ADD-ON SHOP
RESERVE
Upgrading our all-day dining restaurant, Windsong Project during May 15th to September 30th, 2024. More Details

Privacy PolicyPrivacy and Cookies Policy, PDPA, CCPA, and GDPR policies

This privacy policy page outlines details on the our terms and conditions for the following:

- General Privacy Policy
- Cookies Policy
- Personal Data Protection Act (PDPA)
- General Data Protection Regulation (GDPR)
- California Consumer Privacy Act (CCPA)
- Vendor Privacy Policy
- CCTV Privacy Policy
- HR Privacy Policy
- Recruitment Privacy Policy
- Contact Information for all Privacy Policy matters

Charoen Chana (1986) Co., Ltd. henceforth will be referred to as the “Company,” “we,” “us,” “our”, or “Thavorn Hotels & Resorts.” Thavorn Hotels & Resort domains include but are not limited to the following:

  • www.thavornhotels.com
  • www.thavornpalmbeach.com
  • www.thavornpalmbeach.ru
  • www.thavornpalmbeach.kr
  • www.thavornpalmbeach.cn
  • www.thavornbeachvillage.com
  • www.thavornbeachvillage.kr
  • www.thavornbeachvillage.cn
  • www.ciaobistrophuket.com
  • www.phuketromanticdining.com
  • www.phuketcoralconservation.com
  • www.thavornphuketjobs.com
  • www.phuketloyaltyprogram.com
  • www.phuketallinclusive.com
  • www.channspaphuket.com
  • www.phuketindianwedding.com
  • www.beachweddingphuket.com
  • www.thairestaurantphuket.com
  • www.thavorn-coupon.com
  • www.thavornwholesalers.com
  • www.phuketdreamweddings.com
  • www.phuketdreamweddings.cn
  • www.phuketmeetingconference.com

The Company recognizes the importance of the protection of your personal data. This Privacy Policy explains our practices regarding the collection, use or disclosure of personal data including other rights of the Data Subjects in accordance with the Personal Data Protection Laws.

We reserve the right to modify this Privacy Policy from time to time, so please review it frequently to see when this Privacy Policy was last revised. Any changes to this Privacy Policy will become effective when we post the revised Privacy Policy on our website or application. We will provide additional notice of significant updates. In case any modification deprives your rights of sensitive data in relation to this Privacy Policy, the Company will first obtain your consent, except as otherwise permitted by law.

 

Collection of Personal Data

We may collect or obtain the following types of information which may include your Personal Data directly or indirectly from you or other sources or through our affiliates, subsidiaries, business partners or other companies. The specific type of Personal Data collected will depend on the context of your interactions with us, and the services or products you need or want from us.

We may collect your personal data that we can access from the other source not directly from you such as search engines, social media, government authorities, third parties, etc.

 

Types of Data Collected

  • Personal data such as title, full name, gender, age, occupation, qualifications, job title, position, business type, company name, nationality, country of residence, date of birth, marital status, number of family members and children, ages of children, information on government-issued cards (e.g., national identification number, photograph of the national identification, information on the national identification, control number on the reverse side of the national identification (Laser ID), social security number, passport number, tax identification number, driver's license details or similar identifiers), immigration details such as arrival and departure date, signature, voice, voice record, photograph, facial features for recognition, CCTV records, work place, education, insurance details, license plate details, house registration, household income, salary and personal income, weight, height, military status
  • Contact information such as postal address, delivery details, billing address, residential address, workplace address, address shown in the national identification card, telephone number, fax number, email address, LINE ID, Facebook account, Facebook ID, Google ID, Twitter ID, and other ID from social networking sites, your contact person's contact details (e.g., telephone number, contact data on any correspondence (e.g. written communication with you), and any other contact details you provided to us;
  • Account details such as username, password, transactions history, etc.
  • Proof of identity such as copy of identification card, copy of passport, etc.
  • Financial information such as debit/credit card or bank information, credit/debit card number, credit card type, issuance/expiration date, cycle cut, account details, bank account details, financial statement, transaction history, prompt pay number payment details and records, your information regarding the risk profile for the business partner, credit rating and solvency, information in accordance with the declaration of suitability, suitability of transaction and any other financial details;
  • Transaction information such as details about payment to and from you, payment date and/or time, payment amount, details about refund, refund amount, points, date and location of purchase, purchase/order number, appointment date for service, address/date and time for pick up or delivery, acknowledgement of receipt, recipient email’s signature, warranty details, complaints and claims, booking details, rental details, transaction, transaction history, location, transaction status, past sales transaction, status, transaction status, purchasing behaviour, and any other details of products and services you have purchased, including but not limited to any information incurring from using of products or services provided on our platform, such as e-pocket, digital asset, lending product, insurance product and the product related to wealth management, etc.;
  • Technical data such as Internet Protocol (IP) address, cookies, activity log, media access control (MAC) address, web beacon, log, device ID (such as international mobile equipment identifier (IMEI), electronic serial number (ESN), mobile equipment identifier (MEID) and serial number (SN)), device model and type, formats of software and hardware of the device when it is activated in the system, network, connection details, access details, single sign-on (SSO), login log, access time and location, time spent on the page, login data, GPS, latitude, longitude and time spent on each webpage, login information, applications downloaded on a communication devices, search history, browsing details, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on devices you use to access the platform, including any other technical information arising from the use of our platform and systems;
  • Profile details, such as your username and password, profile details and picture, purchases, historical orders, past orders, purchase history, items bought, item quantity, orders or product recalls made by you, orders via website, Cash On Delivery details, order ID, financial records, PIN, your interests, preferences, feedback and survey responses, satisfaction survey, social media engagement, participation details, loyalty programs, your use of discount codes and promotions, customer order description, customer service, attendance to trade exhibitions and events, trade exhibitions, litigation, testing and trials;
  • Usage details, such as information on how you browse or use our websites, platform, application products and services, products in customer's cart, wish list record, remind me flash sale record, follow-shop record, and timestamp of last click and Q&A record;
  • Behavior details, such as information about your purchasing behavior and data supplied through the use of our products and services;
  • Usage details, such as information on how you browse or use our websites, platform, application products and services, products in customer's cart, wish list record, remind me flash sale record, follow-shop record, and timestamp of last click and Q&A record;
  • Geolocation data such as geolocation of vehicles, communication devices, any electronic devices, etc.
  • Marketing and communication details, such as your preference in receiving marketing from us, our affiliates, subsidiaries, business partners or other companies, and your communication preferences; and/or
  • Sensitive data, such as race, religion, political opinions, fingerprints, facial recognition, person identity information (biometrics), face, information from the iris recognition, physical or mental health or condition, genetic data, medical history, disability and criminal records.
  • Photo or video recording data such as photo recording via CCTV, etc.
  • Work and skill data such as work permits, past work experience or project experience, self introduction video, CV or resume, cover letter, information about training and seminar, awards, portfolios, language test result, aptitude test result, interview process result, etc.
  • Education data such as certificates, diplomas degree, transcripts, education background, etc.
  • Other such as photo, video, business card, portfolio, reference persons, any information which you provide to us during the vendor assessment & interview recruitment process, and other information that is considered personal data under the Personal Data Protection Laws.

