Application for a Network Information Security Product Trading License

What conditions must be met to be granted a Business License for network information security products? Where to submit an application for a Cyber ​​Information Security Products Business License? What does the profile include?

Related service · P1

M&A, Equity Transfer and Project Transfer

If you are preparing an equity transfer, M&A transaction, project transfer or restructuring, ANT Legal can help review legal risks and transaction structure.

Website information is for general reference only and does not replace legal advice for a specific matter.

1. What conditions must be met to be granted a License to trade in network information security products?

Pursuant to Clause 1, Article 42 of the Law on Network Information Security 2015 on Conditions for granting a License to trade in network information security products and services:

“1. Enterprises are granted a License to trade in network information security products and services, except for products and services. services specified in Points a, b, c, d, Clause 1 and Point a, Clause 2, Article 41 of this Law, when fully meeting the following conditions:

a) In accordance with the strategy, planning, and plan for developing national network information security;

b) Having a system of equipment and facilities appropriate to the scale of providing information security products and services network;

c) Have a management, executive, and technical team that meets professional information security requirements;

d) Have a suitable business plan.”

Accordingly, to be granted a Business License for network information security products, your business must meet the conditions for a Business License for network information security products and services. specifically regulated by the law on network information security.

2. Where to submit an application for a Cyber ​​Information Security Products Business License? What is the content of the application?

Pursuant to Article 43 of the Law on Cyber Information Security 2015 on Application for a License to trade in cyber information security products and services:

“1. Enterprises applying for a License to trade in cyber information security products and services submit an application for a License at the Ministry of Information and Communications information.

2. Application dossier for a License to trade in network information security products and services is made into five sets, including:

a) Application for Business License for network information security products and services, clearly stating the type of network information security products and services to be traded;

b) Copy of Business Registration Certificate, Investment Registration Certificate or other documents of equivalent value;

c) Explanation of technical equipment system ensure compliance with the provisions of law;

d) Business plan including scope, objects providing products and services, standards, product and service quality;

d) Copy of diploma or professional certificate in information security of the management, executive, and technical team.

3. In addition to the papers and documents specified in Clause 2 of this Article, the application for a business license for information security testing and assessment services or information security services without using civil cryptography must also include:

a) Criminal record of the legal representative and the management, executive, and technical team;

b) Technical plan technical;

c) Plan to secure customer information during the process of providing services.”

Accordingly, your business submits an application for a License to trade in network information security products at the Ministry of Information and Communications. The content of the application for a License to trade in network information security products is made into five sets and is specifically regulated as stated in the section below. above.

3. Responsibilities of businesses trading in network information security products

Pursuant to Article 46 of the Law on Cyber Information Security 2015 on Responsibilities of businesses trading in network information security products and services:

“1. Manage records and documents on technical and technological solutions of products.

2. Create, store and secure customer information.

3. Annually report to the Ministry of Information and Communications on the business, export, and import of cyber information security products and services before December 31.

4. Refuse to provide network information security products and services when detecting that organizations or individuals violate the law on using network information security products and services, or violate agreed commitments on using products and services provided by the enterprise.

5. Temporarily suspend or stop providing network information security products and services to ensure national defense, national security, social order and safety at the request of competent state agencies.

6. Coordinate and create conditions for competent state agencies to implement professional measures when required.”

Discuss this matter with ANT Legal M&A, Equity Transfer and Project Transfer