Serve
Policy
MENU
Customer Privacy Notice
Noble ID Member Privacy Notice
Cookies Privacy Notice
นโยบายข้อมูลส่วนบุคคลคู่ค้า
Visitor Privacy Notice
นโยบายข้อมูลส่วนบุคคลผู้สมัครงาน
Investors and Shareholders' Privacy Notice
Directors and Executives' Privacy Notice
Whistle-Blowing Privacy Notice

Customer Privacy Notice

Noble Development Public Company Limited and/or an affiliated company and/or companies in the group and /or the Project Owner Company (collectively referred to as “The Company and Group of Companies”)

as a real estate project developer commit to Customer (the “Customer”) that The Company and Group of Companies give the priority and respect your statutory rights under the laws. The Company will collect and use the Customer’s personal data correctly and transparently only as necessary for providing services or performing any obligations that The Company and Group of Companies may have to the Customer efficiently.

The Company and Group of Companies, therefore, intend to notify the Customer of this Customer Privacy Notice (the “Notice”) that defines the conditions that The Company and Group of Companies would need to process the Customer’s personal data. Once the Customer provide your personal data to The Company and Group of Companies via various channels and steps, including: (1) the direct communication and contact that the Customer may have with The Company and Group of Companies or the indirect recommendation from any third party; (2) the visit at the project where the Customer may provide their personal data in the questionnaire; and (3) the documentation process from booking, sale and purchase effectuation to after-sale services, The Company and Group of Companies would assume that the Customer have agreed with the conditions defined under this Notice.

The Company and Group of Companies reserve the right to amend this Notice from time to time in order to ensure the compliance with the best practice and relevant laws, the business operation and the personal data to be processed by The Company and Group of Companies, provided that The Company and Group of Companies shall notify the Customer of the amendment by announcing the amended Notice through The Company and Group of Companies' communication channels.

Personal Data that The Company and Group of Companies are required to collect, gather, and process

  1. General information relating to the Customer such as full name, date of birth, gender, nationality, the Customer’s status information such as marital status, job title, type of business, income level, including any other information that the Customer may give to The Company and Group of Companies in the site visit questionnaire or Noble ID information.
  2. Identification documentation of the Customer i.e., identification card and passport, including the copy thereof;
  3. Customer’s contact information such as address, telephone number, email, and social media account;
  4. Any information or documentation that is necessary for the preparation of booking form, sale and purchase agreement, the preparation for ownership transfer document and registration process with various government authorities which may include the personal data of the Customer’s spouse, parents, or other related persons (including without limitation the co-owner); provided that in case the Customer provide any personal data of other persons to The Company and Group of Companies, the Customer shall be deemed to give the representation and warranty that they are fully entitled to give and share those personal data to The Company and Group of Companies to process;
  5. Payment information for the purchase price of real estate as well as any other related service fee (such as government fee, transfer fee, and other support service fee (if any)), including without limitation, the cheque, evidence of credit facilities agreement, evidence of payment by bank account or automatic credit card payment, or credit card information;
  6. Other personal data that the Customer may give to The Company and Group of Companies in the form prepared by The Company and Group of Companies for the use of other services which may include request form for reparation, co-owner amendment, personal data revision, real estate ownership handover and transfer or any other request form submitted to The Company and Group of Companies;
  7. Personal data being collected during the use of any services via application or other electronic, including the application or system registration, including other technical information and the Customer’s service transactional information executed via such system, either in the personal identifiable or statistical form;
  8. Any personal data that the Customer may give to The Company and Group of Companies for the participation in the marketing campaign or lucky draw hosted by The Company and Group of Companies, and the Customer’s photo that The Company and Group of Companies may collect during the event participation and the photo evidence of real estate transfer;
  9. Other personal data that the Customer may give to The Company and Group of Companies during any other communication or any personal data that the Customer may give consent to The Company and Group of Companies to process.

In addition to receiving a Personal Data directly from the Customer, The Company and Group of Companies may receive the Customer’s Personal Data from other persons that the Customer may contact and give consent to those persons to disclose your personal data to The Company and Group of Companies, for instance, the referrer, oversea sale agent, or the notification of the change of contracting party name, the financial institution that the Customer contact to request for the credit facilities. In such circumstances, once the third party have submitted the Customer’s personal data to The Company and Group of Companies, The Company and Group of Companies would deem that the Customer have given consent to such third party to disclose and share those personal data to The Company and Group of Companies.

Objectives of the Personal Data Processing

The Company and Group of Companies need to collect, use, and process the Customer’s personal data in order to serve the following purposes:

  1. To perform any contractual obligation and exercise any contractual right between The Company and Group of Companies and the Customer in particular (i) to respond to the contact or request from Customer (ii) to prepare the documentation starting from reservation form to sale and purchase agreement (iii) to verify and validate the performance of the contractual rights and obligations of any parties under the sale and purchase agreement especially the validation of payment, the process of ownership transfer, the assurance of the defect warranties, and the provision of other support services; and (iv) to manage the contractual relationship between The Company and Group of Companies and Customer and/or transferee under various agreements that have be executed;
  2. To perform any legal obligation that The Company and Group of Companies may have such as the preparation of the accounting and taxation report or the ownership transfer registration;
  3. To protect The Company and Group of Companies' legitimate interest without excessively cause the impact on the Customer, The Company and Group of Companies will process the Customer’s personal data for the following purposes:
    • To build and improve business relationship between The Company and Group of Companies and the Customer that may include data analysis; the investigation and management of problem raised relating to The Company and Group of Companies' service; the request for service satisfaction feedback; the preparation of internal audit report; the assessment and management of overall enterprise risk; provided that for this particular purpose, The Company and Group of Companies will process the Customer’s personal data only as necessary and reserve the right to continuously store the data in non-identifiable statistical form;
    • To analyze the Customer’s interest for the purpose of improving the project design or the service provision that would match the Customer’s need and interest, both as an individual and overall;
    • To protect and defend The Company and Group of Companies' claim against the Customer throughout the legal prescription period;
    • To analyze the Customer’s interest for the purpose of marketing strategy in particular the use of personal data to pursue lookalike marketing techniques; provided that this will not include the direct marketing to the Customer;
  4. In case the Customer gives consent to The Company and Group of Companies to process their personal data for specific purposes, The Company and Group of Companies would process the Customer’s personal data to serve those purposes, for instance, for the marketing and promotion purposes.

Retention Period of Personal Data

The Company and Group of Companies may need to process and retain the Customer’s personal data for the specified purposes throughout the period of time as follows: (1) throughout the time that The Company and Group of Companies still have the contractual rights and obligations with the Customer; (2) for the period of time necessary for the protection of The Company and Group of Companies' legitimate rights that may have with you especially for the time of prescription period; (3) for the period of time that is necessary for The Company and Group of Companies' business operation, in particular for enterprise risk assessment and management or for the project and service design and development; provided that in case that The Company and Group of Companies have anonymized the Customer’s personal data, those data will be retained for a longer business terms while The Company and Group of Companies commit not to excessively cause the impact on the Customer’s rights and the Customer can exercise the right to object; (4) for the period of time that The Company and Group of Companies has the legal obligations to retain those information as defined under the applicable laws; and (5) in case consent is given, The Company and Group of Companies shall process the Customer’s personal data until the withdrawal of the consent.

