Privacy notice
Last updated on Jan. 5, 2022
Privacy Notice of Cloud HM Co., Ltd.
Cloud HM Co., Ltd. (“the Company”) commits to respect your privacy and willing to protect your personal data. We collect personal data based on the services you intend to use. The Company conducts business operation under
- Personal Data Protection Act, B.E. 2562 (2019)
- Notification of Ministry of Digital Economy and Society on Personal Data Security Standards B.E. 2563 (2020)
- EU General Data Protection Regulation (“GDPR”) 2016/679
The Company recommends that you should study and understand this privacy notice. It is because this notice would explain how the Company treats your personal data, such as data collection, storage, usage, disclosure including your rights as the data subject.
- Personal Data“Personal data” means any information related to a person that can be used to directly or indirectly identify the person, including references to identifiable information such as name, identification card number, location data, online information, physical, mental, social, economic, or cultural identities, either one or all of the aforementioned data.
- Collection of Personal Data“Personal data” means any information related to a person that can be used to directly or indirectly identify the person, including references to identifiable information such as name, identification card number, location data, online information, physical, mental, social, economic, or cultural identities, either one or all of the aforementioned data.
- 2.1The Company collects, uses and/or discloses your personal data as following:
- First name, last name, gender, date of birth, nationality, photo, picture and ID card number, passport information (when you apply to use the Company’s services);
- Contact information, address, email, phone number (when you apply to use the Company’s services);
- Data on service usage and network usage behavior and other information related to the service (Cookies Policy);
- Financial data such as payment information, credit card number and bank account number (when you apply to use the Company’s services);
- Data used for security purposes (Cookies Policy);
- Data used in service development, including in the event that customers encounter usage problems (Cookies Policy);
- Data required for the Company to comply with the law including data for inspection and relevant actions in the event that there is any violation of the terms of service or any illegal activities (when you apply to use the Company’s services);
- 2.2Sensitive data are personal data that are specifically defined by law, such as data on individuals with visual and hearing impairments, biometric data, for which the Company will not collect, use and/or disclose such personal data.
- Sources of Personal DataThe Company may obtain your personal data from the following channels:
- 3.1Data collected directly from you
- Process of submitting requests, applications, entering into service contracts with the Company, such as subscription of DevOps services, etc.
- Data obtained from your questionnaires, email correspondences or other communication channels between you and the Company.
- Data obtained from service usage and data related to service usage, such as data about the service accessing devices (IP Address & MAC Address).
- Data obtained via your cookies as a result of using the Company's website such as Google Analytic according to the Company's Cookie Policy.
- Personal data that you have given to the Company via online channels such as Contact form on the Company's website, etc.
- 3.2The Company may obtain your personal data from other sources other than directly from you. Such sources shall have the lawful right to disclose your personal data, such as government agency, affiliated companies, business partners and subcontractors entrusted by the Company to subscribe services and provide services to you.
- Objectives of Data Storage, Collection, Usage and Disclosure
- To provide services under a contract to which you are a counterparty or according to your requests before entering into a contract;
- For development and improvement of efficient services;
- To facilitate notification or demand for payment of service fees, fees related to goods and services, such as sending of service charges invoice, purchase orders for goods and services, notifications for payment of goods and services, preparation of receipts and tax invoices;
- To manage data which will be sent to agencies that required inspection of both internal and external information management to prevent fraud;
- To analyze data on service provision, marketing plans, marketing activities of the Company and affiliated companies that the Company is a contractual party or has legal relationship;
- To inform and present privileges, information, news, promotional programs and various offers for applications, purchase of products or using of the Company's services, including juristic persons or alliances with which the Company is a contractual party or has a legal relationship through online channels such as emails and Pop-up Ads, etc.
- For application or activate services, purchase of products, sale of products, payment services and online transactions, or usage of the Company's services, including legal entities or affiliates to which the Company is a contractual party or has a legal relationship.
- To verify and confirm identity of the applicant for registration and access to the services;
- For safety or suppression of danger to person's life, body or health;
- To comply with laws and/or any other necessary circumstance for legitimate interests of the Company;
- For any other purposes required by law to collect, use and disclose data without requirement of consent of data subject;
- To provide after-sales services or your requests to support service usage, provide information, respond and resolve complaints;
- To inquire, assess your understanding, needs and preferences;
- To provide information and news to regulatory agencies and competent government agencies;
- To maintain security of data and the company's service network;
- Disclosure of Personal Data to Third PartiesThe Company shall not disclose your personal data to any persons and entities that are not affiliated with the Company (“Third Parties”) except for the purposes of collecting and processing personal data as stated in this Privacy Notice. The Company may disclose your personal data to third parties, such as
- The Company's distributors such as United Information Highway Co., Ltd.;
- Transportation service providers such as Thailand Post Co., Ltd., DHL Supply Chain (Thailand) Co., Ltd., Flash Express Co., Ltd., etc.
