Prima Gold International Co., Ltd. (the “Company,” “we,” “us,” or “our”) acknowledges and understands the importance of taking care of and ensuring the security of the personal data of our customers. We know you care how information about you is collected, used, and disclosed. The information you share with us allows us to provide the products and services you need and want appropriately tailored for you, not only from us but also those within the PRIMA Group company. We appreciate your trust that we will carefully and sensibly handle your personal data while giving you the very best personalized experience and customer service.
This privacy policy applies to our retail stores, websites, mobile applications, call center, social networking sites, online communication channels, and other locations where we collect your personal data. However, please read this Privacy Policy in conjunction with the terms and conditions of the particular service that you use.
The purpose of this Privacy Policy, “Personal Data” means “any information relating to an identified or identifiable natural person”.
We reserve the right to modify this Privacy Policy from time to time, Any changes to this Privacy Policy will become effective when we post the revised Privacy Policy on our website or application. We will provide additional notice of significant updates. In case any modification deprives your rights of sensitive data in relation to this Privacy Policy, the Company will first obtain your consent, except as otherwise permitted by law.
How are we collecting your Personal Data?
The Company may collect personal data directly from you through the following methods:
Please note that the Company may also collect your personal data from other sources that the Company has access to and that are publicly available, such as affiliated companies, subsidiary companies of the Company, or government agencies.
The Company will use your personal data for various purposes, including conducting business operations, providing services, improving services, communicating, developing products and services, updating, and enhancing systems, and complying with relevant laws. We are committed to maintaining the confidentiality and security of your personal data and have implemented appropriate measures to prevent unauthorized access, use, or disclosure of your personal data.
You can contact us to request further information about this Privacy Policy or to request an amendment of your personal data as appropriate. Please be assured your requests are welcome and will be responded to as soon as possible. Thank you for trusting the Company, and we are delighted to serve you wholeheartedly.
The company may collect, use, or disclose sensitive personal information only when the company has obtained explicit consent from you unless the law allows such actions without explicit consent. Sensitive personal information includes, but is not limited to, health information, religion, ethnicity, biometric data (such as facial recognition data, iris scan data, fingerprint data), and any other personal information that may impact an individual’s specific rights or privacy, as determined by the Data Protection Committee’s guidelines.
Please be aware that if the company collects the above-mentioned personal information, it is necessary for the company to provide the services or deliver the products that you have selected in accordance with the contract or agreement you have with the company or for the company to fulfil its legal obligations. In some cases, if you wish not to consent to provide such information to the company, the company may not be able to provide goods or services to you, including the inability to create a membership account on the company’s system. It may also prevent the company from resolving issues related to your purchase of goods or services from the company.
What Personal Data do we collect?
The company obtains this information when you visit our website, as our website automatically records data sent by your browser during your visits.
The Purposes of Personal Data Processing
The company collects, uses, or discloses your personal information based on your requests and/or agreements made with the company, for the following purposes:
The processing of your personal data for the above-mentioned purposes will depend on your interactions and activities with the company. The reasons or legal bases that the company may rely on for processing your personal data may include:
(1) You have provided consent for one or more of the specified purposes.
(2) The processing of data is necessary for the agreement of a contract between you and the company and/or for pre-contractual measures.
(3) The processing of data is necessary to comply with legal obligations imposed on the company.
(4) The processing of data is related to the execution of tasks for the public interest of the company or in the exercise of state authority delegated to the company.
(5) The processing of data is necessary for the legitimate interests pursued by the company or by third parties, whether they are natural or legal persons.
To whom we may disclose or transfer your Personal Data
We may disclose or transfer your Personal Data to the following third parties who collect, use, and disclose Personal Data in accordance with the purposes under this Privacy Policy. You can visit their privacy policies to learn more details on how they collect, use and disclose your Personal Data as you could also be subject to their privacy policies. The individuals or organizations to whom the company may disclose your personal information include.
Subsidiary companies, affiliated companies, or companies within the group:
The company may disclose some of your personal information to subsidiary companies, affiliated companies, or companies within the group as necessary to achieve the purposes outlined in this policy.
Service Providers:
The company may disclose certain personal information to its service providers or other business partners as necessary to carry out various functions related to the delivery of products or the management of your membership system. This includes payment service providers, event organizers, technology service providers, marketing data collection or opinion-gathering service providers, delivery service providers, online social media service providers, account auditing, and legal service providers. However, these service providers are not authorized to use or disclose your personal information unless it is necessary to contact you on behalf of the company or comply with legal requirements.
Business Partners:
The company may disclose some of your personal information to our business partners to fulfil the purposes specified in this policy, such as coordinating various activities organized by the company’s business partners, offering benefits through the company’s business partners, and more.
Legal Enforcement:
The company may need to disclose your personal information if required by law or to respond to official requests from government agencies, such as providing tax-related information to the tax authorities.
Business Transfers:
The company may disclose information, including your personal information, in the context of restructuring the organization, mergers, or the sale of business operations or other assets. In such cases, the receiving party must handle your information in accordance with this policy and relevant data protection laws.
Storing, Transferring, and Transmission of Personal Data Abroad
The company will store your personal information in both document and electronic formats at the company’s data storage facilities. Your personal information in electronic format will be stored on the company’s servers located in Thailand.
