Privacy Policy

Introduction

Axelion is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or communicate with us.

We comply with the Personal Data Protection Act B.E. 2562 (2019) of Thailand (PDPA) and other applicable data protection regulations. By using our services, you consent to the data practices described in this policy.

Information We Collect

Personal Data You Provide

We collect information that you voluntarily provide when you:

• Submit contact forms or request consultations (name, email address, phone number, company name, message content)
• Engage our services (business information, technical requirements, project specifications)
• Subscribe to our communications (email address, communication preferences)
• Participate in surveys or provide feedback (responses, opinions, satisfaction ratings)

Automatically Collected Information

When you visit our website, we may automatically collect:

• Technical data (IP address, browser type, device information, operating system)
• Usage data (pages visited, time spent, navigation patterns, referral sources)
• Cookie data (as described in our Cookie Policy)

Data Retention Periods

We retain personal data for the following periods:

• Contact inquiries: 24 months from last contact
• Client project data: Duration of engagement plus 7 years for legal compliance
• Marketing communications: Until unsubscribe request or 36 months of inactivity
• Website analytics: 26 months

How We Use Your Information

Legal Basis for Processing

We process your personal data based on:

• Consent: When you voluntarily provide information through forms or subscribe to communications
• Contract performance: To deliver services you have engaged us to provide
• Legitimate interests: To improve our services, conduct business operations, and ensure security
• Legal obligations: To comply with Thai laws and regulations

Specific Uses

We use collected information to:

• Respond to inquiries and provide requested information about our services
• Deliver AI integration consulting, infrastructure planning, and enablement programs
• Communicate about project progress, deliverables, and technical matters
• Send service updates, newsletters, and relevant industry information (with consent)
• Improve website functionality and user experience
• Analyze service usage patterns to enhance our offerings
• Comply with legal obligations and protect our legal rights
• Prevent fraud and maintain security

Data Sharing and Disclosure

Third-Party Service Providers

We may share your data with trusted third parties who assist our operations:

• Cloud infrastructure providers: For secure data storage and processing
• Analytics services: To understand website usage and improve user experience
• Communication platforms: For email delivery and customer relationship management
• Professional advisors: Legal, accounting, and consulting firms when necessary

All third-party processors are contractually obligated to protect your data and use it only for specified purposes.

Legal Disclosures

We may disclose your information when required by law or to:

• Comply with legal processes, court orders, or government requests
• Enforce our terms and conditions
• Protect our rights, property, or safety, or that of our clients and others
• Investigate potential violations of law or policy

Data Security Measures

We implement comprehensive technical and organizational measures to protect your personal data:

Technical Safeguards

• Encryption of data in transit using TLS/SSL protocols
• Encryption of data at rest using industry-standard algorithms
• Secure authentication and access controls
• Regular security updates and patch management
• Firewall protection and intrusion detection systems

Organizational Safeguards

• Access to personal data limited to authorized personnel only
• Confidentiality agreements with employees and contractors
• Regular security awareness training
• Data breach response procedures
• Regular security audits and assessments

Breach Notification

In the event of a data breach that may affect your rights and freedoms, we will notify you and the relevant Thai authorities within 72 hours of becoming aware of the breach, as required by PDPA.

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your browsing experience and analyze website usage. For detailed information about our cookie practices, please refer to our Cookie Policy.

You can manage cookie preferences through your browser settings or our cookie consent tool.

Your Rights Under PDPA

As a data subject under Thai PDPA, you have the following rights:

• Right to Access: Request confirmation of whether we process your personal data and obtain a copy of that data
• Right to Rectification: Request correction of inaccurate or incomplete personal data
• Right to Erasure: Request deletion of your personal data when it is no longer necessary, you withdraw consent, or processing is unlawful
• Right to Data Portability: Receive your personal data in a structured, commonly used format and transmit it to another controller
• Right to Object: Object to processing based on legitimate interests or for direct marketing purposes
• Right to Restrict Processing: Request limitation of processing under certain circumstances
• Right to Withdraw Consent: Withdraw previously given consent at any time
• Right to Lodge a Complaint: File a complaint with the Personal Data Protection Committee of Thailand

How to Exercise Your Rights

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days as required by PDPA.

You may need to provide proof of identity to verify your request. We may charge a reasonable fee for excessive or repetitive requests.

International Data Transfers

Your personal data is primarily stored and processed in Thailand. If we transfer data outside Thailand, we ensure appropriate safeguards are in place, such as:

• Standard contractual clauses approved by relevant authorities
• Transfers to countries deemed to have adequate data protection levels
• Your explicit consent for specific transfers

Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal data from minors. If you become aware that a child has provided us with personal data, please contact us immediately, and we will take steps to delete such information.

Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or business operations. We will notify you of material changes by:

• Posting the updated policy on our website with a new "Last Updated" date
• Sending email notification to registered users for significant changes
• Displaying a prominent notice on our website

Your continued use of our services after changes become effective constitutes acceptance of the updated Privacy Policy.

Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our Data Protection Officer:

Supervisory Authority

If you believe we have not addressed your concerns adequately, you have the right to lodge a complaint with: