This website uses cookies for the purpose of improving the user experience. You can learn more details in the Cookie Policy.

Privacy Policy

Beryl 8 Plus Public Company Limited (hereinafter referred to as the “Company”), in its capacity as the data controller, places the utmost importance on the privacy of your Personal Data and fully recognizes its legal obligations under the Personal Data Protection Act B.E. 2562 (PDPA) and other applicable laws regarding the collection, use, disclosure, or transfer of Personal Data to third parties. The Company is committed to processing Personal Data lawfully, fairly, transparently, and securely.

This Privacy Policy outlines the Company’s practices concerning the collection, use, processing, disclosure, and protection of Personal Data when you access, use, or interact with the Company’s services via www.beryl8.com, mobile applications, online or offline channels, or any other channels operated by the Company.

The Company Privacy Policy includes:

  1. Personal Data Collection
  2. How to Collect or Acquire Personal Data
  3. Objectives of Collection and Use of Personal Data
  4. Protection of Personal Data
  5. Retention Period of Personal Data
  6. Sharing of your Personal Information
  7. International Transfer
  8. Use of Sensitive Personal Data
  9. Legal Rights of Personal Data Protection Law
  10. Cookies
  11. Privacy Policy of Other Websites
  12. Changes to the Privacy Policy
  13. Data Protection Officer
  14. Contact the Company

In this regard, you must read and understand this Policy thoroughly as follows:

1. Personal Data Collection

In providing its services, the Company may collect, use, and store your personal data, which may include, but is not limited to, the following types of information, depending on the nature of your relationship with the Company, such as a customer, business partner, vendor, service provider, job applicant, shareholder, director, employee, or website user.

  • Data that the Company received from you when you are a Vendor, Service Provider, Customers, Clients, Partner, Shareholders, Directors, Employees or Website Users such as name-surname, gender, date of birth, age, nationality, education background, marital status, phone number, email, postal address, id card photo, identification number, passport information, house particulars, signature etc.
  • Data regarding your transactions with the Company, such as vendor application form, bidding information, etc. This depends on the type of your transaction.
  • Data about job applications, either website or telephone, such as name-surname, gender, date of birth, age, nationality, education background, phone number, email, postal address, occupation, ID card photo, identification number, passport information, house particulars, signature, visual images, criminal records, etc.
  • Data that you provide to the Company when you request additional information regarding the Company’s products or services, or request that the Company contact you back.
  • Data from records of correspondence and other communications between you and the Company, in whatever manner and form, including but not limited to phone, email, live chat, instant messages, and social media communications
  • Data from your visits to www.beryl8.com, use of websites, and use of social media such as browser type and version, type of terminal device that you use to access the services (PC, laptop, or smartphone), operating system and platform, IP address of your terminal equipment or device, location, information about the services and products that you view or search;
  • Data about your social media profile when you use your social media credentials, such as Facebook, Twitter, and LINE, to log in to or interact with the Company services, such as your social media account ID, interests, likes, and friend list. You can control this privacy option made available to you by the social media service provider in your social media account settings.
  • For other personal data for which consent is required by law, the Company will notify you and ask for your consent before collecting data or within a legal period.

2. How to Collect or Acquire Personal Data

The Company may collect your personal data from the following sources:

  1. Data that you provide to the Company, for instance, the communication between you and the Company, be it in writing or verbal, data that you provide when you register into vendor application form with the Company to use our service including entering agreement and supporting documents, or information requests or other requests relating to products or services from the Company as well as data that the Company receives; and/or
  2. Data that is collected automatically via cookies or similar technologies when you use the Company products or services, such as mobile application activity and mobile device type, and/or
  3. Your Personal Data that the Company obtains from public sources or from sources lawfully made available to the public.
  4. Data that is collected as a message, photo, and sound when you contact with our personnel, customer service officers, sell officers, contractors, partners, service providers, attorneys, representatives, other persons or other agencies related to the Company (hereinafter referred to as “personnel and partners of the Company”) through website, application, online social media, phone, email, contact in person, interview, SMS, FAX, postal, VDO Call service or other ways;

Not providing some type of Personal Data, granting consent, and/or revoking consent for the collection, use, and/or disclosure of data may cause the Company’s inability to process your request, or provide service to you, or have limited actions.

When you provide any Personal Data related to third parties to the Company, you hereby certify and guarantee the accuracy of such Personal Data. You also certify and guarantee that you have completely informed those parties of the details of this Policy.

