Privacy Policy
Last Updated: January 15, 2025
At Systemizefuture, we're serious about protecting your information. This isn't one of those policies written by lawyers for lawyers. We've tried to explain what we do with your data in terms that actually make sense.
Operating in Thailand means we follow local regulations, including the Personal Data Protection Act B.E. 2562 (2019). But more than that, we treat your information the way we'd want ours treated.
Information We Collect
We collect different types of information depending on how you interact with us. Here's what that looks like in practice:
Information You Give Us Directly
When you reach out for financial risk assessment services, we need certain details to help you properly:
- Your name and contact information (email, phone number)
- Business details relevant to risk assessment
- Financial information necessary for evaluation
- Communication preferences and inquiry details
- Any additional context you choose to share
Information Collected Automatically
Our website collects some technical information when you visit. Nothing invasive, just the basics:
- IP address and general location data
- Browser type and device information
- Pages you view and how long you stay
- Referring website information
- Technical performance data
How We Use Your Information
We're not in the business of collecting data for the sake of it. Everything we gather serves a specific purpose related to providing you with financial risk assessment services.
| Purpose | What This Means |
|---|---|
| Service Delivery | Conducting financial assessments, preparing reports, and providing risk mitigation recommendations |
| Communication | Responding to inquiries, scheduling consultations, and keeping you updated on your assessment progress |
| Service Improvement | Understanding how clients use our services to make meaningful improvements |
| Legal Compliance | Meeting regulatory requirements in Thailand and maintaining proper business records |
| Security | Protecting our systems and your data from unauthorized access or fraudulent activity |
Data Sharing and Disclosure
We don't sell your information. Period. But there are specific situations where we might need to share data:
Service Providers: We work with trusted vendors who help us operate (cloud hosting, email services, payment processing). These partners are contractually obligated to protect your data and can only use it for the specific services they provide to us.
Legal Requirements: If Thai authorities or courts require disclosure, we'll comply. We'll also share information if necessary to protect our legal rights or prevent harm.
Business Transfers: If Systemizefuture is acquired or merges with another company, your information would transfer as part of that transaction. You'd be notified if this happens.
Your Rights Under Thai Law
Thailand's Personal Data Protection Act gives you specific rights. Here's what you can do and how to actually exercise these rights:
- Access Your Data: Request a copy of the personal information we hold about you
- Correction: Ask us to fix inaccurate or incomplete information
- Deletion: Request deletion of your data when it's no longer necessary for the original purpose
- Restrict Processing: Limit how we use your information in certain circumstances
- Data Portability: Receive your data in a structured, commonly used format
- Object to Processing: Challenge how we process your information for specific purposes
- Withdraw Consent: Revoke permission you've previously given (though this doesn't affect prior processing)
To exercise any of these rights, contact us using the details at the bottom of this page. We'll respond within the timeframe required by Thai law (typically 30 days).
Data Security Measures
Financial data requires serious protection. We use multiple layers of security to keep your information safe:
- TLS encryption for all data transmitted between your browser and our servers
- Encrypted storage for sensitive financial information
- Access controls that limit who can view client data internally
- Regular security audits and vulnerability assessments
- Secure backup systems with encryption at rest
- Employee training on data protection and confidentiality
No system is completely bulletproof, but we take reasonable and industry-appropriate precautions to protect your data.
Data Retention and Deletion
We keep your information only as long as necessary. Here's our approach:
Active Client Data: Maintained while we're providing services and for a reasonable period afterward to address any follow-up questions or concerns.
Financial Records: Kept for the minimum period required by Thai accounting and tax regulations (currently seven years from the end of the relevant accounting period).
General Business Records: Deleted within three years of the last interaction, unless legal obligations require longer retention.
Marketing Communications: Removed within 30 days of an unsubscribe request.
When we delete data, we do so securely and completely. Backups are purged according to our retention schedule.
International Data Transfers
We primarily store data within Thailand. However, some of our service providers operate servers in other countries. When this happens:
- We only transfer data to countries with adequate data protection standards
- Contracts with international providers include data protection clauses
- We ensure appropriate safeguards are in place for cross-border transfers
- You can request specific information about where your data is stored
Cookies and Tracking
Our website uses minimal tracking technology. We're not building detailed profiles or following you around the internet.
- Essential cookies needed for the site to function properly
- Analytics cookies to understand general usage patterns (anonymized)
- No third-party advertising or tracking cookies
- You can disable cookies in your browser settings, though some site features might not work correctly
Changes to This Policy
We update this policy occasionally to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify active clients by email. The "Last Updated" date at the top shows when the most recent changes were made.
Continuing to use our services after policy changes means you accept the updated terms. If you disagree with changes, you can request deletion of your data and discontinue service.
Children's Privacy
Our services are designed for businesses and adults. We don't knowingly collect information from anyone under 20 years old (the age of majority in Thailand). If we discover we've accidentally collected data from a minor, we'll delete it promptly.
Filing Complaints
If you're not satisfied with how we've handled your data or responded to your concerns, you have the right to file a complaint with Thailand's Personal Data Protection Committee (PDPC). We'd prefer to resolve issues directly, but we respect your right to escalate concerns to regulatory authorities.
Questions or Concerns?
Reach out if you have questions about this policy or how we handle your information. We're here to help.