Disclosure of Personal Data

Generally, The Company and Group of Companies will not disclose the Customer’s personal data to any third party, but The Company and Group of Companies may need to disclose and/or share the Personal Data to the following persons:

  1. To third-party service providers of The Company and Group of Companies including (i) Group of Companies, business partners, third party service provider being engaged to support The Company and Group of Companies' service provision and performance of any obligations that The Company and Group of Companies may have with Customer, for instance, affiliates who own the real estate project in which Customer are interested in, IT system service provider, third-party assisting in the sales, marketing or ownership transfer, or contractor who will provide reparation services in case of defect warranty; (ii) service providers engaged to assist in The Company and Group of Companies' business operation, including without limitation consulting service provider, financial institution providing the credit facilities to The Company and Group of Companies for project development that The Company and Group of Companies may be obliged to disclose Customer’s personal data (i.e. sale and purchase agreement and its details) to such institution, legal counsel who will assist in the defense of The Company and Group of Companies' legitimate interest and rights as well as to protect and investigate the misconduct or fraud committed by the Customer. For these necessary disclosures, The Company and Group of Companies commit to disclose and share Customer’s personal data to such persons only for the specified purposes on the necessary basis and shall implement the appropriate measure to ensure the information security of the shared and disclosed personal data under the scope of data processing agreement that will be entered into;
  2. To relevant government authorities that The Company and Group of Companies is obliged under the relevant laws, judgment or order to disclose such personal data to; provided that The Company and Group of Companies shall only disclose personal data on the necessary basis to perform such statutory obligations solely; or
  3. To other persons that the Customer give explicit consent to disclose their personal data to, for instance, the commercial banks or financial institutions that the Customer may request for the credit facilities to purchase The Company and Group of Companies' project.

Security Measures for Personal Data Processing

The Company and Group of Companies represent to implement the appropriate information security to prevent unauthorized access, use, amendment or disclosure of Customer’s personal data that is in The Company and Group of Companies' control and The Company and Group of Companies commit to review the information security measures from time to time in order to ensure the suitability with the best industrial standard and the compliance with the relevant laws.

Data Subject’s Rights over their Personal Data

The Company and Group of Companies respect the Customer’s statutory rights as the data subject over their related personal data in The Company and Group of Companies' control. The Customer can request to exercise their rights under the relevant laws as follows: (1) the right to request for access or copy of their personal data; (2) the right to request for data portability; (3) the right to object to any process of their personal data; (4) the right to request for deletion or de-identification of the their personal data once there is no further necessity; (5) the right to request for the suspension of the processing of their personal data; or (6) the right to withdraw given consent; (7) the right to revise their personal data; and (8) the right to make any complain.

Please feel free to contact The Company and Group of Companies to request for those defined rights and The Company and Group of Companies will consider and get back to the relevant request within the proper period under the law. Please contact us Tel +66-2252-9955 (Office hours: Monday - Friday 8.30 AM - 5.30 PM).

Noble ID Member Privacy Notice

Noble Development Public Company Limited and/or an affiliated company and/or companies in the group and /or the Project Owner Company (collectively referred to as “The Company and Group of Companies”)

would like to inform the Noble ID Member (the “Member”) of this Noble ID Member Privacy Notice (the “Notice”) that defines the conditions that The Company and Group of Companies will be processing the Member’s personal data. Upon the registration for the Noble ID through any channels that The Company and Group of Companies specified, The Company and Group of Companies will assume that the Member have agreed and accepted this Notice.

This Notice is only applicable to the processing of Member’s personal data for the application and use of the Noble ID membership privileges that are directly processed by The Company and Group of Companies and will not cover the processing of personal data by any third parties, that may connect to The Company and Group of Companies' system or may provide addition to the service or privileges directly provided by The Company and Group of Companies , which is beyond The Company and Group of Companies'. It is advisable that the Member should study the privacy notice of such service providers and The Company and Group of Companies do not give any representation on such processing.

Personal Data that The Company and Group of Companies are processing

For the application and the management of membership privileges, The Company and Group of Companies would need to collect, store, use, and process the following personal data of the Member:

  1. General information i.e., full name, date of birth, Noble ID that is designated for each Member, including password, project name that the Member is a customer, and identification document (such as ID card or passport);
  2. Contact Information i.e., telephone number, email, and address;
  3. Transaction information executed with the Noble ID user account and member, including login information and the use of Member privilege; and
  4. Other information that the Member may provide to The Company and Group of Companies during the membership term.

Objectives of the Personal Data Processing

The Company and Group of Companies would need to collect, store, use, and process the Member’s personal data in order to serve the following purposes:

  1. To check the Member’s qualification, verify membership, coordinate and process various transaction that the Member is executing with The Company and Group of Companies by using the Noble ID, especially in the provision of privileges pursuant to The Company and Group of Companies' defined conditions, including to notify the Member of any news or updates relating to the Member’s privileges;
  2. To create and improve the good relationship between The Company and Group of Companies and Member which may include the contact for feedback survey, query responses and complaint management as well as the process of personal data for the protection of The Company and Group of Companies’ and Member’s legitimate rights; provided that The Company and Group of Companies undertake not to process the personal data that would cause excessively effect on the Member’s rights; and
  3. To analyze information about Member’s interest for project design development or service improvement without excessively affect the Member’s rights.

Disclosure of Personal Data

Generally, the Member’s personal data will not be disclosed or shared with any person, but The Company and Group of Companies may need to disclose and share the Member’s personal data to third party service provider providing service to The Company and Group of Companies especially for the provision of privileges directly for the Member or for The Company and Group of Companies' business operation. For the disclosure in these circumstances, The Company and Group of Companies will disclose or share the personal data only on the necessary basis for the performance of the obligations.

The Company and Group of Companies’ Representations to keep the Information Security of the Personal Data

The Company and Group of Companies represent to implement the appropriate information security to prevent unauthorized access, use, amendment or disclosure of those personal data of the Member as received and The Company and Group of Companies commit to review the information security measures from time to time in order to ensure the compliance with the relevant laws.

Data Subject’s Rights over their Personal Data

The Company and Group of Companies respect the Member’s statutory rights as the data subject under the relevant laws over their relevant personal data, including in particular the following rights: (1) the right to request for access or copy of their personal data (2) the right to request for data portability; (3) the right to object to any process of their personal data; (4) the right to request for deletion or de-identification of the Member’s personal data once there is no further necessity; (5) the right to request for the suspension of the Member’s personal data processing; or (6) the right to withdraw given consent. In case the Member would like to exercise any of these rights, please feel free to contact The Company and Group of Companies at the defined contact channel and The Company and Group of Companies will consider and get back to the relevant Member’s request within properly period under the law. Please kindly feel free to contact us at DPO@noblehome.com or Tel +66 2251-9955 (Office hours: Monday - Friday 8.30 AM - 5.30 PM).

Cookies Privacy Notice

Serve Solutions Company Limited and/or an affiliated company and/or companies in the group and /or the Project Owner Company (collectively referred to as “The Company and Group of Companies”)

would need to use cookies in various functionality of the website in order to ensure your convenience during the use of this website. Therefore, The Company and Group of Companies would like to inform you of this Cookies Privacy Notice (the “Notice”) under which The Company and Group of Companies commit to use cookies only as necessary and to implement the appropriate information security under the related laws during the use of these cookies. The Company and Group of Companies will not share cookies to any third party, except in the case of the third-party cookies as defined. Once you visit this website, The Company and Group of Companies will assume that you agree and acknowledge this Notice. The Company and Group of Companies reserve the right to amend this Notice from time to time and The Company and Group of Companies shall notify you of those amendments on this website.