As long as the laws permit, you further agree to manage and ensure that the Company is fully compensated for damages, loss, penalty and expenses, including, but not limited to, legal costs and litigation costs in any aspects including fines, penalty charges, interest, additional charges or other amounts charged, fined or collected by regulators or regulatory agencies, arising from or relating to action or inaction of you (or officers, employees, advisors, agents or your representatives), your mistakes or negligence in performing those duties or resulting in us being accused of or punished for violating applicable laws.

3. Objectives of Collection and Use of Personal Data

The Company uses the Personal Data you provide when you visit or use our services to fulfill the purpose for which you provided the data. The purposes for which your Personal Data may be used are as follows:

  • Providing our products or services to you;
  • Contacting you, delivering the contract, and supporting documents for the operation of products and services;
  • Administering our services for internal operations, including problem diagnosis, troubleshooting, internal audit, or account audit;
  • Providing and improving our products and services, including administering, maintaining, managing, and operating such products and services;
  • Checking the data of job applicants and contacting the applicants.
  • Managing, collecting, recording, storing, or destroying Personal Data;
  • Checking the Company’s structure to ensure that it does not cause conflict of interest between the Company and persons who may have conflicts
  • Disclosing of information on related transactions, including other information in the registration statement that will be submitted to the Securities and Exchange Commission (SEC)
  • Complying with the provisions of the Company’s internal policies;
  • Complying with the provisions of laws, rules, regulations, agreements or applicable policies made by law enforcement agencies, government agencies, dispute settlement bodies, insurance business regulators, or other regulatory agencies;

Taking any action that the Company believes to be necessary or appropriate: (a) to investigate, prevent and detect illegal activities or suspected illegal activities; (b) under applicable laws; (c) to comply with legal process and hearing; (d) to respond to requests from government authorities and the state including government authorities and states outside your country of residence; (e) to enforce the Company’s terms of service and Personal Data announcement (f) to protect our operations; (g) to protect rights, privacy, safety or property of the Company, you or others; and (h) to allow the Company to pursue available remedies or limit the damages that we may sustain;

Other purposes that are not mentioned above but will be specifically stated at the time the Company requests your data, or when data is collected and used according to the legal exclusions.

The Company shall use your Personal Data according to the objectives in item 3 only when:

  1. Your consent was granted to the Company by law.
  2. It is necessary to comply with contracts in which you are a counterparty or fulfill your requests before entering into such contracts.
  3. It is necessary for the legitimate interests of the Company, individuals, or other juristic persons, unless such interests have a lower value than basic rights of your personal data;
  4. It is necessary to comply with the law.
  5. It is necessary for the establishment of legal claims, compliance with the law, exercising legal claims, or contestation of legal claims.

You may choose not to allow the Company to collect certain information requested by the Company. However, choosing not to provide certain information may hinder the ability to conduct transactions and services between the Company and you, and the response to your requests. For example, the Company may not be able to proceed to enter into insurance contracts with you, or the Company may not be able to provide you with the services relating to the Company’s products or other services, including claim services.

Unless otherwise allowed by applicable laws and regulations and the Personal Data Protection Act B.E. 2562, the Company shall notify you and request your consent if the Company wishes to use your Personal Data for any other purposes than those specified in this Privacy Policy or than those purposes directly related to this Privacy Policy.

4. Protection of Personal Data

At the Company, protection of your privacy is our top priority. The Company establishes data security policies and procedures, as well as restricts access to your Personal Data to those individuals, such as certain employees and agents, who need it to perform their jobs in providing you with our products and services. We require those individuals who we permit access to your Personal Data to protect it and keep it confidential. The Company maintains physical, electronic, and procedural safeguards that comply with applicable regulatory standards to guard your Personal Data.

The Company has implemented various security measures and has made its best effort to ensure the safety of your Personal Data stored in our system. Your Personal Data will be stored on secure networks and can only be accessed by a limited number of persons with special rights to such information.

In addition to the above security measures and methods, the Company has used advanced technologies to protect your personal data.

  • Secured Socket Layer (SSL) and Transport Layer Security (TLS): To prevent any information from being detected while transmitted via the internet, we use Secure Socket Layer (SSL) encryption technology and Transport Layer Security (TLS) protocol on our websites where we collect your personal data to be encrypted (such as your payment information and login credentials) which is supported by most popular browsers, including Google Chrome, Firefox, Safari, and Internet Explorer;
  • Firewall: To allow only authorized personnel to access the Company’s data as permitted, the Company has put in place layers of firewalls (a network security system) between our computer systems and the Internet.
  • Virus and malware scan: Virus and malware scanning software are installed and periodically updated on all computers and servers.

