of Personal Data, and the protection of Personal Data during transactions with ISOFHCARE, including from the stage of access, registration, through to maintenance, use, and termination of transactions. These Terms and Conditions constitute the prerequisites for the Parties to establish and/or maintain transactions.

2. The Data Provider is responsible for carefully reading the content of these Terms and Conditions before selecting Agree or Disagree. By selecting Agree, the Data Provider acknowledges having read, fully and thoroughly explained, and fully agrees with the contents of these Terms and Conditions. In the case of Disagree, ISOFHCARE will (i) refuse to establish a transaction and/or (ii) reserve the right to unilaterally terminate ongoing transactions with the Data Provider and request compensation for any damages (if applicable) if ISOFHCARE reasonably assesses that the Data Provider's refusal to select Agree has caused or potentially causes legal violations and/or damages to ISOFHCARE.

3. These Terms and Conditions, from the effective date, constitute a unified agreement, inseparable and with the same legal value as any contracts or agreements ISOFHCARE has, is, or will conclude with the Data Provider (if any) related to conducting transactions. Additionally, these Terms and Conditions serve as ISOFHCARE's legal notice regarding the Processing of Personal Data in accordance with the law without requiring any further notification to the Data Subject.

4. These Terms and Conditions may be amended, supplemented, or replaced periodically to ensure compliance with legal regulations and ISOFHCARE's policies. Any amendments, supplements, or replacements of these Terms and Conditions shall be made into a legally valid agreement form as ISOFHCARE determines, including but not limited to forms such as paper agreements, electronic terms and conditions, text messages, and/or other legal forms. The Data Provider is responsible for clearly expressing their consent as required by ISOFHCARE depending on the agreement form, including but not limited to signing for confirmation, selecting Agree, agreeing via text message, or another legal action. Any reference to these Terms and Conditions is understood to include all amendments, supplements, or replacements mentioned above.

For clarity, the amendments, supplements, or replacements of these Terms and Conditions are also prerequisites or necessary conditions for the Data Provider to establish or continue to maintain a transaction with ISOFHCARE. If the Data Provider does not express their agreement under this Clause with the corresponding contents, ISOFHCARE reserves the right to apply the measures (i) and/or (ii) as specified in Clause 2 of this Article.

5. The Data Provider agrees that these Terms and Conditions are concluded voluntarily, without coercion, and the content and form of these Terms and Conditions are clear, transparent, and comply with the law.

6. In the event of any conflict concerning the Processing of Personal Data and protection of Personal Data between these Terms and Conditions and any contracts or agreements ISOFHCARE has entered into with the Data Provider and/or Data Subject, the content of these Terms and Conditions shall take precedence.

Article 3. Commitments of the Data Provider

By this Terms and Conditions Document, the Data Provider commits to:

1. Agree to allow ISOFHCARE to carry out one or multiple Personal Data Processing activities simultaneously (including but not limited to the collection, recording, analysis, confirmation, storage, editing, disclosure, combination, access, retrieval, recovery, encoding, decoding, copying, sharing, transferring, providing, transferring, deleting, destroying personal data, or other related actions), specifically:

   a) The Personal Data processed includes all Basic Data and Sensitive Data that ISOFHCARE has lawfully collected from any information source, including but not limited to (i) Data Provider's declaration, provision, or disclosure to ISOFHCARE in any form and through any transaction or action conducted between ISOFHCARE and the Data Provider, (ii) purchasing from organizations and individuals storing and trading personal information as permitted by law, (iii) collecting from publicly available information sources, (iv) obtaining from ISOFHCARE's partners during the implementation of business activities including but not limited to service providers, third parties conducting surveys, marketing, credit scoring, fraud ranking, infrastructure and technical support; (v) obtaining from any third party connected to the Data Provider/Data Subject, including but not limited to employers, employees, shareholders, co-owners of accounts, partners of the Data Provider/Data Subject; (vi) obtaining from recording and filming activities that ISOFHCARE is permitted to conduct according to legal regulations or for purposes related to ISOFHCARE's business operations; and (vii) obtaining from state authorities with appropriate jurisdiction according to legal regulations.