Types and Purposes of Cookies

For this website, The Company and Group of Companies use 4 types of Cookies with different purposes as follows:

  1. Strictly Necessary Cookies, cookies that are critical for the operation of the website, in particular critical to secure the smooth and safety service provided to you;
  2. Functionality Cookies, cookies with the function of recording your preference set on the website (i.e., language, font, and display functions) that would assist The Company and Group of Companies in customizing the website display that matches your preferences as previously set;
  3. Performance Cookies, third-party cookies with the function of assessing the performance of the website; and
  4. Targeting Cookies, third-party cookies with the function of recording your behavior on the website and recommending The Company and Group of Companies' project that you may be interested in.

Except for the Strictly Necessary Cookies, The Company and Group of Companies will only use other types of cookies upon the obtaining of the specific consent from you.

Data subject’s right

The Company and Group of Companies acknowledge and respect your statutory right as the data subject under the relevant laws, in particular the right to withdraw the given consent. Also, you can also clear cache and all the cookies on your browser at your convenience. If you have any questions, please contact us Tel +66-2252-9955 (Office hours: Monday - Friday 8.30 AM - 5.30 PM).

นโยบายข้อมูลส่วนบุคคลคู่ค้า

เพื่อให้ บริษัท โนเบิล ดีเวลลอปเมนท์ จํากัด (มหาชน) (“บริษัท”) สามารถดำเนินกระบวนการจัดซื้อจัดจ้างท่านได้ กรุณาศึกษานโยบายข้อมูลส่วนบุคคลฉบับนี้อย่างละเอียด ก่อนที่ท่านจะส่งข้อมูลการเสนอราคาและข้อมูลอื่นให้แก่บริษัท ทั้งนี้ บริษัทรับประกันจะรักษาข้อมูลทั้งหมดตามมาตรฐานความมั่นคงปลอดภัยโดยสอดคล้องกับกฎหมายที่เกี่ยวข้อง

ข้อมูลส่วนบุคคลที่มีการประมวลผล

ในระหว่างกระบวนการจัดซื้อจัดจ้าง และการจัดทำสัญญาซื้อขายสินค้าและใช้บริการระหว่างบริษัทและท่านในฐานะคู่ค้า (“คู่ค้า”) บริษัทอาจได้รับข้อมูลส่วนบุคคลของคู่ค้า หรือตัวแทนซึ่งเป็นบุคคลธรรมดาของบริษัทของคู่ค้าจากคู่ค้าโดยตรง ตามข้อมูลในใบเสนอราคา การสนทนาหรือการสัมภาษณ์ หรืออาจได้รับจากบุคคลอื่นที่อาจให้คำแนะนำคู่ค้ามา ทั้งนี้ ข้อมูลที่บริษัทมีความจำเป็นต้องประมวลผลในกระบวนการดังกล่าวอาจรวมถึง ข้อมูลดังต่อไปนี้

  1. ชื่อนามสกุล ข้อมูลบัตรประจำประชาชนของคู่ค้าที่เป็นบุคคลธรรมดา หรือของกรรมการผู้มีอำนาจลงนาม ผู้รับมอบอำนาจ หรือตัวแทนของคู่ค้าที่เป็นนิติบุคคล รวมถึงข้อมูลการติดต่อ อาทิ ที่อยู่ สถานที่ติดต่อ เบอร์โทรศัพท์ อีเมล และอาจรวมถึงข้อมูล เอกสารแสดงตัวตนของตัวแทนของคู่ค้าดังกล่าว
  2. ข้อมูลการชำระเงินกรณีคู่ค้าที่เป็นบุคคลธรรมดา อาทิเช่น บัญชีธนาคาร ประวัติการเบิกจ่ายเงินต่าง ๆ โดยคู่ค้ารายนั้น
  3. ข้อมูลประวัติการทำงาน และแบบประเมินความสามารถและการวัดผลต่าง ๆ รวมถึงข้อมูลส่วนบุคคลอื่นของคู่ค้าซึ่งคู่ค้าอาจนำส่งหรือเปิดเผยให้แก่บริษัท ซึ่งถือเป็นส่วนหนึ่งของหน้าที่ที่คู่ค้าอาจต้องดำเนินการภายใต้กรอบสัญญาที่มีการลงนามระหว่างบริษัทและคู่ค้า
  4. กรณีได้รับความยินยอมเป็นการเฉพาะจากเจ้าของข้อมูลส่วนบุคคลโดยตรง อาจรวมถึงข้อมูลส่วนบุคคลอ่อนไหว เช่น ลายนิ้วมือของคู่ค้ารายบุคคล หรือพนักงานของคู่ค้า

นอกเหนือจากข้อมูลส่วนบุคคลของคู่ค้าและ/หรือตัวแทนของคู่ค้าที่เป็นนิติบุคคลแล้ว ในกรณีที่คู่ค้านำส่งข้อมูลส่วนบุคคลของผู้เกี่ยวข้องอื่นภายใต้การคุ้มครองของคู่ค้าให้แก่บริษัท รวมถึงแต่ไม่จำกัดเพียงรายชื่อทีมงานหรือพนักงานที่จะขออนุญาตเข้ามาให้บริการและปฏิบัติหน้าที่อื่นที่คู่ค้ามีหน้าที่ต้องดำเนินการภายในพื้นที่ของบริษัท เมื่อได้รับข้อมูลส่วนบุคคลดังกล่าว บริษัทจะถือว่า คู่ค้ารับประกันสิทธิในการส่งต่อและเปิดเผยข้อมูลส่วนบุคคลของบุคคลที่เกี่ยวข้องดังกล่าวให้แก่บริษัท และบริษัทย่อมมีสิทธิในการประมวลผลข้อมูลส่วนบุคคลของบุคคลเหล่านั้นได้สมบูรณ์ภายใต้นโยบายฉบับนี้

วัตถุประสงค์และระยะเวลาการประมวลผลข้อมูลส่วนบุคคล

บริษัทมีความจำเป็นต้องเก็บ รวบรวม และใช้ข้อมูลส่วนบุคคลทั้งหมดของคู่ค้า เพื่อวัตถุประสงค์ดังต่อไปนี้

  1. การตรวจสอบยืนยันตัวตน รวมถึงความถูกต้องของข้อมูลส่วนบุคคลและข้อมูลที่คู่ค้าให้แก่บริษัท การประเมินความเหมาะสมของคู่ค้าในงานที่บริษัทต้องการจัดซื้อจัดจ้าง รวมถึงการติดต่อประสานงานกับคู่ค้าระหว่างกระบวนการจัดซื้อจัดจ้าง จนถึงการจัดทำสัญญาระหว่างคู่ค้าและบริษัท และแม้เป็นกรณีที่คู่ค้าไม่ได้รับการคัดเลือกในกระบวนการจัดซื้อจัดจ้าง บริษัทสงวนสิทธิ์ในการเก็บรักษาข้อมูลของคู่ค้าดังกล่าวไว้ต่อเนื่องเพื่อการติดตามตรวจสอบกระบวนการจัดซื้อจัดจ้างเป็นระยะเวลา 1 ปีปฏิทินนับจากเสร็จสิ้นกระบวนการจัดซื้อจัดจ้างดังกล่าว
  2. การปฏิบัติหน้าที่ของบริษัทภายใต้สัญญาที่ลงนามระหว่างคู่ค้ากับบริษัท ได้แก่ การประเมินผลงานและประสิทธิภาพในการทำงานของคู่ค้า เพื่อการคำนวณค่าตอบแทน รวมถึงการปฏิบัติบังคับสิทธิและหน้าที่อื่น ภายใต้สัญญาที่มีการลงนามระหว่างบริษัทและคู่ค้าดังกล่าว ทั้งนี้ ในการประมวลผลข้อมูลส่วนบุคคลเพื่อวัตถุประสงค์ดังกล่าวอาจรวมถึงการประมวลผลข้อมูลส่วนบุคคลของพนักงาน บุคคลภายใต้สังกัด และผู้ให้บริการภายนอกของคู่ค้า ที่คู่ค้าอาจนำส่งให้แก่บริษัทด้วยทั้งหมด
  3. การปฏิบัติหน้าที่ตามกฎหมายของบริษัทโดยเฉพาะการทำบัญชีและชำระภาษี โดยเฉพาะในกรณีของคู่ค้าที่เป็นบุคคลธรรมดา
  4. การคุ้มครองสิทธิประโยชน์อันชอบด้วยกฎหมายของบริษัท เมื่อต้องดำเนินการบังคับสิทธิต่อคู่ค้าที่อาจปฏิบัติไม่สอดคล้องหรือละเมิดหน้าที่ที่กำหนดไว้ภายใต้สัญญาที่เกี่ยวข้อง รวมถึงใช้ในการปกป้องสิทธิในการฟ้องร้องคดี

เพื่อวัตถุประสงค์ในการประมวลผลข้อมูลส่วนบุคคลที่ระบุไว้ดังกล่าว บริษัทมีความจำเป็นต้องเก็บรวบรวมข้อมูลส่วนบุคคลของคู่ค้าทั้งหมดที่นำส่งให้แก่บริษัทไว้ ตลอดระยะเวลาสัญญาที่บริษัทอาจมีกับคู่ค้าแต่ละราย นอกจากนี้ เพื่อประโยชน์ในการปกป้องสิทธิของบริษัทภายใต้สัญญาที่เกี่ยวข้อง บริษัทสงวนสิทธิ์ที่จะเก็บรักษาข้อมูลส่วนบุคคลทั้งหมดของคู่ค้าเป็นระยะเวลาที่เหมาะสมตามกำหนดอายุความ เพื่อการปกป้องและคุ้มครองสิทธิของบริษัทในกรณีเกิดข้อพิพาทต่าง ๆ ตามระยะเวลาอายุความที่ตามกฎหมายทั่วไปสูงสุด 10 ปี และในกรณีที่บริษัทมีหน้าที่ตามกฎหมายในการประมวลผลข้อมูล บริษัทมีความจำเป็นต้องรักษาข้อมูลส่วนบุคคลของคู่ค้าไว้ตามกรอบระยะเวลาที่กฎหมายดังกล่าวกำหนด

การเปิดเผยหรือส่งต่อข้อมูลส่วนบุคคลของคู่ค้า

ในกรณีที่จำเป็น บริษัทอาจต้องเปิดเผยและ/หรือส่งต่อข้อมูลส่วนบุคคลของคู่ค้าให้แก่บุคคลภายนอก ได้แก่ (1) เปิดเผยให้แก่ลูกค้า หรือคู่ค้าอื่น ๆ ของบริษัท ซึ่งบริษัทมีความจำเป็นต้องเปิดเผยข้อมูลส่วนบุคคลของคู่ค้าเพื่อการปฏิบัติหน้าที่ และการให้บริการแก่ลูกค้าหรือคู่ค้าดังกล่าว รวมถึง ผู้ให้บริการภายนอกของบริษัท รวมถึงแต่ไม่จำกัดเพียง บริษัทในเครือ บริษัทที่ปรึกษา หรือบริษัทตรวจสอบบัญชี เป็นต้น ที่ได้รับการว่าจ้างจากบริษัทให้ช่วยเหลือสนับสนุนการปฏิบัติหน้าที่ของบริษัท โดยเฉพาะส่วนที่เกี่ยวข้องกับการงานที่จัดซื้อจัดจ้างคู่ค้า โดยบริษัทจะดำเนินการดังกล่าว บนหลักการเท่าที่จำเป็น ภายใต้กรอบข้อตกลงสัญญาการประมวลผลข้อมูลส่วนบุคคลระหว่างบริษัทและบุคคลภายนอกดังกล่าวเท่านั้น และ (2) เปิดเผยตามหน้าที่ที่บริษัทมีตามกฎหมายที่เกี่ยวข้องให้แก่หน่วยงานราชการ หรือเป็นการเปิดเผยกรณีที่บริษัท อยู่ภายใต้บังคับคำพิพากษา หรือตามคำสั่งของหน่วยงานราชการให้เปิดเผยข้อมูลดังกล่าวโดยบริษัทจะดำเนินการเพียงเท่าที่จำเป็นตามหน้าที่เท่านั้น

สิทธิของคู่ค้าในฐานะเจ้าของข้อมูล

บริษัทเคารพสิทธิของคู่ค้า ในฐานะเจ้าของข้อมูลภายใต้กฎหมายที่เกี่ยวข้อง โดยคู่ค้าสามารถติดต่อบริษัทเพื่อขอใช้สิทธิของคู่ค้า ซึ่งได้แก่ สิทธิเพิกถอนความยินยอม สิทธิขอเข้าถึงและขอรับสำเนาข้อมูลส่วนบุคคล สิทธิในการขอแก้ไขข้อมูลส่วนบุคคลให้ถูกต้อง สิทธิขอรับข้อมูลส่วนบุคคล ในกรณีที่บริษัททำให้ข้อมูลส่วนบุคคลนั้นอยู่ในรูปแบบที่สามารถอ่านหรือใช้งานโดยทั่วไปด้วยเครื่องมือหรืออุปกรณ์ที่ทำงานได้โดยอัตโนมัติ รวมถึงสิทธิขอให้ส่งหรือโอนข้อมูลรูปแบบดังกล่าวไปยังผู้ควบคุมข้อมูลส่วนบุคคลอื่น สิทธิคัดค้านการประมวลผลข้อมูลส่วนบุคคล สิทธิขอให้ลบหรือทำลายหรือทำให้ข้อมูลส่วนบุคคลเป็นข้อมูลที่ไม่สามารถระบุตัวบุคคลได้ เมื่อข้อมูลนั้นหมดความจำเป็น สิทธิในการขอให้ระงับการใช้ข้อมูลส่วนบุคคลได้ หรือสิทธิในการร้องเรียนกรณีเกิดการละเมิดข้อมูลส่วนบุคคล โดยติดต่อมาที่อีเมล DPO@noblehome.com หรือโทร +66 2251-9955 (เวลาทำการ จันทร์ - ศุกร์ 8.30 - 17.30 น.)

Visitor Privacy Notice

Serve Solutions Company Limited (the “Company”) as a supervisor of the area, would like to inform you as a person who entering the Company’s premise (the “Visitor”) that (1) The Company have installed CCTV system within the Company’s premise that CCTV system may record your facial image and/or (2) The Company may necessary to record the detail of the person who entering and exiting the area that may include exchange Identity card or identity card with visitor card.

To be clear about the condition of store, gather, use, and process Visitor’s personal data provided that the Company have a purpose to inform these visitor privacy notice. The Company may improve and amend this notice from time to time to be consistent with the necessity to process all personal data and related law provided that the Company shall announce to you via communication channels that the Company may have to the Visitor.

