This Circular applies to Party and State agencies, the Vietnam Fatherland Front at the central and local levels, the Central Post Office Department (Ministry of Science and Technology), and relevant organizations and enterprises involved in providing services of the Dedicated Data Transmission Network as stipulated in Article 2 of Decision No. 33/2025/QĐ-TTg.

The Dedicated Data Transmission Network is deployed to the connection locations of agencies and organizations using the service. Service-using agencies and organizations are responsible for implementing internal connections from the terminal equipment of the Dedicated Data Transmission Network to end users.

Ensuring cybersecurity

According to the Circular, information systems connected to the Dedicated Data Transmission Network must connect through a gateway to ensure cybersecurity and to deploy services and applications of the Dedicated Data Transmission Network.

Information systems participating in the Dedicated Data Transmission Network connection must have their cybersecurity level determined by the managing entity and must fully implement cybersecurity protection tasks and measures according to their assigned level (Level 3 or higher for information systems transmitting state secrets) in accordance with cybersecurity laws.

Internal network zones of agencies and organizations using the service and connecting to the Dedicated Data Transmission Network must be established and segmented according to agency, organization, and usage purpose, and must deploy malware prevention solutions in accordance with national cybersecurity standards and regulations.

Connections of the Dedicated Data Transmission Network used for transmitting state secrets must comply with legal regulations on protection of state secrets and cryptography.

Coordination activities for inspection and handling of incidents related to the Dedicated Data Transmission Network connection shall be carried out in accordance with the operation, management, and cybersecurity assurance procedures issued by the Central Post Office Department and relevant legal regulations.

Agencies and organizations must develop and implement plans for responding to and recovering from network and cybersecurity incidents, and annually organize drills for incident response at regional and national levels for the Dedicated Data Transmission Network.

Regulations on connection monitoring

The Circular stipulates that the Dedicated Data Transmission Network shall be monitored for network and cybersecurity 24/7 at the connection gateway through the centralized management and monitoring system of the Central Post Office Department.

The Central Post Office Department shall share monitoring rights for status information, quality, and online connection alerts with specialized agencies of Party bodies, ministries, sectors, and localities within their assigned scope.

Before the 5th day of each month, the Central Post Office Department shall share aggregated data on the operation and usage level of the Dedicated Data Transmission Network with specialized agencies of Party bodies, ministries, sectors, and localities.

The secure transmission channel equipment system of the Government Cipher Committee deployed on the Dedicated Data Transmission Network for transmitting state secrets shall be operated and monitored in accordance with laws on protection of state secrets and cryptography.

The centralized cybersecurity monitoring system of the Dedicated Data Transmission Network shall be connected and shared with the National Cybersecurity Monitoring System to receive and coordinate incident response in accordance with cybersecurity laws.

Database on connectivity

The connectivity database includes: regulations on connection, connected agencies and organizations, connection duration, number of transmission channels, bandwidth, connection quality, and other related information.

Infrastructure serving the connectivity database includes: server systems, workstations, software systems, network connectivity assurance equipment, cybersecurity equipment, data encryption devices, storage devices, and other related equipment.

The connectivity database is collected, updated, stored, and regularly and continuously exploited in accordance with the law.