Skip to main content

PDPA · B.E. 2562

Privacy Policy

For the Tech Care Holding website, interest registration, and Th.ai Stick reservation

Effective from 1 January 2026Policy version: v1.0 · 18 May 2026

Tech Care Holding Co., Ltd. and its affiliates or related companies (hereinafter referred to as “the Company,” “we,” or “our”) place the highest importance on protecting the personal data of website users, registrants of interest, product reservation holders, customers, organizational representatives, business partners, business contacts, and any person who interacts with the Company through the website techcareholding.com or other channels of the Company.

This Privacy Policy explains how the Company collects, uses, discloses, transfers, retains, and protects your personal data in accordance with the Personal Data Protection Act B.E. 2562 (2019) and related laws.

By using the website, submitting forms, registering interest, reserving products, making inquiries, or providing any information to the Company, you acknowledge this Privacy Policy.

Data Controller

The data controller under this Policy is

Tech Care Holding Co., Ltd.

47/2 Song Nang Sathit Road, Mueang Mukdahan, Mukdahan 49000, Thailand

Website
techcareholding.com
Email
ceo@techcaresystem.com
Phone
092-409-5723

If the Company formally appoints a Data Protection Officer in the future, the Company will publish the name, contact location, and means of contact through the website or other appropriate channels.

Scope of this Policy

This Policy applies to personal data the Company collects from you through

  1. The website techcareholding.com
  2. Pages or forms for registering interest
  3. Pages or forms for reserving the Th.ai Stick product
  4. Contact-us forms
  5. Forms requesting product information, documents, quotations, or business proposals
  6. Email, telephone, LINE Official Account, social media, or other communication channels of the Company
  7. Events, exhibitions, business meetings, or marketing activities
  8. Newsletter subscriptions or contact with the sales, customer service, or support teams

This Policy does not cover third-party websites, applications, or services that may be linked on the Company’s website. Those third parties have their own privacy policies, which you should read and understand before use.

Personal Data We Collect

The Company collects personal data only as necessary for lawful purposes, which may include the following categories.

3.1 Identity and contact information

  • First and last name
  • Nickname, if you provide one
  • Telephone number
  • Email address
  • Shipping or contact address
  • Province, district, sub-district, and postal code
  • Preferred contact channel, such as phone, email, LINE, or other
  • Account or profile name on the platform you use to contact the Company, if applicable

3.2 Interest, reservation, and purchase information

  • Products or services you are interested in
  • Quantity of items you intend to reserve or order
  • Type of use, e.g. personal, for elderly family members, organizational, hospital, senior care centers, or other entities
  • Expected time of purchase or first use
  • Province or area for delivery or service
  • Status of reservations, orders, cancellations, returns, or after-sales service requests
  • Payment information or proof of payment, if the Company offers reservation with deposit or prepayment

3.3 Information about end users of the product

If you register or reserve a product for someone else, such as an elderly relative, family member, or person in your care, the Company may receive information about that person only as necessary, for example

  • Age range
  • Relationship to the registrant
  • Expected pattern of use
  • General safety or care needs
  • General usage environment, such as in-home, outdoors, in a senior care center, or in a medical facility

3.4 Sensitive personal data

The Company will avoid collecting sensitive personal data through website registration or reservation forms, unless necessary and supported by an appropriate legal basis. Sensitive personal data may include

  • Health information
  • Disability information
  • Information about mobility limitations
  • Information about falls, illness, or health risks
  • Biometric information, or other information categorized as sensitive personal data by law

If it is necessary to collect, use, or disclose sensitive personal data, the Company will obtain explicit consent from the data subject in advance, unless the law permits the processing without consent.

3.5 Technical and website usage information

When you use the website, the Company may automatically collect certain information, such as

  • IP address
  • Device type
  • Browser type and version
  • Operating system
  • Date and time of visit
  • Pages visited, session duration, and click behavior
  • Traffic source, such as search engine, advertisement, or social media
  • Cookie ID or other online identifiers

3.6 Information from other sources

The Company may receive your personal data from other sources such as family members, organizational representatives, business partners, registration platforms, events, or related service providers.

If the Company receives data from sources other than the data subject directly, the Company will notify the data subject as required by law, unless an exemption applies.

Purposes and Legal Bases for Processing

The Company collects, uses, and discloses your personal data for the following purposes and legal bases.

