Privacy Policy iPay88
Thailand

iPay88 Co., Ltd (the “Company”) sets forth this Privacy Policy (this “Policy”) with regard to the treatment of users’ information, including but not limited to personal information, during the performance of services provided by the Company (the “Services”), as follows; iPay88 reserves the right to amend this Notice to client at any time and will place notice of such amendments on the company website https://www.ipay88.co.th or via any other mode the company views suitable, which will be clearly informed to you.

Purpose of Information Collected

The use of this information is for the following primary purposes:
1. Enter into relevant sale and purchase agreement;
2. Communication of services, sale and purchase transactions;
3. Payment transaction processing;
4. Settlement of fund, Refund or Cancellation, Dispute and/or Chargeback of the payment transaction;
5. Recurring payment service and/or tokenization;
6. General administration;
7. Manage and maintain your account(s) and facility(ies) with us;
8. Respond to your enquiries and complaints and to generally resolve disputes; i. Update, consolidate and improve the accuracy of our records;
9. Produce data, reports and statistics which have been aggregated in a manner that does not identify you as an individual;
10. Conduct research and survey, which solely for analytical purposes including but not limited to data mining and analysis of your transactions with us;
11. Meet the disclosure requirements of any law binding on us;
12. For audit, compliance and risk management purposes;
13. Any other purpose that we deem necessary and/or as required or permitted by any law, regulations, guidelines and/or relevant regulatory authorities.

User’s Information to be Collected and Method of Collection

For purposes of this Policy, “User’s Information” means information that identifies users, history of actions on communication services and other information created or accumulated in relation to user or users’ devices, which shall be collected by the Company pursuant to this Policy. Depending on the method of collection, the User’s Information that we may collect for a user to use the Services includes:

(i) information provided by the user, including Personal data that we may collect:
1. Name, Age, Race, Gender, Nationality, ID Number, Passport Number, Date of Birth;
2. Contact Details such as House Number, Mobile Number; Email Address; Home Town Address; Correspondence Address; Delivery Address
3. Credit card information;
4. Bank Account number;
5. photographs; and
6. other information entered by the user into such form as specified by the Company;

(ii) information provided from services outside the Services to the extent that the user permits for use with the Services;
The Company may collect the following information from services outside the Services, including but not limited to social network services, to the extent the user permits for use with the Services at that time: ID used by the user for such outside service; and Authorized

(iii) information collected by the Company for the use by the user of the Services
The Company may collect information upon access to or use of the Services, including
terminal information
log information
cookies and anonymous ID; and
location information.

The User’s Information may be used not only for provision of the Services as provided in Section 3.2 but for other purposes as provided in Section 3.3

Specific purposes of the User’s Information for the provision of the Services shall include the following:
1. Provision, maintenance, protection, and improvement of the Services, including but not limited to acceptance of registration for the Services, identification of individuals and computation of use fees;
2. Guidance or response to inquiries relating to the Services;
3. Addressing a violation of rules, regulations or policies relating to the Services (the “Rules”);
4. Notice of any modification to the Rules; and
5. Other purposes incidental to the foregoing.

Purposes other than those specified in Section 3.2 above shall be as indicated below:

(1) creating statistical data relating to the Services, in a form that cannot identify an individual; device information
log information
Cookies and anonymous ID
location information
(2) delivering or displaying advertisements of the Company or third parties; And device information
log information
Cookies and anonymous ID
location information
(3) other marketing. Name
E-mail address
Date of birth
Other information input by users in the form
specifies by the Company

Method of Notice, Publication and Permission; Method of Discontinuance of the Use

The user’s permission must be obtained before collecting the following User’s Information:
1. Terminal information: and
2. Location information.

If the user specifies a certain setting, the user is entitled to require the Company to, and the Company shall immediately, discontinue the use of any or all of the User’s Information, in accordance with such rules as may be from time to time prescribed by the Company. Depending on the item of the User’s Information, if such collection or use is required for the Services, the Company may not be able to discontinue such collection unless the user withdraws from the Services pursuant to the procedures as determined by the Company.

5 Outside Transmissions; Provision to Third Parties: Information Collection Modules In order to distribute targeted advertisements using the Users Information, the following information collection module is incorporated into the Services. Thus, the Company provides the User’s Information to the provider of such information collection module in accordance with the following:

(1) Name of Information Collection Module:
(2) Provider of Information Collection Module:
(3) Items of User’s Information to be Provided
(4) Means and the Methods of Provision
(5) Purposes of Use by Provider:
(6) Whether or not Provider Intends to Provide Information to Third Parties:
(7) URL of Providers Privacy Policy

Provision of Personal Information to Third Parties

Unless required by the related Personal Information Protection Act or other applicable laws and regulations, the Company shall not provide to any third party personal information contained in the User’s Information without the prior consent of the user, unless:

1. The Company authorizes such third party to handle the personal information in whole or in part to the extent necessary to accomplish the purpose of the use:
2. The personal information is provided through a business transfer by way of merger or other similar transactions:
3. The personal information is provided to a provider of an information collection module pursuant to Section 4 hereof:
4. The Company is required to cooperate with state or local governmental organizations or their agents to perform their duties or obligations pursuant to applicable laws and regulations, and such performance is likely to be precluded if the consent of the user must be obtained: and
5. In addition to the foregoing, the Company is entitled to disclose information pursuant to the Personal Information Protection Act or other applicable laws and regulations.

