BẢO VỆ DỮ LIỆU CÁ NHÂN NHẠY CẢM THEO QUY ĐỊNH CHUNG VỀ BẢO VỆ DỮ LIỆU CỦA LIÊN MINH CHÂU ÂU (GDPR) VÀ GIÁ TRỊ THAM KHẢO CHO VIỆT NAM

Abstract

Abstract: The article analyzes the provisions on sensitive personal data under the
European Union’s General Data Protection Regulation (GDPR) and compares them
with the provisions in Vietnam’s Decree No. 13/2023/ND-CP. It argues that although
Decree 13 has initially acknowledged the necessity of special protection for sensitive
personal data, the current provisions are still formalistic and ineffective, lacking a clear
distinction between the collection and processing of sensitive personal data and other
personal data. Based on the analysis of GDPR provisions, the article offers several
recommendations for improving the legal regulations on the protection of sensitive
personal data, especially in the context of Vietnam's efforts to develop a Personal Data
Protection Law.