Personal Data Protection Policy

Personal Data Protection Policy

Bluebell Securities Co.Ltd. (‘Company’ or ‘we’) recognizes the importance of your Personal Data protection. In order to comply to the laws on personal data protection, we have prepared this Personal Data Protection Policy (the ‘Privacy Policy’) which sets out the objectives, collection channels, uses, or the disclosures of Personal Data as defined below. The Company considers it a duty and responsibility towards Personal Data of the Individuals and Corporate Customers relating to the Company’s business operations and sets its standards in compliance to the Personal Data Protection Act B.E. 2562. The owners of the Personal Data can be assured that their Personal Data will be protected, used, and managed appropriately.

- Bluebell Securities Co.Ltd. is called the ‘Company’, ‘we’, ‘us’, ‘our’

- Individuals are called ‘you’ or ‘your’ or ‘yourself’

- Individual Customers and Corporate Customers are collectively called the ‘Customers’

This privacy Policy is applicable to the Personal Data belonging to the following Individuals:

1) Individual Customers, including individuals who use or had used products or services by the Company;

2) Individuals who have never used products or services by the Company or who are not Customers of the Company, but of whom the Company has the need to collect, use, or disclose Personal Data, such as individuals who visit or use websites, platforms, or applications belonging to the Company, or who has attended seminars with the Company, including any individuals who has any relationship in conducting transactions with the Company or have given personal data to the Company through any channels; and

3) Any Individuals connected to Corporate Customers, such as employees, staffs, personnel, officers, representatives of legal entity, shareholders, authorized persons, directors, contact persons, representatives, and including other individuals that the Corporate Customers disclose their personal data to the Company in order to engage in transactions with or contact the Company, and whether it be the Corporate Customers who use or had used products or services by the Company.

This Privacy Policy is applicable to businesses, websites, applications on mobile devices, call centres, events and exhibitions, online contact channels, other locations, and any other means in which the Company collects, uses, or discloses your Personal Data.

1. Personal Data Collected by The Company

         “Personal Data "means information related to you that verify your identity or can be used to verify your identity as specified below. In order for the Company to provide services to Customers, the Company may collect your personal data directly from you, or through other channels, such as through investment consultants, investment planners, branch managers, Company’s call centres, or indirectly through social medias, online platforms belonging to ”  third parties, or through other public data sources, and through affiliates, service providers, business partners, governmental agencies, or through third parties such as third party custodians, sub-custodians, and brokers. The types of data the Company collects depend on the relationship between you and the Company and the services or products the Customers demand from the Company.

         “Sensitive Data”  means Personal Data classified by the laws as being Sensitive Data. The Company may collect, use, or disclose Sensitive Data only when receive an expressed consent from you, or when permissible by the laws.

Corporate Customers

               Your Personal Data that the Company collects, uses, and discloses shall include but not be limited to the following Personal Data:

               (A)    Personal Information such as title, name, gender, age, occupation, position, salary, workplace, location, education, nationality, marital status, information on documents issued by governmental agencies (such as ID card number, passport number, taxpayer identification number, and driver’s license details), signature, voice recordings, telephone conversation recordings, photographs, CCTV records, house registration, and other personal information;

               (B)    Contact Information such as address, telephone numbers, mobile phone numbers, fax numbers, email address, LINE ID, and IDs from other electronic communication platforms;

               (C)    Account and Financial Information such as credit cards and debit cards details, account numbers and account types, PromptPay details, current assets, incomes and expenses, and including payment records and product and service subscription records;

               (D)     Transaction data such as types of products (e.g. securities, including debentures, mutual funds, derivatives, prices and volumes, purchase order numbers, conditions (if any), transaction details and remaining balance, payment records and records on transactions relating to assets, financial statements, liabilities, taxes, revenues, earnings and investment, sources of wealth and funds, representation, trade records, and default records;

               (E)    Technical Data such as IP or Internet Protocol address, web beacon, Logs, Device IDs, models and types of devices, networks, connection details, access details, single sign-on (SSO) details, Login logs, access time, time spent on our web page, cookies, login data, search history, browsing details, browser types and versions of browsers, time zone setting, locations, types and versions of bowser plugins, operating systems and platforms, and other technologies on devices that you used to access platform;

               (F)    User Details such as account identifiers, user names and passwords, PIN ID codes for trading, interests and satisfaction levels, activities, investment objectives, knowledge and investment experiences, and risk tolerance level; and

               (G)    Usage Details such as information on your usage of websites, platforms, products and services. Records on your contact to the Company.