Joint Use

The Company may jointly use personal information as follows:

1. Items of Personal Information to be Jointly Used:
2. Party to Jointly Use Personal Information:
3. Purposes of Joint Use:
4. Name of Party Responsible for User’s Information:

Disclosure of Personal Information

Upon request from the user to disclose its personal information under the Personal Information Protection Act, the Company shall, without delay, disclose to the user such information after confirming its identity (or notify it of the nonexistence of such personal information), to the extent required to do so pursuant to the Personal Information Protection Act and other applicable laws and regulations.

Disclosure Your personal data will be kept confidential, but you consent and authorize us to provide or share your Personal data to the following class of users:

1. Persons/Organizations required under law or in response to government requests;
2. Related, subsidiaries, holdings of iPay88, including future entities under iPay88;
3. Government agencies, statutory authorities, enforcement agencies under law;
4. Auditors, accountants, lawyers under iPay88;
5. Contractors, sub-contractors, affiliates of iPay88;
6. Third party service /product providers that is deem necessary or appropriate for the purposes stated above (including those located out of Malaysia, under conditions of confidentiality and similar levels of security);
7. Persons under a duty of confidentiality to the iPay88;
8. Any other purpose that we deem necessary and/or as required or permitted by any law, regulations, guidelines and/or relevant regulatory authorities.

Data shared will be for the purpose as stated in this notice, or purposes not stated but directly related to the primary purpose of collection. We may also share your Personal Data where required by law or where disclosure is necessary to comply with applicable laws, legal processes or queries from the relevant authorities.

Data Security

We shall take necessary steps to store and process your personal data securely. We will undertake the following security steps:
1. The CompaImplementation of a formal information security policy and necessary technology controls such as firewall, password controls, physical security, logging and monitoring etc;
2. Process controls such as segregation of duties, defined roles and responsibilities and need to know basis for staff;
3. Third party providers and contractors storing or processing personal data has implemented similar acceptable standards of security. Retention of Personal Data

Your personal data will be stored for only the period as necessary to fulfill the purposes stated above after which we proceed to ensure that your personal data is destroyed, anonymized or permanently deleted if it is no longer necessary to store. Reasons to further store your information even after the fulfillment of the purposes includes:
1. to satisfy legal, regulatory or accounting requirements;
2. to satisfy legal, regulatory or accounting requirements;

Direct Marketing

We may use your personal data to provide you with information about our and third party services and/or products, which may be related to your interests, unless requested otherwise by you.
We may, in some circumstances, disclose your personal data to preferred merchants and strategic partners. Such disclosure will only occur where you have subscribed for particular Services or Products which require such disclosure, and/or where your consent has been obtained, subject at all times to any laws (including regulations, guidelines and/or obligations) applicable to [Company]. We take reasonable steps to ensure that the 3rd parties we are sharing your personal data with also have appropriate privacy and confidentiality obligations.
If you do not wish your personal data to be utilised for the purposes of marketing and promotion, please contact us at the contact details below. Your latest written instructions to us will prevail.

Rights of Access and Correction

Under PDPA, you reserve the right to access your personal data and request for correction of the personal data that might be inaccurate, obsolete, incomplete or misleading.
In respect to this, you may:
1. Request to check and access your personal data in our records;
2. Request that we correct any of your inaccurate, obsolete, incomplete or misleading personal data;
3. Request copies of the data from us.

Once we receive a request, we will acknowledge the receipt of such request. For data amendment and correction, we will consider if the information requires amendment. If there is any disagreement, then we specify the reason in clearly stated terms such as where rights of others will be violated, or regulatory functions will be affected.
In accordance with the PDPA, and to the extent not limited by any other applicable law, we may:
1. Charge an administration fee for processing your request for access or correction to the Personal Data, in compliance to the fees stated in PDPA sub-regulation; and
2. Refuse to comply with your request for access or correction to the Personal Information and give you a written reason for such an action.

Transfer of Your Personal Information Outside Thailand

It may be necessary for us to transfer your personal data outside Thailand if any of our service providers or strategic partners who are involved in providing part of a services are located in countries outside Thailand. You consent to us transferring your personal information outside Thailand in the instances whereby it is necessary to fulfil the execution of the service/products that you signed up for. We shall take necessary steps to ensure that any such partners are contractually bound not to use your personal information for any reason other than to provide the Products and/or Services they are contracted by us, to safeguard your personal information.

Inquiries

Any suggestions, questions, complaints, or other inquiries on the handling of the User’s Information could be submitted to:
Contact Number: +662 080 6122
Email: Marketing@ipay88.co.th
iPay88 (Thailand) Co., Ltd.
CapitalTower, All Seasons Place, 87/1 Wireless Road,10th FloorLumphini, Pathum Wan, Bangkok10330

The Company reserves its right to amend this Policy in the future, from times to times, anyamendment to bedoneby the Company shall bind all user in all respect, and whether the Companyhas sent thepriornotice to them regarding theamendment ornot.