If you provide Personal Data of any third party to us, e.g., their name, family name, address details, and telephone number for emergency contact, family member income, or if you use the service on any of our platforms with your consent, we can access and collect third party personal information relating to you, such as information on name, picture and/or phone number, as well as personal and contact information of family, friends, emergency contact persons, recommended persons or referrals accessible from your mobile number, etc.; please provide this Privacy Policy for their acknowledgement and/or obtaining consents if necessary.

We will only collect, use, or disclose sensitive data on the basis of your explicit consent or where permitted by law.

 

Children:

If you are under the age of 20 or having legal restrictions, we may collect use or disclose your personal data. We require your parents or guardian to be aware and provide consent to us or allowed by applicable laws. If we become aware that we have collected personal data from children without verification of parental consent, we take steps to remove that information from our servers.

 

Storage of Data:

We store your personal data as hard copy and soft copy. We store your personal data by using the following systems:

  • Our servers in Thailand
  • Our servers outside of Thailand
  • Third-party server service providers inside and outside of Thailand

 

Use of Data:

We use the collected data for various purposes:

  • To create and manage accounts
  • To provide products or services
  • To improve products, services, or user experiences
  • To share and manage information within organization
  • To conduct marketing activities and promotions
  • To personalize, profile, and analyze data
  • To learn more about you
  • To provide after-sales services
  • To gather user’s feedback
  • To process payments of products or services
  • To comply with our Terms and Conditions
  • To comply with laws, rules, and regulatory authorities

 

Disclosure of Personal Data: We may disclose your personal data to the following parties in certain circumstances:

 

Organization: We may disclose your personal data within our Company to provide and develop our products or services. We may combine information internally across the different products or services covered by this Privacy Policy to help us be more relevant and useful to you and others.

 

Service Providers:

We may use other companies, agents or contractors to perform services on behalf or to assist with the provision of products and services to you. We may share your Personal Data to our service providers or third-party suppliers including, but not limited to (1) infrastructure, internet, infrastructure technical, software and website, and IT service providers; (2) warehouse and logistic service providers; (3) payment service providers; (4) research agencies; (5) analytics service providers; (6) survey agencies; (7) auditors; (8) marketing, advertising media, and communications agencies; (9) call center; (10) campaign and event organizers; (11) sale representative agencies; (12) telecommunications and communication service providers; (13) payment, payment system, authentication, and dip chip service providers and agents; (14) outsourced administrative service providers; (15) data storage and cloud service providers; (16) verifying and data checking (Netbay and Department of Provincial Administration) service providers; (17) dispatchers; and/or (18) printing service providers.

In the course of providing such services, the service providers may have access to your Personal Data. However, we will only provide our service providers with the Personal Data that is necessary for them to perform the services, and we ask them not to use your information for any other purposes.

Please note that service providers have their own privacy policy.

 

Business Partners:

We may transfer your Personal Data to our business partners in the businesses of banking, finance, credit, loan, asset management, investment, insurance, credit cards, telecommunications, marketing, retail, e-commerce, warehouse, logistics, wellness, lifestyle products and services, spa and fitness, reward and loyalty program, and data analytics, including platform sellers or providers whom we may jointly offer products or services, or whose products or services may be offered to you. Data shared in this way will be governed by the third party’s privacy policy and not this Privacy Policy.

 

Business Transfer: In connection with any reorganization, restructuring, merger or acquisition, or other transfer of assets, we will transfer information, including certain your personal data, provided that the receiving party agrees to respect your personal data in a manner that is consistent with this Privacy Policy and the Personal Data Protection Laws.

 

Social networking sites:

We allow you to login on our sites and platforms without the need to fill out a form. If you log in using the social network login system, you explicitly authorize us to access and store public data on your social network accounts (e.g. Facebook, Google, Instagram), as well as other data mentioned during use of such social network login system. In addition, we may also communicate your email address to social networks in order to identify whether you are already a user of the concerned social network and in order to post personalized, relevant adverts on your social network account if appropriate.

We also partner with certain third parties that allow you to enroll in their services or participate in their promotions. For example, certain companies allow you to use your loyalty program number or online services login to receive or register for their services. Additionally, your social network account provider allows you to connect your social network account to your online services account or log into your online services account from your social network account. When you enroll in those services, we will share your Personal Data to those third parties. If you do not want to share your Personal Data in this way, do not provide your loyalty or reward program number to third parties, do not use your online services account to register for third-party promotions and do not connect your online services account with accounts on third-party services. Data shared in this way will be governed by the third party’s privacy policy and not this Privacy Policy.

 

Third parties required by law: In certain circumstances, we may be required to disclose or share your Personal Data in order to comply with a legal or regulatory obligations. This includes any law enforcement agency, court, regulator, government authority or other third party where we believe it is necessary to comply with a legal or regulatory obligation, or otherwise to protect our rights, the rights of any third party or individuals’ personal safety, or to detect, prevent, or otherwise address fraud, security, or safety issues.

 

Cross-Border Data Transfer:

We may disclose or transfer your personal data to third parties, organizations or servers located in foreign countries. We will take steps and measures to ensure that your personal data is securely transferred, and the receiving parties have an appropriate level of personal data protection standard or as allowed by laws.

With respect to transfers originating from the European Economic Area (EEA) to the United States and other non-EEA jurisdictions, we will have appropriate solutions to address cross-border transfers as required or permitted by the General Data Protection Regulation.

We will request your consent where consent to cross-border transfer is required by law.

 

Data Retention: We will retain your personal data for as long as necessary during the period you are a customer or under relationship with us, or for as long as necessary in connection with the purposes set out in this Privacy Policy, unless law requires or permits a longer retention period. We will erase, destroy or anonymize your personal data when it is no longer necessary or when the period lapses.

