VST Privacy Policy
Effective Date: April 12, 2025
VST LLC and its subsidiaries and affiliates operate applications for agents in different jurisdictions in accordance with applicable local laws and regulations. Such applications include, but are not limited to, VST APP and VST Client Application for Agents (hereinafter referred to as “VST Platforms”).
The VST Platforms are operated by VST LLC (hereinafter referred to as “we”, “us”, or “our”, business address: 3300 N ASHTON BLVD STE 330, LEHI, UT 84043), which is also the data controller of the personal data collected and generated on the VST Platforms.
This Privacy Policy (hereinafter referred to as “this Policy”) describes how the VST Platforms collect, use, disclose and otherwise process (collectively “process” or “processing”) your personal data. The applicable laws and regulations of certain jurisdiction may impose unique or different requirements on the processing and protection of personal data, and we will indicate the application of such requirements in the relevant sections of this Policy.
Please be aware that the VST Platforms are not designed to serve users from Chinese Mainland, and this Policy does not cover the processing of personal data for these users.
This Policy will help you understand the following content:
I. How We Collect and Use Your Personal Data
II. How We Share and Disclose Your Personal Data
III. Cross-border Transfers of Personal Data
IV. How We Protect Your Personal Data
V. Your Personal Data Related Rights
VI. Information We May Send to You
VII. Protection of Minors
VIII. Scope of Application
IX. Updates to This Policy
X. How to Contact Us
I. How We Collect and Use Your Personal Data
Personal data (also referred to as “personal information” in some jurisdictions) refers to any data that can directly or indirectly identify a specific natural person (“data subject”).
A. Source of Personal Data
When you use our services on the VST Platforms, we will obtain your personal data in the following ways: you provide it to us; our system automatically collects and generates it when you use the services; information from third-party services; and other lawful sources (including agents and other consumers).
If you provide the personal data of any individual (other than yourself) to us, you shall ensure that you have lawfully and duly informed the relevant data subject and obtained his/her consent (where required under applicable laws and regulations) to authorize us to process his/her personal data in accordance with this Policy.
B. Purposes for Collecting and Processing Personal Data
We may collect and use your personal data (data underlined may be deemed as sensitive personal data in certain jurisdiction) for the following purposes. If you do not provide certain personal data to us, we may not be able to provide the relevant services to you.
1. To Register an Account
To become a registered user of the VST Platforms for the purpose of using our services, you need to provide your nickname and email address. The VST Platforms will then ask you to set a password.
2. To Participate in Course Study
You may provide information to fill out or modify your personal profile, including your nickname, avatar, real name, gender, date of birth, email, comments, and other information, when registering an account or participating in course studies. We use this information for account display, course learning, and interaction.
3. To Purchase Courses, Goods, or Top Up Compute Power Credits
When you purchase our courses or top up Compute Power Credits, we will collect the order amount, time, and order number to confirm the status of orders and top-ups, issue invoices, and ensure smooth transactions.
When you purchase goods on the VST Platforms, we may collect your name, phone number, address, and transaction information to process and deliver the relevant orders.
When you use a third-party payment platform to make payments, the third-party payment platform will obtain the payment order identifier generated by its application when you initiate the payment and will transmit information on the success status of the payment to us. We need to share your order number and transaction amount data with the payment platform to enable the third-party payment platform to verify your payment instructions and complete the payment process. We collect and share such data as it is necessary for creating and completing your orders. If you refuse to provide this data, we may not be able to provide the corresponding services to you.
4. To UseAI Avatar Services
To use the AI avatar services by consuming Compute Power Credits, you agree and authorize us to collect and store the audio, video, and images that you upload.
5. To Interact with Us
When you submit a consultation service reservation request via the mentor module, we may collect personal data such as your name, phone number, and email (for specific requirements, please refer to our consultation service reservation request guidelines).
For necessary administrative purposes (such as providing requested services and information, responding to comments and questions, providing customer support, etc.), we may process your name, email address, details of your feedback, uploaded images, etc., to contact you and respond to your needs.
6. To Ensure Security of Our Services
To provide you with secure services and help us better understand the operational status of the application, we may collect the following data generated when you use the VST Platforms:
(1) Device model, operating system version, unique device identifier, battery status, signal strength, language settings, time zone settings, mobile terminal manufacturer information, mobile network operator information, etc.;
(2) Software version number and browser type;
(3) IP address;
(4) MAC address, DID (hardware serial number of the smart device), device network status (IP/network signal), firmware version, MAC address of the router connected to the device;
(5) Accounts you communicate with while using our services, along with the communication time and duration; and,
(6) Frequency of your use of the application, crash reports, overall usage patterns, performance data, and the source of the application.