Purposes and legal bases
PurposeData involvedLegal basis
Receive interest registrations and Th.ai Stick reservationsName, phone, email, province, address, product interestPre-contractual action on request, or legitimate interest
Follow up with product information, pricing, delivery timing, and reservation termsName, contact channel, details of interestAction on request, or legitimate interest
Process reservations, orders, payments, delivery, and after-sales serviceContact information, address, order data, proof of paymentContract, or compliance with the law
Provide customer service, handle complaints, warranty, repair, replacement, or returnsContact information, purchase history, problem detailsContract, legitimate interest, or compliance with the law
Send news, promotions, or marketing informationName, email, phone, product interestConsent, or legitimate interest within the limits permitted by law
Analyze and improve the website, forms, and marketing campaignsWebsite usage data, cookies, analyticsConsent, or legitimate interest depending on cookie category
Prevent fraud, unauthorized access, and maintain securityTechnical data, logs, IP address, anomalous behaviorLegitimate interest, or compliance with the law
Comply with laws on accounting, tax, consumer protection, and government ordersTransaction data, sales documents, contact informationCompliance with the law
Exercise or defend legal claimsInformation related to disputes or transaction evidenceLegitimate interest, or establishment of legal claims
Process health or sensitive data if necessaryHealth information, disability, or mobility limitationsExplicit consent, unless an exemption applies under law

The Company will not use your personal data beyond the purposes stated, unless the Company has notified you of a new purpose and obtained your consent, or the law permits the processing.

When Data is Required

In certain cases you are required to provide personal data so the Company can act on your request. For example

  1. To register interest, the Company needs your name and a way to contact you
  2. To reserve or purchase a product, the Company needs contact information, order confirmation details, and delivery information
  3. To use warranty or after-sales service, the Company needs your order information and details of the issue

If you do not provide the required information, the Company may not be able to process the registration, contact you, accept your reservation, deliver, provide service, or fulfill your request.

For non-essential data such as marketing consent or additional health data, the Company will not require you to provide that data to use the main service, unless it is necessary for a specific service you have requested.

Disclosure of Personal Data

The Company may disclose your personal data to the following persons or entities, only as necessary.

6.1 Affiliates and related companies

The Company may share data with companies in the Tech Care Holding group, such as Tech Care System, or relevant internal units, in order to handle registration, reservations, follow-up, delivery, after-sales service, business analytics, or customer relationship management.

6.2 External service providers

The Company may use external service providers to support operations, such as

  • Website, hosting, cloud, and database service providers
  • Form, CRM, email, or marketing system providers
  • Analytics and online advertising providers
  • Payment service providers, banks, or transaction processors
  • Logistics, warehousing, and shipping providers
  • Installation, maintenance, or after-sales service providers
  • Legal, accounting, tax, audit, or compliance advisors

The Company will require these providers to process personal data only on the Company’s instructions and to maintain appropriate security measures.

6.3 Government agencies, courts, or regulators

The Company may disclose personal data when required by law, court order, government order, or to comply with applicable regulations.

6.4 Persons you authorize or request

The Company may disclose data to persons you authorize or request, such as family members, caregivers, organizational representatives, or others involved in your reservation, delivery, or service.

6.5 Business transactions

If the Company undergoes business restructuring, merger, transfer, asset sale, fundraising, joint venture, or other business transactions, your personal data may be disclosed to counterparties, investors, advisors, or related parties as necessary, under appropriate data protection safeguards.

Cross-Border Transfers

The Company may use cloud, email, analytics, advertising, form, CRM, or other systems based abroad, or that process data abroad.

When the Company transfers your personal data abroad, it will do so in accordance with the law and apply appropriate measures, such as

  1. Transferring data only to countries or organizations with adequate data protection standards
  2. Entering contracts or terms with recipients to protect personal data
  3. Applying technical and organizational measures to safeguard the data
  4. Obtaining your consent where required by law

If the destination country or organization does not have adequate data protection standards, the Company will notify you and rely on an appropriate legal basis before transferring the data, unless the law permits the transfer without consent.

Data Retention

The Company retains your personal data only as long as necessary for the stated purposes or as required by law.

Retention periods
Data typeRecommended retentionReason
Interest registration dataUp to 3 years from the last contact, or until you request deletionLead tracking, follow-up, interest analysis
Reservation and order dataFor the contract and warranty period, and as required by accounting or tax lawSales, delivery, warranty, tax, accounting
After-sales service and complaint dataFor the warranty period, and may extend to preserve legal claimsRepair, replacement, returns, disputes
Marketing dataUntil you withdraw consent or unsubscribeSending relevant news and offers
Cookies and analytics dataAccording to analytics or cookie banner settings, capped at what is necessaryWebsite and campaign analytics
Security logsAs needed for security, systems, and legal complianceAnomaly detection and fraud prevention
Health or sensitive dataAs short as possible for the specific purpose, deleted when no longer neededRisk reduction under Section 26 of the PDPA

When the retention period expires or the data is no longer necessary, the Company will delete, destroy, or anonymize the data, unless the Company must retain it to comply with law, exercise legal claims, or defend its rights.

Security Measures

The Company maintains appropriate technical, organizational, and administrative measures to protect personal data from loss, unauthorized access, misuse, alteration, disclosure, or unlawful destruction.

