Data Protection Policy
TESOL Tree Co.,Ltd

Definitions and Introduction

In this,

“Personal data (PD)” is any information that relates to or identifies a living individual, both directly or indirectly. This also includes the collection of less explicit data that leads to an identification of a particular person;

“Person” means a natural person;

“Data Subject” means the individual that the information refers to;

“Data Controller” means a Person or a juristic person having the power and duties to make decisions regarding the collection, use, or disclosure of the Personal Data;

“Data Processor” means a Person or a juristic person who operates in relation to the collection, use, or disclosure of the Personal Data pursuant to the orders given by or on behalf of a Data Controller, whereby such Person or juristic person is not the Data Controller.

 

This Notice applies in conjunction with any other notices, contractual clauses and consensual clauses that apply in relation to the collection, usage and disclosure of your personal data by us. Any links from other domains found on our site may be under a different personal data protection act.

 

We may revise this notice from time to time without any prior notification. You may determine if any such revision has taken place by referring to the date on which this notice was last updated. Your continual use of our services constitutes your acknowledgement and acceptance of such changes.

 

To optimize users satisfaction, we may distribute the information regarding our marketing activities such as promotion, discount, and news. This also includes information related to your preferences. Users can withdraw their consents after the subscription contacting nitisak@tesoltree.com.

 

Access to Personal Data

We access users personal data through 2 main following channels:

  1. We access personal data directly from the users via the collection during the provision of service including:

    1. When you log-in or register your account on our platform.

    2. When you submit registration forms, request forms, or any form associated with our service, both online and offline.

    3. When you make agreements or submit any information and file associated with our services.

    4. When you make contact with our service providers such as recorded phone calls, letters, faxes, face-to-face meetings, social media platforms, and emails.

    5. When you use our services on electronic platforms, including the use of cookies which will be adjusted once you have logged-in.

    6. When you process your transactions through our services.

    7. When you submit feedback or complaints.

    8. When you register or make any consensual agreement during our marketing and advertising campaigns such as contests and discounts. This includes the activities launched with our partners and associated third parties.

    9. When you request certain services provided by our on-site outsource service providers such as transaction and logistics services.

    10. When you visit or log-in the websites or applications of our partners and associated third parties.

    11. When you install our application on your devices such as mobile phones, computers, or tablets.

    12. When you connect your account with third party’s websites or applications such as Facebook and Google.

    13. When you submit your personal information to us for any reason. 

  2. We collect personal data of the users indirectly from the third-parties in the following cases: Facebook Login, Google Login, LINE Login, LinkedIn Login, Email & Password Login

 

PD being Processed by the Company for the performance of the Platform

In order to perform the required services and features defined on the Platform, the Company would need to collect and process the following PD from the User:

  1. Directly Identifiable PD, including without limitation name, age, nationality ,date of birth, image and video

  2. Contact information, including without limitation, address, phone number, and e-mail address

  3. Payment information, including without limitation the payment transaction, bank account information and credit card information

  4. Platform transactional data, including without limitation username, password, transaction number and history that the User transact on the Platform, including the gathered preference and interest from the Platform transactional behavior

  5. Technical PD, including without limitation the IP address number, the Platform usage, setting, and web browser connection that have been connected to the Platform.

 

Objectives for PD Process

  1. The Company would need to collect, restore and use the PD of the User in order to perform any services or features of the Platform as defined under the Terms of Use, including without limitation (i) to verify the identity and eligibility of the User; (ii) to monitor the transaction undertaken on the Platform executed by the User; (iii) to contact the relevant User; and (iv) to display the relevant PD on the Platform interface in accordance with the scope of services provided under the Terms of User / Terms of Services; (v) to promote or advertise the company’s products or services under the agreement or express consent of you; (vi) to prevent or suppress a danger to your life, body or health during training;

  2. The Company would need to collect and analyze the PD of the User in order to assess the User’s interest with an aim to provide customized and personalized privileges or service that would meet your interest and preference and to improve our customer’s experience with each relevant User;

  3. The Company would need to collect and restore the User’s PD in order to assure the appropriate after-sale service provided by the Company in various forms, including the satisfaction survey or the support and complaint redress function;

  4. The User would need to collect and restore the User’s PD as obliged under the applicable laws and regulations, for instance, for the withholding tax payment purpose.

 

The service providers shall not collect your personal data without the consent of the data subject, except for the following purposes:

  1. it is for the achievement of the purpose relating to the preparation of the historical documents or the archives for public interest, or for the purpose relating to research or statistics, in which the suitable measures to safeguard the data subject's rights and freedoms are put in place and in accordance with the notification as prescribed by the Committee;

  2. it is for preventing or suppressing a danger to a Person’s life, body or health;

  3. it is necessary for the performance of a contract to which the data subject is a party, or in order to take steps at the request of the data subject prior to entering into a contract;

  4. it is necessary for the performance of a task carried out in the public interest by the Data Controller, or it is necessary for the exercising of official authority vested in the Data Controller;

  5. it is necessary for legitimate interests of the Data Controller or any other Persons or juristic persons other than the Data Controller, except where such interests are overridden by the fundamental rights of the data subject of his or her Personal Data;

  6. it is necessary for compliance with a law to which the Data Controller is subjected.

