Privacy Policy
By Doctor-Aircare Co., Ltd.
Privacy Policy Version 1, effective from February 1, 2026 onwards.
Introduction
Doctor-Aircare Co., Ltd. ("the Company"), as the personal data controller, is committed to protecting the personal data of Dr-Aircare application users in compliance with the Personal Data Protection Act B.E. 2562 (2019) and related regulations.
Definitions
"Law" refers to the Personal Data Protection Act B.E. 2562 (2019) and its subordinate regulations.
"Personal Data" refers to information about a natural person that can identify such person, whether directly or indirectly.
"Sensitive Personal Data" refers to data under Section 26 of the Law, such as race, religion, political opinions, health data, biometric data, etc.
"Data Controller" refers to a person or entity with authority to make decisions regarding personal data processing.
"Data Processor" refers to a person or entity that processes data on behalf of the Data Controller.
Collection of Personal Data
The Company collects personal data only as necessary, under clear purposes. Data sources include:
- Registration via phone number
- Registration via email
- Registration via Facebook or Google accounts
- Communications or announcements within the platform
Types of Data Collected
- Identity data such as name, date of birth, photos
- Contact data such as address, phone, email
- Account and usage history data
- Identity documents such as ID card, company certificates
- Transaction and financial data
- Technical data such as IP Address, Cookies, Activity Log
Purposes of Data Processing
- Account registration and management
- Service provision and payments
- After-sales services
- Compliance with contracts and terms of use
- Prevention of terms of service violations
- Litigation or dispute resolution
- Legal compliance
- Analysis, improvement, and development of services
- Marketing and promotions (with consent)
Legal Basis for Processing
- Data subject's consent
- Contractual performance
- Legal compliance
- Legitimate interests
- Protection of life or health
- Public interest
Consent
- The Company will request explicit consent and allows data subjects to withdraw consent at any time.
- The Company will not collect minors' data without consent from their legal guardians as required by law.
Marketing & Advertising
The Company may process data for marketing, analytics, and service improvement through channels such as Google, Facebook, LINE, or email, under the data subject's consent. Data subjects can unsubscribe or withdraw consent through designated channels.
Disclosure of Personal Data
The Company may disclose data to:
- Internal personnel
- Affiliated companies
- Data processors such as server providers, partners
- Government agencies as required by law
Cross-border data transfers will comply with legal requirements and include appropriate data protection measures.
Data Retention Period
The Company will retain data only as necessary for its purposes or as required by law, and will delete or destroy data when no longer needed.
Data Subject Rights
Data subjects have the following legal rights:
Cookies
The Company uses cookies to enhance user experience, analyze user behavior, and improve services. Data subjects can manage cookie settings through the consent management system.
Security Measures
The Company implements administrative, technical, and physical measures to prevent unauthorized access, use, or disclosure of data, with a data breach notification system within 72 hours as required by law.
Data Breach Notification
In the event of a data breach, the Company will notify the Personal Data Protection Committee within 72 hours and will inform data subjects if the breach poses a high risk to their rights and freedoms.
Policy Changes
The Company may amend this policy from time to time and will notify changes through the website or appropriate channels. The latest version shall be effective.
Data Controller
Doctor-Aircare Co., Ltd.
2367/5 Sukhumvit 77 Road, On Nut, Suan Luang, Bangkok 10250
[email protected]