Additionally, to enhance the security of the services provided by VST, ensure a safe operating environment, and identify any abnormal account status, we aim to protect you, other users, and the public from personal and property damage caused by phishing websites, fraud, network vulnerabilities, computer viruses, network attacks, network intrusions, etc. We also strive to more accurately detect violations of laws, regulations, or VST-related agreement terms. For these purposes, we may use or integrate your personal data, transaction information, device information, relevant network logs, and information lawfully obtained through VST and our partners with your authorization or in accordance with applicable data protection laws. This integrated information will be used to comprehensively assess the risks associated with your account and transactions, perform identity verification, detect and prevent security incidents, and take necessary measures for recording, auditing, analysis, and disposition in accordance with the law.
7. To Improve and Promote Our Services
To improve our service quality and provide you with more relevant information display, search, and transaction services, we may analyze your browsing and search history, device information, and order data to extract features such as your browsing and search preferences, behavioral habits, and location information. Such data will be used to create indirect user profiles.
To better understand our user base and improve our services accordingly, we may periodically invite you to participate in our surveys. If you participate, we will process your registration information and the information you provide in response to survey questions.
If you subscribe to our newsletter, we will collect information such as your email address. When we send you emails, we may track whether you open the emails to understand how to provide a better customer experience and improve our services.
Subject to applicable data protection laws, we may use information obtained while you are using our services to display you the most relevant information, courses, or mentor recommendations, send you marketing communications related to our services or for user research analysis and statistical purposes.
8. To Link to Third-Party Products or Services
If you click on third-party buttons or logos on the VST Platforms (e.g., Facebook’s “Like” or “Share” buttons, or embedded YouTube videos), or if you choose to link the services to a third-party account (e.g., Facebook, Instagram, or Snapchat), we may collect your personal data, including your profile information and photos. If you wish to limit the information we can access, we recommend reviewing the privacy settings of your third-party accounts to understand your options. If we combine or associate information from other sources with personal data collected through the services, we will treat the combined information as personal data in accordance with this Policy.
9. To Conduct Statistical Analysis
We will conduct statistical analysis on the usage of our products or service for purposes of research, statistical analysis, and forecasting, and based on this, improve our content and layout, and support business decisions and the provision of products or services. Such statistical data does not contain any information that can identify individual users. We also use the collected information for big data analysis. For example, we use the collected information to analyze and create city heat maps or industry insight reports that do not contain any personal data.
10. Other Purposes
If we use your personal data in other ways not specified in this Policy or for new purposes different from those stated at the time of collection, we will obtain your consent for such use or rely on another legal basis for processing.
C. Legal Basis for Processing Personal Data
Applicable laws and regulations in different jurisdictions may specify different legal bases for processing personal data. If the applicable laws and regulations in your jurisdiction mandates consent as the sole legal basis for processing personal data, we will request your consent to our processing of your personal data in accordance with this Policy.
We may also collect, use and process your personal data without your consent when any other legal basis applies under applicable data protection laws. The commonly used legal bases include the following, but may differ in your jurisdiction:
• Where the processing is necessary for the conclusion and performance of the contract between you and us.
o We rely on this legal basis for the following purposes: I.B.1. To Register an Account; I.B.2. To Participate in Course Study; I.B.3. To Purchase Courses, Goods, or Top Up Compute Power Credits; I.B.4. To Use AI Avatar Services; I.B.5. To Interact with Us; I.B.8. To Link to Third-Party Products or Services.
• Where necessary to pursue our (or a third party’s) legitimate interests provided that such interests are not overridden by your interests or fundamental rights and freedoms;
o We rely on this legal basis for the following purposes: I.B.6. To Ensure Security of Our Services; I.B.7. To Improve and Promote Our Services; I.B.9. To Conduct Statistical Analysis.
• You have given consent to the processing of your personal data;
• Where necessary for compliance with our legal obligation;
• Where necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us.
D. Retention Period and Deletion of Personal Data
Please note that all personal data you provide when using our products or services will remain authorized for our use during the period of your use, unless you actively delete it or refuse to provide it through system settings.
When you purchase our products, we will retain information related to your transaction so that we can fulfill the order. Afterwards, we will retain this information for a period to allow us to handle or respond to any complaints or queries related to the transaction. Should you terminate your customer relationship with us, we will delete or anonymize the information retained for this purpose after 3 years.