In some cases, the company may disclose or transfer your personal data to individuals or organizations located outside of Thailand. In such cases, the company will implement various measures to ensure that the transfer of your personal data to the destination country complies with adequate data protection standards and in accordance with the conditions and criteria as stipulated by data protection laws, regulations, and relevant guidelines.
Data Retention Period
The company will store your personal data for as long as necessary while you remain a customer or member of the company or maintain any legal relationship with the company, during which the company is obligated to protect the data to fulfill the purposes specified in this policy and to comply with applicable laws. However, your personal data may continue to be retained after the termination of your services or relationships with the company as required by law. Your rights to access, delete, amend, or transfer your data will not be enforceable once the data retention period has expired. In this regard, the company may anonymize or discard your data, ensuring that it cannot be used to identify you.
Security of your Personal Data
The company will maintain the confidentiality, integrity, and availability of your personal data according to the principles of security. This includes administration, technical, and physical protection for controlling and/or accessing and managing data. The company will ensure compliance with the data protection standards, regulations, and guidelines established by law. However, please note that there is no guarantee of data security during internet or wireless network transmission. Therefore, you acknowledge that (1) there are limitations to online security and privacy beyond the control of the company, (2) the security, accuracy, completeness, and privacy of any exchanged data between you and the company cannot be guaranteed, and (3) personal data and information may be visible or changed during transmission by third parties, despite the company’s best protection efforts.
Minors
If you are under the age of 20 or have legal limitations regarding the processing of your personal data, the company may need to obtain consent from your legal guardian or the person responsible for your care and supervision, as required by law, unless the law allows the company to act without such consent. If the company becomes aware that it has collected personal data from minors without obtaining the necessary consent from their legal guardian or responsible person, the company will promptly delete such data from its servers without delay.
Personal Data Tracking Technology (Cookies)
When you visit the website www.prima.co.th or other websites managed and responsible for by the company, please be aware that the company automatically uses “cookies” to enhance your user experience and improve website efficiency.
Cookies are small pieces of information or text issued to your computer when you visit a website and are used to store or track information about your use of a website and used in analyzing trends, administering our websites, tracking users’ movements around the websites, or to remember users’ settings. Some cookies are strictly necessary because otherwise, the site is unable to function properly. Other Cookies allow us to enhance your browsing experience, tailor content to your preferences, and make your interactions with the site more convenient: they remember your username in a secure way, as well as your language preferences.
Most Internet browsers allow you to control whether or not to accept cookies. If you reject, remove or block Cookies can affect your user experience and without cookies, your ability to use some or all the features or areas of our websites may be limited.
In addition, some third parties may issue Cookies through our websites to serve ads that are relevant to your interests based on your browsing activities. These third parties may also collect your browser history or other information to determine how you reached our websites and the pages you visit when you leave our websites. Information gathered through these automated means may be associated with the Personal Data you previously submitted on our website. For more details about the cookies used by the company, you can refer to the website www.prima.co.th
Your rights as a data subject
When the company collects and processes your personal data, you have several rights as the data subject under data protection laws, and you can request these rights at no cost, except where provided by law. Your rights as the data subject under data protection laws include the following:
You can request your rights as a data subject by contacting the company or its Data Protection Officer using the details provided at the end of this policy. The company will respond to your requests within 30 days of receiving your request through the specified form or method, as outlined by the company. However, the company may need a longer time to respond if permitted by applicable law.
You can make a request to exercise your rights by providing your information through the following channel: [email protected]
Reporting of Your Personal Data Breached
In the event of a personal data breach involving your data, the company will promptly notify the relevant data protection authority within 72 hours from the time the company becomes aware of the breach, to the extent feasible. If the breach poses a high risk to your rights and freedoms, the company will also notify you of the breach, along with remedial measures, through various means such as the company’s website, SMS, email, telephone, or postal mail etc.
Connecting to Other Websites
Within the company’s website for which it is responsible, there may be links connecting to other websites that are not owned or controlled by the company. Please be aware that the company is not responsible for the privacy practices of such external websites or entities. Therefore, the company recommends that you understand the privacy policies of each website that may collect your personal data because data protection practices may differ between websites and the company is not involved in the privacy practices of external websites.
Amendment and Changes to the Privacy Policy
The company may occasionally amend this policy due to various reasons, such as changes in technology or changes in the law. Any modifications to this privacy policy will take effect when published on the company’s website, specifically at www.prima.co.th However, if such changes significantly affect you as a data subject, the company will provide you with advance notice before the changes become effective.
Latest Amendment and Effective Date
This policy was last amended and effective on July 1, 2022
Contact Details
If you wish to contact us to exercise the rights relating to your Personal Data or if you have any queries about your Personal Data under this Privacy Policy, please contact us or our Data Protection Officer at:
Prima Gold International Co., Ltd.
Address: 589/64 Theparak Road, Bangna Nua, Bangna, Bangkok 10260
Email: [email protected]
Website: www.prima.co.th
Phone: 0-2745-6111
Data Protection Officer
Email: [email protected]
Phone: 0-2745-6111 ext. 222
© 2023 Prima Gold Official. All Rights Reserved.