   The Personal Data may have been collected by ISOFHCARE before or will be collected after the effective date of this Terms and Conditions Document. The processed Personal Data may directly or indirectly relate to the purpose of Personal Data Processing stated in Point (b) of this Clause;

   b) The processing of Personal Data aims to maintain, provide, and/or establish (transactions) between ISOFHCARE and the Data Provider, including but not limited to (i) research, evaluation, analysis of information by ISOFHCARE or third parties authorized/legally contracted by ISOFHCARE to enhance user experience, measure demand, improve service quality, resolve difficulties, handle technical incidents, system errors, and any other tasks related to executing transactions, whether such transactions have, are, or will be conducted with the Data Provider; (ii) serving auditing activities, providing, exchanging internal and external information of ISOFHCARE related to risk management, compliance, control, dispute handling, complaints, support, and reporting of ISOFHCARE; (iii) complying with ISOFHCARE's internal regulations and policies; (iv) marketing, introducing, advertising ISOFHCARE's products and services to the Data Provider; and (v) any other purposes in accordance with or required by law.

   Additionally, the Data Provider agrees that the processing of Personal Data may be conducted for certain purposes regardless of whether it is related to maintaining, providing, and/or establishing (transactions) between ISOFHCARE and the Data Provider, including but not limited to (vi) performing necessary actions according to legal regulations to fulfill ISOFHCARE's obligations to state authorities or complying with directions, instructions, or requests issued by these authorities;

   (vii) performing and complying with agreements, contracts of ISOFHCARE with third parties and/or any partners, entities engaged in transactions with ISOFHCARE; (viii) detecting, preventing, and investigating crimes or any acts of fraud, money laundering, terrorist financing, corruption, or tax evasion.

   The Data Provider has been informed and fully understands that the processing of Personal Data may be applied simultaneously for multiple purposes. The (purposes) not listed in detail (if any) but covered under the provisions of this Point and this Terms and Conditions Document are recognized by the Data Provider as legitimate purposes and meet the conditions for the Data Provider's consent according to legal regulations;

   c) The processing of Personal Data may be directly conducted by ISOFHCARE or through third parties legally according to legal regulations and ISOFHCARE's provisions. ISOFHCARE has the right to proactively choose third parties and/or negotiate, sign contracts, or agreements regarding the processing of Personal Data without needing any further approval from the Data Provider. The Data Provider agrees that third parties have rights and obligations corresponding to ISOFHCARE under the provisions of this Terms and Conditions Document and in accordance with legal regulations;

   d) The Data Provider agrees to grant an irrevocable and unconditional authorization to ISOFHCARE to act on behalf of the Data Provider to carry out necessary procedures (if any) in the event of processing Personal Data through third parties as stipulated in Clause (c) of this Article, including but not limited to signing documents, sending notification confirmations of the Data Provider's consent to allow processing of Data to the third party;

   e) Agree that ISOFHCARE may proactively decide on the forms of processing Personal Data to achieve maximum effectiveness in fulfilling the purpose stated in Point (b) of this Clause, including but not limited to automated processing of Personal Data through electronic means to evaluate, analyze, predict the behavior of Data Subjects such as habits, preferences, trust levels, behaviors, locations, trends, capacities, and other related factors; and/or transferring Personal Data abroad, directly conducted by ISOFHCARE or through third parties, in accordance with legal regulations and the agreement in this Terms and Conditions Document.

2. ISOFHCARE has clearly and thoroughly explained, and the Data Provider is fully aware that the processing of Personal Data by ISOFHCARE and/or third parties prior to the effective date of this Terms and Conditions Document (if any) is compliant with legal regulations, without dispute, and the Data Provider agrees to waive all rights to claim or sue ISOFHCARE (if any), while fully releasing ISOFHCARE from any responsibility related to any disputes or difficulties arising from the processing of Personal Data described in this Clause (if any) after this Terms and Conditions Document comes into effect.

3. By all means, will always proactively update the contents of amendments, supplements, or replacements of this Terms and Conditions Document periodically according to the methods specified in this Terms and Conditions Document. The Data Provider's failure to comply fully and promptly with ISOFHCARE's confirmation request deadline and method, regardless of the reason, is understood that the Data Provider does not agree with those amendments, supplements, or replacements, and ISOFHCARE has the right to take appropriate measures as stated in this Terms and Conditions Document. To clarify, amendments, supplements, or replacements of this Terms and Conditions Document aimed at compliance with legal regulations or at the request of competent state authorities will take immediate effect without any consent from the Data Provider.