 

Data Subject Rights: Subject to the Personal Data Protection Laws thereof, you may exercise any of these rights in the following:

 

Withdrawal of consent: If you have given consent to us to collect, use or disclose your personal data whether before or after the effective date of the Personal Data Protection Laws, you have the right to withdraw such consent at any time throughout the period your personal data available to us, unless it is restricted by laws or you are still under beneficial contract.

 

Data access: You have the right to access your personal data that is under our responsibility; to request us to make a copy of such data for you; and to request us to reveal as to how we obtain your personal data.

 

Data portability: You have the right to obtain your personal data if we organize such personal data in automatic machine-readable or usable format and can be processed or disclosed by automatic means; to request us to send or transfer the personal data in such format directly to other data controllers if doable by automatic means; and to request to obtain the personal data in such format sent or transferred by us directly to other data controller unless not technically feasible.

 

Objection: You have the right to object to collection, use or disclosure of your personal data at any time if such doing is conducted for legitimate interests of us, corporation or individual which is within your reasonable expectation; or for carrying out public tasks.

 

Data erasure or destruction: You have the right to request us to erase, destroy or anonymize your personal data if you believe that the collection, use or disclosure of your personal data is against relevant laws; or retention of the data by us is no longer necessary in connection with related purposes under this Privacy Policy; or when you request to withdraw your consent or to object to the processing as earlier described.

 

Suspension: You have the right to request us to suspend processing your personal data during the period where we examine your rectification or objection request; or when it is no longer necessary and we must erase or destroy your personal data pursuant to relevant laws but you instead request us to suspend the processing.

 

Rectification: You have the right to rectify your personal data to be updated, complete and not misleading.

 

Complaint lodging: You have the right to complain to competent authorities pursuant to relevant laws if you believe that the collection, use or disclosure of your personal data is violating or not in compliance with relevant laws.

 

If you are in the European Economic Area (EEA) you have the rights as mentioned above and also you have the right to lodge a complaint with the local data protection authority if you believe that we have not complied with applicable Personal Data Protection laws.

You can exercise these rights as the Data Subject by contacting our Data Protection Officer as mentioned below. We will notify the result of your request within 30 days upon receipt of such request. If we deny the request, we will inform you of the reason via SMS, email address, telephone, registered mail (if applicable).

 

Contact Information: If you have any questions about this Privacy Policy or would like to exercise your rights, you can contact us by using the following details in the bottom section:

 

Cookies Policy

 

Cookies and how they are used

If you visit our websites, we will gather certain information automatically from you by using cookies or similar technologies. Cookies are small pieces of information or text issued to your computer when you visit a website and are used to store or track information about your use of a website and used in analyzing trends, administering our websites, tracking users’ movements around the websites, or to remember users’ settings. Some cookies are strictly necessary because otherwise the site is unable to function properly. Other Cookies allow us to enhance your browsing experience, tailor content to your preferences, and make your interactions with the site more convenient: they remember your username in a secure way, as well as your language preferences.

Similar technologies are technologies that store information in your browser or device utilizing local shared objects or local storage such as flash cookies, HTML 5, and other web application software methods.

The cookies we use include but are not limited to the following:

  • Session Cookies are temporary cookies that are used during the course of your visit to the website, and they expire when you close the browser.
  • Persistent Cookies are cookies that remain on your computer until they expire or are deleted. It used to remember your preferences within a website and remain on your computer or mobile device even after you close your browser. They ensure a consistent and efficient experience for you while visiting the website or services.
  • First-party Cookies are set by the site you are visiting.
  • Third-party Cookies are set by a third party site separate from the site you are visiting, such as those who serve content or provide advertising or analytics services on the website. These third parties may issue Cookies through our websites to serve ads that are relevant to your interests based on your browsing activities. These third parties may also collect your browser history or other information to determine how you reached our websites and the pages you visit when you leave our websites. Information gathered through these automated means may be associated with the Personal Data you previously submitted on our website.

 

Types of Cookies may include but are not limited to the following:

  • Strictly Necessary Cookies. These cookies are essential to provide you with services available through the website and to enable you to use some of its features. They help to authenticate users and prevent fraudulent use of user accounts. Without these cookies, the services that you have asked for cannot be provided, and we use these cookies to provide you with those services.
  • Functional Cookies. These cookies allow us to remember choices you make when you use the website, such as remembering your login details or language preference. The purpose of these cookies is to provide you with a more personal experience and to avoid you having to re-enter your preferences every time you use the website. These cookies are Persistent Cookies because they remain on your devices for us to use during a next visit to our website. You can delete these cookies via your browser.
  • Analytical/Performance Cookies. These cookies allow us to recognize and count the number of users of our websites and understand how such users navigate through our website. This helps to improve how our websites work, for example, by ensuring that users can find what they are looking for easily.
  • Advertising Cookies. These cookies are used to deliver ads relevant to you. They also limit the number of times that you see an ad and help us measure the effectiveness of our marketing campaigns. We may also use the information obtained via these cookies to serve you with advertising that may be of interest to you based on your past online behaviour. These cookies are Persistent Cookies. We may share this information with third parties, including our business partners.

 

Your Choices Regarding Cookies

Most Internet browsers allow you to decide whether or not to accept cookies. If you reject, remove or block Cookies can affect your user experience and without cookies, your ability to use some or all of the features or areas of our websites may be limited.

 

How Do We Use Cookies?

We will collect user activities within our website through cookies or similar technologies. We use cookies for the following purposes:

  • To provide a secure login process for all users
  • To record the use of our website and your personal settings
  • To analyze your behavior on our website for satisfaction optimization purposes
  • To improve the efficiency of accessing and using our services
  • To store your preferences and provide customized services to you

If you prefer to avoid the use of cookies on our website, you can change your browser's settings to exercise choices you have for certain cookies. If you disable or delete certain cookies in your browser settings, you may experience some inconvenience in your use of our website or some features may not function properly.

 

California Consumer Privacy Act (CCPA): For information about our data processing practices as required by the California Consumer Privacy Act 2018, please view our CCPA Privacy Policy.

 

Advertising and Marketing

To enable you to receive benefits from using our products or services, we use your personal data to analyze, personalize and enhance our products or services, and marketing efforts through Google, Facebook, pixel tracking code and others outlined in the “Types of Data Collected”. We use such information to provide you with customized and personalized recommendations for products or services we think will be of interest to you.

Our website may display advertisements from third parties to facilitate our services. These third parties may access your personal data only to perform these tasks and are obligated not to disclose or use it for any other purpose.

