Personal Data Protection Policy pursuant to the Personal Data Protection Act B.E. 2562 (2019)
1. Introduction
iApp Technology Co., Ltd.
This Personal Data Protection Policy pursuant to the Personal Data Protection Act B.E. 2562 (2019) has been established to protect personal data, biometric data, and sensitive personal data of users.
iApp Technology Co., Ltd. hereby warrants that all such data of users shall be protected in accordance with the Personal Data Protection Act B.E. 2562 (2019) and other relevant laws.
2. Objectives
This Personal Data Protection Policy pursuant to the Personal Data Protection Act B.E. 2562 (2019) has been established by iApp Technology Co., Ltd. (hereinafter referred to as "the Company") for the following objectives:
2.1 To Protect Personal Data
To protect users' personal data and ensure its security and confidentiality against unauthorized access, use, disclosure, modification, destruction, and interference.
2.2 To Build Trust
To establish confidence among users, customers, and stakeholders in the utilization of the Company's information system services.
2.3 To Maintain Service Standards
To maintain the level of information system services with security standards in accordance with international standards and to comply with the Personal Data Protection Act B.E. 2562 (2019) or other relevant laws.
3. Definitions
3.1 "Personal Data"
Means any information relating to a person which enables the identification of such person, whether directly or indirectly, but does not include information of deceased persons in particular.
3.2 "Biometric Data" or "Biometrics"
Means personal data resulting from the use of techniques or technologies relating to the utilization of distinctive physical or behavioral characteristics of a person that enables the verification of the identity of such person as being distinct from other persons, such as facial recognition data, iris recognition data, or fingerprint data, and specific data that can verify a person's identity as a unique characteristic that differs from person to person. Therefore, it is not limited to facial features, iris, or fingerprints, but also includes voice patterns, scars, DNA, and signatures, among others.
3.3 "Sensitive Personal Data"
Means personal data as prescribed in Section 26 of the Personal Data Protection Act B.E. 2562 (2019), which includes data concerning race, ethnicity, political opinions, religious or philosophical beliefs, sexual behavior, criminal records, health data, disability, labor union information, genetic data, biometric data, or any other data which affects the data subject in a similar manner as prescribed by the Personal Data Protection Committee.
3.4 "Data Controller"
Means a person or juristic person having the power and duty to make decisions regarding the collection, use, or disclosure of personal data.
3.5 "Data Processor"
Means a person or juristic person which carries out operations regarding the collection, use, or disclosure of personal data according to the orders of or on behalf of the data controller, provided that such person or juristic person is not a data controller.
4. Scope of Personnel
This Personal Data Protection Policy covers all personnel of the Company (hereinafter referred to as "Operators"), including permanent employees, contract employees, consultants, and external parties who are authorized to access the Company's information technology resources.
5. Collection of User Data
The Company shall not collect personal data, biometric data, and sensitive personal data of users. However, in certain circumstances, the Company may utilize such data to develop service systems to achieve maximum stability in usage. Nevertheless, before utilizing such data each time, the Company shall request consent from users in every instance.
6. Protection of Users' Personal Data
The Company shall act only to the extent authorized by the Personal Data Protection Act B.E. 2562 (2019). The Company shall focus on protecting personal data, biometric data, and sensitive personal data of users in accordance with the provisions of the Personal Data Protection Act B.E. 2562 (2019) or other relevant laws.
7. Confidentiality
Personal data, biometric data, and sensitive personal data of users shall be deemed confidential information of the Company. The Company shall maintain such data in the same manner as it maintains its own confidential information, and not less than the standards prescribed by the Personal Data Protection Act B.E. 2562 (2019) or international standards.
8. Policy Review and Updates
This Personal Data Protection Policy shall be subject to amendments and modifications to keep pace with laws that may be newly promulgated, to ensure that this policy maintains protection in accordance with the provisions of new laws at all times.
9. Contact Information
For any inquiries regarding this Personal Data Protection Policy pursuant to the Personal Data Protection Act B.E. 2562 (2019), please contact:
iApp Technology Co., Ltd. Tax Identification Number: 0135556015413 Head Office: 80/359 Moo 3, Soi Khlong Luang 26 Tambon Khlong Nueng, Amphoe Khlong Luang Pathum Thani Province 12120, Thailand
- Telephone: 02-051 2453
- Email: info@iapp.co.th
- Website: https://iapp.co.th
Announced on August 22, 2025
iApp Technology Co., Ltd.
(Miss Saranyapak Limsangsuree)
Managing Director