4. Agree that the processing of Personal Data will be effective from the time the Personal Data is collected by ISOFHCARE (including all Personal Data that ISOFHCARE has collected before the effective date of this Terms and Conditions Document (if any)) until (i) ISOFHCARE and/or third parties terminate or restrict the processing of Personal Data and/or delete Personal Data according to the terms, scope of use, and other contents requested by the Data Provider stipulated in this Terms and Conditions Document, or (ii) when competent state authorities issue a written request to terminate the processing of Personal Data, or (iii) other termination cases as provided by law, depending on which condition occurs first

5. The Data Provider has fully, clearly acknowledged and agreed that Personal Data may be processed at any time without any further consent from the Data Provider. ISOFHCARE has the right, but not the obligation, to notify the Data Provider about the Processing of Personal Data, including cases of processing Sensitive Data. The Data Provider agrees that this Terms and Conditions document is fully legally binding and complete, providing all information as a legal notice regarding the Processing of Data that ISOFHCARE has sent to the Data Provider.

6. The Data Provider has been explained by ISOFHCARE and is fully aware and clear that although ISOFHCARE has implemented necessary security measures as committed in Clauses 2 and 3 of Article 4 of this Terms and Conditions document, the process of Processing Personal Data may still encounter events and actions beyond ISOFHCARE's reasonable control, which may lead to undesirable consequences or damages for the Data Provider, including but not limited to force majeure events, system incidents, technical infrastructure issues of ISOFHCARE, or incidents caused by Third Party errors. The Data Provider is fully aware of the potential risks and consequences, as well as the responsibilities of the parties involved when incidents or violations occur as stipulated in this Terms and Conditions document.

7. The Data Provider understands and agrees to all risks and legal consequences arising from any Data Subject declared or provided by the Data Provider to ISOFHCARE to exercise the rights of the Data Subject as stated in Article 5 of this Terms and Conditions document.

8. The Data Provider is responsible for ensuring that the Personal Data declared and provided to ISOFHCARE during the transaction is complete and accurate.

9. For Personal Data declared and provided to ISOFHCARE that does not belong to the Data Provider's own Personal Data, the Data Provider commits that at the time of declaration and provision, all necessary conditions as required by law have been met so that ISOFHCARE can carry out the Personal Data Processing activities mentioned in this Terms and Conditions document without having to perform any further actions, including but not limited to (i) obtaining full and lawful consent according to legal regulations from the individual reflected in the Personal Data, (ii) being authorized or legally represented according to legal regulations, (iii) Personal Data related to children aged 7 and older must have the child's consent and the approval of a parent or guardian as stipulated, unless otherwise provided by law; (iv) Personal Data related to missing or deceased individuals must be approved by a spouse, adult child, or parent of the individual reflected in the Personal Data, unless otherwise provided by law. At the same time, the Data Provider commits to being responsible for all consequences caused by the Data Provider's failure to meet any necessary conditions stated in this Clause.

10. The Data Provider clearly understands and agrees that ISOFHCARE has the right to refuse one or more requests from the Data Provider/Data Subject to exercise their rights as stipulated in this Terms and Conditions document when the requests do not meet ISOFHCARE's valid conditions and/or when ISOFHCARE detects any fraudulent actions, legal violations, or actions that could lead to legal violations arising from the requests of the Data Provider/Data Subject in ISOFHCARE's reasonable assessment. In addition to the provisions mentioned in this Terms and Conditions document, ISOFHCARE also has the right to refuse to fulfill the requests of the Data Provider/Data Subject in cases where ISOFHCARE is exempt from the obligation to perform the above request rights under legal regulations.

11. The Data Provider has the responsibility to inform the Data Subject about the contents of this Terms and Conditions document in the event that the Data Subject is not also the Data Provider.

12. The Data Provider shall create all necessary conditions and within its capacity to (i) allow ISOFHCARE to verify the Data Provider's compliance with the provisions of this Terms and Conditions document; and/or (ii) support ISOFHCARE in carrying out necessary actions and obligations as required by law (including but not limited to providing information for ISOFHCARE to complete reports submitted to competent state authorities) when requested by ISOFHCARE.