Personal data to be process

During the Visitor entering the Company’s premise provided that the Company may store and gather the Visitor’s data as follows; (1) Visitor’s facial image that is stored by CCTV system (2) Full name, contact information, detail of purpose to enter the Company’s premise from the entering form of the Company or the Company may receive from Visitor’s original affiliation in case your original affiliation submit your data to the Company to request for entering the premise provided that the Company shall deem that Visitor’s original affiliation have lawfully right to transfer and disclose Visitor’s data to the Company (3) Identity card or any document for identifying yourself which the Company shall store for exchange with visitor card (4) Visitor’s vehicle data may record via form or via CCTV system and (5) Other data that the data subject may give in accident report form that may arise in the area

Objectives for Personal Data being Processed

The Company has to process the personal data of the Visitor in order to protect the security of premise, visitor, any person including to communicate between the Company and such person.

Retention Period

The Company have to store Visitor’s personal data for the following details (1) The Company shall return identity card to Visitor upon Visitor return the visitor card to the Company (2) the Company shall be store Visitor’s data that are recorded by CCTV system for 45 days (3) The Company shall be store visitor form in order to audit for 3 months (4) Throughout the period that necessity for communication between the Company and Visitor whose may occur such a accident,except (5) in case the Company have to use such data for protect the the Company’s legitimate right that the Company may have to the Visitor which is the Company reserve the right to store under the statute of limitations.

Disclosure of Personal data

Generally, the Company would not disclose the Visitor’s Personal data to any person, except in the following cases: (1) In case the Company may need to disclose to third party service provider who provide service; (2) In case the Company may need to disclose to any persons in to claims for any legitimate rights in case effecting to any person right or in case the Company is owner of the premise. (3) In case the Company shall be obliged under the applicable laws or government instructions to disclose those Personal data; provided that in any circumstance, the Company undertakes to only disclose the Visitor’s Personal data on the necessary basis without excessively affecting the Visitor’s rights.

The Company represent to implement the appropriate information security measures pursuant to the standard defined under the applicable laws and the Company respect the Visitor’s right as the data subject that the Visitor shall be entitled to under the applicable laws and the Visitor can contact the Company to exercise any of the rights as follows: right to withdraw consent; right to access and request a copy of personal data ;right to rectify; right to request for data portability in case the Company storing such personal data in the format which is readable or commonly used by ways of automatic tools or equipment including right to transfer this personal data to other data controllers; right to object to any processing of the personal data, right to request for the deletion or de-identification the Visitor personal data upon there is no necessity to process; right to request the Company to suspend the use of the personal data; right to complain to any authorities in the event of a violation your personal data. Please contact us Tel +66 2252-9955 (Office hours: Monday - Friday 8.30 AM - 5.30 PM).

นโยบายข้อมูลส่วนบุคคลผู้สมัครงาน

เพื่อให้ บริษัท โนเบิล ดีเวลลอปเมนท์ จํากัด (มหาชน) (“บริษัท”) สามารถพิจารณาข้อมูลใบสมัครงานของท่านได้ กรุณาศึกษานโยบายข้อมูลส่วนบุคคลฉบับนี้อย่างละเอียดก่อนที่ท่านจะให้ข้อมูลการสมัครแก่บริษัท ทั้งนี้ บริษัทรับประกันจะรักษาข้อมูลทั้งหมดตามมาตรฐานความมั่นคงปลอดภัยโดยสอดคล้องกับกฎหมายที่เกี่ยวข้อง

ข้อมูลส่วนบุคคลที่มีการประมวลผล

ในระหว่างกระบวนการรับสมัครงานของบริษัท บริษัทอาจได้รับข้อมูลส่วนบุคคลของท่านผู้สมัครงานจาก (1) ท่านโดยตรงตามข้อมูลในใบสมัครงาน ประวัติย่อ (Resume) การสนทนาหรือการสัมภาษณ์ หรือ (2) อาจได้รับข้อมูลการสมัครงานหรือประวัติการทำงานของท่านจากผู้ให้บริการจัดหางานหรือผู้แนะนำอื่น ๆ ที่ท่านอาจให้สิทธิหรือให้ความยินยอมแก่บุคคลดังกล่าวในการเปิดเผยส่งต่อข้อมูลของท่านให้แก่บริษัทเพื่อการรับสมัครงาน (3) บุคคลอื่นที่ท่านระบุให้บริษัทสามารถติดต่อเพื่อสอบถามข้อมูลเพิ่มเติมได้

ในระหว่างขั้นตอนการกรอกใบสมัครและสัมภาษณ์งาน บริษัทมีความจำเป็นในการเก็บ รวบรวม ใช้ข้อมูลส่วนบุคคล ดังนี้ ข้อมูลทั่ว ไปเกี่ยวกับตัวท่าน ได้แก่ ชื่อนามสกุล เลขบัตรประจำตัวประชาชน ข้อมูลการติดต่อ ข้อมูลคุณสมบัติการศึกษา ประวัติการทำงาน ผลการทดสอบ คะแนนสอบ ข้อมูลความสนใจหรือทักษะของท่าน พร้อมทั้งเอกสารแสดงตนอื่นของท่าน และในบางกรณีตำแหน่งงาน อาจรวมถึงข้อมูลประวัติสุขภาพ

เมื่อท่านผ่านขั้นตอนการคัดเลือกด้วยการสัมภาษณ์จากทางบริษัทแล้ว บริษัทมีความจำเป็นต้องเก็บข้อมูลส่วนบุคคลอ่อนไหวเพิ่มเติมของท่านในบางตำแหน่งและในกรณีที่ท่านให้ความยินยอม ได้แก่ ข้อมูลประวัติอาชญากรรม และข้อมูลการตรวจสุขภาพ ซึ่งสำหรับตำแหน่งงานดังกล่าว ข้อมูลส่วนบุคคลทั้งหมดนั้นถือว่า มีความจำเป็นสำหรับบริษัทในการพิจารณาคุณสมบัติและความเหมาะสมของท่านในตำแหน่งงานที่ท่านสมัคร

วัตถุประสงค์การประมวลผลข้อมูลส่วนบุคคล

บริษัทมีความจำเป็นต้องเก็บ รวบรวม และใช้ข้อมูลส่วนบุคคลทั้งหมดของท่าน เพื่อวัตถุประสงค์ ดังนี้ (1) การตรวจสอบยืนยันตัวตน รวมถึงความถูกต้องของข้อมูลส่วนบุคคลและข้อมูลต่าง ๆ ที่ท่านให้แก่บริษัท (2) การประเมินความเหมาะสมของท่านในตำแหน่งงานที่สมัคร และ (3) การติดต่อประสานงานกับท่านระหว่างกระบวนการรับสมัครงาน รวมถึง (4) การติดต่อไปหาท่านเพิ่มเติมในอนาคต ในกรณีมีตำแหน่งอื่นที่อาจเหมาะสมกับท่าน ทั้งนี้ เว้นแต่ท่านแสดงเจตนาใช้สิทธิให้บริษัทลบ หรือทำลายข้อมูลส่วนบุคคลของท่านในทันที บริษัทสงวนสิทธิ์ในการเก็บข้อมูลส่วนบุคคลทั้งหมดของท่านไว้เพิ่มเติมเป็นระยะ 2 ปีปฏิทินแม้ท่านจะไม่ได้รับการคัดเลือกเป็นพนักงาน

