Tran Bao Trung

Associate Director, KPMG Law

KPMG in Vietnam

Trung is a Certified International Privacy Professional/ Europe of the International Association of Privacy Professionals (CIPP/E from IAPP), with extensive experience in data protection and cybersecurity practices in Vietnam. Trung has been working closely with MNCs and local companies on compliance gap analysis and remediation in compliance with the Vietnam Personal Data Protection Decree. His practices also involve other digital transformation-related matters like telecoms, intermediary payment, OTT platforms, and intellectual property. He handles a variety of legal matters – from market access, licensing, regulatory compliance, to disputes and government ex officio actions.  

Trung contributed to the work of EuroCham’s Digital Sector Committee as an active member of the Committee and partook in the its advocacy programmes relative to many legislative projects and most notably on the Draft Personal Data Protection Decree, Draft Internet Decree and Draft Telecoms Law of Vietnam. 

Professional and Industry Experience

  • Perform a privacy gap remediation project for a luxury MNC, with the work streams ranging from consent mechanisms, data subject rights, CCTV, filings, network security, etc.
  • Complete an advisory and training project for a credit scoring company on the PDPD and its impact on their business models, with practical advice on compliance strategies. 
    Provide legal advice and conduct due diligence for a M&A project to acquire an e-wallet company. 
  • Provide guidance on cybersecurity and data localization for a global cloud company.
  • Provide advice on a number of privacy issues (including data subject rights, data caching via local points of presence, etc.) for a global social networking platform. 
  • Provide market access, regulatory compliance and transaction advice on products and services in the fields of technology/media/telecoms (“TMT”), including Internet connection, VPN, virtual call platform, cloud computing and data center, encryption products, intermediary payment services, OTT streaming platform, etc., on a regular basis. Defend a major OTT streaming platform’s compliance position from the Government’s actions and the risk of service blockage in Vietnam.
  • Conduct data privacy trainings for a number of companies, delivering content to audience coming from diverse backgrounds like legal, retail, IT, office operation, etc