13. The Data Provider shall fully and correctly exercise the other rights of the Data Subject as stipulated by law and in accordance with the agreement with ISOFHCARE in this Terms and Conditions document.

Article 4. Commitments of ISOFHCARE

By this Terms and Conditions, ISOFHCARE commits to:

1. Notify and obtain consent from the Data Provider before processing Personal Data in cases not covered by, or not specified in, these Terms and Conditions. ISOFHCARE is not required to notify and seek the consent of the Data Provider when processing Personal Data in the following cases:

   a) For the purpose of protecting the life and health of the Data Subject or other individuals; or

   b) Disclosing Personal Data as required by law; or

   c) At the request of a competent state authority in emergency situations related to national defense, national security, public order, major disasters, or dangerous epidemics; or when there is a risk threatening national security or defense but not to the extent of declaring a state of emergency; or for the purposes of preventing riots, terrorism, or combating crime and violations of the law as prescribed by law; or

   d) For the purpose of fulfilling obligations under a contract or agreement of the Data Subject with relevant agencies, organizations, or individuals as prescribed by law, or at the request of a competent state authority; or

   e) To serve the activities of state authorities as provided for by specialized laws.

2. Within reasonable limits, ISOFHCARE shall apply appropriate organizational, technical, and storage measures to ensure safety and security to protect Personal Data from unauthorized collection actions without the consent of the Data Provider and to prevent loss, destruction, or damage due to incidents related to the systems and equipment used to perform transactions for ISOFHCARE. ISOFHCARE shall maintain these measures throughout the processing of Personal Data.

3. Require Third Parties to sign contracts or agreements with ISOFHCARE regarding the processing of Personal Data, committing to and fulfilling the obligations of the Data Controller and Data Processor in accordance with legal regulations, including but not limited to applying appropriate storage measures, measures to protect Personal Data from unauthorized collection by the systems and equipment of Third Parties; promptly notify ISOFHCARE and/or the competent state authority upon detecting violations of Personal Data protection regulations as prescribed by law and apply remedial measures; delete and return all Personal Data to ISOFHCARE after the termination of the contract or agreement regarding the processing of Personal Data.

4. Correctly and fully perform other rights of ISOFHCARE as prescribed by law and in accordance with the agreement with the Data Provider in these Terms and Conditions.

Article 5. Withdrawal of Consent, Limitation and Opposition to the Processing of Personal Data, Deletion of Personal Data

Here’s the translation of your provided text into English:

---

1. After agreeing to these Terms and Conditions, during the transaction process with ISOFHCARE, the Data Subject has the right to withdraw consent, request limitations, oppose the processing of personal data, and/or delete personal data. ISOFHCARE will carry out the necessary procedures to terminate, limit the processing of personal data, and/or delete personal data within the time frame, scope, and other contents as requested by the Data Subject after the Data Subject has correctly and fully completed the procedures to initiate a valid request as specified in Clause 2 of this Article.

2. A request to withdraw consent, request limitations, oppose the processing of personal data, and/or delete personal data is considered valid when it is carried out in accordance with the order, procedures, and meets all conditions specified in the regulations for receiving and processing requests from ISOFHCARE posted on the website [https://ivie.vn/](https://ivie.vn/) or communicated by ISOFHCARE through other methods from time to time, while also meeting the following conditions:

   a) It is made by the Data Subject themselves without any form of representation or authorization, except in cases where the law requires representation or authorization;

   b) The request to withdraw consent, request limitations, oppose the processing of personal data, and/or delete personal data does not apply, unless otherwise stipulated by law, in one or several of the following cases: (i) the law prohibits the withdrawal of consent, request for limitations, opposition to the processing of personal data, and/or deletion of personal data; (ii) the processing of personal data is conducted by competent state authorities for the purpose of serving the operations of the state agency as stipulated by law; (iii) the personal data has been made public according to legal regulations; (iv) the processing of personal data is carried out to serve legal requests, scientific research, or statistics as stipulated by law; (v) in cases of emergency related to national defense, national security, social order and safety, major disasters, dangerous epidemics, when there is a risk threatening security and defense but does not reach the level of declaring a state of emergency, prevention of riots, terrorism, crime, and legal violations; (vi) responding to emergencies threatening the life, health, or safety of the Data Subject or others; (vii) cases where ISOFHCARE cannot fulfill the requests of the Data Subject for any reason, including but not limited to cases where the technological system or infrastructure of ISOFHCARE does not allow it, or if, in ISOFHCARE's reasonable judgment, fulfilling the Data Subject's request would or could harm and/or affect the ability to operate continuously, smoothly, and without interruption for ISOFHCARE.

