Privacy Notice

Arkitektura Co., Ltd. (“Company”, “we”, “us”, or “our”) respects and protects the privacy and personal data of all individuals and legal entities that engage with us—including customers, shareholders, business partners, contractors, service providers, employees, applicants, agents, visitors, and other stakeholders (collectively referred to as “you” or “your”).

We process personal data in accordance with the Personal Data Protection Act B.E. 2562 (2019) and its subordinate regulations, including any future amendments (collectively referred to as “PDPA”). This Privacy Notice outlines how we collect, use, disclose, and safeguard your personal data.

1. Definitions and Scope

1.1 Personal Data refers to any information that can identify a natural person, directly or indirectly, excluding data of deceased persons.

1.2 Sensitive Personal Data refers to information such as race, ethnicity, political opinions, religion, sexual orientation, criminal records, health data, disability, union membership, genetic data, biometric data, or any other data categorized as sensitive by the PDPC (Personal Data Protection Committee).

1.3 Legal Entity Data: While the PDPA applies only to natural persons, we treat certain identifiable data of directors, representatives, shareholders, and personnel of legal entities with care and confidentiality in line with business practices and confidentiality obligations.

2. Types of Data We Collect

We may collect the following categories of personal data:

  • Identification Data: Name, title, ID card/passport number, signature, photograph, gender, nationality, birthdate, marital status.

  • Contact Data: Address, telephone number, email, LINE ID, or social media handles.

  • Employment or Business Data: Job title, employer/company name, tax ID (for individuals and legal entities), business registration info.

  • Financial and Transactional Data: Bank account info, billing data, transaction history.

  • Technical Data: IP address, browser type, device identifiers, cookies, usage behavior on our website or applications.

  • Sensitive Data: Only where strictly necessary, and with explicit consent or where permitted by law.

  • Other: Information collected via CCTV (if visiting premises), visitor logs, voice recordings (e.g., calls to our office), or any data you provide during communications with us.

3. Purposes of Personal Data Collection and Use

We will only collect and use personal data when there is a lawful basis under the PDPA, including:

  • To fulfill contractual obligations;

  • To comply with legal obligations;

  • To pursue legitimate interests (e.g., business operations, fraud prevention, security);

  • With your explicit consent (where required);

  • For the establishment, exercise, or defense of legal claims;

  • To respond to your inquiries or requests;

  • To process employment or business partnerships;

  • For marketing purposes (with opt-out options available);

  • To improve services and customer experience.

4. Collection Method and Consent

4.1 We collect your personal data:

  • Directly from you (in person, online, or via communication);

  • From publicly available sources or third parties with your prior consent;

  • From our website, cookies, and similar tracking tools.

4.2 Consent is requested when legally required and will be presented clearly, separate from other terms, in plain and accessible language.

4.3 You may withdraw consent at any time unless we have another lawful basis for processing. Withdrawal will not affect processing already done based on valid prior consent.

5. Retention and Disclosure

5.1 We retain personal data only for as long as necessary for the purpose collected or as required by law (e.g., tax, accounting, legal obligations).

5.2 We may disclose your data to:

  • Internal departments;

  • Affiliates and group companies;

  • Business partners, vendors, and service providers;

  • Legal authorities or regulators;

  • Other third parties with your consent or under lawful grounds.

5.3 When disclosing or outsourcing to third parties, we ensure proper contractual safeguards are in place to protect your data under PDPA standards.

6. Cross-Border Transfers

We may transfer personal data to foreign countries only when:

  • The destination country has adequate data protection standards as recognized by Thailand’s PDPC;

  • You have been informed and your consent is obtained;

  • The transfer is necessary for performance of a contract or for the establishment, exercise, or defense of legal claims.

We take appropriate security measures to protect personal data during transfers.

7. Data Security Measures

We implement appropriate technical and organizational measures to:

  • Prevent loss, unauthorized access, destruction, or misuse of personal data;

  • Regularly review and update internal policies;

  • Train our personnel on PDPA responsibilities and data handling;

  • Monitor third-party compliance (where applicable).

8. Your Rights Under PDPA

You have the following rights regarding your personal data:

  • Right to be informed: Know how your data is collected and used;

  • Right to access: Request a copy of your data;

  • Right to rectification: Request corrections if data is inaccurate;

  • Right to erasure: Request deletion of your data;

  • Right to restrict processing: Temporarily suspend use of data;

  • Right to data portability: Request transfer of your data to another party;

  • Right to object: Object to certain data uses (e.g., direct marketing);

  • Right to withdraw consent: At any time, with future effect;

  • Right to lodge a complaint: With the Personal Data Protection Committee if you believe your data has been mishandled.

To exercise your rights, please contact us through the details below. We may need to verify your identity for security purposes.

9. Updates to This Privacy Notice

We may revise this Privacy Notice from time to time to reflect legal updates, operational changes, or feedback from regulatory authorities. The latest version will always be available at: https://www.arkitektura.co.th

10. Contact Information

If you have any questions, concerns, or requests to exercise your rights, please contact:

Arkitektura Co., Ltd.
Address: 50/9 Soi Tonson, Phloen Chit Rd., Lumpini, Pathumwan, Bangkok, Thailand 10330
Tel: 02-023-6958-9
Email: info@arkitektura.co.th