5. Retention Period of Personal Data

Your information will be kept by the Company as long as it is necessary, taking into consideration our needs and purposes for which the Company collects and processes it, including compliance with legal requirements under applicable laws.

Even though you end your relationship with us, the Company shall continue collecting, using, and disclosing your Personal Data as necessary according to the laws for legal interests.

For contract and/or supporting documents, the Company shall continue keeping your Personal Data as necessary to achieve the above-mentioned purpose for not over 10 years since our relationship has ended or your last contact with the Company. Based on applicable laws and regulations, the Company may retain your personal data for a longer period than specified above.

To comply with the period and prescription according to applicable laws, your Personal Data shall be kept in an appropriate format of data type. However, the Company may need to keep your personal data longer than the legal prescription under certain circumstances, such as the submission of a maturity benefit to the life insurance fund or the case is under legal prosecution, etc..

The Company will take the appropriate procedure for deleting, destroying or anonymizing your personal data according to the personal data retention period mentioned above.

6. Sharing of Your Personal Information

Other than as permitted under this Policy or as otherwise consented to by you, the Company shall not transfer your Personal Data to any other third parties for their processing for any purpose.

The Company may share your Personal Data within our group of companies and with joint venture partners, as well as third-party service providers, contractors, and agents. In addition, the Company may allow such third parties to collect your Personal Data across our services.

In each case, the Company permits such processing and/or collection for the following purposes:

  1. providing our services to you;
  2. carrying out our obligations and enforcing our rights under the Terms of Service or this Policy; and/or
  3. administering our services for internal operations, including problem diagnosis and troubleshooting.

Where the Company permits any third parties to collect and use your Personal Data in accordance with the above, the Company shall use reasonable efforts to ensure that such third parties only use your Personal Data:

  1. in compliance with this Privacy Policy; and
  2. subject to any other instructions the Company has given them, including appropriate confidentiality and security measures implemented by the Company.

You agree that the Company may be required to retain, preserve, or disclose your Personal Data:

  1. to comply with applicable laws or regulations;
  2. to comply with a court order, subpoena, or other legal process;
  3. in response to a request by a government authority, law enforcement agency, or similar body, whether located in your jurisdiction or elsewhere; or
  4. where the Company reasonably believes such action is necessary to comply with applicable laws or regulations.

You also agree that the Company may disclose your Personal Data in order to enforce the Terms of Service or this Privacy Policy and protect our rights, property, or safety, or the rights, property, or safety of the Company or other users of our services.

7. International Transfer

Your Personal Data may be transferred, stored, or processed by partners or service providers that are located in, or operate from, foreign countries. In such cases, the Company shall establish appropriate standards for entering into agreements and/or contractual arrangements with such partners or service providers in accordance with accepted standards of personal data protection and/or applicable laws, in order to ensure that appropriate measures are taken to keep your Personal Data secure.

8. Use of Sensitive Personal Data

For certain products or services of the Company, as well as for personal data collection, the Company may need to collect, use, or disclose sensitive personal data, such as race, ethnicity, disability, political opinions, religion or philosophical beliefs, doctrines, sexual behavior, genetic data, and information relating to labor union membership.

In such cases, the Company shall obtain your explicit consent before the collection, use, or disclosure of such sensitive personal data and shall clearly inform you of the relevant purposes, unless applicable laws provide otherwise and do not require consent for the collection, use, or disclosure of sensitive personal data.

9. Legal Rights of Personal Data Protection

You may have rights under Thai and other laws to have access to your Personal Data and to ask the Company to rectify, erase, and restrict the use of your Personal Data. You may also have rights to object to your Personal Data being used, to ask for the transfer of Personal Data you have made available to us, and to withdraw consent to the use of your Personal Data. Further information on how to exercise your rights is set out below.

The Company shall honor your rights under applicable Data Protection Laws. You have the following rights under Thai law and may have similar rights under the laws of other countries.

  • Right to access and request a copy of Personal Data which is under the responsibility of the Company, where appropriate identity verification shall be conducted;
  • Right to request the Company to revise or correct your Personal Data to be updated, complete, and unambiguous;
  • Right to request temporary limitation/suppression of the use and/or processing of Personal Data;
  • Right to object to the collection, use, or disclosure of your Personal Data, as well as the right to object to Personal Data processing;
  • Right to request the deletion, destruction, or anonymization of your Personal Data;
  • Right to revoke consent or request to change the scope of consent granted to the Company to collect, use, or disclose your Personal Data; however, the revocation shall not affect the past collection, use, or disclosure of your Personal Data for which consent was granted.
  • Right to be informed about the existence and types of personal data, and the Company’s purposes of use of the Personal Data;
  • Right to request the Company to deliver or transfer Personal Data to you or other individuals or organizations as you specified;
  • Right to request disclosure of the source of your Personal Data in case you do not grant consent to collect or gather such data.

