As a person shall have the right to be protected from wrongful exploitation of personal data relating to themselves as provided by law. I AM Company Co., Ltd, who intends to increase efficiency, corporate value continuously, to conduct business with good governance, to be trusted by customer from based of corporate philosophy as a guiding principle, therefore causing the company, must follow by the law, regulation and guideline related with personal data protection including providing appropriate personal date method and security measure suitably for protection customer’ personal data of company.
Company would like to suggest you to understand this personal data protection policy because this policy describes how the company treat your personal data such as collecting, keeping, using, disclosure including your rights for you to acknowledge personal data protection policy of company. Company shall announce personal data protection policy hereinafter;
1. Definitions
“Personal Data” means any information relating to a Person, which enables the identification of such Person, whether directly or indirectly.
“Company” means I AM Consulting Co., Ltd.
“Customer” means person or juristic person who is the owner of personal data, contact to company information system.
“Personal Data Controller” means a person having the power to make decisions regarding the management of personal information including the collection, use or disclosure of the Personal Data.
“Information system” means computer system, communication network system, network system connected to the internet, data collection system, Electronic mail system (E-mail), Information communication systems of all types of communication devices, computer accessories and any peripherals or related equipment which are the property of I AM Consulting Co., Ltd. and / or which I AM Consulting Co., Ltd. is permitted to use according by law.
2. Policy objectives
I AM Consulting Co., Ltd. has created this personal data protection policy for use in managing personal information of the company which includes collection, use, or disclosure of personal information in accordance with relevant laws to protect the security of personal information of all customer contacting to company website. If the company has changed the objective to conduct of personal data, the company shall notify the data owner.
However, the company can specify guidelines for protecting personal information of customer to specify the details of the personal data protection policy for the personal data controller. This policy has been approved by executive, and announced that policy to employees and the relevant outsiders acknowledge.
3. Scope of use personal data protection policy
Personal data protection policy for protection the personal data of customer (Personal information) who contacts to the company information system, shall be effective for the collection, use, disclosure, correction, or any action with personal data. To ensure, auditors are authorized by the company in order to strictly comply with this policy.
4. Methods for collecting personal information
The company collects data under the purposes of this policy. The company who controls the personal data and collecting that data, shall process as necessary in accordance within the policy objectives.
For collecting the personal data, company can collect with the consent of the customer. In the event that customer uses/visits company’s website, the company shall be regarded that customer has agreed to the company to collect personal information.
The personal data controller shall not collect personal data from other sources which not from the owner of the personal data directly.
Any collection of personal data pertaining to racial, ethnic origin, political opinions, cult, religious or philosophical beliefs, sexual behavior, criminal records, health data, disability, trade union information, genetic data, or of any data, which may affect the data subject in the same manner, is prohibited without the explicit consent from the customer, as prescribed by the section 26 of Personal Data Protection Act, B.E. 2562
5. Restriction on the use of personal data
Company shall use, disclose, or display personal data of customer as necessary. Company shall conform to the objective of collecting and storing information, such as name and address, in order to collect customer’s opinion toward website activity, and contact for providing service, information, public relations, and news only.
The company certifies that personal data of customer who company’s website collected, shall not be sold, transferred, or disclosed to third party to acknowledge, whatever reasons without any consent of customer except using for the purpose of requesting service as specified by customer only.
Personal data collected by the company will be used for lawful purposes and for the company’s business in various cases such as;
Use for service, request, or other activities related with company’s business
Use for improvement or development website
Use for improvement or development customer service
Personal data of customer shall be used to help for company to respond the specific demand of customer.
Use for management and participate in contest, promotion, questionnaire or using in varies website
Use for sending newsletter on various occasions about Information of products or services on various occasions
Use for offering a special web experience for customer
Use for receiving any complain from customer
6. Security for personal data
For benefit of protection confidential and security for your personal data of customer, company received certified in information security according to international standard ISO 27001 : 2019 to prevent loss, access, destruct, use, transform, modify, or disclose improperly.
Company has the measure to protect the security of personal data appropriately and accordant with the confidentiality of personal data to prevent loss, access, destruct, use, transform, modify of disclose with improperly or unlawfully as well as preventing personal data to be used without permission.
Company website is a website for individual and unable to check that personal data obtained belong to the minor.
7. Disclose of information regarding to operation
Company has no policy to distribute, exchange or transfer personal data to third party or associate company.
Company may disclose personal data of customer if that personal data is public data with lawful or requirement from a court, disclosure for the benefit of the investigation of legal officials.
If that data is not personal data, company may disclose to associate company for the purpose of marketing, advertising, or additional product and service promotion which offered by company and associate company.
8. Participation of data owner
If customer wish to know with personal data of themselves for checking, customer can request by identify to real identity of customer accordance in accordance with rules and procedure which specified by company. When company receive that request, company will notify the existence or that data details to customer within reasonable time. If customer found that personal data wrong, customer can notify to company for changing or deleting that personal data.
9. Data protection officer
Company has complied with The Personal Data Protection Act B.C.2562 by appoint The Data Protection Officer: DPO for inspection of company process relating with collecting, using and disclosure of personal data to conform to The Personal Data Protection Act B.C.2562 including any law relating with personal data protection. In addition to company has conclude the rules and directives for related person to perform as specified and for operating follow this personal data protection policy completely.
10. Using cookies on website
Company uses cookies on company website to ensure that the process of registration completely and to create privacy on website pages. Cookies are tiny text file that place on hard disk of customer’ computer by action of Web Page Server. Cookies cannot be used to run program or send virus to customer’s computer. Cookies will be created to be unique for each customer and will be read by company’s domain only.
11. Update to personal data protection policy
Company may modify or adjust personal data protection policy without advance notice in order that for suitability and effective of service. Company will display the current version on company’s website at www.iamconsulting.co.th
12. Company contact
I AM Consulting Co., Ltd. at 219 Pracha-U-Thit Rd., Huay-Kwang, Huay-Kwang, Bangkok 10310, Thailand.
Email : info@iamconsulting.co.th