   c) The Data Subject understands and agrees to be responsible for any consequences or damages that may occur due to the action of withdrawing consent, requesting limitations, opposing the processing of personal data, and/or deleting personal data (if any).

   d) Full and timely payment of all fees related to fulfilling the request to withdraw consent, request limitations, oppose the processing of personal data, and/or delete personal data according to the fee schedule and payment instructions posted on the website [https://ivie.vn/](https://ivie.vn/) of ISOFHCARE.

3. ISOFHCARE has the right to refuse to fulfill the entire request of the Data Subject if the request does not meet the valid conditions specified in Clause 2 of this Article.

4. In the case where the request meets the conditions specified in Clause 2 of this Article, ISOFHCARE will carry out the necessary procedures to terminate, limit the processing of personal data, and/or delete personal data within the time frame, scope, and other contents as requested by the Data Subject within 72 (seventy-two) hours from the time the Data Subject submits a valid request. In some specific cases, after the Data Subject has met the conditions for a valid request as specified in Clause 2 of this Article, the 72 (seventy-two) hour period will begin from the time:

   a) ISOFHCARE receives feedback or approval from a Third Party if such feedback or approval is necessary to ensure that ISOFHCARE’s termination, limitation of processing of personal data, and/or deletion of personal data is legal and/or is a necessary condition for ISOFHCARE to successfully terminate, limit the processing of personal data, and/or delete personal data; or

   b) The force majeure event ceases in the event of a force majeure occurrence; or

   c) The Data Subject has fulfilled their obligation to compensate ISOFHCARE for damages that ISOFHCARE must bear according to the provisions in Point (a) (iii) of Clause 6 of this Article arising from fulfilling the requests to terminate, limit, oppose the processing of personal data, and/or delete personal data of the Data Subject; or

   d) ISOFHCARE has completed the remediation of causes beyond its reasonable control that prevented ISOFHCARE from fulfilling the requests of the Data Subject, including but not limited to cases where the systems or technical infrastructure of ISOFHCARE encountered issues due to faults from ISOFHCARE's service providers or the systems or technical infrastructure of ISOFHCARE were compromised, harmed by viruses, spyware, adware, or any acts of interference or cyberattacks aimed at sabotaging or causing harm.

5. The withdrawal of consent, request limitations, opposition to the processing of personal data, and/or deletion of personal data does not affect the legality of the processing of personal data that ISOFHCARE and/or Third Party has performed before ISOFHCARE and/or Third Party completes the termination, limitation of processing of personal data, and/or deletion of personal data as stipulated in Clause 4 of this Article.

6. Before performing and completing the required procedures as specified in Clause 2 of this Article, the Data Subject has the responsibility to research, understand, and be aware of the legal consequences, responsibilities of the Data Subject, and the corresponding rights of ISOFHCARE that may arise when the Data Subject exercises their rights, specifically:

   a) The Data Subject’s exercise of one or several actions to withdraw consent, request limitations, oppose the processing of some or all personal data, and/or delete personal data may lead to one or several legal consequences and/or damages that ISOFHCARE must bear or may potentially bear, including but not limited to:

   (i) ISOFHCARE violating legal regulations if it continues to maintain and transact with the Data Provider/Data Subject;

   (ii) ISOFHCARE violating contracts or agreements regarding the processing of personal data that it has entered into with Third Parties;

   (iii) ISOFHCARE suffering economic damages, whether direct or indirect, arising from (x) the violation of legal regulations stated in Point (i), and/or (y) the obligation to bear compensation for damages, fines, and/or termination of contracts or agreements in the event of violation of contracts or agreements stated in Point (ii), and/or (z) the obligation to bear damages upon terminating transactions with the Data Provider when ISOFHCARE exercises the rights stated in Point (b) of this Clause.

   b) If ISOFHCARE reasonably assesses that there may be potential legal consequences and/or damages as specified in Point (a) of this Clause, ISOFHCARE has the right to consider and unilaterally decide to terminate one or all transactions with the Data Provider/Data Subject, simultaneously or immediately after completing the termination, limitation of processing of personal data, and/or deletion of personal data as stipulated in Clause 4 of this Article.

   c) The Data Subject is responsible for compensating all damages that ISOFHCARE must bear according to the provisions in Point (iii) of Clause (a) of this Article, immediately and unconditionally to ISOFHCARE, and according to the methods and payment instructions required by ISOFHCARE.