We will delete or anonymize your personal data when we are no longer legally permitted to retain your personal data, unless retention is required by applicable laws, regulations or court orders. After you apply to cancel your account, we will complete the account cancellation process within 3 business days of receiving the request and cease using your personal data.
If we decide to cease providing the VST Platforms services, we will immediately stop collecting your personal data and inform you through individual notification or public announcement. We will delete or anonymize your personal data, unless retention is required by applicable laws, regulations or court orders.
E. Automated Decision-Making (including Profiling)
Currently, we do not use your personal data for automated decision-making (including profiling) in the course of providing services.
II. How We Share and Disclose Your Personal Data
1. Sharing and Disclosure to Affiliates
To provide and improve our services, as well as to provide technical support, maintenance and customer services, we may share your personal data with, or entrust the processing of your personal data to, our affiliates and/or subsidiaries.
2. Sharing and Disclosure to Unaffiliated Third Parties
You understand and agree that some of our services will be provided by or jointly with our business partners, and we may therefore share, entrust the processing of, or otherwise disclose your personal data (when necessary) to the following types of third parties:
(1) Service Providers – We share personal data necessary for third-party service providers to provide their services, including:
•Payment Agencies: We need to share your order number and transaction amount information with payment platforms to verify your payment instructions and complete transaction process.
• Logistics Services and Contractors: We need to share your personal identifiers and transaction information with logistics services and contractors to complete the processing and delivery of your order.
(2) Data Processors – We entrust third-party processors to process the personal data that is necessary to perform their entrusted work, including:
• AI Generation Services: We entrust the processing of your audio, video, and images you upload to provide you with AI avatar services.
• Cloud Service Providers: We entrust cloud service providers to provide the infrastructure, cloud storage, and relevant technical support.
(3) Software Development Kit (“SDK”) Providers – Our services may integrate third-party SDKs or other similar applications for pushing notifications, and such SDK providers will directly collect your personal data to provide their services. Specific details are shown in the table below.
We remind you to pay attention to and clearly understand the specific information about the service providers who serve you and how these providers collect and use your personal data.
|
SDK Name |
Owning Company |
Purpose |
Types of Personal Data Collected |
Link |
|
Getui Push SDK |
Merit Interactive Co., Ltd. |
Provide message push technology services for App users. |
Device Information: Including Android ID, device platform, device manufacturer andbrand, device model and system version, deviceidentifier(s), device serial number. Application List Information, Network Information, and Location-related Information. |
|
|
OPPO Push |
Guangdong Oppo Mobile Communica tions Co., Ltd. |
Provide message push services for App users; push messages to OPPO phone users. |
Device Identifiers: OAID, VAID, AAID, UDID. Device-related Information: IMEI, Serial Number, IMSI, User ID, Android ID, GAID, phone Region settings, device model. Information on Applications Using the Push Service. Network-related Information: e.g., IP or domain name connection results, current network type. Notification Bar Status: e.g., notification bar permissions, user click behavior. |
|
|
Mi Push |
Xiaomi Technology Co., Ltd. |
Provide message push services for App users; push messages to Xiaomi phone users. |
IMEI/OAID (applicable to Android Q and above systems), IMEI MD5/MEID MD5, Android ID, VAID, AAID, GAID, your MID(applicable to MIUI system), device model, Wi-Fi information, device information(BSSID, SSID), information on running applications, external storage permissions, network IP information. |
|
|
vivo Push |
vivo Mobile Communica tion Co., Ltd. |
Provide message push services for App users; push messages to vivo phone users. |
Device Identifier Information: e.g., IMEI, EmmCID, UFSID, ANDROIDID, GUID, GAID, OPENID, VAID, OAID, RegID, encrypted Android ID. Application Software Information Using the Push Service: e.g., application package name, version number, APPID, installation, uninstallation, reset, running status. Network-related Information: e.g., IP address, network type. Device Information: Device manufacturer, country code, device type. |
|
|
Meizu Push |
Zhuhai Xingji Meizu Information Technology Co., Ltd. |
Provide message push services for App users; push messages to Meizu phone users. |
Device Information: Phone brand, phone model, system version, system language. Device Identifiers: (generating application-uncorrelated user identifiers via related identifiers: push ID). |
|
|
|
|
|
|
Audio/Vid eo Call 2.0 SDK (CommsE ase) |
Hangzhou NetEase Zhiyun Technology Co., Ltd. |
Audio/video calls,interactive live streaming, etc. |
Device Information: Including device type, device name andmodel, device operating system version information, Android ID. Log Information: Including device operating status (CPU, memory status), browser type and version, IP address, call status. Sensor Information: Gyroscope, proximity sensor information, accelerometer sensor information. |
|
|
Apple APNS |
Apple Inc. |
Used to identify the device to send push notifications to specific devices, customize push notifications, analyze user behavior and optimize push notification relevance and effectiveness, and ensure accurate delivery of push notifications. |
Device token, user preference settings, in-app behavioral data, device information (e.g., device model, operating system version). |
|
|
Firebase |
Google LLC |
Used to identify the target device for message delivery. |
Firebase installation ID |
|
3. Sharing and Disclosure that is Necessary for Providing Our Services
• To comply with laws, enforce or apply our Terms of Use and other agreements, respond to your rights, or protect the rights, property, or safety of VST, you, and other VST users —such as preventing fraud and illegal activities and reducing credit risk—we may exchange information with other companies and organizations. However, this does not include selling, renting, sharing, or otherwise disclosing personal data for commercial purposes in violation of the commitments made in this Policy.