These measures may include

  1. Limiting access to data to those who need it
  2. Using identity verification and access controls
  3. Applying encryption or appropriate safeguards based on risk
  4. Backups and business continuity management
  5. Agreements with service providers involved in data processing
  6. Periodic review and improvement of security measures
  7. Internal guidelines on the use and disclosure of personal data
  8. Deletion or destruction of data when retention ends
  9. Incident-response procedures for personal data breaches

Cookies and Similar Technologies

The Company’s website may use cookies, pixels, tags, or similar technologies to ensure the website functions correctly, improve the user experience, analyze traffic, and support online marketing.

10.1 Necessary cookies

Used to make the website work as intended, including security, form state, and essential settings. These cookies are required to deliver the service.

10.2 Analytics cookies

Used to analyze visitor numbers, popular pages, session duration, and website performance, so the website can be improved.

10.3 Marketing cookies

Used to display advertisements, measure campaign performance, or tailor content to user interests. These cookies may involve advertising providers or third-party platforms.

You can manage cookie preferences via the cookie banner on the website, or through your browser settings.

Your Rights

Under personal data protection law, you have the following rights to your personal data, subject to conditions set out in law.

11.1 Right to withdraw consent

Where the Company relies on consent, you may withdraw it at any time. Withdrawal does not affect the lawfulness of processing carried out before the withdrawal.

11.2 Right of access

You have the right to access and receive a copy of the personal data the Company holds about you, including disclosure of the source of data you did not provide yourself.

11.3 Right to data portability

You have the right to receive your personal data in a commonly used, machine-readable format, and may request that the Company transfer the data to another data controller, where legally feasible.

11.4 Right to object

You have the right to object to the collection, use, or disclosure of your personal data in certain cases, including direct marketing.

11.5 Right to erasure, destruction, or anonymization

You have the right to request the Company to delete, destroy, or anonymize your personal data when it is no longer necessary, or when processing is unlawful. The Company may refuse the request when retention is required by law or for the establishment of legal claims.

11.6 Right to restrict processing

You have the right to request restriction of processing in certain cases, such as while data accuracy is being verified or while an objection is being considered.

11.7 Right to rectification

You have the right to request correction of your personal data so it is accurate, current, complete, and not misleading.

11.8 Right to complain

If you believe the Company processes your personal data unlawfully, you have the right to lodge a complaint with the Personal Data Protection Committee Office or another authority with jurisdiction.

How to Exercise Your Rights

To exercise any right relating to your personal data, please contact

Tech Care Holding Co., Ltd.

47/2 Song Nang Sathit Road, Mueang Mukdahan, Mukdahan 49000, Thailand

Email
ceo@techcaresystem.com
Phone
092-409-5723

For data security, the Company may ask you to verify your identity before acting on a request, and may request additional information only as necessary to confirm that you are the data subject or are authorized to act on the data subject’s behalf.

The Company will consider and respond to your request within the timeframe required by law. If the Company cannot act on the request, it will inform you of the reason.

Providing Personal Data of Others to the Company

If you provide personal data of others to the Company, such as family members, elderly persons, patients, caregivers, employees, or organizational representatives, you confirm that you have the authority or have obtained consent from those individuals to provide the data, and that you have informed them of this Privacy Policy.

If such data is sensitive personal data, such as health, disability, or biometric information, you must obtain explicit consent from the data subject, unless another legal basis permits disclosure to the Company.

Minors and Incapacitated Persons

The Company’s website and services are not intended to collect data directly from minors. If you are a minor, an incapacitated person, or a quasi-incapacitated person, providing personal data to the Company should be done with consent from a parent, guardian, or curator as required by law.

If the Company becomes aware that personal data of such persons has been collected without the necessary consent, it will delete or restrict use of the data as appropriate.

Marketing and Unsubscribing

The Company may contact you with news about products, services, promotions, events, or information relevant to your interests, based on an appropriate legal basis such as consent or legitimate interest, within the scope permitted by law.

You may unsubscribe from marketing communications at any time by

  1. Clicking the unsubscribe link in marketing emails, where provided
  2. Notifying us through the channels designated by the Company
  3. Contacting the Company via the email or phone listed in this Policy

Unsubscribing from marketing does not affect operational communications such as reservation confirmations, delivery status notifications, warranty notices, or important information about products you have reserved or purchased.

Automated Decisions and Analytics

The Company may use analytics tools to understand customer interests, improve service delivery, segment audiences, or measure marketing campaign performance.

If the Company uses automated systems that produce significant effects on your rights, the Company will act in accordance with applicable law and notify you appropriately.

Changes to this Privacy Policy

The Company may amend, update, or change this Privacy Policy from time to time to reflect changes in law, technology, business operations, or services.

For significant changes, the Company will notify you through the website or other appropriate channels. The amended Policy will take effect upon publication on the website, unless stated otherwise.

Contact Us

For questions, suggestions, complaints, or to exercise rights regarding your personal data, please contact

Tech Care Holding Co., Ltd.

47/2 Song Nang Sathit Road, Mueang Mukdahan, Mukdahan 49000, Thailand

Website
techcareholding.com
Email
ceo@techcaresystem.com
Phone
092-409-5723