The Company shall complete your request within 30 (thirty) days after you request the Company. If you wish to exercise the rights, please contact us via email at dpo@beryl8.com.

Based on applicable laws and regulations, the Company may have the right to charge reasonable expenses for processing the rights above.

However, the Company reserves the right not to fulfill your request under the provisions of the law. If the Company cannot fulfill your requests, the Company will record the rejection together with the reasons.

Remark – If you request the Company to delete, destroy, or anonymize your Personal Data, or revoke your consent, it may impact (1) compliance with contracts such as a Master Service Agreement, Master Subscription Agreement, or employment contract, and (2) the performance of services, since we will be unable to identify your identity , and there might be limitations to some services where your Personal Data is needed.

10. Cookies

A cookie is a small text file that is placed on a computer or other device and is used to identify the user or device and to collect information. The code in the cookie file enables the website to recognize you as a particular user; however, it does not identify you by name, address, or other personally identifiable information unless you have provided such information to the website or have configured your browser settings to do so automatically. When you visit the Company’s websites, your data may be collected automatically through cookies or similar technologies.

How the Company uses cookies

The Company uses cookies to improve the services provided on its websites, including to better understand how you use the Company’s websites.

Why the Company uses cookies

The Company may, from time to time, automatically collect certain information through cookies and store such information as log data. The Company uses its own cookies to personalize your experience on its services and for various other purposes, including the following:

  1. to recognize you on the Company’s websites and remember your settings, including language and location. Both first-party cookies and third-party cookies may be used;
  2. to collect information about the webpages you visit, the content you view, the links you click, as well as information about your web browser, device, and IP address;
  3. to remember your preferences based on previous or current website activities, which enables the Company to provide improved and tailored services for your future visits; and
  4. for security purposes, including the prevention of unauthorized access to your account.

Categories of cookies used

Preference Setting:

The Company uses cookies to record your layout preferences, appearance settings, and other custom configurations in order to personalize its services for you. These cookies allow the Company’s websites to remember information that changes the way the website behaves or appears.

Security:

The Company uses cookies to help ensure the security of your information and its services, and to prevent fraudulent, criminal, or other suspicious activities.

Efficiency:

The Company uses cookies to improve the speed, performance, and overall efficiency of its services.

Analysis and Research:

The Company uses cookies to monitor and improve its services, and to obtain reference data for research and the development of new services or features.

Cookie settings

You can configure your browser to refuse cookies. In addition, the Company’s website provides information on how to opt out of cookies through your browser settings. However, disabling cookies may result in certain features of the Company’s websites not functioning properly.

11. Privacy Policy of Other Websites

This Privacy Policy applies only to the Company’s websites. Certain parts of the Company’s websites or applications may contain links to third-party websites or services, such as social networking sites, which may not be operated under this Privacy Policy. The Company is not responsible for such third-party websites or services, or their privacy practices. You are advised to review the privacy policies of those websites or services carefully to understand their practices regarding the collection, use, transfer, and disclosure of Personal Data.

12. Changes to the Privacy Policy

The Company reserves the right to modify this Privacy Policy at any time. This Privacy Policy is available at www.beryl8.com. If the Company makes any changes to this Privacy Policy, the Company will post a notice of such changes on its websites or notify you via the email address specified in your account, to keep you informed of the data the Company collects and uses, and the circumstances under which such data may be disclosed.

You may check when the Privacy Policy was last revised by referring to the revision date stated at the bottom of this Privacy Policy. Your continued access to or use of the Company’s websites or services after the changes have been posted shall constitute your acceptance of such changes. The Company encourages you to review this Privacy Policy periodically to stay informed of the Company’s privacy practices.

13. Data Protection Officer

The Company has appointed a Data Protection Officer to oversee and monitor operations relating to the collection, use, or disclosure of personal data in accordance with the Personal Data Protection Act B.E. 2562, as well as the Company’s policies, regulations, announcements, and rules, and to coordinate and cooperate with the Office of the Personal Data Protection Commission.

You may contact the Data Protection Officer via email at dpo@beryl8.com.

14. Contact the Company

If you have any questions or inquiries regarding this Privacy Policy or the Company’s handling of your personal data, please contact the Company via email at dpo@beryl8.com.