We will only share or disclose your personal data that is necessary for providing our services and will require personal data recipients to take measures to protect the confidentiality and security of your personal data. We will obtain your separate explicit consent if we need to share your sensitive personal data or change the purpose for the processing and use of your personal data, if such consent is required under applicable laws and regulations.
4. Other Disclosure Situations
In the event ofa merger, acquisition or organizational restructuring where your personal data is transferred to another entity, we will make sure that the succeeding entity will continue to comply with this Policy, or otherwise require them to obtain your separate consent or rely on another legal basis under applicable laws and regulations.
We may publicly disclose and share with our partners aggregated and anonymized information that cannot identify individual users, to analyze how users interact with our products or to provide the public with insights into overall usage trends ofour products and services.
We will not publicly disclose your personal data, unless we obtain your explicit consent, rely on another legal basis under applicable laws and regulations, or you voluntarily choose to do so.
III. Cross-border Transfers of Personal Data
Our services are available in multiple countries and regions (collectively referred to as “jurisdictions”). and we leverage our centralized data center to store and process the personal data of our global users, in order to provide better services with consideration of higher efficiency and cost-effectiveness.
We currently store and process all collected personal data in our data center located in Singapore, which means, upon collection, your personal data will be transferred to Singapore via the Internet. As we do not operate a data center in each jurisdiction, if you refuse such cross-border transfer of your personal data, you will be unable to use our services.
The data protection laws in Singapore may differ from those in your jurisdiction. We will take measures to comply with the legal requirements for cross-border transfer of personal data in applicable jurisdictions, and strive to achieve materially equivalent level of data protection in your jurisdiction. Such measures include but are not limited to: obtaining your informed consent to such cross-border transfer, entering into Standard Contractual Clauses (if applicable in your jurisdiction) or other similar agreements with data protection clauses, and implementing organizational and technical measures to safeguard the security and privacy of personal data.
IV. How We Protect Your Personal Data
We are committed to employing various industry-standard physical, electronic, and administrative security measures to protect the security of your personal data. We actively establish data classification and grading systems, data security management specifications, and data security development guidelines to regulate the storage and usage of personal data, ensuring that information irrelevant to our services is not collected.
We implement comprehensive data security controls by signing confidentiality agreements with individuals who have access to data, and establishing monitoring and auditing mechanisms to prevent your personal data from unauthorized access, disclosure, use, modification, damage, or loss.
We will make our best efforts to ensure the security of any data you send to us. However, please understand that due to technological limitations and potential malicious tactics in the internet industry, issues may arise in the systems and communication networks you use for our products or services due to factors beyond our control.
To prevent security incidents, we have established comprehensive early warning mechanisms and emergency response plans. In the event of a personal data security incident, we will immediately activate our emergency response plan to mitigate damage and promptly notify you, as required by applicable laws and regulations, of the incident’s general situation, potential impact, and measures taken or planned. If it is not feasible to inform each user individually, we will issue public announcements in a reasonable and effective manner. We may inform you of the incidents by email, letter, telephone, push notification or public announcements. At the same time, we will also report the security incidents to competent regulatory authorities when required by applicable laws and regulations.
V. Your Personal Data Related Rights
Depending on the applicable laws and regulations in your jurisdiction, you may have certain rights regarding your personal data. You can submit requests for exercising your rights by contacting us as indicated in the section X. How to Contact Us at the end of this Policy. You will not be subjected to discriminatory treatment for exercising your rights.
