Privacy Policy

1. Introduction

Astrolade ("we", "us", "our") is a business consulting firm registered in Bangkok, Thailand. We are committed to handling personal information responsibly and in accordance with Thailand's Personal Data Protection Act B.E. 2562 (PDPA) and other applicable data protection requirements.

This Privacy Policy describes what personal data we collect, why we collect it, how we use it, how long we keep it, and what rights you have over it. If you have questions about this policy, please contact us at [email protected].

2. Personal Data We Collect

We collect personal data in the following ways:

• Contact forms: Name, email address, telephone number, and the content of your message when you submit an enquiry through our website.
• Correspondence: Any personal information you share when communicating with us by email or telephone.
• Service engagements: Professional details, organisational information, and contact information provided in the course of an engagement.
• Website analytics: Anonymised data about website visits, including pages viewed, time on site, and referring sources, collected via analytics tools.
• Cookies: Technical data stored on your device. See our Cookie Policy for details.

Legal basis for processing: We process personal data on the basis of your consent (for marketing and analytics), for the performance of a contract or pre-contractual steps (for enquiries and service delivery), and our legitimate interests (for improving our services and communicating with clients).

Retention: Contact enquiry data is retained for up to 24 months. Client engagement data is retained for up to 7 years for legal and accounting purposes. Analytics data is retained in anonymised form for up to 26 months.

3. How We Use Personal Data

We use the personal data we collect for the following purposes:

• Responding to enquiries and setting up initial consultations.
• Delivering consulting services to clients and fulfilling our contractual obligations.
• Sending service-related communications, such as engagement updates or follow-up correspondence.
• With your consent, sending occasional information about our services or engagements that may be of interest.
• Improving our website and understanding how visitors use it.
• Complying with legal and regulatory obligations under Thai law.

We do not sell personal data to third parties. We do not use personal data for automated decision-making or profiling in ways that affect individuals' legal rights.

Marketing communications: If you have subscribed to communications from us, you may unsubscribe at any time by contacting [email protected] or using the unsubscribe link in any communication we send.

4. Data Sharing and Third Parties

We share personal data only in limited circumstances:

• Service providers: Third-party tools that assist us in operating our website and delivering services, including web hosting providers, email service providers, and analytics platforms (such as Google Analytics). These providers process data on our behalf and are contractually required to protect it.
• Legal requirements: Where we are required to disclose information by Thai law, court order, or to protect our legal rights.
• Business transfers: In the event of a merger, acquisition, or sale of business assets, personal data may be transferred as part of that transaction.

All third-party providers are selected with care and required to maintain appropriate security standards.

5. How We Protect Personal Data

We take reasonable technical and organisational measures to protect personal data from unauthorised access, loss, or misuse:

• Data in transit is encrypted using TLS/HTTPS protocols.
• Access to personal data is restricted to authorised personnel on a need-to-know basis.
• We review our data handling practices periodically and update them as appropriate.
• In the event of a data breach affecting your rights, we will notify you and the relevant authority as required by the PDPA.

No system of data transmission or storage is entirely secure. While we take these steps, we cannot provide an absolute guarantee of security.

6. Cookies

Our website uses cookies to support basic site functionality, understand how the site is used, and where you have consented, to serve relevant content. Cookies are small text files stored on your device by your browser.

We use essential cookies (required for the site to function), analytics cookies (to understand site usage), and optional preference cookies. You can manage your cookie preferences at any time through our Cookie Policy page.

7. Your Rights Under the PDPA

Under Thailand's Personal Data Protection Act, you have the following rights regarding your personal data:

• Right to access: Request a copy of the personal data we hold about you.
• Right to rectification: Request correction of inaccurate or incomplete data.
• Right to erasure: Request deletion of your personal data, subject to legal retention requirements.
• Right to data portability: Receive your data in a structured, commonly used format.
• Right to object: Object to processing based on legitimate interests or for direct marketing.
• Right to withdraw consent: Withdraw consent at any time where processing is based on consent, without affecting the lawfulness of prior processing.
• Right to lodge a complaint: Lodge a complaint with the Personal Data Protection Committee (PDPC) of Thailand if you believe your rights have been infringed.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

8. Links to Other Websites

Our website may contain links to external websites. We are not responsible for the privacy practices of those sites and recommend reviewing their privacy policies before providing any personal information. This policy applies only to information collected by Astrolade.

9. Children's Privacy

Our services are directed at organisations and business professionals. We do not knowingly collect personal data from individuals under the age of 18. If we become aware that data from a minor has been submitted, we will delete it promptly. If you believe we have inadvertently collected such data, please contact us at [email protected].

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last Updated" date at the top of this page. We encourage you to review this policy periodically. Continued use of our website or services after changes have been posted constitutes your acceptance of the updated policy.

11. Contact

For any questions or requests relating to this Privacy Policy or the personal data we hold, please contact: