Thai2Viet / Tieng Thai Yanisa - Legal Compliance Pack

Purpose
- Keep one downloadable checklist for store review, privacy review and operational audit.
- This file is a working checklist, not legal advice.
- Machine-readable audit index: /audit/audit-index.json
- Pre-production local gate report: /audit/preproduction-local-check.txt
- Latest generated readiness report: /audit/production-readiness-report.txt

Public legal URLs
- Privacy Policy: /privacy, /vi/privacy, /th/privacy, /en/privacy
- Terms of Use: /terms, /vi/terms, /th/terms, /en/terms
- Account Deletion: /account-deletion, /vi/account-deletion, /th/account-deletion, /en/account-deletion
- Account deletion request API: POST /api/account-deletion/request
- Admin deletion queue: GET /api/admin/account-deletion-requests
- Contact / support: /contact, /vi/contact, /th/contact, /en/contact

Data collected by product flow
- Account: email, display name, role, session metadata.
- Learning: saved words, flashcard review state, dictionary usage counts.
- Community: Q&A questions, replies, likes, reports and edit history where enabled.
- Payments: subscription request metadata, donation metadata, receipt upload metadata, admin decisions.
- Operations: privacy-friendly analytics events and sanitized client error logs.

Retention notes
- User account and learning data should be deleted or anonymized after a verified account deletion request unless retention is legally or operationally required.
- Logged-in users can submit an in-product deletion request. Admin should mark requests verified/completed/rejected in the audit queue after identity and retention review.
- Payment, fraud-prevention and audit records may need limited retention for accounting, dispute handling, security and legal obligations.
- Retention exceptions must be disclosed in the privacy policy and handled consistently.

Admin audit evidence
- Audit index: /audit/audit-index.json
- Pre-production local gate report: /audit/preproduction-local-check.txt
- Production readiness report: /audit/production-readiness-report.txt
- Payment requests: /api/admin/payments
- Payment provider events: /api/admin/payment-events
- Client errors: /api/admin/client-errors
- Account deletion requests: /api/admin/account-deletion-requests
- Billing readiness: /api/mobile/billing/readiness
- Health check: /api/health

Operational controls to keep current
- Review admin user list and admin email configuration before release.
- Keep receipt storage private and never public-listable.
- Keep webhook secrets, database credentials and store billing credentials outside source control.
- Run secret scanning before deployment.
- Run backup and restore drill before launch.

Open legal review items
- Confirm PDPA/GDPR/Vietnam personal data obligations for target markets.
- Confirm tax receipt, invoice and donation wording requirements.
- Confirm refund policy for manual web subscriptions and store subscriptions.
- Confirm whether public donation wording is treated as donation, tip or sponsorship in each operating jurisdiction.