Privacy Policy

นโยบายความเป็นส่วนตัว

Privacy Policy for Customer

HEAD2TOES TECHNOLOGY COMPANY LIMITED. recognizes the importance of the protection of your personal data. This Privacy Policy explains our practices regarding the collection, use or disclosure of personal data including other rights of the Data Subjects in accordance with the Personal Data Protection Laws.

Collection of Personal Data

We will collect your personal data that receive directly from you as following:

  • The company’s administrator receives and brings personal data into the system.

Types of Data Collected

  • Personal data
  • Contact information
  • Account details
  • Proof of identity
  • Technical data
  • Other

The table below explains user account data

Types of Personal Data Descriptions
Personal data Your personal data in your user accounts shall consist of:
  • Name - Surname
  • Company/Business name
  • Business type
  • Company logo/Profile picture
  • National ID card number or tax ID number
Contact information Your contact information in your user accounts shall consist of:
  • Address
  • Telephone number
  • Email
Account details Your account details in your user accounts shall consist of:
  • Customer roster and details
  • The company’s officer and technician roster
Proof of identity Your proof of identity in your user accounts shall consist of:
  • Customer signature for servicing
Technical data Your technical data in your user accounts shall consist of:
  • IP Address
  • Activity Log
  • Latitude and longitude
Remark Only users who are officers and technicians of company.
Other Your other data in your user accounts shall consist of:
  • Pictures of repair/maintenance work

Children

If you are under the age of 20 or having legal restrictions, we may collect use or disclose your personal data. We require your parents or guardian to be aware and provide consent to us or allowed by applicable laws. If we become aware that we have collected personal data from children without verification of parental consent, we take steps to remove that information from our servers.

Storage of Data

We store your personal data as hard copy and soft copy.

We store your personal data by using the following systems:

  • Third-party server service providers outside of Thailand. The table below lists all third-party service provider and references the “Privacy Policy” of those third-party service provider
Third-party service provider Privacy Policy
Amazon Web Services (AWS) https://aws.amazon.com/compliance/thailand-data-privacy/

Use of Data

We use the collected data for various purposes:

  • To create and manage accounts
  • To provide products or services
  • To improve products, services, or user experiences
  • To share and manage information within organization
  • To conduct marketing activities and promotions
  • To provide after-sales services
  • To gather user’s feedback
  • To process payments of products or services
  • To comply with our Terms and Conditions
  • To comply with laws, rules, and regulatory authorities

Disclosure of Personal Data

We may disclose your personal data to the following parties in certain circumstances:

Organization We may disclose your personal data within our organization to provide and develop our products or services. We may combine information internally across the different products or services covered by this Privacy Policy to help us be more relevant and useful to you and others.

Data Retention

We will retain your personal data for as long as necessary during the period you are a customer or under relationship with us, or for as long as necessary in connection with the purposes set out in this Privacy Policy, unless law requires or permits a longer retention period. We will erase, destroy or anonymize your personal data when it is no longer necessary or when the period lapses.

Data Subject Rights

Subject to the Personal Data Protection Laws thereof, you may exercise any of these rights in the following:

Withdrawal of consent: If you have given consent to us to collect, use or disclose your personal data whether before or after the effective date of the Personal Data Protection Laws, you have the right to withdraw such consent at any time throughout the period your personal data available to us, unless it is restricted by laws or you are still under beneficial contract.

Data access: You have the right to access your personal data that is under our responsibility; to request us to make a copy of such data for you; and to request us to reveal as to how we obtain your personal data.

Data portability: You have the right to obtain your personal data if the we organizes such personal data in automatic machine-readable or usable format and can be processed or disclosed by automatic means; to request us to send or transfer the personal data in such format directly to other data controllers if doable by automatic means; and to request to obtain the personal data in such format sent or transferred by us directly to other data controller unless not technically feasible.

Objection: You have the right to object to collection, use or disclosure of your personal data at any time if such doing is conducted for legitimate interests of us, corporation or individual which is within your reasonable expectation; or for carrying out public tasks.

Data erasure or destruction: You have the right to request us to erase, destroy or anonymize your personal data if you believe that the collection, use or disclosure of your personal data is against relevant laws; or retention of the data by us is no longer necessary in connection with related purposes under this Privacy Policy; or when you request to withdraw your consent or to object to the processing as earlier described.

Suspension: You have the right to request us to suspend processing your personal data during the period where we examine your rectification or objection request; or when it is no longer necessary and we must erase or destroy your personal data pursuant to relevant laws but you instead request us to suspend the processing.

Rectification: You have the right to rectify your personal data to be updated, complete and not misleading.

Complaint lodging: You have the right to complain to competent authorities pursuant to relevant laws if you believe that the collection, use or disclosure of your personal data is violating or not in compliance with relevant laws.

You can exercise these rights as the Data Subject by contacting our Data Protection Officer as mentioned below. We will notify the result of your request within 30 days upon receipt of such request. If we deny the request, we will inform you of the reason via SMS, email address, telephone, registered mail (if applicable).

Cookies

To enrich and perfect your experience, we use cookies or similar technologies to display personalized content, appropriate advertising and store your preferences on your computer. We use cookies to identify and track visitors, their usage of our website and their website access preferences. If you do not wish to have cookies placed on your computer, you should set their browsers to refuse cookies before using our website.

Data Security

We endeavour to protect your personal data by establishing security measures in accordance with the principles of confidentiality, integrity, and availability to prevent loss, unauthorized or unlawful access, destruction, use, alteration, or disclosure including administrative safeguard, technical safeguard, physical safeguard and access controls.

Data Breach Notification

We will notify the Office of the Personal Data Protection Committee without delay and, where feasible, within 72 hours after having become aware of it, unless such personal data breach is unlikely to result in a risk to the rights and freedoms of you. If the personal data breach is likely to result in a high risk to the rights and freedoms of you, we will also notify the personal data breach and the remedial measures to you without delay through our website, SMS, email address, telephone or registered mail (if applicable).

Changes to this Privacy Policy

We may change this Privacy Policy from time to time. Any changes of this Privacy Policy, we encourage you to frequently check on our website.

This Privacy Policy was last updated and effective on 1st December 2020

Links to Other Sites

The purpose of this Privacy Policy is to offer products or services and use of our website. Any websites from other domains found on our site is subject to their privacy policy which is not related to us.

Contact Information

If you have any questions about this Privacy Policy or would like to exercise your rights, you can contact us by using the following details:

Data Controller

HEAD2TOES TECHNOLOGY COMPANY LIMITED.
17/5 Promsri, Klongtan Nuea, Watthana, Bangkok 10110
Email: [email protected]
Website: https://www.head2toes.co.th
Telephone number: +66 (0)95 742 5925

Data Protection Officer

HEAD2TOES TECHNOLOGY COMPANY LIMITED.
17/5 Promsri, Klongtan Nuea, Watthana, Bangkok 10110
Email: [email protected]
Website: https://www.head2toes.co.th
Telephone number: +66 (0)95 742 5925