Information We Collect
The personal information that you are asked to provide, and the reasons why you are asked to provide it, will be made clear to you at the point we ask you to provide your personal information.
If you contact us directly, we may receive additional information about you such as your name, email address, phone number, the contents of the message and/or attachments you may send us, and any other information you may choose to provide.
This data may include information such as your name, contact details, phone number, email address, transaction and financial information, technical data such as IP Address, cookies via google analytics and other transaction records. It can also be information such as articles, feedback and photos sent by you directly to us.
How We Use Your Information
We use the information we collect in various ways, including to:
- Provide, operate, and maintain our website
- Improve, personalize, and expand our website
- Understand and analyze how you use our website
- Develop new products, services, features, and functionality
- Communicate with you, either directly or through one of our partners, including for
- customer service, to provide you with updates and other information relating to the
- website, and for marketing and promotional purposes
- Send you emails
- Find and prevent fraud
Services And Service Providers
We DO NOT share or disclose your personal data outside our company. It will be share within our organization to develop our products and services to help us be more relevant and useful to you and others. We may use service providers to help us provide our services (ie payments, marketing and development) but they will have their own privacy policies.
Storage Of Data
Your personal data will be stored as hard copy and soft file using the following systems:
- Smart Digital CRM
- Google Drive
- Microsoft 365
- Microsoft Exchange
We use reasonable administrative, physical, logical, and managerial measures to protect your data against unauthorized access, use, theft, loss and modification. These efforts are created to provide a level of security appropriate to the risks of processing your personal data. We store your payment details in our secured systems for your future payment or for the billing process.
Under certain circumstances, we may be required to disclose your personal data if required to do so by law or in response to valid requests by public authorities.
Data Security Rule
All employees shall comply with the company’s Data Security Rule and keep all company’s and client’s data confidential at all times and will not take any action which will leak such data to the third person at any time. All data retained by the Company is deemed as company assets. Hence, all employees are not allowed to manage the data without written permission from the Company. All employees shall secure the data at all times of data management through the Company’s device.
Smart Digital follows a standard procedure of using log files. These files log visitors when they visit websites. All hosting companies do this and a part of hosting services’ analytics. The information collected by log files include internet protocol (IP) addresses, browser type, Internet Service Provider (ISP), date and time stamp, referring/exit pages, and possibly the number of clicks. These are not linked to any information that is personally identifiable. The purpose of the information is for analyzing trends, administering the site, tracking users’ movement on the website, and gathering demographic information.
Cookies and Web Beacons
Like any other website, Smart Digital uses ‘cookies’. These cookies are used to store information including visitors’ preferences, and the pages on the website that the visitor accessed or visited. The information is used to optimize the users’ experience by customizing our web page content based on visitors’ browser type and/or other information.
Advertising Partners Privacy Policies
Note that Smart Digital has no access to or control over these cookies that are used by third-party advertisers.
Third Party Privacy Policies
You can choose to disable cookies through your individual browser options. To know more detailed information about cookie management with specific web browsers, it can be found at the browsers’ respective websites. What Are Cookies?
PDPA Protection Rights And Duties (in accordance with the Personal Data Protection Act B.E. 2562 (“PDPA”))
We would like to make sure you are fully aware of all of your data protection rights. Every data subject is entitled to the following:
- Withdraw consent at anytime
- Object to any collection, use or disclosure of their personal data
- Access and request the controller to provide a copy of their personal data and the source for obtaining it
- Request to suspend the use of personal data
- Request to erase, destroy or de-identify the personal data (in certain circumstances)
- Data portability (obtain and transmit such data to another controller – if legitimate)
- Request to rectify and update personal data
- Right to lodge a complaint to the office of the PDPC Our duties as the data controller are as follows:
- Process accurate Personal Data: Ensure that the Personal Data remains correct, up-to-date, complete, and not misleading.
- Implement security measures: Implement suitable measures for preventing loss, unauthorized access, alteration, or disclosure of personal data.
- Record of Processing Activities (ROPA): Record information relating to personal data in writing or in an electronic system.
- Erasure of Personal Data: Implement monitoring systems to delete or destroy Personal Data (limited circumstances – e.g. when the Personal Data is not necessary).
- Enter into a Data Processing Agreement: Arrange for a contract with its Data Processor, in order to obligate the Data Processor to comply with the requirements under the PDPA, when processing the Personal Data.
- Data Breach Notification: Notify a data breach incident to the PDPC/the Data Subject