For security reasons, you may need to submit your request in writing or otherwise prove your identity. We may require you to verify your identity before processing your request. We typically respond to requests within 30 days, or as otherwise stipulated by applicable laws and regulations. Please be aware that we may refuse your request under certain circumstances as prescribed by applicable laws and regulations, such as for the reasons of national security, public interest, crime detection and prevention, protection of others’ rights, etc.
Depending on the applicable laws and regulations in your jurisdiction, you may possess all of, or part of, the following rights regarding your personal data.
1. Right to Know/ to be Informed
We will inform you of the details of processing your personal data to ensure transparency, which is also the purpose of establishing this Policy.
2. Right of Access
You have the right to access your personal data, except as otherwise provided by applicable laws and regulations.
3. Right to Rectification or Completion
If the personal data we have about you is incorrect or incomplete, you have the right to request that we rectify or complete it.
4. Right to Object
You have the right to object to our processing of your personal data that is based on legitimate interests or public interest (including objecting to direct marketing). You have the right to request, by contacting us, that we stop using your personal data for marketing purposes (including profiling), or to explicitly inform us that you no longer wish to receive further communications from us.
5. Right to Erasure (“Right to be Forgotten”)
You have the right to request the deletion of your personal data, and we will delete it under the circumstances stipulated by applicable laws and regulations. However, please note that certain exceptions (such as the establishment, exercise, or defense of legal claims) may legally permit or require us to refuse or be unable to comply with your request.
6. Right to Withdraw Your Consent
You have the right to withdraw your consent at any time, if our processing of personal data is based on your consent. After withdrawal, we may be unable to continue providing the corresponding functions or services to you, but this does not affect the processing of personal data based on consent prior to the withdrawal.
7. Right to Account Cancellation
You can apply to cancel your VST account through the “VST APP - Me - Account Cancellation” function or by contacting us. After verifying your identity and settling any account assets, we will provide you with the account cancellation service. Upon account cancellation, we will cease providing products or services to you and will delete your personal data upon your request (except where retention is required by law).
VI. Information We May Send to You
We may, when necessary (e.g., when services are suspended due to system maintenance), send you service-related information. You may not be able to opt-out of receiving these service-related communications, which are not promotional in nature.
VII. Protection of Minors
The VST Platforms are NOT directed to and we do not intend to, or knowingly collect personal data online from users under the age of 18 (or the legal age of majority in your jurisdiction). If you are a minor in your jurisdiction, you should obtain prior consent from your parent or legal guardian before using our products or services. You should also read this Policy under the supervision of your guardian and ensure that you have obtained their consent before using our products or services and providing us with your personal data. If your parent or legal guardian does not agree to your use ofour products or services or provision of personal data to us in accordance with this Policy, you should immediately stop using our products or services and notify us promptly.
Regarding the collection of personal data from minors with the consent of their parents or legal guardians, we will only use or publicly disclose this data when permitted by law, with the explicit consent of the parent or legal guardian, or when necessary for the protection of the minor.
If you are the guardian of a minor, please read this Policy carefully before registering or using our services. If you have any questions regarding the use of our products or services by the minor under your guardianship or about the personal data they provide to us, please promptly contact us through the contact details disclosed in the last section
X. How to Contact Us of this Policy. We will protect the confidentiality and security of minors ’data in accordance with applicable national data protection laws and this Policy. If we discover that we have collected personal data from a minor without prior verifiable consent from a parent or legal guardian, we will delete it as soon as possible.
VIII. Scope of Application
1. This Policy applies to all of our products and services.
2. Some of our services have specific privacy guidelines/statements that further explain how we process your personal data within those services. In case ofany inconsistencies between this Policy and the privacy guidelines/statement of a specific service, the latter shall prevail.
3. This Policy is prepared in multiple languages. In the event of any discrepancy between different language versions, the English version shall prevail.
4. Please note that this Policy does not apply to services provided by other companies or individuals. Our products and services may link to other websites, products, or services that we do not own or operate. We are not responsible for the privacy practices of these third parties, and we recommend that you read their privacy policies before providing any information to them.
IX. Updates to This Policy
1. This Policy is an integral part of the VST User Service Agreement. VST reserves the right to update or modify this Policy at any time. However, we will not diminish your rights under this Policy without your explicit consent.
2. We will notify you of any changes through reasonable means such as application push notifications or pop-up windows, so that you can stay informed about any modifications to this Policy in a timely manner.
