Skip to content

Vietnam's PDPL Is Now In Effect. Is Your Google Workspace Compliant?

Know Your Risk Before the Deadline

We scan your Google Workspace for exposed personal data — employee IDs, phone numbers, tax codes, and more — so you can fix compliance gaps before regulators find them.

Get Your Free Risk AssessmentSee How It Works

Days Until the Electronic Labor Contract Deadline

Days
Hours
Minutes
Seconds

Every company with employees in Vietnam must register electronic labor contracts by this date.

Helping companies across Vietnam comply with Law 91/2025 (PDPL), Decree 356 & Decree 337

Built for companies in Vietnam's fastest-growing industries

Manufacturing
Tech & Startups
Logistics
Foreign-Invested (FDI)
Retail & E-commerce
Professional Services
Built for Google Workspace

Compliance references: Law 91/2025/QH15 · Decree 356 · Decree 337

THE CHALLENGE

Your Google Workspace Is Full of Personal Data You Don't Know About

Every day, your team shares employee IDs in spreadsheets, sends tax codes via email, and stores contract scans in Drive. Under Vietnam's new Personal Data Protection Law, every piece of this data must be identified, protected, and documented — or your company faces enforcement action.

Hidden PII Exposure

Employee national IDs (CCCD/CMND), phone numbers, bank accounts, and tax codes scattered across Drive, Gmail, and Sheets — often shared without encryption or access controls.

Dual Compliance Burden

Vietnam's PDPL isn't just GDPR with a Vietnamese name. Foreign-invested companies face additional requirements: Cross-border Transfer Impact Assessments, local Data Protection Impact Assessments, and Ministry of Public Security oversight.

The July 1 Deadline

Decree 337 requires every company with employees in Vietnam to register electronic labor contracts on the national platform by July 1, 2026. Paper contracts alone will no longer be legally sufficient.

THREE STEPS. NO DISRUPTION.

Scan, Report, Fix — In 48 Hours

1

Scan

We connect to your Google Workspace (read-only) and scan Drive, Gmail, Sheets, and Docs for Vietnamese PII patterns — CCCD numbers, phone formats, tax IDs, bank account numbers, and more.

2

Report

You receive a detailed risk report showing exactly where personal data is exposed, who has access, and which regulations apply. No jargon — clear, actionable findings.

3

Fix

We provide a prioritized remediation plan with specific steps your team can take. For companies that need hands-on help, we offer guided remediation support.

The entire process takes less than 48 hours. No software to install. No disruption to your team.

FREE RESOURCE

Free: PDPL Compliance Checklist

10 things every Google Workspace user in Vietnam should check before July 1, 2026.

We respect your privacy. No spam, ever.

ONE SCAN. EVERYTHING INCLUDED.

Transparent Pricing

No subscriptions. No hidden fees. One audit, one price.

COMPLIANCE AUDIT

From $299

per audit

  • Full Google Workspace PII scan (Drive, Gmail, Sheets, Docs)
  • Vietnamese PII pattern detection (CCCD, phone, tax ID, bank account)
  • Detailed risk report with findings & severity levels
  • Prioritized remediation roadmap
  • Decree 337 readiness assessment
  • Delivered within 48 hours
Get Started

Need a custom scope or multiple workspace audits? Contact us for enterprise pricing.

Read-only access. Your data never leaves your workspace. We scan metadata and patterns — not content.

SEE WHAT WE FIND

Your Compliance Risk, Laid Out Clearly

Every audit delivers a detailed report showing exactly where personal data is exposed in your Google Workspace.

CompliScan Risk Report
SAMPLE

Total Findings

23

Files Scanned

1,247

Risk Level

High

Severity Breakdown

Critical (3)High (8)Medium (9)Low (3)

employee_records.xlsx

Contains 47 CCCD numbers

CRITICAL

Full report includes all 23 findings with remediation steps

Get Your Free Risk Assessment

NOT A GENERIC GDPR TOOL

Built for Vietnam's Regulatory Reality

Vietnam-Specific

Purpose-built for Vietnamese regulations: PDPL (Law 91/2025), Decree 356, and Decree 337. Not a generic GDPR tool with a Vietnamese flag.

Google Workspace Native

Deep integration with Drive, Gmail, Sheets, and Docs. We know where Vietnamese businesses actually store their data.

Read-Only & Secure

We never modify, copy, or store your files. Read-only API access that you can revoke at any time.

AI-Powered Detection

Advanced pattern matching identifies Vietnamese PII formats that generic compliance tools miss — CCCD/CMND numbers, local phone formats, Vietnamese tax codes.

See Case Studies →

QUESTIONS WE HEAR MOST

Straight Answers

We scan for Vietnamese personally identifiable information (PII) including: Citizen Identity Card numbers (CCCD/CMND), phone numbers in Vietnamese formats, tax identification numbers, bank account numbers, social insurance numbers, and other patterns defined under Decree 356 as personal data requiring protection.

No. We use Google Workspace's read-only API to scan file metadata and content patterns. We never download, copy, or store your actual files. You grant access through Google's standard OAuth flow, and you can revoke it at any time from your Google Admin console.

Decree 337 requires all companies with employees in Vietnam to register their labor contracts on the national electronic labor contract platform by July 1, 2026. This applies to both Vietnamese and foreign-invested companies. Our audit includes a Decree 337 readiness assessment to help you prepare.

Yes. Vietnam's PDPL has requirements that go beyond GDPR, including: mandatory registration with the Ministry of Public Security for cross-border data transfers, a Vietnamese-format Data Protection Impact Assessment (DPIA), and specific local data categories not covered by GDPR. Our audit identifies exactly where your GDPR compliance falls short of Vietnamese requirements.

Most audits are completed within 48 hours of receiving Google Workspace access. Larger organizations with multiple domains may take 3–5 business days.

You receive a comprehensive risk report that includes: a summary of all PII exposure found across your Google Workspace, severity ratings for each finding, specific regulatory references (which law or decree applies), a prioritized remediation plan with concrete next steps, and a Decree 337 readiness assessment.

Still have questions? We're happy to help.

Email usBook a call

LET'S TALK

Ready to Know Your Risk?

Book a free 15-minute call to discuss your compliance needs, or request a risk assessment directly.

Prefer to talk first?

Book a 15-minute call →
hello@compliscan.co
Ho Chi Minh City, Vietnam