Article 6. Provision of Personal Data

Here’s the translation of the provided text into English:

---

**1. The Data Subject or a legally authorized person by the Data Subject has the right to request, and ISOFHCARE commits to providing the Personal Data of the Data Subject after the proper and complete procedures for initiating a valid request have been followed, in accordance with the regulations on receiving and processing requests of ISOFHCARE as listed on the website [https://ivie.vn/](https://ivie.vn/) or as communicated by ISOFHCARE through other methods from time to time.**

**2. ISOFHCARE will provide the Personal Data of the Data Subject within 72 (seventy-two) hours after receiving a valid request as stipulated in Clause 1 of this Article. This timeframe does not include (i) the time waiting for a response from a Third Party in cases where the opinion of a Third Party is required for the provision of Personal Data to ensure legality or successful execution; or (ii) any events of force majeure.**

**3. ISOFHCARE will not provide Personal Data as stipulated in this Article in cases where providing the Personal Data poses a risk of one of the following situations:**

   **a) The law prohibits the provision of Personal Data;**

   **b) It may threaten the life, health, or safety of another individual;**

   **c) It may cause harm to national defense, national security, or social order;**

   **d) The Data Subject does not agree to provide, or authorize a representative to receive the Personal Data.**

**4. Data Storage**

   **Duration:** Data will be stored only for the time necessary to provide the service or as required by law.

   **Security:** Personal data will be encrypted and stored securely.

**Data Deletion:**

   **Upon Request:** Users can request the deletion of data at any time by accessing Personal > Account > Delete Account.

   **Process:** Data will be deleted securely, and a confirmation will be sent to the user.

**Evaluation and Updates:**

   **Regularly:** Policies will be evaluated and updated regularly.

Users can send a request to delete all personal data by emailing legal@isofhcare.com or contacting customer service via the hotline. We will proceed to delete all data related to the user in our system.

The translation of "Điều 7. Chỉnh Sửa Dữ Liệu Cá Nhân" into English is:

Article 7. Correction of Personal Data

 

1. Data Subject:

   a) Has the right to access, view, and edit their Personal Data after ISOFHCARE has processed the data, unless otherwise stipulated by law;

   b) In cases where direct editing is not possible due to technical reasons or other reasons, the Data Subject may request ISOFHCARE to correct their Personal Data.

2. ISOFHCARE will correct the Personal Data of the Data Subject after receiving the Data Subject's consent as soon as possible or in accordance with legal regulations. If it is not possible to make the correction, ISOFHCARE will notify the Data Subject within 72 (seventy-two) hours of receiving the request for personal data correction.

The translation of "Điều 8. Phí, Chi Phí, Thanh Toán Phí, Chí Phí" into English is:

Article 8. Fees, Costs, Payment of Fees, Costs

1. Data Subject Responsibilities:

   The Data Subject is responsible for paying all fees and costs incurred during the process of Data Processing requested by the Data Subject, including but not limited to the types of fees listed by ISOFHCARE for fulfilling the requests of the Data Provider regarding the provision of Personal Data, correcting Personal Data due to the Data Subject's errors, actual costs for printing, copying, sending Personal Data or related information, notifications via postal service, express delivery, text messages, and costs related to deleting Personal Data in the event that the Data Subject withdraws consent, requests limitations, and/or objects to part or all of the Data Processing and/or deletes Personal Data, unless otherwise provided by law or ISOFHCARE regulations.

2. Types of Fees:

   The fees collected by ISOFHCARE for fulfilling the requests of the Data Subject as specified in this Terms and Conditions document will be publicly listed at ISOFHCARE's headquarters/transaction points and/or on the website https://ivie.vn/ and may change periodically in accordance with ISOFHCARE regulations and legal provisions. For other actual costs incurred within the scope specified in Clause 1 of this Article, ISOFHCARE will notify the Data Subject by methods and at times chosen and decided by ISOFHCARE.