3. For material changes involving the purposes, methods, or categories of personal data processing, we will obtain your consent again as required by applicable data protection laws.
X. How to Contact Us
If you have any questions or suggestions regarding this Policy, our personal data processing activities, or if you wish to exercise your rights, you can contact us by sending an email to Support@vst-worldwide.com.
Appendix I: Jurisdiction-Specific Addendum
A. For Users in Japan
1. Legal Basis
Regarding the legal basis mentioned in Section I.C. Legal Basis for Processing Personal Data of this Policy, under the applicable laws and regulations in Japan, business operators are not required to obtain a specific legal basis for collecting and processing personal data.
2. Cross-border Transfer of Personal Data
Regarding Section III. Cross-border Transfers of Personal Data, please refer to the following link for information on the personal data protection legal framework in the location of the Singapore data center:
https://www.ppc.go.jp/enforcement/infoprovision/laws/offshore_report_singapore/. Information regarding other jurisdictions can be found here:
https://www.ppc.go.jp/enforcement/infoprovision/laws/.
B. For Users in Malaysia
1. Supplementary Personal Data Related Rights (in addition to Section V. Your Personal Data Related Rights)
Right to Object to Processing for Direct Marketing Purposes: You have the right to request us to cease or not to begin processing your personal data for direct marketing purposes.
Right to Prevent Processing Likely to Cause Damage or Distress: You have the right to request us to cease or not to begin the processing for a specified purpose or in a specified manner if such processing is causing or is likely to cause substantial damage or distress to you or to another person, and the damage or distress is or would be unwarranted.
Right to Data Portability: You have the right to receive your personal data in a format readable by automated means or a commonly used format, and request us to transmit or transfer it to another data controller (except where technically infeasible).
C. For Users in Thailand
1. Supplementary Personal Data Related Rights (in addition to Section V. Your Personal Data Related Rights)
Right to Data Portability: You have the right to receive your personal data in a format readable by automated means or a commonly used format, and request us to transmit or transfer it to another data controller (except where technically infeasible).
D. For Users in Hong Kong SAR
1. Direct Marketing
We may use your personal data for direct marketing and send you promotional messages regarding our products or services. We will not use your personal data for direct marketing without your prior consent (including where an indication of no objection is received). After giving consent, you may withdraw your consent or unsubscribe at any time free of charge. The method for unsubscribing will be explained in the direct marketing messages we send.
Furthermore, we may provide your personal data to third parties for their use in direct marketing. we will not provide your personal data to third parties for their use in direct marketing without your prior written consent (including where an indication of no objection is received). After giving consent, you may withdraw your consent or unsubscribe at any time free of charge: you can contact us and request that we stop providing your personal data to third parties, or unsubscribe through the method specified in the third party’s direct marketing messages.
You may voluntarily choose whether or not to consent to the use of your personal data for direct marketing purposes as stated above. If you do not consent, you will not receive promotional messages about products or services, but this will not affect your normal use of our products or services.
E. For Users in Taiwan Region
1. Supplementary Personal Data Related Rights (in addition to Section V. Your Personal Data Related Rights)
Right to Request Cessation of Collection, Processing, or Use: You have the right
to request us to cease the collection, processing, or use of your personal data.
F. For Users in Indonesia
1. Supplementary Personal Data Related Rights (in addition to Section V. Your Personal Data Related Rights)
Right to Data Portability: You have the right to obtain personal data presented in a commonly used or machine-readable format, and to use or transmit such data to other controllers.
Right Not to be Subject to Automated Decision-making: You have the right to object to decisions based solely on automated processing (including profiling) which produce legal effects concerning you or significantly affect you.
Right to Sue and Claim Compensation: You have the right to file a lawsuit and claim compensation for unlawful processing of personal data.
G. For Users in Vietnam
1. Supplementary Personal Data Related Rights (in addition to Section V. Your Personal Data Related Rights)
Right to Claim Damages: You have the right to claim damages when your personal data is not protected in accordance with laws and regulations, unless otherwise agreed by the parties or otherwise provided by law.
Right to Self-protection: You have the right to protect yourself or request competent authorities and organizations to implement measures for protecting civil rights according to local laws and regulations.
H. For Users in Spain
1. Supplementary Personal Data Related Rights (in addition to Section V. Your Personal Data Related Rights)
Right to Data Portability: You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to another data controller without hindrance from the original data controller, provided that the relevant legal requirements are met.