We do not use automated decision-making without human intervention, including profiling, in a way that produces legal effects concerning you or otherwise significantly affects you.

We may send certain information or newsletter for the purpose of utilizing your preference via your email. If you no longer want to receive the communications from us, you can click the "unsubscribe" link in the email or contact us through our email.

 

Data Security: We endeavor to protect your personal data by establishing security measures in accordance with the principles of confidentiality, integrity, and availability to prevent loss, unauthorized or unlawful access, destruction, use, alteration, or disclosure including administrative safeguard, technical safeguard, physical safeguard and access controls.

 

Data Breach Notification: We will notify the Office of the Personal Data Protection Committee without delay and, where feasible, within 72 hours after having become aware of it, unless such personal data breach is unlikely to result in a risk to the rights and freedoms of you. If the personal data breach is likely to result in a high risk to the rights and freedoms of you, we will also notify the personal data breach and the remedial measures to you without delay through our website, SMS, email address, telephone or registered mail (if applicable).

 

Links to Other Sites: The purpose of this Privacy Policy is to offer products or services and use of our website. Any websites from other domains found on our site is subject to their privacy policy which is not related to us.

 

Contact Information: If you have any questions about this Privacy Policy or would like to exercise your rights, you can contact us by using the following details in the bottom section:

 

California Consumer Privacy Act Policy (CCPA)

Charoen Chana (1986) Co., Ltd. takes the privacy and security of your personal information. This Privacy Policy describes our practice on how we collect, use, or disclose personal information relating to California residents under the California Consumer Privacy Act of 2018 (CCPA).

 

Your Rights Under the CCPA

In addition to the rights as explained in the Privacy Policy, California residents has the rights with the following rights:

 

Right to Notification

We collect the following categories of personal Information about California residents and disclose to third parties or service providers for the business purposes listed. In the past 12 months, we may have, depending on your interactions with us, collected the following categories of personal information.

 

CCPA Personal Information Categories

Identifiers such as name, surname, gender, nationality, identification card, passport, contact information, etc.

Personal information, as defined in the California safeguards law, such as financial information, credit card details, bank account, etc.

Protected classifications under California or federal law, such as disability status or other attributes, etc.

Commercial information such as information regarding products or services purchased, etc.

Internet or other electronic network activities such as browsing history, search history, etc.

Geolocation data such as location, etc.

Audio, electronic, visual, or similar information, such as call and video recordings, etc.

Professional or employment-related information such as work history, etc.

Education such as degrees, certificates, etc.

Other information such as your profile, your preferences, and characteristics, etc.

Sources of Information such as information you provide directly to us, your interactions with us and information from our business partners or service providers, etc.

We use personal information for the following business purposes:

  • To create and manage accounts
  • To provide products or services
  • To improve products, services, or user experiences
  • To share and manage information within organization
  • To conduct marketing activities and promotions
  • To provide after-sales services
  • To gather user’s feedback
  • To process payments of products or services
  • To comply with our Terms and Conditions
  • To comply with laws, rules, and regulatory authorities

 

Right to Request for Personal Information: You have the right to request that how we have collected, used, or disclosed your personal information over the past 12 months, including the categories of personal information we collected and our purposes for doing so; the categories of sources for that information; the categories of third parties with whom we disclosed it for a business purpose and our purposes for doing so.

 

Right to Request Deletion of Personal Information: You have the right to request the deletion of personal information that we collect or maintain about you. To submit a request to delete personal information, please submit a request to our email address as below. Please specify in your request the personal information about you that you would like to have deleted, which can be all your personal information as required by the CCPA.

 

Right to Non-Discrimination: The CCPA prohibits discrimination against California residents for exercising their rights under the CCPA. In this regard, you may not be discriminated against because you exercise any of your rights under the CCPA.

 

Right to Opt-Out of the Sale of Personal Information: You have the right to opt-out of the sale of your personal information. We do not sell your personal information including California residents’ personal information.

 

Vendor Privacy Policy

The Company recognizes the importance of the protection of your personal data as vendors and prospective vendors of the Company. This Vendor Privacy Policy explains our practices regarding the collection, use or disclosure of personal data including other rights of the Data Subjects in accordance with the Personal Data Protection Act B.E. 2562 (2019) (the “Personal Data Protection Laws”).

 

Sources of Personal Data

We collect your personal data that receive directly from you as following;

  • Procurement assessment form
  • Procurement assessment process
  • Vendor application form
  • Supportive documents for procurement assessment
  • Submission of information via the Company’s website
  • Contact via telephone
  • Contact via email
  • Contact via post
  • Google login
  • LINE login
  • LinkedIn login
  • Facebook login

We may collect your personal data that we can access from the other sources not directly from you such as search engines, social media, public websites, other company’s websites, government authorities, third parties, reference person, etc.

 

Type of Data Collected

See section above for details on the types of Data Collected.

 

We may collect, use or disclose your sensitive data that is specially categorized by law when we have obtained explicit consent from you or where necessary for us as permissible under law. We may collect, use or disclose your sensitive personal data as following;

  • racial
  • ethnic
  • political opinions
  • cult
  • religious or philosophical beliefs
  • sexual behavior
  • criminal records
  • health data
  • disability
  • trade union information
  • genetic data
  • biometric data such as facial recognition, data, iris recognition data or fingerprint recognition data
  • Any data which may affect the data subject in the same manner, as prescribed by the Personal Data Protection Committee

In the case that personal data collected by the Company as specified above is necessary for the vendors selection process or any legal compliance. If you do not provide the Company with such necessary personal data, the Company may not be able to process your vendor application further.

 

Storage of Personal Data

See section above for details on where we store Personal Data.

 

Use of Personal Data

We use the collected personal data for various purposes:

  • Vendor assessment and application procedures.
  • Create and manage the vendor account in the Company’s database.
  • Perform a contractual obligation between you and the Company.
  • Internal record and management of the Company.
  • Procedure for conducting background and qualification check.
  • Internal audit or investigation of the Company.
  • Monitor security in the Company’s area such as recording photo via CCTV and ID card deposit before entering into the building or area of the Company.
  • To comply with any related law, government orders or regulation.

 

Disclosure of Personal Data

We may disclose your personal data to the following parties in certain circumstances.

 

Organization Management

We may disclose your personal data within our affiliate company and group company only as necessary for the procurement assessment procedure or the purposes specified above.

 

Law Enforcement

Under certain circumstances, we may be required to disclose your personal data if required to do so by law or in response to valid requests by government authorities such as court or a government body.

