Privacy Policy

Customer Privacy Policy
Server Today (Thailand) Co., Ltd. places great importance on protecting your personal data. This privacy policy describes the practices regarding the collection, use, or disclosure of personal information, including the rights of personal data owners under personal data protection laws. This covers the Personal Data Protection Act B.E. 2562 (PDPA), the European Union's General Data Protection Regulation (GDPR), and the California Consumer Privacy Act (CCPA) of the United States.
Personal Data Collection
We will collect personal data that is received directly from you through the following channels:
  • Membership registration
  • Telephone
  • Email
  • Facebook Login
  • Google Login
  • LINE Login
  • Twitter Login
  • LinkedIn Login
We may collect your personal data that we can access from other sources, such as search engines, social media, government agencies, other external parties, etc.
Types of Personal Data Collected

Personal Information
such as name, surname, age, date of birth, nationality, identification number, passport, etc.

Contact Information
such as address, phone number, email, etc.

Account Information
such as user account, usage history, etc.

Identity Verification
such as copy of national ID card, copy of passport, etc.

Transaction and Financial Information
such as order history, credit card details, bank account, etc.

Technical Data
such as IP address, Cookie ID, website usage history (Activity Log), etc.

Other Information
such as images, videos, and any other data considered personal data under personal data protection laws.

We will collect, use or disclose the following sensitive personal data only when we have obtained your explicit consent, unless permitted by law:

Race,
religion or philosophy,
labor union information,
biometric data such as facial scan data, iris scan data, fingerprint data,

any other data that impacts your personal data as announced by the Personal Data Protection Committee.
Minors
If you are under 20 years old or have legal capacity restrictions, we may collect, use, or disclose your personal data. We may need to obtain consent from your parents or legal guardians, or as permitted by law. If we become aware that personal data has been collected from a minor without parental or guardian consent, we will proceed to delete that data from our servers.
Methods of Storing Personal Data

We will store your personal data in both physical document and electronic formats.

We store your personal data as follows:
  • Our company's servers in Thailand
  • Our company's servers in foreign countries
  • Server providers in Thailand
  • Server providers in foreign countries
Processing of Personal Data
We will collect, use, or disclose your personal data for the following purposes:
  • To create and manage user accounts
  • To deliver products or services
  • To improve products, services, or user experience
  • For internal company administration
  • For marketing and promotional purposes
  • For after-sales service
  • To collect feedback and suggestions
  • To make payments for products or services
  • To comply with terms and conditions
  • To comply with laws and regulations of government agencies

Disclosure of Personal Data
We may disclose your personal data to others under your consent or as permitted by law as follows:

Internal Organization Management
We may disclose your personal data within the company as necessary to improve and develop our products or services. We may consolidate internal data for various products or services under this policy for your and others' greater benefit.

Business Transfer
We may disclose information, including your personal data, for organizational restructuring, mergers or business sales, or other asset transfers. The receiving party must handle your data consistently with this policy, including personal data protection laws.

Law Enforcement
In cases where requested by laws or government agencies, we will disclose your personal data as necessary to government entities such as courts, government agencies, etc.

In cases where there is disclosure or transfer of personal data from the European Economic Area (EEA) to the United States and other non-EEA countries, we will implement appropriate measures for transferring personal data to those foreign countries as required by the European Union's General Data Protection Regulation (GDPR) or as permitted by law.

Retention Period for Personal Data
We will retain your personal data for as long as necessary during the period you are a customer or have a relationship with us, or for as long as necessary to achieve the purposes related to this policy, which may require further retention afterward if required by law. We will delete, destroy, or anonymize your personal data once no longer needed or once such retention periods have lapsed.

Rights of Personal Data Owners
Under personal data protection laws, you have the following rights:

Right to Withdraw Consent
If you have given consent for us to collect, use or disclose your personal data, whether such consent was given before or after the personal data protection law came into force, you have the right to withdraw your consent at any time.

Right to Access
You have the right to request access to your personal data under our responsibility and request a copy of such data from us, including requesting disclosure of how we obtained your personal data.

Right to Data Portability
You have the right to obtain your personal data that we have compiled in a readable format or in a format that can be used or disclosed by automated means. You also have the right to request us to transfer such personal data to another data controller directly, unless technically infeasible.

Right to Object
You have the right to object to the collection, use or disclosure of your personal data at any time if such activities are conducted under our legitimate interests or those of others which do not outweigh your reasonable expectations, or for public interests.

Right to Erasure/Destruction
You have the right to request deletion or destruction of your personal data if you believe it was unlawfully collected, used or disclosed, or if we no longer need to retain it per the purposes stated in this policy, or if you have exercised your right to withdraw consent or object.

Right to Restriction of Processing
You have the right to request temporary restriction on processing of your personal data in cases where we are reviewing your requests to rectify or object to processing, or in other cases where we must delete or destroy your data by law but you request restriction instead.

Right to Rectification
You have the right to request rectification of your personal data to ensure it is accurate, current, complete and not misleading.

Right to Lodge a Complaint
You have the right to lodge complaints with the competent authorities if you believe the collection, use or disclosure of your personal data violates or fails to comply with relevant laws.

If you are located in the European Economic Area (EEA), in addition to the rights of personal data owners mentioned above, you also have the right to lodge a complaint with the data protection authority in your country if you believe we have not complied with personal data protection laws. You can exercise your rights as a personal data owner stated above by contacting our Data Protection Officer per the details provided at the end of this policy. We will notify you of the results within 30 days of receiving your request to exercise rights, in the form or manner we have specified. If we deny your request, we will inform you of the reasons for denial through various channels such as SMS, email, telephone, letter, etc.