Corporate Customers

               Your Personal Data that the Company collects, uses, and discloses shall include but not be limited to the following Personal Data:

               (A)    Identification Data such as first name, surname, title, age, gender, photographs, information displayed on curriculum vitae, education, information relating to employment (such as situation, duty, occupation, job position, the company you work for, or is employed by, or is a shareholder of), information displayed on documents issued by governmental agencies (such as ID card number, passport number), shareholding ratio, signature, and your other personal data;

               (B)    Contact Information such as telephone numbers, address, country, email address, LINE ID, and other data of similar nature;

               (C)    Personal Data generated through the relationships of Customers and the Company such as account opening, management, operation, payment, liquidation, processing and reporting on behalf of the Customers. The said data may include signatures and documents sent in correspondence with the Company; and

               (D)     Other Data that has been collected, used, or disclosed through relationships with the Company, such as information you give to the Company in contracts, forms, surveys, or information collected through your participation in business activities, seminars, or social events hosted by the Company.

               Your Sensitive Data that the Company shall collect, use, disclose, and/or transfer overseas include:

               a. Biometric information such as facial recognition or fingerprint recognition

               b. Disability

               c. Criminal records

               d. Other sensitive information displayed within personal documents such as nationality/religion

2. Company’s Objectives of Collection, Use, or Disclosure of Your Personal Data

The Company may collect, use, or disclose and transfer your Personal Data and Sensitive Personal Data to overseas for the following objectives:

         2.1 Objectives requiring consent

                  The Company requires your consent for the following:

                  a) Marketing communications, special offers, promotional materials relating to products and services offered by the Company, affiliates, and Company’s subsidiaries and third parties in which the Company cannot rely on any other legal bases;

                  b) The collection, usage, and/or disclosure of your Sensitive Data for the following objectives:

                           1. Biometric information such as facial recognition or fingerprint recognition for the purpose of location entrance/ service registration, and identity verification and confirmation;

                           2. Disability information for the purpose of contact and service provision in appropriate manners;

                           3. Criminal records for the purpose of background check in compliance to anti-money laundering laws, and/or laws relating to Terrorism;

                           4. Sensitive Data displayed within personal document such as nationality and religion for the purpose of identity verification and confirmation; and

                  c) Overseas transfer of your Personal Data to countries that may not possess sufficient level of data protection standards, in which the laws require that expressed consent must be given.

In case that the legal base is consent, you have the right to withdraw your consent at any time by contacting the Company as specified in No. 9 to withdraw your consent. The withdrawal of consent will not affect the lawfulness in the collection, use and disclosure of your Personal Data and Sensitive Data based on your consent before the withdrawal was made.

            2.2 Objectives in which the Company may rely on other legal bases to process your Personal Data

The Company may rely on the following legal bases in order to collect, use, disclose, and/or transfer overseas your Personal Data:

1. To perform obligations for entering into contract with you, or to perform obligations under contract you entered into with us;

2. Compliance with the applicable laws; 

3. As an obligation to the Company’s legitimate interests and of third parties’, to be balanced with your benefits and fundamental rights concerning the protection of your Personal Data;

4. To prevent or suppress danger to person’s life, body, or health; and 

5. For public interests. To carry out tasks for public interests, or for the purpose of exercising official authority.

The Company may rely on legal bases in (1) to (5) above in order to collect, use, disclose, and/or transfer overseas your Personal Data for the following objectives:

Corporate Customers

a) To contact you prior to your entering into contract with the Company;

b) To process your account opening request, account maintenance, and operations relating to your accounts, including but not be limited to the processing of request for services or products, processing of your transactions, generating account statement, and operating and closing your accounts;

c) Providing you with services, such as financial advisory, securities brokerage, securities dealing, securities underwriting, investment consultant, securities borrowing and lending, derivatives trading, derivative brokerage, derivative consultant, and deal with matters concerning the provision of these services;

d) Provide investment products, offering you choices, including third parties’ products, from time to time and deal with matters concerning these investment products;

e) Relationship management between you and the Company, and management of your accounts with us;

f) Preventing Customers with certain limitations, such as preventing the elderly from entering into certain transactions by themselves, for the purpose of damage control;

g) To carry out your instructions, or to response to your enquiries or feedbacks, and to resolve your complaints;

h) Identity verification and credit checks, know-your-customer (KYC) process and customer due diligence (CDD) process, other screenings and checks, and continuous monitoring as may be required under any applicable laws;

i) To prevent, detect, and investigate frauds, misconducts, or unlawful activities, whether or not requested by governmental or supervisory authorities, and to analyze and manage risks;

j) To comply with the applicable laws, regulations, rules, directives, orders, instructions, and requests from government, tax, law enforcement authorities, or other authorities or supervisory authorities whether local or foreign, such as the Stock Exchange of Thailand, Thailand Futures Exchange, Thailand Securities Depository, Thailand Clearing House, Thai Bond Market Association, Securities and Exchange Commission of Thailand, Anti-Money Laundering Office, Thai Revenue Department, and the Bank of Thailand;

k) The management of the Company’s infrastructures, internal control, internal audit, business operations, and to comply with the Company’s policies and procedures that may be required by applicable laws and regulations, including laws and regulations concerning risks management, security, financial and accounting audit, systems, and business continuity;

l) The handling of or investigation into complaints, claims, or any disputes;

m) Marketing communications, information, special offers, and promotional materials relating to products and services of the Company, affiliates subsidiaries of the Company, and third parties;

n) The development of new services and products, and the notifying you on current products and services from time to time;

o) To conduct research, planning, and statistical analysis such as your investment limit and investment behaviour for the development of the Company’s products and services;

p) To organize Company’s marketing campaigns and activities, conferences, seminars, and company visits;

q) To enforce the Company’s legal and contractual rights, including but not be limited to the recovering and enforcement of contract of any outstanding balance that is owed to the Company;

r) To facilitates financial audits to be performed by an auditor, or to receive services in legal advisory from legal counsels appointed by you or the Company; and

s) To comply with obligations under any contracts in which Company is a party, such as contracts with business partners, vendors, or other asset management companies, or under contracts in which the Company acts as an agent.

In case that the Personal Data the Company collects from you is required to meet our legal obligations or to enter into a contract with you, the Company may not be able to provide products and services to you if we cannot collect your Personal Data when requested.

Corporate Customers

a) Business communication, such as communicating with Customers regarding Company’s products or services, e.g. responding to enquiries or requests;

b) Customers selection, such as your identity authentication and the Customers’ status, due diligence or other forms of background checks or risk identification on you and the Customers, including screening against sanction lists of law enforcement authorities and/or publicly available official list as required by laws, evaluation of the qualifications and suitability of you and the Customers, issuance of quotation and invitation to bid, execution of contract with you or the Customers;

c) Management of Customers’ data, such as the maintenance and updating of Customers’ lists/directories and including your Personal Data, and the keeping of contracts and documents which you may be referred to;

d) Relationship management, such as planning, operation, relationship management (contractual) with Customers, e.g. by performing transactions and carry out order for products or services, processing payments, performing accounting activities, auditing, billing and collection, shipping and delivery management, provision of support services;

e) Analysis and improvement of business, such as conducting research and data analytics, evaluation, surveys and reports on our products and services, and your or the Customers’ operational performance, development and improvement of marketing strategies, products, and services;

f) Information Communication Technology (ICT) systems and supports, such as providing ICT system and helpdesk supports, the creation and maintenance of your codes and profile, the management of access to any systems that Company has granted you access to, the closure of inactive accounts, the implementation of business controls for the Company to continue business operation, and to enable the Company in identifying and resolving any issues relating to the Company’s ICT systems and the maintenance of the Company’s systems to be secured, the development, implementation, operation, and maintenance of the ICT system;

g) Perform and follow up on security and system checks, such as identity verification, access controls and logs, perform system, devices, and internet checks and monitoring, ensuring the security of the ICT system, prevention and resolution of crimes, including management of risks and fraud prevention;

h) Disputes Handling, such as to resolve disputes, to enforce the Company’s contracts, to exercise, establish, or defense of legal claims under the applicable laws;

i) Internal investigation, such as any investigations, complaints, and/or prevention of crimes or fraud;

j) Internal Compliance, such as compliance with internal policies, rules, regulations, directives, and guidelines enforced by supervisory authorities;

k) Compliance with the laws and government authorities, such as to liaise, interact, and response to government authorities or courts;

l) Marketing purposes, such as to notify you of news and publications that may be of interest, activities, offer of new services, surveys; and

m) Compliance with reasonable business requirements, such as management, training, auditing, reporting, control or risk management, statistical analysis and planning, or other related or similar activities.

