Privacy Policy
Privacy Policy
Cynclair Co., Ltd. (“Company”) is committed to protecting personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard personal data in accordance with applicable laws, ensuring that all information is handled responsibly and transparently. This Policy outlines the purposes of data processing, types of personal data collected, and the legal rights of data subjects. We encourage you to read and understand this policy thoroughly.1. Definitions
Unless otherwise specified, the following terms shall have the meanings described below:- Personal Data Protection Law: Refers to Thailand’s Personal Data Protection Act B.E. 2562 (2019) and any amendments or related regulations.
- Services: Refers to any cybersecurity products, solutions, or related services provided by the Company.
- Personal Data: Any information that identifies or can be used to identify an individual, directly or indirectly, excluding data of deceased persons.
- Company: Cynclair Co., Ltd.
- Affiliated Companies: Entities in which Cynclair holds 50% or more of issued shares, including subsidiaries at all levels.
- Data Controller: A person or entity authorized to make decisions regarding the collection, use, or disclosure of personal data.
- Data Subject: Any individual receiving services from the Company, including representatives of corporate clients.
2. Collection of Personal Data
The Company may collect personal data directly or indirectly through:- Information provided by the data subject or their representative to Cynclair, affiliated companies, or business partners.
- Communications through telephone, email, or in-person interactions.
- Online services including websites, applications, and social media.
- Third-party sources such as government agencies or contractual partners, with consent or as permitted by law.
3. Types of Personal Data
General Personal Data
Includes:- Personal details: name, surname, gender, age, date of birth, occupation.
- Contact details: address, workplace, phone number, LINE ID, email.
- Technical and device data: cookies, IP address, browser type, connection logs.
- Service usage data: demo requests, inquiries, subscription preferences, and user interactions with cybersecurity platforms.
- Multimedia data: audio, images, video, CCTV recordings.
- Any other data classified as personal under applicable law.
Sensitive Personal Data
Includes race, ethnicity, political opinions, religious beliefs, sexual orientation, criminal records, health data, disabilities, labor union membership, genetic or biometric data. The Company will collect and process such data only with explicit consent and in accordance with legal requirements.4. Purposes of Data Collection, Use, and Disclosure
The Company processes personal data for the following purposes:- To provide and manage cybersecurity services and solutions.
- To fulfill contractual obligations and enhance service performance.
- To communicate with clients and users (e.g., notifications, inquiries, updates).
- To verify identity for account access or security purposes.
- To comply with legal and regulatory requirements.
- To share product updates, security alerts, and company news.
- For direct marketing and promotional communications.
- For research and analysis to improve security services.
- To maintain and improve cybersecurity infrastructure.
- To detect, prevent, and respond to cyber threats.
5. Data Security
Cynclair implements, and mandates that its service providers adhere to, robust organizational and technical measures engineered to protect personal information against unauthorized access, alteration, disclosure, or destruction. Our security framework is specifically calibrated to the nature of the data we process and the sophisticated threat landscape we monitor. Leveraging our expertise in Managed Detection and Response (MDR), we are committed to the continuous evolution of these safeguards. However, because security is a dynamic process rather than a static state, no protocol can be rendered entirely infallible. While we employ industry-leading strategies to mitigate risk, the inherent nature of global digital environments means that absolute security cannot be guaranteed. Consequently, we maintain a shared responsibility model with our users and partners to ensure the highest possible level of data integrity.6. Disclosure to Third Parties
The Company may disclose personal data to:- Affiliated companies and business partners under similar data protection standards.
- Contractors and service providers who assist in service delivery or system maintenance.
- Government agencies or regulatory authorities as required by law.
7. International Data Transfers
The Company may transfer personal data to other countries for operational or technical purposes. By using our services, you consent to such transfers, even if the destination country’s data protection laws differ from those of Thailand. Cynclair ensures that all international transfers comply with Thai data protection requirements.8. Data Subject Rights
You have the right to:- Access and obtain a copy of your personal data.
- Request correction, deletion, or restriction of processing.
- Object to certain data processing activities.
- Withdraw consent at any time (this may affect service availability).
- File complaints with the relevant data protection authority.
9. Exceptions
The following cases are not considered violations of this Privacy Policy:- Disclosure of publicly available data.
- Disclosure made with the data subject’s consent.
- Disclosure required by law, court orders, or government authorities.