California Consumer Privacy Act (CCPA)
For practices regarding the processing of personal data under the California Consumer Privacy Act 2018 (CCPA), please see our California Consumer Privacy Act (CCPA) Privacy Policy.
Advertising and Marketing
For the benefit of receiving our products or services, we use your information to analyze and improve our products or services, and conduct marketing through Google, Facebook, pixel tracking codes, and others. We use this data to provide products or services tailored to you.

We will not use automated decision-making systems without human oversight, including profiling, in a way that significantly impacts you.

We may send data or newsletters to your email with the purpose of offering things that may interest you. If you do not wish to receive further communications from us via email, you can click "unsubscribe" in the email link or contact our email.
Tracking Technologies (Cookies)
To enhance your experience and make it more efficient, we use cookies or similar technologies to improve access to products or services, deliver relevant advertising, and track your usage. We use cookies to identify and track website users and access to our website. If you do not want cookies stored on your computer, you can set your browser to reject cookies before using our website.
Personal Data Security
We will maintain the security of your personal data in accordance with the principles of confidentiality, integrity, and availability to prevent loss, access, use, modification, alteration, or disclosure. We will also implement security measures for personal data which include administrative safeguards, technical safeguards, and physical safeguards regarding access control or controlling the use of personal data.
Personal Data Breach Notification
In the case of a personal data breach involving your data, we will notify the Personal Data Protection Committee without delay within 72 hours from the time we become aware of the breach as practically possible. If the breach carries a high risk of impacting your rights and freedoms, we will promptly notify you of the breach and remedial measures through various channels such as website, SMS, email, telephone, letter, etc.
Privacy Policy Amendments
We may periodically amend this policy. You can be informed of the amended terms and conditions of this policy through our website.

This policy was last amended and is effective from May 31, 2022.
Privacy Policies of Other Websites
This privacy policy applies only to our offering of products, services, and usage on our website for our customers. If you visit other websites, even through links from our website, the protection of personal data will be subject to the privacy policies of those other websites, which we are not involved with.
Contact Details
If you have any inquiries about this privacy policy, including exercising your rights, you can contact us or our data protection officer as follows:


Personal Data Controller
ServerToday (Thailand) Co., Ltd.
111/128 Moo 2, Ratchaphruek Road, Bang Rak Noi, Muang Nonthaburi, Nonthaburi 11000
Email: dpo@servertoday.com
Website: www.servertoday.com
Tel: 02-0263112

Data Protection Officer
DPO Team
111/128 Moo 2, Ratchaphruek Road, Bang Rak Noi, Muang Nonthaburi, Nonthaburi 11000
Email: dpo@servertoday.com
Tel: 02-0263112

California Consumer Privacy Act (CCPA) Policy
ServerToday (Thailand) Co., Ltd. values your privacy and the security of your personal information. This privacy policy explains our practices for collecting, using, or disclosing personal information relating to California residents under the California Consumer Privacy Act (CCPA) of 2018.


Your Rights Under the CCPA
In addition to the rights set forth in this policy, California residents have the following rights:

Right to Notice
We collect various categories of personal information about California residents and disclose it to third parties or service providers for the business purposes specified in this policy. In the past 12 months, we may have collected the following categories of personal information about you, depending on your interactions with us:

Categories of Personal Information Under CCPA
  • Identifiers such as name, gender, nationality, ID card, passport, contact details, etc.
  • Personal information under California data protection laws, e.g. financial information, credit card details, bank accounts, etc.
  • Categories protected under California or federal laws, e.g. disability or other physical characteristics, etc.
  • Commercial information such as purchases of products or services, etc.
  • Internet or electronic network activity such as browsing history, searches, etc.
  • Geolocation data such as physical location, etc.
  • Audio, electronic, visual or similar information such as voice and video recordings, etc.
  • Professional or employment information such as work history, etc.
  • Education information such as education level, certificates, etc.
  • Other personal information such as profiles, preferences, characteristics, etc.
Sources include information provided directly by you, interactions with us, business partners or service providers, etc.

We use personal information for the following business purposes:
  • To create and manage user accounts
  • To deliver products or services
  • To improve products, services or user experience
  • For internal business administration
  • For marketing and promotional purposes
  • For after-sales service
  • To collect feedback
  • To process payments for products or services
  • To comply with terms and conditions
  • To comply with laws and government regulations

Right to Request Personal Information
You have the right to request that we disclose our collection, use or disclosure of your personal information over the past 12 months, including the categories of personal information, purposes for processing, sources from which we collected the information, categories of third parties we share it with for business purposes, and the business purposes for doing so.

Right to Request Deletion of Personal Information
You have the right to request that we delete your personal information that we have collected or maintained. To exercise your right to request deletion, you can submit a request to our email address. Please specify the personal information you would like us to delete or if you would like us to delete all of your personal information as permitted under the CCPA.

Non-Discrimination Right
Under the CCPA, we are prohibited from discriminating against California residents for exercising their rights under the CCPA. You will not be subject to discrimination for exercising your CCPA rights.

Right to Opt-Out of Sale of Personal Information
You have the right to opt-out of the sale of your personal information. However, we do not sell your personal information, including California residents' personal information.

Contact details
If you have any inquiries about this privacy policy, including exercising your rights, you can contact us at:
ServerToday (Thailand) Co., Ltd.
111/128 Moo 2, Ratchaphruek Road, Bang Rak Noi, Muang Nonthaburi, Nonthaburi 11000
Email: dpo@servertoday.com
Website: www.servertoday.com
Tel: 02-0263112