3. How the Company May Disclose or Transfer Your Personal Data

The Company may disclose or transfer your Personal Data to third parties, including personnel and representatives of the third parties located within or outside of Thailand for the purposes detailed below. The processing of the Personal Data shall be in accordance to the objectives specified within this Privacy Policy. You can read the third parties’ personal data protection policy to learn of how the third parties process your Personal Data.

Corporate Customers

3.1 Company Group   

The Company may be required to transfer your Personal Data to other companies within the Company Group (if any), or to give permission to other companies within the Company Group to access your Personal Data for the objectives set out above.

3.2 Company’s Service Providers

The Company may use agents or contractors to perform various services on our behalf, or to assist in providing products and services to you. The Company may share your Personal Data to these providers, including but not be limited to a) telecommunication service providers b) research agencies c) analytics services agencies d) survey agencies e) marketing, advertising, and communication agencies f) payment service providers, and g) administrative and operational service providers.

 In providing these services, the service providers may access your Personal Data. However, the Company shall provide Personal Data to our service providers only as necessary for them to render the services, and the Company shall require these service providers to not use your Personal Data for any other objectives. The Company shall ensure that all service providers the Company works with shall securely keep your Personal Data.

3.3 Company’s Business Partners

The Company may transfer your Personal Data to persons acting on your behalf or persons involved in the provision of products or services you received from the Company, which include account nominees, brokers, intermediaries such as third party securities companies or asset management companies, custodian banks, correspondent banks, agents, vendors, co-brand partners, market counterparties, products issuers, or global trade repositories whom the Company has disclosed your Personal Data to in order to provide you with goods and services, and of whom you have given permission to the Company to disclose your Personal Data to. However, the recipients of your Personal Data shall agree to treat your Personal Data in accordance with this Privacy Policy.

3.4 Third Parties Permitted by the Laws

In certain situations, the Company may be required to disclose or share your Personal Data to third parties in order to comply with legal or regulatory obligations, which include laws enforcement authorities, courts, supervisory authorities, government authorities, or other third parties. In case that we believe the disclosure or transfer of Personal Data is necessary in order to comply with legal or regulatory obligations, or to protect our rights, the rights of other persons, or to ensure safety of any other persons or third parties, or to investigate, prevent, or to address frauds, or for security and safety concerns.

3.5 Professional Consultants

The Company may disclose or transfer your Personal Data to our professional consultants in matters relating to audit, legal, accounting, and tax who assist the Company in business operations, and defending or bringing legal claims.

3.6 Third Parties such as Assignees, Transferees, Novatees

The Company may assign, transfer, or novate the Company’s rights or obligations to third parties as permissible under the terms and conditions of any contracts entered into between the Company and you. The Company may disclose or transfer your Personal Data to assignees, transferees, or novatees, including prospective assignee, transferees, or novatees. However, the recipients of your Personal Data shall agree to treat your Personal Data in accordance with this Privacy Policy.

3.7 Third Parties Related to Business Transfer

The Company may disclose or transfer your Personal Data to the Company’s business partners, investors, significant shareholders, assignees, prospective assignee, transferees, or prospective transferee in the events of rehabilitation, restructuring, merger, acquisition, disposal, purchase, joint venture, assignment, dissolution, or any events of similar nature that involve the transfer or disposal of business, assets, or shares, whether in whole or in part of the Company. In case that any such events shall occur, the recipients of your Personal Data shall agree to treat your Personal Data in accordance with this Privacy Policy.

Corporate Customers

 The Company may share your Personal Data to other parties for the objectives specified in No.3, such as to affiliates, business partners, and third party service providers engaged by us. In certain situations, the Company may be required to share your Personal Data to government authorities, laws enforcement authorities, courts, supervisory authorities, or other third parties. In case that we believe the sharing of Personal Data to be necessary to comply with legal or regulatory obligations or to protect our rights, the rights of other persons, or to ensure safety of any other persons or third parties, or to investigate, prevent, or to address frauds, or for security and safety concerns.

When the Company transfer Personal Data to third parties, we will make provisions to ensure the protection of your Personal Data, such as confidentiality agreements or other appropriate security measures as required by the laws.