การเปิดเผยหรือส่งต่อข้อมูลส่วนบุคคลของท่าน

โดยหลักการ ข้อมูลส่วนบุคคลของท่านผู้สมัครงานจะไม่ได้รับการเปิดเผย เว้นแต่เป็นกรณีจำเป็นซึ่งบริษัทอาจต้องเปิดเผยและ/หรือส่งต่อข้อมูลส่วนบุคคลของท่านให้แก่ บุคคลภายนอกดังนี้ เพื่อการดำเนินกระบวนการรับสมัครงานได้อย่างสมบูรณ์ (1) ผู้ให้บริการที่เกี่ยวข้องกับการกระบวนการรับสมัครงานของบริษัท (2) บริษัทในเครืออื่นที่อาจมีตำแหน่งงานที่เหมาะสมและท่านอาจให้ความสนใจ (3) บุคคลอ้างอิงที่บริษัทมีความจำเป็นต้องส่งข้อมูลของท่านไปเพื่อการตรวจสอบประวัติการทำงานเดิม และ (4) บุคคลภายนอกอื่นที่ท่านได้ให้ความยินยอมแก่บริษัทในการเปิดเผยข้อมูลส่วนบุคคลของท่านให้แก่บุคคลดังกล่าว

สิทธิของท่านในฐานะเจ้าของข้อมูล

บริษัทเคารพสิทธิของท่านในฐานะเจ้าของข้อมูลภายใต้กฎหมายที่เกี่ยวข้อง ซึ่งท่านสามารถติดต่อบริษัทเพื่อขอใช้สิทธิของท่าน ซึ่งได้แก่ สิทธิเพิกถอนความยินยอม สิทธิขอเข้าถึงและขอรับสำเนาข้อมูลส่วนบุคคล สิทธิในการขอแก้ไขข้อมูลส่วนบุคคลให้ถูกต้อง สิทธิขอรับข้อมูลส่วนบุคคล ในกรณีที่บริษัททำให้ข้อมูลส่วนบุคคลนั้นอยู่ในรูปแบบที่สามารถอ่านหรือใช้งานโดยทั่วไปด้วยเครื่องมือหรืออุปกรณ์ที่ทำงานได้โดยอัตโนมัติ รวมถึงสิทธิขอให้ส่งหรือโอนข้อมูลรูปแบบดังกล่าวไปยังผู้ควบคุมข้อมูลส่วนบุคคลอื่น สิทธิคัดค้านการประมวลผลข้อมูลส่วนบุคคล สิทธิขอให้ลบหรือทำลาย หรือทำให้ข้อมูลส่วนบุคคลเป็นข้อมูลที่ไม่สามารถระบุตัวบุคคลได้เมื่อข้อมูลนั้นหมดความจำเป็น สิทธิในการขอให้ระงับการใช้ข้อมูลส่วนบุคคลได้ หรือสิทธิในการร้องเรียนกรณีเกิดการละเมิดข้อมูลส่วนบุคคล โดยติดต่อบริษัทได้ที่อีเมล DPO@noblehome.com หรือโทร +66 2251-9955 (เวลาทำการ จันทร์ - ศุกร์ 8.30 - 17.30 น.)

Investors and Shareholders' Privacy Notice

Noble Development Public Company Limited (the “Company”)

would like to assure the investors and/or the registered shareholders of the Company (“You”) that your personal data is important to the Company and the Company guarantee to protect and process those personal data under the best information security measures. The Company, therefore, intend to inform You of this Investors and Shareholders' Privacy Notice (the “Notice”) that defines the necessity that the Company may have in collecting, compiling, processing and/or disclosing your personal data for the performance of Company’s obligations as a company to You in accordance with the Public Company Act of Thailand and Civil and Commercial Code.

The Company may review and update this Notice from time to time to ensure that this Notice comply with the practice and relevant laws or regulations; provided that the Company will notify the change of this Notice by announcing the updated Notice to You via any communication channels of the Company

Your personal data that the Company is processing

The Company may obtain and collect your Personal Data directly from You or from the shareholder registry book that the Company shall be obliged to keep under the applicable laws and the Company may receive from Thailand Securities Depository Company Limited who provides securities registrar service. The Company need to collect and process the following Personal Data of You:

  1. Personal Data of You as the registered shareholder, including full name, nationality, occupation, current address, number of shares held, bank account information, Identification card number, email, and telephone number;
  2. In case You are a major shareholder as defined under the laws and regulations of regulatory authorities including without limitation Thailand Securities and Exchange Commission and Stock Exchange of Thailand, the Company would need to collect and store additional Personal Data of You, including your background (i.e., educational record and work experience) and photo of You or your representative in case that You are the corporate shareholder
  3. Any Personal Data that You may provide to the Company during the communication or conversation that You may have with the Company via the investor relation channels, including without limitation full name, nationality, occupation, address and contact information (i.e., telephone number and/or email);
  4. Information of the meeting attendance that You as the registered shareholder participating in, including meeting registration information that may include shareholder’s proxy information, as well as video and voice recording during the meeting held both online and offline; and
  5. Any Personal Data that You may submit to the Company for processing under other specific purposes.

In case You are the corporate shareholder, the Company would need to collect the information of your directors or in case You have appointed any proxy to attend the shareholders’ meeting and exercise any legal rights on your behalf, the Company would need to process the Personal Data of those persons; provided that when You provide Personal Data of those persons to us, the Company shall deem that You have given the representation that You have obtained all the consent or have the legitimate rights to disclose such persons’ Personal Data to the Company.

“Sensitive Personal Data” includes Personal Data that is private, sensitive, and at risk from being used for discrimination such as information regarding racial or ethnic origin, political opinions, religious or philosophical beliefs, sexual behavior, criminal records, health data, genetic data, biometric data, or any other information which may affect the data subject in the similar way as announced by the Personal Data Protection Committee. In general, the Company has no intention to collect your Sensitive Personal Data for any purpose yet in cases the Company may need to collect your Sensitive Personal Data, the Company shall request for the explicit consent from You before the collection of such data.

Objectives for the personal data process undertaken by the Company.

The Company would need to process your Personal Data for the following purposes:

  1. To perform the legal obligations that the Company may have to provide the shareholders’ right to You such as to manage the corporate matters (i.e. company establishment, capital increase, capital decrease, business restructuring, change of company registration); to deliver the meeting invitation and other notices to You as required under the relevant laws, for instance, the invitation to the general shareholders’ meeting or the submission of the annual business report to the shareholders in accordance with your statutory rights; to allocate and distribute dividends to the relevant and entitled shareholders; to prepare the relevant accounting and tax report; and to perform any other legal obligations that the Company being public limited company and listed company in the Stock Exchange of Thailand shall perform.
  2. To manage and respond to your query or request to the Company including to inform any information about communicate and respond back to your request; to manage complaint relating to the exercise of your shareholder’s rights; or to manage the feedback provided;
  3. To protect the legitimate interest of the Company or other person, including to record and manage the shareholders’ meetings (for instance, to register the attendance, to record the resolution passed; to record picture and/or video during the shareholders’ meeting; and to disseminate the information recorded during the meeting on the Company's website and other communication channels. All these activities would be undertaken to ensure the Company’s transparency and corporate governance for the interests of shareholders. The Company may also process the Personal Data for the purpose of data analysis, operating activities and facilitating shareholders in any other special events that the Company may organize; for the risk management and internal control; for internal audit; and for the exercise of the Company’s right in the legal claims;
  4. In particular in the case of the majority shareholders as defined, to prepare the Company’s annual report that the Company are obliged to do so and may need to submit to the relevant authorities, or publicly disclose in accordance with the conditions and requirement prescribed in the relevant laws which may include the disclosure of your Personal Data on the Company’s website; and

Retention Period of Your Personal Data

The Company shall be required to process and store your Personal Data for all the purposes defined above as long as necessary to (i) response to any contact that You as an investor or any person interesting to invest in the Company may contact the Company; (ii) for all the period of time that You remain the Company’s shareholder and as long as the Company may have the obligations under relevant laws to perform to You; or (iii) as long as the Company may have the obligations under other relevant laws to retain your Personal Data. In addition, in order for the Company to protect their legitimate rights that the Company has with you as the shareholders, the Company reserve the right to retain your Personal Data for the period of time that is necessary to protect such rights, in particular, for the appropriate prescription period after the cessation of your shareholder status for the maximum of 10 years for general prescription period.

