Privacy Policy

a) compliance with the PDPA and any amendment thereof;

b) compliance with laws (e.g. Financial Institution Business Laws, Securities and Exchange Laws, Anti-Money Laundering Laws, Prevention and Suppression of Financial Support to Terrorism and the Proliferation of Weapons of Mass Destruction Laws, Life and Non-life Insurance Laws, and other laws to which we are subject both in Thailand and in other countries), including conducting identity verification, background checks and credit checks, Know Your Customer (KYC) process, Customer Due Diligence (CDD) process, other checks and screenings (including screening against publicly available database of regulatory authorities and/or official sanctions lists), and ongoing monitoring that may be required under any applicable law; and/or

c) compliance with regulatory obligations and/or orders of authorized persons (e.g. orders by any court of competent jurisdiction or of governmental, supervisory or regulatory authorities or authorized officers). In the case that we are an insurance broker, we will disclose your personal data to the Office of Insurance Commission to regulate and promote insurance businesses in accordance with Insurance Commission Act, Life Insurance Act and/or Non-Life Insurance Act.

a) process your request prior to entering into an agreement, consider for approval and provide products and/or services, deliver products and/or services to you, provide informal reverse solicited non-professional advice and deal with all matters relating to products and/or services, including any activities that if we do not proceed, then our operations or our services may be affected or may not be able to provide you with fair and ongoing services;

b) authenticate when entering into, doing or executing any transactions (e.g. sending your proof of identification data to the Department of Provincial Administration for verifying the status of your identification card);

c) carry out your instructions e.g., fulfilling a request for utilization of loan and other credit facilities, making a change to your insurance policy, processing your applications and/or your transactions, fulfilling a request for utilization of products and/or services, responding to your enquiries or feedback, or resolving your complaints, including recorded images, videos and/or voices and/or any similar actions to enable us to efficiently carry out your instructions and/or to keep records as evidence for proceeding with your instructions;

d) provide online real estate support services, mobile applications and other online product platforms;

e) track or record your transactions;

f) produce reports (e.g. transaction reports requested by you or our internal reports);

g) notify you with transaction alerts and notify the due date of products and/or services;

i) carry out account maintenance and operations relating to your user accounts and/or financial accounts, including but not limited to processing your applications or requests for services or products, processing your transactions, generating statements of your user accounts and/or financial accounts, and operating and closing your user accounts and/or financial accounts;

j) carry out or make transactions and/or payments (e.g. processing payments or transactions, fulfilling transactions, billing or processing activities, managing your relationship with us, and administering your account with us);

k) proceed with any acts relating to insurance policies (e.g. proceeding with or monitoring any claim under your insurance policy, claiming against third parties);

l) enforce our legal or contractual rights;

m) provide IT and helpdesk supports, create and maintain user accounts for you, manage your access to any systems to which we have granted you access, and remove inactive accounts; and/or

n) in the event of sale or transfer of claims, assets, debt or business, merger, reorganization, rehabilitation, or similar event, we may disclose and transfer your personal data to one or more third parties who are the transferees of claims, assets, debt, or business, or the parties involved in the merger or reorganizing, or the plan preparers and plan administrators, or those related to such similar event.

a) conduct our business operation (e.g. to conduct compliance audit, to conduct risk management assessments, to conduct finance and accounting management, to conduct financial audits, to conduct internal operation management, to manage the provision of services associated with our products or services, to monitor, prevent, and investigate fraud, money laundering, terrorism, misconduct, or other crimes, including but not limited to carrying out the creditworthiness checks of our corporate customers, which may not be required by any governmental or regulatory authorities, and authenticating your identity to prevent such crimes);

b) conduct our relationship management activities (e.g. to serve customers, to conduct customer surveys, to manage customer segmentation, to handle complaints), including recorded images, video and/or voice and/or any similar actions to enable us to efficiently conduct our relationship management activities and/or to enhance our services;