4. Transfer of Personal Data Overseas

The Company may disclose or transfer your Personal Data to third parties or servers located overseas. The destination countries may or may not possess the same standards of personal data protection as Thailand. To this end, the Company has followed procedures and taken measures to ensure that the transfer of your Personal Data will be conducted securely, and the recipients of the Personal Data possess appropriate standards of Personal Data protection, and the transfer is lawful by relying on derogations permitted under the laws.

5. Retention Period of Personal Data

The Company will retain your Personal Data only for as long as is reasonably necessary in order to fulfil the objectives for which the Company has collected the Personal Data as set out in this Privacy Policy, and to fulfil legal and regulatory obligations. However, the Company may retain your Personal Data for a longer period if required by applicable laws.

6. Other Important Information Relating to Your Personal Data

6.1 Cookies and Use of Cookies

When you visit the Company’s websites, the Company will automatically collect certain information from you through the use of Cookies. Cookies are tracking technology used in trend analysis, website administration, monitoring users’ activities on the websites, or to record users’ settings.

Most internet browsers allow you to control whether or not to accept Cookies. If you reject Cookies tracking, your ability to use some or all of our websites’ features or areas may be limited 

คุกกี้ คือ ข้อความขนาดเล็กที่ประกอบด้วยส่วนของข้อมูลที่มาจากการดาวน์โหลดที่อาจถูกเก็บบันทึกไว้ในเว็บเบราว์เซอร์
ที่ท่านใช้งานหรืออุปกรณ์อื่น ๆ ที่ต่อเชื่อมอินเทอร์เน็ต (อาทิ เครื่องคอมพิวเตอร์ สมาร์ทโฟน หรือแท็บเล็ตของท่าน)
โดยที่เครื่องเซิร์ฟเวอร์สามารถเรียกดูได้ในภายหลัง คล้ายกับหน่วยความจำของหน้าเว็บ

การทำงานของคุกกี้ ช่วยให้เรารวบรวมและจัดเก็บข้อมูลการเยี่ยมชมเว็บไซต์ของท่านดังต่อไปนี้โดยอัตโนมัติ
• อินเทอร์เน็ตโดเมนและ IP Address จากจุดที่ท่านเข้าสู่เว็บไซต์
• ประเภทของเบราว์เซอร์ซอฟต์แวร์ ตลอดจนโครงสร้างและระบบการปฏิบัติงานที่ใช้ในการเข้าสู่เว็บไซต์
• วันที่และเวลาที่ท่านเข้าสู่เว็บไซต์
• สถานะการยอมรับการทำงานของคุกกี้
• หน้าเว็บที่ท่านเข้าเยี่ยมชม และนำท่านออกจากเว็บไซต์ของเรา รวมถึงเนื้อหาบนหน้าเว็บที่ท่านเยี่ยมชมและระยะเวลาที่ท่านใช้ในการเยี่ยมชม

