The integrity of data message from legal perspective (Part 1)

-

Recently, most parties involved in electronic transactions have been expressing an outstanding interest in the integrity of data messages since it is considered one of the important criteria to determine the value as evidence and the value as the original of such data messages.

According to the definition in the Law on Electronic Transactions 2005: “Data message is information created, sent, received and stored by electronic means”. In a guiding resolution of the Judicial Council of the Supreme People’s Court, electronic data messages used in electronic transactions must be formatted according to the provisions of the law on electronic transactions and the guidance of the Supreme People’s Court, by forms such as electronic data exchange, electronic documents, electronic mail, telegram, telegraph, fax and other similar forms.

This article shall be divided into parts to thoroughly evaluate the integrity of the data message, which is the basis for determining (i) the original value and (ii) the evidence value of the data message:

1.   The data message has the same value as the original

The data message is valid as the original when the following conditions are met:

a)   The content of the data message remains intact since it is first initialized as a complete data message.

First initialization means the acts of creating a data message by using electronic media, computer applications, etc. For example, a document drafted by using Microsoft Word application, stored as a .doc or .docx file, implicitly attached with information about date, time of creation, originator and other attributes then such file containing data message is considered first-time initialized. Any interferences, amendments to any information, explicitly or implicitly, shall cause the file to lose its integrity, and such interferences and/or amendments are also traced on the computer system and can be looked up technically by right-clicking on the file and select “Properties” item.


The integrity of the first initialized file will be lost when there are acts of interference that change the content of the data message attached within such file. However, The integrity of the first initialized file will be lost when there are acts of interference that change the content of the data message attached within such file. However, intervention may also create a new file, containing and displaying new data messages. In addition to the changes has been saved on the computer system, the information about the modification date and time, the editor and the editing history of the file shall be updated accordingly, and can be easily accessed, searched in the same way as mentioned-above, after closing the Word document, right-clicking and select Properties.


It can be concluded that the contents of data messages and information contained in a first initialized file may be easily edited, tampered with and continuously changing. Even hidden content and information that must apply special methods to look up can also be modified too and therefore, cannot guarantee the integrity of the file and the data messages in the process of transmitting, sending, opening and displaying such file and data messages. This issue raises a requirement for the integrity of the content of data messages in electronic transactions, according to which: “The content of a data message is considered complete when it has not been changed, except for changes in appearance arising in the process of sending, storing or displaying data messages”. Thus, a data message can still remain the same value as the original in case it is changed in forms but not in the content.

Although a data message is still considered integrity when the data message has been changed during the process of sending, storing or displaying, but in order for a data message to be exploited when the law requires, such data message must be stored by any method that satisfy the following conditions:

Article 15. Storage of data messages

1. In cases where the law requires records, files or information to be stored, such records, files or information can be stored in the form of data messages when the following conditions are satisfied:

a) The information in the data message is accessible and usable for reference when necessary;

b) The contents of such data message are stored in the very format in which it was originated, sent or received, or in a format which can be demonstrated to represent accurately its contents;

c) Such data message is stored in a manner to enable the identification of its origin, destination, and the date and time when it was sent or received.

2. Contents and time limit for storage of data message shall comply with the provisions of law on storage.

The identification of origin, destination and the date and time under point (c) above are referring to the hidden contents and information of data messages and electronic documents, electronic vouchers, etc. If such hidden contents and information are not considered as contents that need to ensure the integrity as a data message then every text files, electronic documents, electronic vouchers, etc. can easily be interfered with or edited without being able to distinguish which is the original. The most common practice is that the users initialize a data message for the first time to save the contents of documents and papers by scanning and taking photos of them, converting them into file extensions such as .pdf, .jpg, .png… With editing tools like photoshop, it is possible to entirely interfere with the content of the text displayed on such file extensions, causing them to lose their integrity compared to the time the files were created.


So, is there any way to ensure that the data message is original from the moment it is first initialized? The next article shall analyze and explore the purpose of developing and exploiting electronic signatures, ways to ensure the integrity of data messages when converting from paper documents and vice versa, as well as other cases and circumstances which data message is incomplete but is still recognized as valid.

By: Phong Tran (Vento) | LinkedIn
(To be continued)

[1] Resolution No. 04/2016/NQ-HDTP on 30 December 2016






Comments

Post a Comment

Popular posts from this blog

ESOP of non-public companies in Vietnam

-
In recent years, Employee Stock Ownership Plan (" ESOP ") is becoming a popular solution for Vietnamese enterprises in their human resources strategy. The issuance of shares under ESOP (" ESOP Shares ") by the public company is subject to regulations of Law on Securities, which shall not be applied to the non-public company. This article expresses some relevant respects of issuing ESOP Shares by the non-public company in compliance with current Vietnamese Law. Conditions of ESOP Shares issuance While the public companies planning to issue ESOP Shares shall closely comply with provisions of Decree No. 155/2020/ND-CP promulgated by the Government on 31 December 2020 guiding on the execution of Law on securities (hereinafter referred to as " Decree 155/2020 "), the non-public company shall not be subject to. Although conditions for ESOP Shares issuance of the non-public company are absent in Law on Enterprises as well as other legal documents, the non-public
Read more

The integrity of data message from a legal perspective (Part 3)

-
In Vietnam, electronic documents, emails, telegraphs, faxes,… which are familiar forms and can be easily collected and evaluated the integrity, electronic data is a much more comprehensive and diverse concept. The definition of electronic data specified in Clause 1, Article 99 of the Criminal Procedure Code 2015 may refer to: ” Electronic data is a   symbol, letter, digit, image, sound or similar form created, stored, transmitted or received by electronic means”.   Electronic data is collected from electronic media, computer networks, telecommunication networks, online, and other electronic sources collectively referred to as the electronic environment. Electronic data is invisible and immaterial because the electronic environment is a “virtual” environment. In addition, non-border or territorial electronic data may be initiated in one country while such data is stored in another (e.g., online gambling cases in Vietnam but the server system that stores gambling data is all abroad). Wit
Read more

Structural debt, bad debt and enterprise debt trading

-
1. State policy in promoting the settlement of bad debts According to the report of the Government and the State Bank of Vietnam submitted to the National Assembly at the 3rd Session, the 15th National Assembly, as of December 31, 2021, that is, after nearly 5 years of applying Resolution 42/2017/QH14, the total the number of bad debts that have been handled reached VND 380.2 trillion, equivalent to 47.9% of the bad debts at the time of issuing Resolution 42 on August 15, 2017. In which, 40% of the total bad debt, equivalent to VND 148 trillion has been resolved due to self-payment by clients and the remaining 60% has been resolved through the application of pilot solutions to handle bad debts specified in Decree No. 42, such as selling bad debts and security assets at market value, exercising the right to seize security assets, transferring security assets which are real estate projects... Thus, there are still about 52.1% of bad debts have not been completely resolved after nearly
Read more