 

Business Partner

We may disclose your personal data to the business partners in order to pursue the purposes of this Vendor Privacy Policy.

 

Service Providers

We may disclose your personal data to the service providers for the purposes as follows:

  • Document storage and destruction service
  • Security service
  • Criminal record and background checks service
  • Information technology service
  • Logistic service
  • Marketing service
  • Print media service
  • Professional services such as business consultant, technicians, auditor, legal firm, tax firm or any other advisors.

 

Business Transfer

In connection with any reorganization, restructuring, merger or acquisition, or other transfer of assets, we will transfer information, including certain your personal data, provided that the receiving party agrees to respect your personal data in a manner that is consistent with this Vendor Privacy Policy and Personal Data Protection Laws.

 

Cross-Border Data Transfer

We may disclose or transfer your personal data to third parties, organizations or servers located in foreign countries. We will take steps and measures to ensure that your personal data is securely transferred, and the receiving parties have an appropriate level of personal data protection standard or as allowed by laws.

 

Data Retention

We will retain your personal data for as long as you are our or still in relationship as our vendor, necessary for the purposes set out in this Vendor Privacy Policy unless law requires or permits longer retention period. We will erase, destroy, or anonymize your personal data when it is no longer necessary or when the period lapses.

 

Data Subject Rights

Subject to the Personal Data Protection Laws thereof, you may exercise any of these rights in the following:

  1. Withdrawal of consent: If you have given consent to us to collect, use or disclose your personal data whether before or after the effective date of the Personal Data Protection Laws, you have the right to withdraw such consent at any time throughout the period your personal data available to us, unless it is restricted by laws or you are still under beneficial contract.
  2. Data access: You have the right to access your personal data that is under the company’s responsibility; to request us to make a copy of such data for you; and to request us to reveal as to how we obtain your personal data.
  3. Data portability: You have the right to obtain your personal data if we organize such personal data in automatic machine-readable or usable format and can be processed or disclosed by automatic means; to request us to send or transfer the personal data in such format directly to other data controllers if doable by automatic means; and to request to obtain the personal data in such format sent or transferred by us directly to other data controller unless not technically feasible.
  4. Objection: You have the right to object to collection, use or disclosure of your personal data at any time if such doing is conducted for legitimate interests of us, corporation or individual which is within your reasonable expectation; or for carrying out public tasks.
  5. Data erasure or destruction: You have the right to request us to erase, destroy or anonymize your personal data if you believe that the collection, use or disclosure of your personal data is against relevant laws; or retention of the data by us is no longer necessary in connection with related purposes under this Vendor Privacy Policy; or when you request to withdraw your consent or to object to the processing as earlier described.
  6. Suspension: You have the right to request us to suspend processing your personal data during the period where we examine your rectification or objection request; or when it is no longer necessary and we must erase or destroy your personal data pursuant to relevant laws but you instead request us to suspend the processing.
  7. Rectification: You have the right to rectify your personal data to be updated, complete and not misleading.
  8. Complaint lodging: You have the right to complain to competent authorities pursuant to relevant laws if you believe that the collection, use or disclosure of your personal data is violating or not in compliance with relevant laws.

You can exercise these rights as the Data Subject by contacting our Data Protection Officer as mentioned below. We will notify the result of your request within 30 days upon receipt of such request. If we deny the request, we will inform you of the reason via SMS, email, telephone, registered mail (if applicable)

 

Data Security: We endeavor to protect your personal data by establishing security measures in accordance with the principles of confidentiality, integrity, and availability to prevent loss, unauthorized or unlawful access, destruction, use, alteration, or disclosure including administrative safeguard, technical safeguard, physical safeguard and access controls.

 

Data Breach Notification: We will notify the Office of the Personal Data Protection Committee without delay and, where feasible, within 72 hours after having become aware of it, unless such personal data breach is unlikely to result in a risk to the rights and freedoms of you. If the personal data breach is likely to result in a high risk to the rights and freedoms of you, we will also notify the personal data breach and the remedial measures to you without delay by SMS, email, telephone call or registered mail if applicable.

 

Changes to this Vendor Privacy Policy: We may change this Vendor Privacy Policy from time to time in accordance with our processing activities. Any changes of this Vendor Privacy Policy, we encourage you to frequently check on our website or internal communication.

 

Links to Other Sites: The purpose of this Vendor Privacy Policy is for our vendor and prospective vendor only. Any websites from other domains found on our site are subject to their privacy policy which is not related to us.

 

Contact Information: If you have any questions about this Privacy Policy or would like to exercise your rights, you can contact us by using the following details in the bottom section:

 

CCTV Privacy Policy

The Company installs and uses Closed-Circuit-Television (CCTV) devices in order for preventing life, body and property. This CCTV Privacy Policy explains our practices regarding the collection, use or disclosure of personal data collected from CCTV including other rights of the Data Subjects in accordance with the Personal Data Protection Act B.E. 2562 (2019).

 

Collection of Personal Data

We will collect your personal data obtained by CCTV devices. The CCTV systems operate to record as images, video, and voice within our controlled area.

 

Storage of Data

We store your personal data as hard copy and soft copy.

We store your personal data by using the following systems outlined in the section above on Storage of Data

 

Use of Data

We use the collected data for the following purposes:

  • To prevent damage to your life, body, health and property
  • To support law enforcement authorities in preventing and suppressing of crimes
  • To assist in the investigation or legal proceedings of dispute resolution, disciplinary and grievance
  • To establish, compliance, exercise, and defense of any legal claims
  • To carry out any other acts to achieve the purposes of CCTV system

The legal basis for personal data processing are (1) for preventing or suppressing a danger to a person’s life, body or health (2) for our legitimate interests and (3) for compliance with the law on occupational safety, health and environment.

 

Disclosure of Personal Data

We may disclose your personal data to the following parties in certain circumstances:

 

Organization

We may disclose your personal data within our organization for the purpose of this CCTV Privacy Policy. The personal data will be securely stored and only authorised personnel will have access to them.

 

Third Party

We may disclose your personal data to third parties which may include our affiliates, service providers, business partners. To the extent necessary to prevent damage to your life, body and property for the purposes specified in this CCTV Privacy Policy.

 

Business Transfer

In connection with any reorganization, restructuring, merger or acquisition, or other transfer of assets, we will transfer information, including certain your personal data, provided that the receiving party agrees to respect your personal data in a manner that is consistent with this CCTV Privacy Policy and the Personal Data Protection Laws.

