The Firm, as a data controller, is responsible for making sure that the systems and processes we use are compliant with data protection laws, to the extent that they apply to us.
Personal data is defined by the Personal Data Protection Act B.E. 2562 (2019) (“PDPA”) as “any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier”.
Personal data is, in simpler terms, any information about you that enables you to be identified. Personal data covers obvious information such as your name and contact details, but it also covers less obvious information such as identification numbers, electronic location data, and other online identifiers.
Under the PDPA, you have the following rights, which we will always work to uphold:
Lawful basis for the collection and the use of personal data
The Firm may collect and use personal data only on a necessary basis or with any of the following lawful basis:
To perform our obligations under contractual arrangements with our clients, we may collect and use personal data provided by our clients, third parties, or the data subjects as required by the agreements to provide advice and deliverables in a wide range of professional legal services.
We may collect, use, and share your personal data as required by applicable laws governing personal data protection, and labour protection including regulations, and by regulatory orders imposed by government agencies and regulators.
Our legitimate interests in the effective delivery of information and services to you and in the effective and lawful operation of our businesses and the legitimate interests of our clients in receiving professional services form us as part of running their organisation, provided that these do not interfere with your rights.
When no other lawful basis is available, we will ask you for specific permission to process some of your personal data, and we will only process your personal data in this way if you agree to us doing so. You may withdraw your consent at any time by contacting us at email@example.com.
The Collection of personal data
We may collect the following categories of personal data from Our Site’s visitors, clients, prospective clients, suppliers and other third parties:
We collect personal data from a number of sources, either directly from the data subjects, or from clients, colleagues and public available sources. Where the Firm receives data from its clients about employees, customers or other individuals, the client is responsible for ensuring that any such data is transferred to us in compliance with applicable data protection laws.
The use of personal data we collected
The purposes for which we use personal, and the legal basis for such processing, are as follows:
We have reasonable security policies and procedures in place to protect personal data from unauthorized loss, misuse, alteration, or destruction. Despite our best efforts, however, security cannot be absolutely guaranteed against all threats. To the best of our ability, access to your personal data is limited to those who have need to know. Those individuals who have access to your personal data are required to maintain the confidentiality of such information.
Sharing and transfer of personal data
We might share Personal Data with:
Please note this list is non-exhaustive and there may be other examples where we need to share with other parties in order to provide the services as effectively as we can.
Your personal data may be provided to the relevant recipient mentioned above which located overseas. Where your personal data is disclosed to an overseas recipient, we will only do so if the overseas recipient is bound by laws or other legally enforceable obligations which require them to provide to your personal data a standard of protection that is at least comparable to the protection under the PDPA.
We may also disclose your personal data under the following circumstances:
Personal data retention
We will hold your personal data on our systems for the longest of the following periods:
a) as long as is necessary for the relevant activities or services;
b) any retention period that is required by laws;
c) the end of the period in which litigation or investigations might arise in respect of the services
A Cookie is a small text file that a website stores on your PC, telephone or any other device, with information about your navigation on that website. Cookies are necessary to facilitate browsing and to make it more user-friendly, and they do not damage your computer.
While this Policy uses the general term “Cookies”, as they are the main method for storing information used by Our Site, the browser’s “Local Storage” space is also used for the same purposes as the Cookies. All the information included in this section is also applicable to this “Local Storage”.
The cookies we use are:
The information stored in the Cookies from Our Site is used exclusively by us, except for those identified below as “third-party cookies”, which are used and managed by external entities to provide services requested by us to improve our services and the experience of the user when browsing Our Site. The main services for which these “third-party cookies” are used are to obtain access statistics and to guarantee the payment transactions that are carried out.
The length of time cookies will stay on your device will depend on whether it is a “persistent” or “session” cookie. A persistent cookie will be stored by a web browser and will remain valid until its set expiration date, unless deleted by you before the expiration date. A session cookie, on the other hand, will expire at the end of your web session, when the web browser is closed.
You may restrict, block, or delete the Cookies from Our Site at any time by changing the configuration of your browser following the steps indicated below. While settings are different in each browser, Cookies are normally configured in the “Preferences” or “Tools” menu. For further details on configuring Cookies in your browser, see the “Help” menu in the browser itself.
To contact us about anything to do with your personal data and data protection, including to make a subject access request, please use the following details (for the attention of FORMICHELLA & SRITAWAT ATTORNEYS AT LAW CO., LTD.):
Email address: firstname.lastname@example.org
Telephone number: +662-107-1882
Postal Address: 399 Interchange21 Building, 23rd Fl., Unit 3, Sukhumvit Road, Klongtoey-Nua, Wattana, Bangkok 10110 Thailand.
|cookielawinfo-checkbox-analytics||11 months||This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".|
|cookielawinfo-checkbox-functional||11 months||The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".|
|cookielawinfo-checkbox-necessary||11 months||This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".|
|cookielawinfo-checkbox-others||11 months||This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.|
|cookielawinfo-checkbox-performance||11 months||This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".|