3. Payment Methods and Timing:

   The methods and timing of payment for fees and costs will be chosen and decided by ISOFHCARE and will be publicly listed at ISOFHCARE's headquarters/transaction points and in the ISOFHCARE application and/or on the website https://ivie.vn/ and/or notified to the Data Subject along with the fee payment request as specified in Clause 2 of this Article.

"Điều 9. Chấm Dứt Giao Dịch" dịch sang tiếng Anh là:

Article 9. Termination of Transaction

1. In the event that the Data Provider/Data Subject takes actions that lead ISOFHCARE to decide to terminate one or all transactions with the Data Provider/Data Subject as stipulated in this Terms and Conditions document, the Data Provider/Data Subject agrees and acknowledges that this is considered a cross-violation event, resulting in ISOFHCARE's right to unilaterally terminate the respective contracts and service agreements signed with the Data Provider/Data Subject, regardless of whether those contracts and agreements mention such a violation event.

2. The consequences of ISOFHCARE's unilateral termination of the transactions will be carried out according to the provisions of the corresponding contracts and agreements that ISOFHCARE has signed with the Data Provider/Data Subject.

Article 10. Notification

1. ISOFHCARE is responsible for notifying the Data Provider of the contents as agreed in these Terms and Conditions through the methods and addresses registered by the Data Provider with ISOFHCARE, in accordance with the provisions of these Terms and Conditions.

2. The Data Provider is responsible for notifying ISOFHCARE of the contents as agreed in these Terms and Conditions through the methods, contact addresses, and within the timeframe stipulated by ISOFHCARE. For notifications made through methods other than written form, the Data Provider acknowledges that it will send an additional written notification as required by ISOFHCARE if requested.

3. A notification is considered successfully sent when it:

   a) is delivered directly to the recipient or the recipient's representative and has been acknowledged by the recipient or the recipient's representative; or

   b) is sent via insured postal service, with confirmation from the postal authority; or

   c) is successfully posted, published, and displayed on the website https://ivie.vn/ or other electronic transaction methods, excluding cases specified in item (d) of this clause; or

   d) is reported as successfully sent in the case of sending notifications via email or mobile SMS or other forms of notification (if any).

Article 11. Disclaimer of Liability

Here’s the English translation of the provided text:

---

ISOFHCARE is exempt from any liability, including the responsibility to pay any compensation, reimbursement, or related costs for any damages or losses incurred by the Data Provider arising from:

1. The Data Provider:

   a) For any reason, not receiving or accessing the notifications successfully sent by ISOFHCARE, including but not limited to cases where technological devices, software on those devices, or the Data Provider’s service provider does not ensure stable and continuous connectivity to ISOFHCARE's application/website; the Data Provider does not timely and fully update the changes in the Terms and Conditions through the methods chosen by ISOFHCARE for notification and posting;

   b) Through any means, including but not limited to using or accessing other websites, applications, or services with which ISOFHCARE collaborates or has a relationship, ISOFHCARE shall not be liable if the Data Provider fails to comply with the terms and conditions of use of those websites, applications, or services leading to damages or violations by the Data Provider, for any reason;

   c) Suffering damages directly caused by the fault or misconduct of a Third Party whose actions are beyond the control of ISOFHCARE.

2. ISOFHCARE cannot continuously, fully, or clearly update, publish, and/or display the modified or supplemented content of these Terms and Conditions due to (x) ISOFHCARE performing periodic or ad hoc upgrades, maintenance, or system infrastructure maintenance but has provided prior notice through the methods compliant with these Terms and Conditions; or (y) reasons beyond ISOFHCARE's reasonable control, including but not limited to cases where ISOFHCARE’s systems or technical infrastructure encounter issues caused by faults from ISOFHCARE's service providers or where ISOFHCARE's systems or technical infrastructure are compromised or harmed by viruses, spyware, adware, or any malicious acts or cyberattacks intended to disrupt or cause harm.

3. Events of force majeure beyond the control of ISOFHCARE occur, directly causing losses or damages to the Data Provider and hindering ISOFHCARE’s ability to fulfill its obligations to the Data Provider, including but not limited to wars or civil wars, natural disasters, epidemics, strikes, changes in laws, or other force majeure events as regulated by law or declared by competent state authorities, regardless of whether these events occur within or outside of Vietnam.