 

Law Enforcement

Under certain circumstances, we may be required to disclose your personal data if required to do so by law or in response to valid requests by government authority such as courts, public prosecutors, or police, etc.

 

Cross-Border Data Transfer

We may disclose or transfer your personal data to third parties, organizations or servers located in foreign countries. We will take steps and measures to ensure that your personal data is securely transferred, and the receiving parties have an appropriate level of personal data protection standard or as allowed by laws.

 

Data Retention

We will retain your personal data within 365 days, or for as long as necessary in connection with the purposes set out in this CCTV Privacy Policy , unless law requires or permits a longer retention period. We will erase, destroy or anonymize your personal data when it is no longer necessary or when the period lapses.

 

Data Subject Rights

Subject to the Personal Data Protection Laws thereof, you may exercise any of these rights in the following:

 

Withdrawal of consent: If you have given consent us to collect, use or disclose your personal data whether before or after the effective date of the Personal Data Protection Laws, you have the right to withdraw such consent at any time throughout the period your personal data available to us, unless it is restricted by laws or you are still under beneficial contract.

 

Data access: You have the right to access your personal data that is under the company’s responsibility; to request us to make a copy of such data for you; and to request us to reveal as to how we obtain your personal data.

 

Data portability: You have the right to obtain your personal data if we organize such personal data in automatic machine-readable or usable format and can be processed or disclosed by automatic means; to request us to send or transfer the personal data in such format directly to other data controllers if doable by automatic means; and to request to obtain the personal data in such format sent or transferred by us directly to other data controller unless not technically feasible.

 

Objection: You have the right to object to collection, use or disclosure of your personal data at any time if such doing is conducted for legitimate interests of us, corporation or individual which is within your reasonable expectation; or for carrying out public tasks.

 

Data erasure or destruction: You have the right to request us to erase, destroy or anonymize your personal data if you believe that the collection, use or disclosure of your personal data is against relevant laws; or retention of the data by us is no longer necessary in connection with related purposes under this CCTV Privacy Policy ; or when you request to withdraw your consent or to object to the processing as earlier described.

 

Suspension: You have the right to request us to suspend processing your personal data during the period where we examine your rectification or objection request; or when it is no longer necessary and we must erase or destroy your personal data pursuant to relevant laws but you instead request us to suspend the processing.

 

Rectification: You have the right to rectify your personal data to be updated, complete and not misleading.

 

Complaint lodging: You have the right to complain to competent authorities pursuant to relevant laws if you believe that the collection, use or disclosure of your personal data is violating or not in compliance with relevant laws.

 

You can exercise these rights as the Data Subject by contacting our Data Protection Officer as mentioned below. We will notify the result of your request within 30 days upon receipt of such request. If we deny the request, we will inform you of the reason via SMS, email, telephone, registered mail (if applicable).

 

Data Security

We endeavor to protect your personal data by establishing security measures in accordance with the principles of confidentiality, integrity, and availability to prevent loss, unauthorized or unlawful access, destruction, use, alteration, or disclosure including administrative safeguard, technical safeguard, physical safeguard and access controls.

 

Data Breach Notification

We will notify the Office of the Personal Data Protection Committee without delay and, where feasible, within 72 hours after having become aware of it, unless such personal data breach is unlikely to result in a risk to the rights and freedoms of you. If the personal data breach is likely to result in a high risk to the rights and freedoms of you, we will also notify the personal data breach and the remedial measures to you without delay by our website, SMS, email, telephone call or registered mail if applicable.

 

Changes to this CCTV Privacy Policy: We may change this CCTV Privacy Policy from time to time. Any changes of this CCTV Privacy Policy, we encourage you to frequently check on our website.

 

Links to other site: The purpose of this CCTV Privacy Policy is for all employees, customers, visitors, or any individuals. Any websites from other domains found on our site is subject to their Privacy Policy which is not related to us.

 

Contact Information: If you have any questions about this Privacy Policy or would like to exercise your rights, you can contact us by using the following details in the bottom section:

 

HR Privacy Policy

The Company recognizes the importance of the protection of your personal data. This HR Privacy Policy explain our practices regarding the collection, use or disclosure of personal data including other rights of the Data Subjects in accordance with the Personal Data Protection Act B.E. 2562 (2019).

 

Collection of Personal Data

We collect your personal data that receive directly from you as following;

  • Employment contract and relevant documents
  • Company’s registration/account through our website
  • Telephone
  • Email
  • Google Login
  • LINE Login
  • LinkedIn Login
  • Facebook Login

We may collect your personal data that we can access from the other source not directly from you such as search engines, social media, government authorities, third parties, etc.

 

Type of Data Collected

Examples of Data collected are listed in the section at the top of the page.

 

We may collect, use or disclose your sensitive data that is specially categorized by law when we have obtained explicit consent from you or where necessary for us as permissible under law. We may collect, use or disclose your sensitive personal data as following;

  • racial
  • ethnic
  • political opinions
  • cult
  • religious or philosophical beliefs
  • sexual behavior
  • criminal records
  • health data
  • disability
  • trade union information
  • genetic data
  • biometric data such as facial recognition, data, iris recognition data or fingerprint recognition data

Any data which may affect the data subject in the same manner, as prescribed by the Personal Data Protection Committee

 

Storage of Data

We store your personal data as hard copy and soft copy.

We store your personal data by using the following systems listed in the section at the top of the page:

 

Use of Data

We use the collected data for various purposes:

  • To fulfil employment contracts
  • To fulfil Non-Disclosure Agreement
  • To comply with company’s rule
  • To comply with company’s policies
  • To administer and manage salary, compensation, benefit, bonus, tax deduction, social security, seizure and other expenses.
  • To manage personal administration such as attendance, leave record according to the law and company’s policy.
  • Health and medical management such as annual physical examination, vaccination, health insurance, etc.
  • To comply with law and regulations including government orders such as Social Security Office, Department of Labor Protection and Welfare, Revenue Department, Courts and other government agencies
  • To provide security within organization such as CCTV, employee name cards, etc.
  • To plan our business strategy including risk management, internal audit and organization management, etc.
  • To communicate, advertise and announce any information within the organization
  • To establish, compliance, exercise, and defense of any legal claims

 

Disclosure of Personal Data

We may disclose your personal data to the following parties in certain circumstances.

 

Organization Management

We may disclose your personal data within our organization for administrations of employees under this HR Privacy Policy.