ประเภทของคุกกี้ที่เราใช้และในการใช้คุกกี้ดังกล่าว ประกอบด้วย แต่ไม่จำกัดเพียง รายการต่อไปนี้
• คุกกี้ประเภทที่มีความจำเป็นอย่างยิ่ง (Strictly Necessary Cookies): คุกกี้ประเภทนี้มีความสำคัญต่อการทำงานของเว็บไซต์ ซึ่งรวมถึงคุกกี้ที่ทำให้ท่านสามารถเข้าถึงข้อมูลและใช้งานในเว็บไซต์ของเราได้อย่างปลอดภัย
• คุกกี้เพื่อการวิเคราะห์/วัดผลการทำงานของเว็บไซต์ (Analytical/Performance Cookies): คุกกี้ประเภทนี้จะช่วยให้เราสามารถจดจำและนับจำนวนผู้เข้าเยี่ยมชมเว็บไซต์ตลอดจนช่วยให้เราทราบถึงพฤติกรรมในการเยี่ยมชมเว็บไซต์ เพื่อปรับปรุงการทำงานของเว็บไซต์ให้มีคุณภาพดีขึ้นและมีความเหมาะสมมากขึ้น อีกทั้งเพื่อรวบรวมข้อมูลทางสถิติเกี่ยวกับวิธีการเข้าและพฤติกรรมการเยี่ยมชมเว็บไซต์ ซึ่งจะช่วยปรับปรุงการทำงานของเว็บไซต์โดยให้ผู้ใช้งานสามารถค้นหาสิ่งที่ต้องการได้อย่างง่ายดาย และช่วยให้เราเข้าใจถึงความสนใจของผู้ใช้ และวัดความมีประสิทธิผลของโฆษณาของเรา
• คุกกี้เพื่อการทำงานของเว็บไซต์ (Functionality Cookies): คุกกี้ประเภทนี้ใช้ในการจดจำตัวท่านเมื่อท่านกลับมาใช้งานเว็บไซต์อีกครั้ง ซึ่งจะช่วยให้เราสามารถปรับแต่งเนื้อหาสำหรับท่าน ปรับให้เว็บไซต์ของเราตอบสนองความต้องการใช้งานของท่าน รวมถึงจดจำการตั้งค่าของท่าน อาทิ ภาษา หรือภูมิภาค หรือขนาดของตัวอักษรที่ท่านเลือกใช้ในการใช้งานในเว็บไซต์
• คุกกี้เพื่อปรับเนื้อหาเข้ากับกลุ่มเป้าหมาย (Targeting Cookies): คุกกี้ประเภทนี้จะบันทึกการเข้าชมเว็บไซต์ของท่าน หน้าเว็บที่ท่านได้เยี่ยมชม และลิงก์ที่ท่านเยี่ยมชม เราจะใช้ข้อมูลนี้เพื่อปรับให้เว็บไซต์และเนื้อหาใด ๆ ที่ปรากฏอยู่บนหน้าเว็บตรงกับความสนใจของคุณมากขึ้น นอกจากนี้ เรายังอาจแชร์ข้อมูลนี้กับบุคคลที่สามเพื่อวัตถุประสงค์ดังกล่าว และ
คุกกี้เพื่อการโฆษณา (Advertising Cookies): คุกกี้ประเภทนี้จะจดจำการตั้งค่าของท่านในการเข้าใช้งานหน้าเว็บไซต์ และนำไปใช้เป็นข้อมูลประกอบการปรับเปลี่ยนหน้าเว็บไซต์เพื่อนำเสนอโฆษณาที่เหมาะสมกับท่านมากที่สุดเท่าที่จะเป็นไปได้ ตัวอย่างเช่น การเลือกแสดงโฆษณาสินค้าที่ท่านสนใจ การป้องกันหรือการจำกัดจำนวนครั้งที่ท่านจะเห็นหน้าเว็บไซต์ของโฆษณาซ้ำ ๆ เพื่อช่วยวัดความมีประสิทธิผลของโฆษณาโปรดทราบว่าคุกกี้บางประเภทในเว็บไซต์นี้จัดการโดยบุคคลที่สาม เช่น เครือข่ายการโฆษณา ลักษณะการทำงานต่าง ๆ อาทิ วิดีโอ แผนที่ และโซเชียลมีเดีย และผู้ให้บริการเว็บไซต์ภายนอกอื่น ๆ เช่น บริการวิเคราะห์การเข้าเยี่ยมชมเว็บไซต์ เป็นต้น คุกกี้เหล่านี้มักจะเป็นคุกกี้เพื่อการวิเคราะห์/วัดผลการทำงาน หรือคุกกี้เพื่อปรับเนื้อหาเข้ากับกลุ่มเป้าหมาย ท่านควรต้องศึกษานโยบายการใช้คุกกี้และนโยบายส่วนบุคคลในเว็บไซต์ของบุคคลที่สาม เพื่อให้เข้าใจถึงวิธีการที่บุคคลที่สามอาจนำข้อมูลของท่านไปใช้

ท่านสามารถบล็อกการทำงานของคุกกี้ได้โดยการกำหนดค่าในเบราว์เซอร์ของท่าน ซึ่งท่านอาจปฏิเสธการติดตั้งค่าคุกกี้ทั้งหมดหรือบางประเภทก็ได้ แต่พึงตระหนักว่าหากท่านตั้งค่าเบราว์เซอร์ของท่านด้วยการบล็อกคุกกี้ทั้งหมด (รวมถึงคุกกี้ที่จำเป็นต่อการใช้งาน) ท่านอาจจะไม่สามารถเข้าสู่เว็บไซต์ทั้งหมดหรือบางส่วนของเราได้เมื่อใดก็ตามที่ท่านต้องการยกเลิกความยินยอมการใช้งานคุกกี้ ท่านจะต้องตั้งค่าเบราว์เซอร์ของท่านเพื่อให้ลบคุกกี้ออกจากแต่ละเบราว์เซอร์ที่ท่านใช้งาน