4. Other cases in which ISOFHCARE is exempt from liability according to legal regulations and the provisions in these Terms and Conditions.

Article 12. Anti-Corruption Provisions and Legal Compliance

In the process of executing the transaction, the Parties (including officers, employees, agents, contractors, affiliates, etc. of each Party) commit to always comply with the Law, including the Anti-Corruption Law (such as not giving/receiving bribes, embezzlement, corruption), Environmental Protection Law; and shall bear full legal responsibility and compensate for damages to related parties (if any) in the event of a violation of the agreement in this Terms and Conditions document.

Article 13. Enforcement Provisions

1. This Terms and Conditions document is established, governed by, and interpreted according to Vietnamese law.

2. In the event of a dispute, the Parties have the right to request a competent court as stipulated by law to resolve the matter.

3. For any content not stipulated in this Terms and Conditions document, the Parties agree to comply with the contracts and written agreements related to the transaction that ISOFHCARE has signed with the Data Provider/Data Subject, in accordance with ISOFHCARE’s regulations and legal provisions.

4. This Terms and Conditions document takes effect from the date the Data Provider selects "Agree."

 

Article 14. Access Policy

Our application requires the following access permissions from users, and users can agree or disagree to provide the best service:

1. Notifications

   Purpose: To allow the application to send notifications to update important information such as appointment reminders, test results, and other medical information.  
   Usage: We will use this permission to send notifications directly to your device to ensure you do not miss any important information related to medical services.

2. Photos

   Purpose: To allow users to take and update their profile pictures.  
   Usage: Access to photos enables you to take new pictures or select images from your library to use as your profile picture in your personal profile.

3. Microphone

   Purpose: To facilitate consultation calls with doctors.  
   Usage: Access to the microphone will be used during online consultation calls with doctors, allowing you to chat and receive medical advice directly and conveniently.

4. Camera

   Purpose:To facilitate consultation calls with doctors.  
   Usage: Access to the camera will be used during video consultation calls with doctors, enabling you to exchange information visually and effectively.

Privacy Commitment

We are committed to protecting your privacy and will only use these access permissions to provide the necessary services. Your personal data and access permissions will not be used for any other purpose without your consent.

If you have any questions about this access policy, please contact us at: legal@isofhcare.com

Article 15. Safe Data Processing Procedures for Personal and Sensitive Data

Our application is committed to protecting users' personal and sensitive data through the following security measures:

1. Data Encryption: Use SSL/TLS to encrypt data during transmission and encrypt stored data in the database.

2. Access Control

   • User Authentication: Login with a strong password and support for two-factor authentication (2FA).
   • Access Authorization: Only authorized employees and necessary services are allowed to access the data.

3. Monitoring and Logging

   • Logging: Record access and data modification activities.

4. Employee Training: Provide regular security training and enforce strict compliance with security policies.

5. Security Assessment and Testing

   • Security Assessment: Update security measures according to the latest standards.
   • Security Testing: Conduct regular tests and penetration tests.

6. Data Storage and Deletion Policy

   • Data Storage: Store data only for as long as necessary.
   • Data Deletion: Securely delete data when it is no longer needed.

We are committed to protecting users' personal and sensitive data and complying with Google's security requirements.

---

Email: legal@isofhcare.com

Address: 35 Nguyễn Đình Chiểu, Lê Đại Hành, Hai Bà Trưng, Hà Nội.

Developer: iSofH

Thông tin trên IVIE - Bác Sĩ Ơi và các trang liên kết không thay thế cho lời khuyên y tế, chẩn đoán hoặc điều trị từ các chuyên gia y tế. Để đảm bảo an toàn và hiệu quả, bạn nên tư vấn với dược sĩ hoặc bác sĩ về bất kỳ sản phẩm nào bạn đang sử dụng hoặc dự định sử dụng. Công ty TNHH 1 thành viên ISOFHCARE không chịu trách nhiệm cho bất kỳ thông tin nào chưa chính xác hoặc việc sử dụng sản phẩm mà không có sự tư vấn của bác sĩ, chỉ dựa trên thông tin từ chúng tôi.