Disclosure of your Personal Data

In general, your Personal Data shall not be disclosed to any person except in these necessary circumstances that the Company may need to disclose your Personal Data to the following person:

  1. To affiliates, business partners, or any third party service providers who provide support to the Company in the business operation and the performance of obligations that the Company may have with the shareholders or to protect the Company’s legitimate rights, including without limitation Thailand Securities Depository Company Limited as the Company’s registrar and other counsels (legal, accounting or others) as well as the internal and external audits; provided that the Company represent to only disclose your Personal Data under the defined purpose of data processing and on the necessary basis;
  2. To the governmental authorities in case the Company shall be obliged under the applicable laws, court orders, or the instructions of such government authorities to disclose your Personal Data to; provided that the Company shall only disclose any information on the necessary basis;To the governmental authorities in case the Company shall be obliged under the applicable laws, court orders, or the instructions of such government authorities to disclose your Personal Data to; provided that the Company shall only disclose any information on the necessary basis;
  3. To the counterparty where in some cases the Company may be required to disclose the Company’s annual report which may includes the Personal Data of majority shareholders for the purpose of executing contract or coordinating to them; provided that the Company shall only disclose the limited Personal Data without causing excessive impact on You as the data subject; and
  4. To any other person that You have given explicit consent to the Company to disclose your Personal Data to.

Representation to implement appropriate information security measures

The Company undertake that the Company shall implement the appropriate security measures to prevent the unauthorized or unlawful access, amendment, change, or disclosure of your Personal Data. In addition, the Company shall establish internal policy to limit the access control or the use of your Personal Data in order to maintain data confidentiality and security and the Company commits to review those measures on the regular basis to comply with the industry standard and relevant laws.

Your Rights as the Data Subject

The Company acknowledge and respect your rights as the data subject in relation to your Personal Data that is in the Company's control. You can exercise your rights in accordance with the conditions under the applicable laws as follows:

  1. Right to request for access and to obtain copy of the Personal Data including the right to request for the correction and update the Personal Data;
  2. Right to request for data portability;
  3. Right to object to the process of Personal Data being undertaken by the Company;
  4. Right to request for Personal Data erasure or de-identification when the Personal Data is no longer necessary to be processed or when the data subject has withdrawn the consent;
  5. Right to request the Company to restrict the use of the Personal Data, in case the Personal Data shall be deleted or those Personal Data are not necessary to be processed; and
  6. Right to withdraw consent that the You have given to the Company under the defined purposes.

You can contact the Company in order to make the request to exercise any defined rights through the defined communication channel. The Company will consider and notify shareholder, investor, and/or any person interested in the investment of the Company of the Company’s determination within a reasonable period of time to the extent under the applicable laws. You can contact the Company at DPO@noblehome.com or Tel +66 2251-9955 (Office hours: Monday - Friday 8.30 AM - 5.30 PM).

Directors and Executives' Privacy Notice

Serve Solutions Company Limited (the “Company”)
would like to assure the directors (the “Director”) and executives as defined by Thailand Securities and Exchange Commission (the “Executive”) that the personal data of the Director and the Executive is important to the Company and the Company guarantees to protect and process those personal data under the best information security measures. The Company, therefore, intend to inform the Director and the Executive of this Director and Executive' Privacy Notice (the “Notice”) that defines the necessity that the Company may have in collecting, compiling, processing and/or disclosing the personal data of the Director and Executive for the performance of Company’s obligations as a company to You in accordance with the Public Company Act of Thailand and Civil and Commercial Code. The Company may review and update this Notice from time to time to ensure that this Notice comply with the practice and relevant laws or regulations and the scope of delegation and authorization granted to the Director and/or the Executive; provided that the Company will notify the change of this Notice by announcing the updated Notice to the Director and the Executive via any communication channels of the Company.

Personal Data that the Company is processing

“Personal Data” includes information of the Director and Executive that is personally identifiable. The Company may obtain or collect the Director and Executive’s Personal Data directly from the Director or Executive in the qualification examination form or registration of new Directors and Executives; or from the Company’s cross-examination of the Director and Executive Personal Data from the database of government authorities, or other reliable sources that relates directly to the verification of the Director and Executive qualifications under the relevant laws.

The Company need to collect and process the following Personal Data of the Director and/or Executive:

  1. Full name, date of birth, nationality, occupation, current address, bank account information, number of shares, Identification card number or passport, contact information (i.e., telephone number and/or email) of the Director or Executive;
  2. Additional Personal Data of the Director or Executive that the Company may need to prepare in accordance with the form set by the regulatory authorities, including without limitation Thailand Securities and Exchange Commission, Stock Exchange of Thailand, Ministry of Commerce, or any other authorities, which include but not limited to resume of each Director or Executive, (i.e., educational record, work experience, directorship and a position in other company or business, training, marital status, spouse, minor children), photo as well as other qualification check of the Director and Executives in the form defined by any relevant government authorities;
  3. Information of meeting attendance that such Director or Executive have attended which may include the meeting registration information and video and voice recorded during the meeting in both online and offline; and
  4. Other Personal Data of Director or Executive that may be provided to the Company during the director or executive term and any other Personal Data that Director or Executive may submit to the Company to process for other particular purposes, including without limitation, the signature and copy of identification documents such as identification card or passport that the Company may need to attach and use in any transaction documents that such Director or Executive may undertake or transact in the name and on behalf of the Company, etc.

In addition to the direct Personal Data of the Director or Executive, in case that Director or Executive is a person who provide Personal Data of their related person such as spouse and minor children, upon the submission, the Company shall deem that the Director or Executive represent of their legitimate right to disclose such person’s Personal Data; have informed the related persons of the Company’s necessity to process such data; and have obtained the consent from such person, therefore, the Company shall have the right to fully process the Personal Data of such person.

