1. Introduction
GSA Data Center (“we,” “us,” or “our”) is committed to protecting your personal data in compliance with the Personal Data Protection Act B.E. 2562 (PDPA) of Thailand.
This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you visit our website or interact with us.
2. Personal Data We Collect
We may collect the following categories of data:
- Identification Information: Name, company name, position, email address, phone number.
- Technical Information: IP address, browser type, operating system, and device information.
- Usage Information: Website activity, time spent, and pages visited.
- Other Data: Any information you voluntarily provide through forms or correspondence.
3. Purpose of Data Collection
We process your personal data to:
- Respond to inquiries or requests.
- Provide and improve our services.
- Communicate updates, events, or service announcements.
- Maintain website functionality and security.
- Comply with legal or regulatory obligations.
We will collect, use, and disclose your personal data only as necessary and in accordance with PDPA principles.
4. Legal Basis for Processing
We process your data under one or more of the following legal bases:
- Consent – You have given explicit consent.
- Contractual Obligation – Data is necessary to fulfill a contract or service request.
- Legal Compliance – Required by law or authority.
- Legitimate Interest – Necessary for our business operation in a fair and balanced manner.
5. Data Disclosure and Sharing
We may share your data with:
- Authorized employees or contractors.
- Service providers (e.g., website hosting, analytics).
- Legal or regulatory authorities when required by law.
We ensure all third parties protect your personal data and use it only for agreed purposes.
6. Cross-Border Data Transfer
If your data is transferred or stored outside Thailand (e.g., cloud hosting), we will ensure appropriate protection measures are in place, consistent with PDPA requirements.
7. Data Retention
We will retain your personal data only as long as necessary to fulfill the purposes stated in this policy or as required by law.
8. Data Subject Rights (under PDPA)
You have the right to:
- Access – Request a copy of your personal data.
- Rectify – Correct inaccurate or incomplete data.
- Erase – Request deletion of your personal data.
- Withdraw Consent – Withdraw your consent for processing at any time.
- Object or Restrict Processing – Limit or stop the use of your data in certain cases.
- Data Portability – Request your data in a structured, readable format.
To exercise these rights, please contact our Data Protection Officer (DPO) via [Insert Contact Email].
9. Data Security
We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, misuse, alteration, or disclosure.
10. Use of Cookies and Analytics
Our website uses cookies and analytics tools to enhance user experience and monitor traffic. Please refer to our Cookies Policy for more details.
11. Third-Party Links
Our website may contain links to external sites. We are not responsible for their content or privacy practices. We recommend reviewing their policies before providing personal information.
12. Changes to This Policy
We may update this Privacy Policy periodically. The latest version will always be posted on our website with the updated date.
13. Contact Information
If you have any questions about this Privacy Policy or your personal data rights, please contact:
📧 pdpaoffice@gsa-dc.com
🏢 GSA Data Center