- Transaction and financial service providers such as banks, payment service providers;
- Cloud service providers such as Google ONE, Amazon Web Services, Microsoft 365;
- Data processor;
- Technology, program or IT systems service providers;
- Professional advisor;
- Agencies that required inspection of both internal and external information management to prevent fraud;
- Government agencies, law enforcement agencies, regulatory and legal authorities;
- Other legal purposive agencies, such as law enforcement agencies, inspection or legal process / litigation agencies;
- Third parties necessary for the Company to conduct business operation and service provision, including taking any action for collection and processing of personal data as specified in the privacy policy.
- Personal Data Retention Period
- 6.1The Company shall store your personal data for as long as is necessary to fulfill the purpose of each type of service according to the term of contract or legal relationship applicable between you and the Company, except the law allows for a longer retention period.
- 6.2The Company shall delete or destroy personal data or make personal data to be non-identifiable by any means in accordance with the Company's data destruction standards after retention period or when the Company is no longer entitled or cannot claim the basis for processing your personal data.
- Sending or Transferring Your Personal Data to Overseas CountriesThe Company may need to transfer your information to its affiliated companies or alliances with which the Company is a contractual party or has a legal relationship, including Cloud platform, subject to your benefits, or benefits of business operations as a whole. Such data will be protected according to personal data protection standards.
- Your Rights related to Personal DataYou can exercise your rights under the currently applicable provisions of laws and policies or which will be amended in the future, as well as criteria specified by the Company.
- 8.1Right to withdraw consentWhen you give consent to the Company for a specific purpose, you have the right to withdraw your consent at any time, except in cases where legal rights are restricted or relating to contract of your benefits. Nonetheless, the withdrawal of consent may affect your benefits, therefore, you should study and inquire about its consequences before exercise of such right. If withdrawal of your consent may prevent the Company from delivering certain products or services to you. The Company will notify you of the consequences of withdrawing your consent.You can contact staffs of the Company and request to exercise your rights by yourself via channels specified by the Company by submitting a request and evidences for verification and proof that you are actual data subject.The Company may reject requests for exercises that are dishonest/unreasonable/unpracticable or may reject your request on any other basis required by law.
- 8.2Right to request access to data and obtain copies of dataYou have the right to request access and obtain copies of your personal data, such as copies of service usage records, copies of invoices, copies of receipts in accordance with the rules and procedures prescribed by the Company via Call Center or any other channels specified by the Company or request to disclose the acquisition of personal data. In this regard, the Company may refuse your request as required by law or by court order.
- 8.3Right to request data transferYou have the right to request your personal data, in which the Company has made the data in a readable or generally usable format with a device or device that works automatically, to be used or disclosed in an automatic mean.
- 8.4Right to objectYou have the right to object processing of your personal data in the following cases
- 1.Objection to collection of service charges by individuals via phone call;
- 2.Objection to be offered for sales of goods, services and marketing promotions by individuals via phone call;
However, the exercise of your right of objection may prevent the Company from delivering certain products or services to you in compliance with the laws or contract made between you and the Company. - 8.5Right to request suspension of data usageYou have the right to request temporarily suspension of personal data usage in case that the Company is in the process of reviewing the request to exercise the right to amend personal data or objection, or any other cases where the Company no longer requires the personal data and has to delete or destroy your personal data according to the relevant laws, but you have requested the Company to suspend the usage instead.
- 8.6Right to request deletion or destruction of dataYou have the right to request the Company to delete or destroy your information or make your data to be non-identifiable except it is necessary for the Company to comply with service provision contract or there are lawful grounds to decline your request.
- 8.7Right to request data amendmentYou have the right to request amendment or change of your personal data which are inaccurate or incomplete and keep your data up to date subject to provisions of other relevant laws.
- Measures to Maintain Data Security and Quality
- 9.1The Company adopts standard security system for both technology and processes to protect the Company's contractual parties from damaging, misusing or changing data under the Company's supervision, including protection against loss, access, usage or disclosure of your personal data without authorization or wrongdoing. The Company will assign only employees who have the authority or necessity to use your data to have access to your personal data. The Company will use its best efforts to prevent any damage, misuse or changing of your personal data under standards to maintain data security and quality. The Company has, at least, complied with Notification of Ministry of Digital Economy and Society on Personal Data Security Standards B.E. 2563 (2020).
- 9.2Your personal data obtained by the Company, such as name, age, address, telephone number, identification card number, financial information, etc., which can identify your identity and that personal data are accurate and up-to-date, shall only be used for the Company's operations. Moreover, the Company shall take appropriate measures to protect the rights of data subjects.
- Marketing Activities and Marketing PromotionsDuring service usage, the Company may send information relating to marketing activities and marketing promotions, products and services of the Company including companies in the group, advertisers and business partners that you may be interested. You can revoke your consent to receive information according to the channels specified by the Company.
- The visit of other websites through the Company’s websiteThis Privacy Notice is applicable only for provision of the Company's services and use of the Company's website. If you have linked to another website even through channels on the Company's website, you must study and comply with the privacy policy displayed on such website separately from the Company's.
