Privacy Policy

Smart Finder Company Limited (“Company”) recognizes the importance of personal data and other information about you (collectively referred to as “information”). You can be confident that the Company maintains transparency and accountability in collecting, using, or disclosing information in accordance with the Personal Data Protection Act B.E. 2019 (“PDPA”) and other relevant laws, as outlined below.

What Is Personal Information?

  • Personal data refers to any information relating to a natural person that enables the identification of that person, either directly or indirectly. This does not include the information of deceased individuals.

  • Sensitive personal data includes data specified in Section 26 of the PDPA, such as race, ethnicity, political opinions, religious or philosophical beliefs, sexual behavior, criminal records, health information, disabilities, trade union membership, genetic and biometric data, or any other data with significant impact, as designated by the PDPA Committee.

  • Processing refers to any action involving personal data, including collection, recording, copying, organizing, storing, updating, using, retrieving, disclosing, transferring, deleting, or destroying.

  • Data subject means the natural person to whom the personal data pertains.

  • Data controller means the person or entity that determines the purposes and means of processing personal data.

  • Data processor means a person or entity that processes personal data on behalf of the data controller.

Personal Data We Collect

General Personal Information:

  • Full name (as on identification documents), ID or passport copy/number
  • Contact details: address, phone number, workplace
  • Job position, department, or organization
  • Electronic communication: email, chat history, other application usage
  • Information provided when contacting or engaging with the Company

We collect personal data from two main sources:

  1. Directly from You – through service applications, registrations, surveys, communications, contracts, and other interaction channels.
  2. From Third Parties – where lawful or with your consent, including data made publicly available.

Purposes of Data Processing

We process your data for the following reasons:

  1. Procurement or sale of products and provision or receipt of services
  2. Financial and tax transactions related to contractual obligations
  3. Internal analytics and database development to improve services and offerings
  4. Enhancing operational efficiency and service quality
  5. Participation in Company-related activities
  6. Safety and access control, health risk prevention, and surveillance
  7. Compliance with applicable laws and regulations

If the purpose of collection changes, we will inform you and comply with legal requirements, including documenting such changes.

How We Process Your Data

Once we receive your personal data, we may:

  • Use your contact information to provide services, complete sales transactions, or deliver products

  • Recommend products or services that may be of interest to you

  • Share your data with:

    • Data processors, such as Google or our subcontractors
    • Government agencies, including the Revenue Department, auditors, or the Social Security Office, where required by law

  • Submit your personal data to credit bureaus for identity verification and fraud prevention

In some cases, we may transfer your personal data internationally. These external service providers maintain appropriate data protection measures:

Data Retention

We store your personal data as follows:

  • Format: Digital and paper-based files
  • Location: Cloud services (Google Drive, Gmail, Zoho, ITTS, GitLab, Jira, Azure)
  • Duration: As per legal requirements and contract duration
  • Disposal: Upon expiry of the retention period or legal basis, we will delete/destroy the data within 10 days

Personal Data Retention Period

Your data will be stored as long as necessary for the purpose stated, and no longer than legally permitted. In cases where the duration is unclear, the Company may retain data for up to 10 years (general statutory limitation).

Your Rights as a Data Subject

You are entitled to:

  1. Withdraw consent at any time
  2. Access your data and request copies or information sources
  3. Rectify inaccuracies or complete incomplete data
  4. Request deletion under certain conditions
  5. Restrict processing under specific grounds
  6. Data portability to another controller
  7. Object to processing on legitimate legal grounds

Please contact our DPO using the contact information below. To exercise your rights, you may download the request form and submit it with proof of identity. No fees are required. We will respond within 30 days.

Contact Us

Data Controller: Smart Finder Company Limited 99/24 Rajchapreuk Road, Bangkrang, Nonthaburi 11000 Phone: 02-422-6780 Fax: 02-422-6781 Email: dpo@smartfinder.asia

Regulatory Authority Contact

Office of the Personal Data Protection Board Office of the Permanent Secretary, Ministry of Digital Economy and Society 120 Moo 3, Floors 6–9, Ratthaprasatpakdee Building, Government Complex, Chaengwattana Road, Thung Song Hong, Laksi, Bangkok 10210 Email: pdpc@mdes.go.th Phone: 02-142-1033, 02-141-6993

Changes to This Policy

This policy may be updated from time to time to reflect changes in law or company practices. Any updates will be announced via appropriate Company channels.

Effective Date: January 1, 2024