Privacy Policy

Smart Finder Company Limited (“Company”) respects your privacy and recognizes the importance of the personal data protection. This Privacy Policy is prepared to explain and ensure that the company considered principle of transparency and responsibility when processing your personal data (collecting, storing, using and disclosing) in compliance with the Thailand Personal Data Protection Act B.E. 2019 (“Personal Data Protection Act”) as well as other related laws.

Definition

• Personal data means any information relating to a person which enables the identification of such person, whether directly or indirectly, but not including the information of deceased persons.
• Sensitive personal data means personal data as defined in Section 26 of the Personal Data Protection Act B.E. 2019, which includes information on race, ethnicity, political opinions, creed, religion, philosophy, sexual behavior, criminal history, health information, disability, union information, genetic data, biological data, or any other data that affects the data subject as specified by the Personal Data Protection Committee.
• Personal data processing means any action with personal data such as collecting, recording, copying, organizing, preserving, updating, changing, using, retrieving, disclosing, forwarding, publishing, transferring, combining, deleting, destroying etc.
• Data subject means a natural person who is the subject about which the company collects, uses, or discloses.
• Data controller means a person or juristic person who has authority and responsibility to make decisions regarding the collection, use, or disclosure of personal data.
• Data processor means a person or juristic person who carries out the collection, use, or disclosure of personal data on behalf of the data controller. However, such person or juristic person is not a Data Controller.

Collected Personal Information

• General personal information: first and last name, identification card or passport details, copy of ID card or ID card number.
• Contact information: address, telephone number, place of work.
• Employment information: job position, department, or organization.
• Electronic communication: email, conversation history in various chatting applications.
• Information provided upon contact or participation in company activities.

Collection of Personal Data

1. Direct collection: During service provision, applications, registration, contracts, surveys, visits, or communication with the company.
2. From secondary sources: Partners or public information, provided legally and with consent.

Purpose of Processing Data

1. Procuring or selling products or providing services.
2. Financial and tax transactions related to contracts.
3. Database preparation for service/product analysis and presentation.
4. Improving quality of operations and services.
5. Participation in company activities.
6. Access control, security, health, and safety purposes.
7. Compliance with applicable laws.

Processing of Personal Data

• Collecting contact information for contracts, services, or deliveries.
• Contacting and proposing relevant products or services.
• Disclosing information to processors such as Google, subcontractors, government agencies, or credit agencies.
• Transfer to foreign agencies (e.g., Google), with appropriate safeguards. Google Privacy Policy.

Retention

• Type: Digital file and paper.
• Location: Cloud service (Google and G Suite).
• Period: Based on necessity, legal terms, or company policy.
• Destruction: Data destroyed within 10 days after expiry.

Personal Data Retention Period

Data is retained as long as necessary for purposes specified, including compliance with law, establishment or defense of claims, and company regulations. When unspecified, retention follows industry standards (e.g., 10 years maximum per statute of limitations).

Your Rights as Data Subject

• Right to withdraw consent.
• Right of access and copy of personal data.
• Right to rectification of personal data.
• Right to erasure of personal data.
• Right to restriction of processing.
• Right to data portability.
• Right to object to processing.

Requests can be submitted to the company’s DPO with proof of identity. Response will be provided within 30 days.

Contact Us

Data Controller:
Smart Finder Company Limited
99/24 Rajchapreuk Road, Bangkrang, Nonthaburi 11000
Tel: 02-422-6780
Fax: 02-422-6781
Email: support@smartfinder.tech

Supervisory Authority:
Office of the Permanent Secretary, Ministry of Digital Economy and Society (Personal Data Protection Board)
120 Village No. 3, Floors 6-9, Ratthaprasatpakdee Building, Government Complex, Chaengwattana Road, Thung Song Hong, Lak Si, Bangkok 10210
Email: pdpc@mdes.go.th
Tel: 02-142-1033, 02-141-6993

Policy Updates

The company may update or amend this policy to reflect changes in laws or operations, and will inform you prior to revisions.