Data security policy

II. Collection of Personal Data

Omm BROWS will collect data from customers, including: Full name; Contact address; Email; Phone number; Username; Login password to set up personal profiles.

The data includes mandatory information declared by customers when registering an account on Omm BROWS;

When collecting customers' personal data, Omm BROWS aims to provide the most practical utilities to customers, protect their rights, and ensure respect for customer privacy. Within the scope of these terms, Omm BROWS commits not to sell, rent, or exchange customer information data collected for any other parties outside those listed in this Regulation.

II. Use of Personal Data

The data collected from customers is used within the following scope:

• Providing advisory services to customers based on the information provided by customers;
• Sending customers notifications about information exchange activities between Omm BROWS and members;
• Ensuring the safety of customers in cases of account destruction, theft, or impersonation;
• Contacting customers to provide goods/services when customers purchase products/services on the system. Confirming information during purchase and delivery activities;
• Conducting surveys; promotional activities; providing updates on system operation terms affecting customers;

Securing customer information is Omm BROWS' top priority when collecting customer information data. Omm BROWS always strives to comply with the standards for protecting customers' personal information;

Omm BROWS requires password confirmation upon login to prevent unauthorized access to customers' personal information systems. In cases where customers leave their computers without logging out on the website, the system will automatically log out after a period of time.

III. Data Storage Period

1. Omm BROWS will store data collected from customers from the time customers provide information until the termination of customer account activity.
2. Omm BROWS will retain and use customer data when necessary to comply with legal obligations, resolve disputes, and enforce Omm BROWS agreements.
3. Customers may also withdraw consent for the collection, use, and/or disclosure of their personal data that Omm BROWS is currently retaining or controlling by emailing the Omm BROWS Customer Care Department at ommbrows@gmail.com or through the website https://trogiup.ommbrows.vn/, and we will process these requests in accordance with the Privacy Policy and relevant legal regulations.

However, withdrawing consent may mean that Omm BROWS cannot continue to provide Services to customers, and the platform administrator may need to terminate your current relationship and/or your contract with Omm BROWS.

IV. Modifying or Deleting Personal Profile Information

Customers can independently check, update, adjust, or delete their personal information through the following methods:

• Customers can log in to their account, access the personal information section, and edit their personal details.
• Customers can call the system administrator support phone/email and request to edit their personal information.

V. Commitment to Customer Information Security

V.1 Protecting Personal Customer Information Policy

Omm BROWS administration pledges to protect customers' personal information with the following commitments:

• Absolute commitment to data security as per Omm BROWS's personal data security policy.
• Guaranteeing absolute security for all online transaction information, including transaction history and digitized document information, within the secure data center area.
• Commitment to refrain from using, transferring, providing, or disclosing any customer's personal information to any third party without the customer's consent, except any other terms specified in this Regulation and by law.
• In the event of technical errors or data breaches, the platform administration is responsible for promptly notifying the relevant authorities and customers within 09 days of the incident.

V.2 Payment Information Protection Policy

Omm BROWS commits to strictly implement necessary security measures for all payment transactions conducted on the Omm BROWS e-commerce platform.

• The payment transaction policy for international and domestic card payments (internet banking) ensures compliance with the security standards of Payment Gateway Partners (Onepay), including:
• Customer financial information is protected throughout the transaction process using the SSL (Secure Sockets Layer) protocol.
• Certification of Payment Card Industry Data Security Standards (PCI DSS) provided by Trustwave.
• One-time password (OTP) sent via SMS to ensure account access authentication.
• 128-bit MD5 encryption standard.
• Rules and regulations of information security in the banking and financial sector as prescribed by the State Bank of Vietnam.
• The payment transaction security policy at Omm BROWS applies to customers as follows:
• Omm BROWS only retains encrypted strings provided by the Payment Gateway Partner to Omm BROWS. Omm BROWS does not directly store customer card information. The security of customer payment card information is managed by the licensed Payment Gateway Partner.
• For international cards: customer payment card information that can be used to establish transactions is not stored in the Omm BROWS system. The Payment Gateway Partner will store and secure this information.
• For domestic cards (internet banking), Omm BROWS only stores the order code, transaction code, and bank name.

VI. Information Sharing Parties

1. Omm BROWS administration may share or disclose customers' personal information when considered that it is necessary to protect customers' rights, ensure transaction safety for customers, and upon request from authorized third parties.

2. Omm BROWS administration may share customers' personal information with companies within the Omm GROUP Technology Education Consortium to research and introduce better products and services to individual customers. If customers do not wish to share their information, Omm BROWS fully agrees upon receiving requests from customers.

Omm BROWS may disclose customers' personal information upon request from legal counsel and authorized agencies.

If Omm BROWS participates in a merger or is acquired, whether partially or wholly, customers will be notified via email or through official announcements on the Omm BROWS website about any changes in ownership rights or the use of customers' personal information, as well as any related customer rights, to any third party with the customer's consent.

Omm BROWS and our partners use Cookies to remember customer information when accessing the website. Cookies are pieces of information that websites store in the customer's browser or on the customer's hard drive when the customer accesses the website.

Omm BROWS uses third-party services to monitor the company's utility and track customer behavior on our website. However, we do not have the right to engage in or adjust their Cookies. The information we obtain through third-party tracking is completely anonymous and used to improve services and marketing efficiency.

Like most other websites, we automatically aggregate and store information in log files. This information includes Internet Protocol (IP) addresses, browser type and language, Internet service provider, referring and exit pages, operating system, date and time stamp, and clickstream data. We use this information to understand and analyze trends, manage the website, as well as conduct customer behavior research, collecting user personal information.

VII. Information Storage Address

All customer information is stored at the following address:
OMM TRADING INVESTMENT AND SERVICES CO., LTD

Address: 149/98 Nguyen Duy, Ward 9, District 8, Ho Chi Minh City, Vietnam

Phone: 0931739468

Email: ommbrows@gmail.com

Certain sections of Omm BROWS's privacy policy may change. If we decide to change the way we collect, use, or share information, we will commercially notify members by email, explain the changes, and provide options to allow or disallow the use of personal information on the new changes. If you have any questions about the policy system, or any inquiries about Omm GROUP, please contact us using the following information for timely support.