- In case that you refuse to disclose or disallow usage of personal dataThe Company is required to collect personal data according to the laws or for entering into a contract made between you and the Company. If you do not wish to disclose your personal data, this may result in the Company being unable to provide services to you. In case, the Company uses personal data for performance of the contract and legal compliance, if you do not give consent to the Company to use personal data, you can still use the Company's services. Nonetheless, you may use the service with less convenience because the Company is not allowed to use personal data for the purpose with full efficiency.
- Limitation of LiabilityAlthough, the Company has used its utmost efforts to adopt measures and technology to maintain security of personal data, the Company cannot guarantee that such measures and technology will function perfectly without any defects or errors. The Company therefore reserves the right not to be responsible for any loss or damage incurred to your personal data in all cases except as required by law.
- Report of Breach of Personal DataYou can report any incidents or actions that may be deemed as violation of personal data to Data Protection Officer of the Company as detailed in Clause 16 of this Privacy Notice. For the benefits of protecting your personal data and mitigating damages that may arise from such violations, the Company requests you to notify the Company of any such violation as soon as you become aware of the matter or as soon as practicable.
- Data Protection OfficerThe Company has complied with the Personal Data Protection Act, B.E. 2562 (2019) by appointing Data Protection Officer (DPO) to monitor the Company's operations in relation to the processing of personal data as well as laws related to the protection of personal data. In addition, the Company has established regulations and guidelines for related persons to proceed and comply with in order to ensure effective compliance with the privacy policy, and in correspond with the policy of the Personal Data Management and Cyber Security Supervisory Board of the Company.
- Contact Channel of the Company24-hour Support Center: +66 (0)2 119 7300 technical@cloudhm.co.thSales and Data Service Center: +66 (0)2 119 7300 general@cloudhm.co.thHead office of Cloud HM Co., Ltd. Benchachinda Building, No. 499 Kamphaeng Phet 6 Road, Ladyao Sub-district, Chatuchak District, Bangkok 10900or contact Data Protection Office Unit at DPO@cloudhm.co.th
- What are Cookies?Cookies are small files which are downloaded to your web browsers, computer devices, internet-enabled devices, e.g. smart phone, tablet, etc. They record data and settings, e.g. your present visiting status, language setting, data related to browsing history of your preferred websites and/or applications to enable you to continuously use services that applied cookies or other similar technologies. Cookies will not harm your computer equipment and/or communication tools. Your personal data may be collected in order to enhance your online experience of our services. They will remember unique language and customize the usage information according to your requirements. The purposes of such data collection are to verify your identity, safety information including products and services of your interests. In addition, cookies are also used to measure the traffic of online services, personalization of the contents according to your previous and current usage, or for advertising and public relations purposes.
- Why do we use Cookies?We use cookies to improve your experience and satisfaction. They will allow us to quickly understand your browsing behaviors, and allow you to access our websites easier and more conveniently. In some cases, we may require a third party to make the proceeding and adopt Internet Protocol Address (IP Address) and cookies for statistical analysis as well as linking information and processing according to marketing objectives.
- Types of Cookies
- 3.1Strictly Necessary cookiesThis type of cookies allows you to securely and safely access and use our websites and/or applications. These cookies are stored and removed after you leave the websites and/or applications.Examples
- Session ID
- Load Balancing
- User ID
- Security
- 3.2Analytic/Performance cookiesThis type of cookies allows the Company to analyze or evaluate performances to enhance the Company's understanding in interests of users, e.g. process number of visitors of websites and/or applications. visiting behavior of websites and/or applications, the number of webpages you have accessed. The Company will use this data to improve the operation of the websites and/or applications to better meet your needs and enhance your visits.Examples
- Google Analytics
- Adobe
- 3.3Advertising cookiesThis type of cookies would be stored in your devices to collect web browsing data and links that you have followed or visited to understand your needs as well as to improve and develop the website and promotional campaigns to suit your interests.Examples
- Session IDAdobe Audience Manager
- Adobe Target
- Google Analytics
- Facebook Pixels
- Facebook API
- 3.4Functional cookiesThis type of cookies will enable the Company to "recognize" you during your visits and set up websites and/or applications in accordance with browsing behaviors to meet your preferences to facilitate you on next visit to the websites and/or applications e.g. recognition of your username, font size adjustment, languages and other parts on webpages of the websites and/or applications. However, the processed data shall be anonymous or cannot identify users’ identities. Moreover, personal information such as name, email, etc. will not be collected.Examples
- Google Analytics
- Session ID
- Cookies settings and refusalsYou may choose to refuse all or some types of cookies depending on your preferences by setting your browsers and/or your privacy setting to suspend data collection by cookies in the future. However, if you set your browser or privacy setting to refuse all cookies, you may not be able to use some or all functions of the website and/or application efficiently. You may learn more details fromwww.allaboutcookies.org
- Change of the PolicyThis Cookies Policy may be amended or changed as deemed appropriate to comply with regulations. The Company recommends you to review the amended policy in order to understand such changes. Please find more information on collection, use and disclosure of your personal data, rights including details on data controller from the privacy notice on the Company's websites.
- You can manage cookies in your browser by conduct settings according to following steps:
Services
Multi Cloud
Use Cases
+66 (0)2 119 7300
© 2024 Cloud HM Company Limited