d) develop and improve our products, services and systems to enhance our services standard, use your personal data for conducting credit modelling, and/or for the greatest benefits in fulfilling your needs, including to conduct research, analyse data and offer products, services and benefits suitable to you by considering the fundamental rights in your personal data. If you do not wish to receive the offering of products, services and benefits from us, you can contact us at [email protected];

e) record images, video and/or voice relating to meetings, training, seminars, recreation or general activities (e.g. marketing activities, corporate social responsibility activities, activities to support customer's business) and use such recorded images, video and/or voice for the purpose of making internal and/or external public relations collaterals relating to such meetings, training, seminars or recreation activities;

f) in the case of our corporate customers, we will collect, use and disclose personal data of directors, authorized persons, attorneys, guarantors, beneficiaries, or any other persons, including personal data of such person as an individual customer, to execute transactions, provide services and/or contact corporate customers;

g) in the case of our individual customers, we may collect, use and disclose personal data of any other person relating to your transaction or use of our services (e.g. spouse, guarantor, beneficiary, insurance premium payer) to execute transactions and/or provide services to you;

h) ensure business continuity;

i) handle claims and disputes, file lawsuits and process the relevant legal proceedings, including the process of enforcement against debtors, guarantors, and security providers, the evaluation of collateral value and the enforcement of collateral through public auction;

j) contact you prior to your entering into a contract with us;

k) produce and/or display data relating to your account, account statement and/or transaction reports, in case you transfer money to or receive money from our customers and/or in case you make or receive payment for products or services from our customers;

l) protect against security risks (e.g. monitoring network activity logs, detecting security incidents, conducting data security investigations, and otherwise protecting against malicious, deceptive, fraudulent, or illegal activity);

m) comply with applicable domestic and foreign laws;

n) carry out research, plan and conduct statistical analysis (e.g. data analytics, assessments, surveys and reports on our products and/or services and your behaviour);

o) carry out our projects or marketing events (e.g. promotional campaigns, social activities, events for supporting our business and/or our customer's business), conferences, seminars, and company visits;

p) facilitate financial audits to be performed by auditors;

q) receive advisory services from legal counsels, financial advisors, and/or other advisors appointed by you or us;

r) prepare a summary report for consideration and/or disclose your personal data to one or more third parties who are interested to be the transferees of claims, assets, debt, or business, or are interested in merger or reorganizing, or those related to such similar event before sale, or transfer of claims, assets, debt or business, merger, reorganization, or similar event;

s) maintain and update lists and directories of customers (including your personal data) and maintain/keep contracts and associated documents in which you may be referred to; and/or

t) comply with reasonable business requirements (e.g. management, training, auditing, reporting, control or risk management, statistical and trend analysis and planning or other related or similar activities, implementing business controls to enable our business to operate, and enabling us to identify and resolve issues in our IT systems to keep our systems secured, performing our IT systems development, implementation, operation and maintenance).

a) collect, use or disclose your sensitive personal data as necessary (e.g. to use face recognition or your identification card photo (which contains your sensitive personal data, namely religion and/or blood type) for verification of your identity before entering into transactions and for Know Your Customer (KYC) process);

b) collect and use your personal data and any other data for the purpose of offering or providing products, services and benefits suitable to you. To proceed with such activity, we will research, conduct statistical data, analyse or develop such products, services and benefits;

c) contact you to provide financial advice and offer our products or services which may interest you (in case the consent is required under the PDPA);

d) disclose your personal data and any other related parties, group companies and/or subsidiaries and/or our trusted business partners for the purpose of offering or providing products, services and benefits to you. To proceed with such activity, related company's and our trusted business partners will research, conduct statistical data research, analyse or develop products, services and benefits suitable to you;

e) send or transfer your personal data and sensitive personal data overseas, which may have inadequate personal data protection standards (unless the PDPA specifies that we may proceed under other lawful basis or without obtaining consent);

g) other activities which we may require your consent.

a) prepare historical documents or archives for the public interest, or for purposes relating to research or statistics;

b) prevent or suppress a danger to a person's life, body or health; and/or

c) necessary to carry out a public task, or for exercising official authority.