 

Law Enforcement

Under certain circumstances, we may be required to disclose your personal data if required to do so by law or in response to valid requests by government authorities such as court or a government body.

 

Business Partner

We may disclose your personal data to the business partners in order to contact and coordinate for the purposes under this HR Privacy Policy

 

Service Providers

We may disclose your personal data to the service providers for the purposes as follows:

  • Training or seminars
  • Transportation service
  • Document storage and destruction service
  • Security service
  • Marketing service
  • Information technology service
  • Professional services such as business consultant, auditor, legal firm, tax firm or any other advisors.

 

Business Transfer

In connection with any reorganization, restructuring, merger or acquisition, or other transfer of assets, we will transfer information, including certain your personal data, provided that the receiving party agrees to respect your personal data in a manner that is consistent with this HR Privacy Policy and Personal Data Protection Laws.

 

Cross-Border Data Transfer

We may disclose or transfer your personal data to third parties, organization or server located in foreign countries. We will take steps and measures to ensure that your personal data is securely transferred, and the receiving parties have an appropriate level of personal data protection standard or as allowed by laws.

 

Data Retention

We will retain your personal data for as long as necessary during the period you are an employee or under relationship with us, or for as long as necessary in connection with the purposes set out in this HR Privacy Policy, unless law requires or permits longer retention period. We will erase, destroy, or anonymize your personal data when it is no longer necessary or when the period lapses.

 

Data Subject Rights

Subject to the Personal Data Protection Laws thereof, you may exercise any of these rights in the following:

 

Withdrawal of consent: If you have given consent to us to collect, use or disclose your personal data whether before or after the effective date of the Personal Data Protection Laws, you have the right to withdraw such consent at any time throughout the period your personal data available to us, unless it is restricted by laws or you are still under beneficial contract.

 

Data access: You have the right to access your personal data that is under the company’s responsibility; to request us to make a copy of such data for you; and to request us to reveal as to how we obtain your personal data.

 

Data portability: You have the right to obtain your personal data if we organize such personal data in automatic machine-readable or usable format and can be processed or disclosed by automatic means; to request us to send or transfer the personal data in such format directly to other data controllers if doable by automatic means; and to request to obtain the personal data in such format sent or transferred by us directly to other data controller unless not technically feasible.

 

Objection: You have the right to object to collection, use or disclosure of your personal data at any time if such doing is conducted for legitimate interests of us, corporation or individual which is within your reasonable expectation; or for carrying out public tasks.

 

Data erasure or destruction: You have the right to request us to erase, destroy or anonymize your personal data if you believe that the collection, use or disclosure of your personal data is against relevant laws; or retention of the data by us is no longer necessary in connection with related purposes under this HR Privacy Policy; or when you request to withdraw your consent or to object to the processing as earlier described.

 

Suspension: You have the right to request us to suspend processing your personal data during the period where we examines your rectification or objection request; or when it is no longer necessary and we must erase or destroy your personal data pursuant to relevant laws but you instead request us to suspend the processing.

 

Rectification: You have the right to rectify your personal data to be updated, complete and not misleading.

 

Complaint lodging: You have right to complain to competent authorities pursuant to relevant laws if you believe that the collection, use or disclosure of your personal data is violating or not in compliance with relevant laws.

 

You can exercise these rights as the Data Subject by contacting our Data Protection Officer as mentioned below. We will notify the result of your request within 30 days upon receipt of such request. If we deny the request, we will inform you of the reason via SMS, email, telephone, registered mail (if applicable)

 

Data Security: We endeavor to protect your personal data by establishing security measures in accordance with the principles of confidentiality, integrity, and availability to prevent loss, unauthorized or unlawful access, destruction, use, alteration, or disclosure including administrative safeguard, technical safeguard, physical safeguard and access controls.

 

Data Breach Notification: We will notify the Office of the Personal Data Protection Committee without delay and, where feasible, within 72 hours after having become aware of it, unless such personal data breach is unlikely to result in a risk to the rights and freedoms of you. If the personal data breach is likely to result in a high risk to the rights and freedoms of you, we will also notify the personal data breach and the remedial measures to you without delay by SMS, email, telephone call or registered mail if applicable.

 

Changes to this: We may change this HR Privacy Policy from time to time. Any changes of this HR Privacy Policy, we encourage you to frequently check on our website or internal communication.

 

Links to Other Sites: The purpose of this HR Privacy Policy is for employees. Any websites from other domains found on our site is subject to their Privacy Policy which is not related to us.

 

Contact Information: If you have any questions about this HR Privacy Policy, please contact us by using the contact information through the following channels listed at the bottom section.

 

Recruitment Privacy Policy

The Company recognizes the importance of the protection of your personal data as an applicant, candidate or prospective employee of the Company. This Recruitment Privacy Policy explains our practices regarding the collection, use or disclosure of personal data including other rights of the Data Subjects in accordance with the Personal Data Protection Act B.E. 2562 (2019) (the “Personal Data Protection Laws”).

 

Sources of Personal Data

We collect your personal data that receive directly from you as following;

  • Job-application form
  • Internship-application form
  • Submission of information via the Company’s website
  • Supporting documents for job-application or internship process
  • Aptitude test
  • Language test
  • Participate in the Company’s recruitment activities
  • Contact via telephone
  • Contact via email
  • Contact via post
  • Google login
  • LINE login
  • Linkedin login
  • Facebook login

We may collect your personal data that we can access from the other source not directly from you such as search engines, social media, job recruitment websites, universities or colleges registrar, government authorities, third parties, reference person, family members, ex-employers, ex-colleagues etc.

 

Type of Data Collected

Lists of Types of Data Collected can be found in the section at the top of the page.

 

We may collect, use or disclose your sensitive data that is specially categorized by law when we have obtained explicit consent from you or where necessary for us as permissible under law. We may collect, use or disclose your sensitive personal data as following;

  • racial
  • ethnic
  • political opinions
  • cult
  • religious or philosophical beliefs
  • sexual behavior
  • criminal records
  • health data
  • disability
  • trade union information
  • genetic data
  • biometric data such as facial recognition, data, iris recognition data or fingerprint recognition data
  • Any data which may affect the data subject in the same manner, as prescribed by the Personal Data Protection Committee

In the case the personal data collected by the Company as specified above is necessary for the employment selection or legal compliance, such as your past work experience and criminal records (if any). If you do not provide the Company with such necessary personal data, the Company may not be able to process your application further.