6.2 Personal Data of Minors

Generally, the Company’s activities do not aim at minors, and we will not collect Personal Data from Customers who are minors (persons who have not reached the legal age (being 20 years old or by marriage) without receiving consent from the guardian when it is required, or from incompetent or quasi-incompetent persons without receiving consent from the legal protector. If you are a minor, incompetent or quasi-incompetent person and wish to enter into contractual relationship with the Company, you must obtain permission from your lawful guardian or protector before contacting the Company or providing your Personal Data to the Company. If the Company is made aware that we have unintentionally collected Personal Data from minors without receiving consent from their guardian when it is required, or from incompetent or quasi-incompetent persons without receiving consent from the legal protector, we shall delete or destroy such Personal Data, or we shall continue to process such Personal Data if the Company can rely on other legal bases apart from obtaining consent.

6.3 Personal Data of Third Parties

In case you provide Personal Data of third parties such as spouses, offspring, shareholders, directors, beneficiaries, emergency contact information, and referral details such as their name, surname, address, email, and phone numbers, you should ensure that you are authorized to provide the said Personal Data and to permit the Company to use the said Personal Data in accordance with this Privacy Policy. Furthermore, you are responsible in notifying the third parties of this Privacy Policy, and to obtain consent from the third parties if required, or rely on other legal bases.

7. Your Rights as a Data Subject

Rights states under this section of the Privacy Policy means your rights under the Personal Data Protection Act. You may exercise your rights regarding your Personal Data as detailed below. However, the exercising of such rights must comply with relevant laws and the Company’s Privacy Policy as it currently exists and to be amended in the future. Furthermore, if you are less than 20 years old, or having limited capacity to perform juristic act, you may grant permission to your father, mother, guardian or authorized person to exercise these rights on your behalf.

Subject of the applicable laws and their exceptions, you may exercise the following rights regarding your Personal Data.

(A)   Right to Accessibility :You have the right to access and obtain copy of your Personal Data retained by us;

(B)    Right to Data Portability :You have the right to obtain your Personal Data retained by us in a format that can be read electronically and to transfer or send the Personal Data on the said format to other data controllers;

(C)    Right to Objection :Under some circumstances, you may object the methods in which the Company processes your Personal Data for some activities specified within this Privacy Policy;

(D)     Right to Erasure or Destruction of Personal Data :You have the right to request the deletion, destruction, or anonymization or your Personal Data if the said Personal Data is no longer necessary for the objectives of data processing;

(E)    Right to Restriction :You have the right to restrict the processing of your Personal Data in case that you believe the data to be inaccurate, or the processing to be unlawful, or it is no longer necessary to process the Personal Data for certain objectives;

(F)    Right to Rectification :You have the right to rectify your Personal Data that is incomplete, incorrect, misleading, or not up-to-date;

(G)    Right to Withdraw Consent :You have the right to withdraw consent granted to the Company in processing your Personal Data, unless there is restriction under the laws to your right to withdraw consent, or there exist contracts which are beneficial to you; and

(ซ)    Right to Lodge Complaints :You have the right to lodge complaint to relevant authorities in the case that you believe the processing of your Personal Data is unlawful or does not comply with the relevant laws.

8. Changes to this Privacy Policy

The Company may change or amend this Privacy Policy from time to time. The Company recommends you to thoroughly read through this Privacy Policy and review any changes that may occur to the Privacy Policy from time to time on Company’s website. The Company will notify you of the changes or obtain your permission again if there are material changes to this Privacy Policy, or if the Company is required by laws to make material changes to this Privacy Policy.

9.     Contact the Company

If you wish to exercise your rights relating to your Personal Data, or if you have any questions or complaints relating to your Personal Data under this Privacy Policy, please contact the Company or the Company’s Data Protection Officer.

10. Enforcement of the Privacy Policy

You consent to and acknowledge that this Privacy Policy is effective to all Personal Data the Company collects, and you grant permission to the Company the rights to retain your Personal Data that the Company has collected prior (if any), along with your Personal Data the Company is currently collecting and shall collect in the future and to use or disclose the Personal Data to other parties within the limits specified within this Privacy Policy.

- This Privacy Policy has been approved by the resolutions of the Board of Director Meeting No.5/2020, held on April 10 2022.