Objectives of the Personal Data processing

The Company would need to process the Personal Data of the Director or Executive for the following purposes:

  1. To proceed with the selection process of Director or Executive, the Company may need to examine the qualification of the Director or Executive by checking and cross-examining with relevant government authorities;
  2. To perform the Company’s legal obligations such as to manage the corporate matters (i.e. business restructuring or change of company registration); to deliver the meeting invitation and other notices to the Director as required under the relevant laws, for instance, the invitation to the board of directors meeting or the submission of the annual business report to the Director or the Executive in accordance with their statutory rights; to prepare the relevant accounting and tax report; and to perform any other legal obligations that the Company being public limited company and listed company in the Stock Exchange of Thailand shall perform;
  3. To perform the Company’s rights and obligations under the agreement between the Company’s and Director or Executive in controlling and managing the relationship between Director or Executive and the Company throughout the period of time such Director or Executive is in their office, including without limitation the process of Personal Data for communicating and coordinating between the Company and Director or Executive, the use of any Personal Data of Director or Executive for the operations that such Director or Executive may perform on behalf of the Company (including without limitation the use of their Personal Data on all of the communication and transaction that such Director or Executive transact on behalf of the Company with all vendors or relevant authorities), the use of any Personal Data to determine the consideration payment (such as the meeting allowances) as agreed under the relevant agreement and rules; and
  4. To protect the legitimate interest of the Company or Director or Executive by ensuring the Company’s transparency and corporate governance, in particular for the performance of obligations as a listed company in the Stock Exchange of Thailand that is obliged to maintain the corporate governance. To comply with such instructions and guideline, the Company would need to process additional Personal Data of Director or Executive, in particular for the preparation of Company’s annual report or any publications through any Company’s channels particularly via Company’s publication and website. Also, for other legitimate interests, the Company may process the Personal Data of the Director and/or Executive for other purposes, such as for data analysis, for the purpose of data analysis, operating activities and facilitating the Director or Executive in any other special events that the Company may organize; for the risk management and internal control; for internal audit; and for the exercise of the Company’s right in the legal claims against the Director or Executive.

Retention Period of the Personal Data

The Company shall be required to process and store the Personal Data of the Director or Executive for all the purposes defined above as long as necessary (i) for all the period of time that the Director or Executive remain in the office and as long as the Company may have the obligations under relevant laws to perform to such Director or Executive; or (iv) as long as the Company may have the obligations under other relevant laws to retain the Personal Data of the relevant Director and Executive, for instance for the accounting period. In addition, in order for the Company to protect their legitimate rights that the Company has with the Director or Executive, the Company reserve the right to retain the Personal Data for the period of time that is necessary to protect such rights, in particular, for the appropriate prescription period after the cessation of your shareholder status for the maximum of 10 years for general prescription period.

Disclosure of Personal Data

In general, the Personal Data shall not be disclosed to any person except in these necessary circumstances that the Company may need to disclose your Personal Data to the following person:

  1. To third party service providers who provide support to the Company in the business operation and the performance of obligations that the Company may have with the Director or Executive or to protect the Company’s legitimate rights, including without limitation legal and accounting consultant, the service provider engaged to prepare the annual report and other counsels, as well as the internal and external audits; provided that the Company represent to only disclose your Personal Data under the defined purpose of data processing and on the necessary basis;
  2. To the governmental authorities in case the Company shall be obliged under the applicable laws, court orders, or the instructions of such government authorities to disclose the Personal Data of the Director or Executive to, including the guidance of the Ministry of Commerce, the Stock Exchange and Commission, Stock Exchange of Thailand and Thailand Securities Depository Company Limited; and for the performance of this legal obligation, the Company may need to disclose the Personal Data on the public channel (i.e. website or other media) that any person can get access to;
  3. To the counterparty where in some cases the Company may be required to disclose the Company’s annual report which may includes the Personal Data of the Director or Executive or the Company may need to attach the Director or Executive’s identity documentation to, for the purpose of executing contract or coordinating to them; provided that the Company shall only disclose the limited Personal Data without causing excessive impact on You as the data subject; and
  4. To any other person that the Director or Executive have given explicit consent to the Company to disclose the Personal Data to.

Representation to implement appropriate information security measures

The Company undertakes that the Company shall implement the appropriate security measures to prevent the unauthorized or unlawful access, amendment, change, or disclosure of your Personal Data. In addition, the Company shall establish internal policy to limit the access control or the use of your Personal Data in order to maintain data confidentiality and security and the Company commits to review those measures on the regular basis to comply with the industry standard and relevant laws.

Your Rights as the Data Subject

The Company acknowledges and respects your rights as the data subject in relation to your Personal Data that is in the Company's control. You can exercise your rights in accordance with the conditions under the applicable laws as follows:

  1. Right to request for access and to obtain copy of the Personal Data including the right to request for the correction and update the Personal Data;
  2. Right to request for data portability;
  3. Right to object to the process of Personal Data being undertaken by the Company;
  4. Right to request for Personal Data erasure or de-identification when the Personal Data is no longer necessary to be processed or when the data subject has withdrawn the consent
  5. Right to request the Company to restrict the use of the Personal Data, in case the Personal Data shall be deleted or those Personal Data are not necessary to be processed; and
  6. Right to withdraw consent that the You have given to the Company under the defined purposes.

The Director or Executive can contact the Company in order to make the request to exercise any defined rights through the defined communication channel. The Company will consider and notify the relevant Director or Executive of the Company’s determination within a reasonable period of time to the extent under the applicable laws. The Director or Executive can contact the Company Tel +66 2252-9955 (Office hours: Monday - Friday 8.30 AM - 5.30 PM).

Whistle-Blowing Privacy Notice

In case that you contact Serve Solutions Company Limited (the “Company”) pursuant to the Whistle-Blowing Policy that the Company have announced via the designated communication channel, the Company would like to inform you that the Company would need to collect and use your personal data as defined under this Whistle-Blowing Privacy Notice (the “Notice”).

Personal Data to be processed for the Whistle-Blowing process

The Company would need to collect and use the following personal data of you: full name, contact information (i.e., telephone number or email) and any other personal data that you may submit to the Company in relation to the whistle-blowing complaint made. All of your personal data may be collected directly from you or may be compiled by the Company during the investigation or the communication between the Company and you.

Objective of the Personal Data Processing

The Company would need to process your personal data for the following purposes: (1) to manage the whistle-blowing complaint that you have raised to the Company through the process specifically defined in the Whistle-Blowing policy announced by the Company; (2) to record the whistle-blowing process in the internal document for the purpose of future work improvement, quality control, problem analysis and future improvement of the whistle-blowing process itself.

The Company would need to collect and retain your personal data for the defined purposes for the period of time that the Company would need to proceed with the whistle-blowing issues raised by you and for the additional period of time as necessary for the Company to monitor and to take any action needed to protect the Company’s legitimate interest; provided that, in all circumstances, the Company commits not to cause excessive impact on you as the data subject.

Disclosure of your personal data

Generally, your personal data shall be kept confidential; however, in these necessary circumstances, the Company may need to disclose your personal data to the legal counsel of the Company being engaged to assist the Company in the legal proceeding to protect the legitimate interest; provided that the Company commits to only disclose your personal data only on the necessary basis and to ensure that the data recipient shall maintain the same level of confidentiality measures as the Company.

Company’s assurance of the Information Security

The Company represents to implement the appropriate information security measures that would match with the sensitivity of your personal data in order to prevent the unauthorized access, use, change, amendment or disclosure of your personal data and the Company shall review those measures from time to time pursuant to the relevant laws.

Data Subject Rights

The Company respect your rights as the data subject as defined under the relevant laws, please feel free to contact us in case you would like to exercise any of the following rights, right to access and request for copy, right to request for information updates, right to object or suspend the personal data processing, right to data portability or right to delete or de-identify the personal data in case there is no further necessity for the Company to process your personal data Tel +66-2252-9955 (Office hours: Monday - Friday 8.30 AM - 5.30 PM) and the Company would process your request within the due period of time as defined under the relevant laws.