 

Data Retention Period

The Company would need to collect and store the PD of each relevant User for the defined purposes for as long as the User is still the registered User on the Platform and for 3 (three) years after the User termination, except the relevant laws and regulations defined otherwise. The storage of the PD after the User termination would be necessary for the legitimate interest of the Company in the legal proceedings that the Company may have against the relevant User.

 

Sharing Personal Data

We may share and disclose your personal data to third parties in the following circumstances:

  1. Within Tesol Tree Co.,Ltd for the purpose outlined in this policy.

  2. To third-party service providers who require access to personal data in order to assist in the provision of the website, products and services, and other business-related functions such as website analytics providers or our third-party advertisement partners. These third-party service providers are limited to only accessing or using this data to provide services to us and must provide reasonable assurances they will appropriately safeguard the data.

  3. We may also disclose visits information to third-parties:

  4. Where required by law or regulatory requirement, court order or other judicial authorization

  5. In response to lawful requested by public authorities including for the purposes of meeting national security and law enforcement requirements

  6. In connection with the sale, transfer, merger, bankruptcy, restructuring or other reorganization of a business

  7. To protect or defend our rights interests or property, or that of third parties

  8. To investigate any wrongdoing in connection with the website or service

  9. To protect the vital interests of an individual.

  10. We may also share Personal Information collected through the Website with third party companies so that they may offer products and services that we believe will be of interest to visitors, as well as third party advertising-serving companies to better target the adverts and other content displayed on website and to provide offers we think may be interests of visitors. The unsubscription of marketing is stated in the “Personal Data and Marketing Activities” section.

  11. We may disclose users personal data:

    • to staff members under Tesol Tree Co.,Ltd, in order to perform obligations in the course of or in connection with our provision of the goods and services requested by users; or

    • to third party service providers, agents and other organisations we have engaged to perform any of the functions with reference to the above mentioned objectives and for safety purposes.

 

International data transfers

As we sometimes use third parties to process personal information, it is possible that personal information we collect from you will be transferred to and stored in a location outside the Thailand.

 

Please note that certain countries outside of Thailand have a different standard of protection for personal information, including lower security protections. Where your personal information is transferred, stored, and/or otherwise processed outside Thailand in a country which does not offer an equivalent standard of protection to Thailand, we will take all reasonable steps necessary to ensure that the recipient implements appropriate safeguards designed to protect your personal information. If you have any questions about the transfer of your personal information, please contact us.

 

Data Subject Rights

Data subjects have the following rights:

  1. Right to withdraw consent: Users can withdraw their consent and request the processors to stop collecting their personal data.

  2. Right of Access: Users can submit data access requests, which oblige processors to provide a copy of any personal data they hold regarding data subjects. This includes a request for a disclosure of platforms and methods in which the processors collected the data from.

  3. Right of Rectification: Users can request an update on an inaccurate or incomplete personal data.

  4. Right to Erasure: Users can request that the service provider erase their data in certain circumstances, such as when the data is no longer necessary, the data was unlawfully processed or is no longer meeting the lawful ground for which it was collected. This includes the instance where the individual withdraws consent.

  5. Right to Restriction of Processing: Users can request the service provider to limit the way their personal data is used.

  6. Right to Data Portability: Users are permitted to obtain and reuse their personal data for their own purposes across different services.

  7. Right to be informed: Users have the right to be notified about the collection of their personal data such as storage periods and purposes.

  8. Right to Object: Users can object to the processing of personal data that is collected on the grounds of legitimate interests or the performance of a task in the interest/exercise of official authority.

 

You can withdraw personal data disclosure consent, used in the mentioned objectives, at any circumstances. This includes the request of personal data removal and data anonymity change. To withdraw your consent, contact our data processors. Once our staff members have received your withdrawal submission, the request will be forwarded to our data processors. However, your consent withdrawal has no effect on the data processing of your previous consensual personal data.

 

You may contact our Data Protection Officer if you have any enquiries or feedback on our personal data protection policies and procedures, or if you wish to make any request.

 

Note: There is no additional charge regarding the mentioned right entitlement, and users will be contacted within 30 days from the date of request

 

Please contact our Data Protection Officer through the following details in the "Contact Us" section down below.

 

Effective date: 

31/05/2021

Last updated:

08/07/2021

Contact Us

Data Controller

Name: Tesol Tree Co.,Ltd

Address: 62/3 Moo 1 Mittraphap Road, Pak Chong Sub-district, Pak Chong District, Nakhon Ratchasima 30130

Contact detail: 044312280

Email address: nitisak@tesoltree.com

Website: www.tesoltree.com

 

Data Processor / Data Protection Officer

Name: Mr.Nitisak Assawachokanan

Address: 62/3 Moo 1 Mittraphap Road, Pak Chong Sub-district, Pak Chong District, Nakhon Ratchasima 30130

Contact detail: 08 6468 5063

Email address: nitisak@tesoltree.com