Privacy Policy
Privacy Policy
Personal Data Protection Policy
J Ventures Co., Ltd.
J Ventures Co., Ltd. (“the Company”) recognizes the importance of protecting the personal data of customers, users, partners, and all related individuals. This Personal Data Protection Policy explains how the Company collects, uses, discloses, and safeguards personal data.
This policy is established in accordance with the Personal Data Protection Act B.E. 2562 (2019) of Thailand (PDPA) and other applicable laws and regulations.
The Company is committed to processing personal data transparently, securely, and in compliance with legal and international data protection standards in order to ensure that users have confidence when using the Company’s services.
1. Definitions
Personal Data
Personal Data means any information relating to an identifiable natural person, whether directly or indirectly.
Examples include:
-
Name and surname
-
Telephone number
-
Email address
-
Residential address
-
Identification number
-
Transaction information
This does not include data relating to deceased persons.
Sensitive Personal Data
Sensitive Personal Data includes information relating to:
-
Race
-
Religion
-
Political opinions
-
Sexual behavior
-
Criminal records
-
Biometric data
The Company will collect, use, or disclose such data only with explicit consent from the data subject or when permitted by law.
Personal Data Processing
Processing refers to any operation performed on personal data, including:
-
Collection
-
Use
-
Disclosure
-
Storage
-
Deletion or destruction
Data Controller
J Ventures Co., Ltd. acts as the Data Controller, responsible for determining the purposes and means of processing personal data.
Data Processor
A person or organization that processes personal data on behalf of the Data Controller under the controller’s instructions.
2. Sources of Personal Data
The Company may collect personal data from the following sources:
1. Data provided directly by users
Such as when users:
-
Register for services
-
Create an account
-
Contact the Company
-
Conduct transactions through the Company’s platforms
2. Automatically collected information
Such as:
-
Cookies
-
Log files
-
Device information
3. Third-party sources
Such as:
-
Business partners
-
Government agencies
-
Technology service providers
-
Social media platforms
The Company collects only data that is necessary for service provision and business operations.
3. Categories of Personal Data Collected
The Company may collect the following types of personal data:
Identity Information
-
Name and surname
-
National ID number or passport number
Contact Information
-
Telephone number
-
Email address
-
Mailing address
Transaction Information
-
Service usage history
-
Transaction records
Technical Information
-
IP address
-
Device ID
-
Browser information
Biometric Information (for eKYC services)
Such as:
-
Facial recognition data
-
Liveness detection data
These data are used for identity verification purposes.
4. Purposes of Personal Data Processing
The Company processes personal data for the following purposes:
1. Service Provision
Such as:
-
User registration
-
Identity verification (eKYC)
-
Transaction processing
2. Service Improvement
Including:
-
System usage analysis
-
Product and service development
3. Security and Fraud Prevention
Including:
-
Fraud detection
-
Preventing illegal activities
4. Legal Compliance
Including compliance with:
-
PDPA
-
Anti-Money Laundering regulations (AML)
-
Regulatory authority requirements
5. Marketing and Communication
Such as:
-
Sending updates
-
Informing users about promotions
All processing will be carried out under appropriate legal bases.
5. Legal Basis for Processing Personal Data
The Company processes personal data under the following legal bases:
-
Contractual necessity
-
Legal obligations
-
Legitimate interests of the Company
-
Consent of the data subject
6. Disclosure of Personal Data
The Company may disclose personal data to:
-
Government authorities
-
Technology service providers
-
Business partners
-
External auditors
The Company will implement appropriate safeguards and enter into Data Processing Agreements (DPA) with third-party processors where required.
7. Cross-Border Data Transfer
The Company may transfer personal data to overseas systems or cloud service providers for operational or technological purposes.
Such transfers will be conducted in compliance with the PDPA and with appropriate safeguards to ensure adequate protection of personal data.
8. Data Retention
The Company will retain personal data only for as long as necessary to fulfill:
-
Service purposes
-
Legal obligations
Once the retention period expires, the Company will securely:
-
Delete
-
Destroy
-
Or anonymize the personal data.
9. Data Subject Rights
Under the PDPA, data subjects have the following rights:
-
Right to access personal data
-
Right to request correction of inaccurate data
-
Right to request erasure of data
-
Right to object to data processing
-
Right to withdraw consent
-
Right to data portability
Data subjects may exercise these rights by contacting the Company using the contact details provided below.
10. Data Security
The Company implements appropriate technical and organizational measures to protect personal data, including:
-
Data encryption
-
Access control mechanisms
-
Security monitoring systems
These measures aim to prevent unauthorized access, disclosure, alteration, or loss of personal data.
11. Cookies
The Company’s website may use cookies to:
-
Analyze website traffic
-
Improve user experience
Users may manage or disable cookies through their browser settings.
12. Changes to this Policy
The Company may update this Privacy Policy from time to time. Any changes will be published on the Company’s website.
13. Contact Information
J Ventures Co., Ltd.
191 Jaymart Building
Bangkok 10240 Thailand
info@jventures.co.th
02-308-8199 | 02-483-6259