Children

If you are under the age of 20 or having legal restrictions, we may collect, use or disclose your personal data. We require your parents or guardian to be aware and provide consent to us or allowed by applicable laws. If we become aware that we have collected personal data from children without verification of parental consent, we take steps to remove that information from our servers.


Storage of Personal Data

We store your personal data as hard copy and soft copy.

We store your personal data by using the following systems listed in the same section at the top of the page.

 

Use of Personal Data

We use the collected personal data for various purposes:

  • Job-application procedures
  • Internship-application procedures
  • Internal human resource management of the Company
  • Procedure for conducting background and qualification check
  • Monitor security in the Company’s area such as recording photo via CCTV and ID card deposit before entering into the building or area of the Company
  • Communicate, advertise and offer other jobs offer of the Company that may suit you
  • To comply with any related law, government orders or regulation.

 

Disclosure of Personal Data

We may disclose your personal data to the following parties in certain circumstances.

 

Organization Management

We may disclose your personal data within our affiliate company and group company only as necessary for job-application procedure.

 

Law Enforcement

Under certain circumstances, we may be required to disclose your personal data if required to do so by law or in response to valid requests by government authorities such as court or a government body.

 

Business Partner

We may disclose your personal data to the business partners in order to pursue the purposes of this Recruitment Privacy Policy.

 

Service Providers

We may disclose your personal data to the service providers for the purposes as follows:

  • Document storage and destruction service
  • Security service
  • Health checkup service
  • Criminal record and background checks service
  • Information technology service
  • Recruitment service
  • Professional services such as business consultant, auditor, legal firm, tax firm or any other advisors.

 

Business Transfer

In connection with any reorganization, restructuring, merger or acquisition, or other transfer of assets, we will transfer information, including certain your personal data, provided that the receiving party agrees to respect your personal data in a manner that is consistent with this Recruitment Privacy Policy and Personal Data Protection Laws.

 

Cross-Border Data Transfer

We may disclose or transfer your personal data to third parties, organizations or servers located in foreign countries. We will take steps and measures to ensure that your personal data is securely transferred, and the receiving parties have an appropriate level of personal data protection standard or as allowed by laws.

 

Data Retention

We will retain your personal data for as long as necessary for the purposes set out in this Recruitment Privacy Policy unless law requires or permits a longer retention period. However, we may maintain your information for the purpose of considering you for other suitable roles and/or job openings in the future. We will erase, destroy, or anonymize your personal data when it is no longer necessary or when the period lapses.


Data Subject Rights

Subject to the Personal Data Protection Laws thereof, you may exercise any of these rights in the following:

  1. Withdrawal of consent: If you have given consent to us to collect, use or disclose your personal data whether before or after the effective date of the Personal Data Protection Laws, you have the right to withdraw such consent at any time throughout the period your personal data available to us, unless it is restricted by laws or you are still under beneficial contract.
  2. Data access: You have the right to access your personal data that is under the company’s responsibility; to request us to make a copy of such data for you; and to request us to reveal as to how we obtain your personal data.
  3. Data portability: You have the right to obtain your personal data if we organize such personal data in automatic machine-readable or usable format and can be processed or disclosed by automatic means; to request us to send or transfer the personal data in such format directly to other data controllers if doable by automatic means; and to request to obtain the personal data in such format sent or transferred by us directly to other data controller unless not technically feasible.
  4. Objection: You have the right to object to collection, use or disclosure of your personal data at any time if such doing is conducted for legitimate interests of us, corporation or individual which is within your reasonable expectation; or for carrying out public tasks.
  5. Data erasure or destruction: You have the right to request us to erase, destroy or anonymize your personal data if you believe that the collection, use or disclosure of your personal data is against relevant laws; or retention of the data by us is no longer necessary in connection with related purposes under this Recruitment Privacy Policy; or when you request to withdraw your consent or to object to the processing as earlier described.
  6. Suspension: You have the right to request us to suspend processing your personal data during the period where we examine your rectification or objection request; or when it is no longer necessary and we must erase or destroy your personal data pursuant to relevant laws but you instead request us to suspend the processing.
  7. Rectification: You have the right to rectify your personal data to be updated, complete and not misleading.
  8. Complaint lodging: You have the right to complain to competent authorities pursuant to relevant laws if you believe that the collection, use or disclosure of your personal data is violating or not in compliance with relevant laws.

You can exercise these rights as the Data Subject by contacting our Data Protection Officer as mentioned below. We will notify the result of your request within 30 days upon receipt of such request. If we deny the request, we will inform you of the reason via SMS, email, telephone, registered mail (if applicable)


Data Security

We endeavor to protect your personal data by establishing security measures in accordance with the principles of confidentiality, integrity, and availability to prevent loss, unauthorized or unlawful access, destruction, use, alteration, or disclosure including administrative safeguard, technical safeguard, physical safeguard and access controls.


Data Breach Notification

We will notify the Office of the Personal Data Protection Committee without delay and, where feasible, within 72 hours after having become aware of it, unless such personal data breach is unlikely to result in a risk to the rights and freedoms of you. If the personal data breach is likely to result in a high risk to the rights and freedoms of you, we will also notify the personal data breach and the remedial measures to you without delay by SMS, email, telephone call or registered mail if applicable.


Changes to this Recruitment Privacy Policy

We may change this Recruitment Privacy Policy from time to time in accordance with our processing activities. Any changes of this Recruitment Privacy Policy, we encourage you to frequently check on our website or internal communication.


Links to Other Sites

The purpose of this Recruitment Privacy Policy is for applicant, candidate or prospective employee. Any websites from other domains found on our site are subject to their privacy policy which is not related to us.


Contact Information

If you have any questions about this Recruitment Privacy Policy, please contact us by using the contact information through the following channels at the section at the bottom.

 

Contact information for privacy policy related matters

If you wish to contact us to exercise the rights relating to your Personal Data or if you have any queries about your Personal Data under this Privacy Policy, please contact us or our Data Protection Officer at:

 

Data Controller

Charoen Chana (1986) Co., Ltd.

311 Patak Road Karon Beach, Karon, Amphoe Muang Phuket, Phuket, 83100

076-396-090

 

Data Protection Officer

General Privacy, Cookies Privacy, and Vendor Privacy 

Noppadon Prommuang

  • noppadon@thavornhotels.com
  • info@thavornpalmbeach.com
  • info@thavornbeachvillage.com

 

CCTV Privacy, HR Privacy, and Recruitment Prviacy

Anucharaporn Tongluan

  • gdhr@thavornhotels.com 
  • hr@thavornhotels.com