Privacy Protection

Personal Data Protection Policy

Overview Tigon Consultancy Asia Co Ltd (“Company”) is committed to protecting your privacy and handling your personal data responsibly. This policy outlines how we collect, use, and share your personal data, our retention practices, and your rights.

  1. Key Terms
  • Personal Data: Any information that can identify an individual, excluding data about deceased persons.
  • Sensitive Personal Data: Includes information such as race, religion, health, sexual orientation, and biometric data, as defined by law.
  • Personal Data Protection Act: Thailand’s data protection law, including its rules and amendments.
  1. Data We Collect

We may process your personal and sensitive data, including but not limited to:

2.1 General Personal Data

  • Basic Information: Name, ID card number, date of birth, gender, marital status, contact details (e.g., phone numbers, address, email).
  • Employment Details: Job title, employer information, and employment history.
  • Financial Information: Income, bank account details, tax and investment information, credit card details, and payment records.
  • Product/Service Information: Records of products or services purchased, such as policy numbers, transaction history, claims, and beneficiaries.
  • Legal Status: Information related to anti-money laundering, terrorism financing, or bankruptcy.
  • Technical Data: Information from website and app usage, including IP addresses, browser types, and device information.

This policy provides details on data handling, retention periods, disclosure practices, and your rights related to your personal data.

Sensitive Personal Data

The Company may collect sensitive personal data, including health information, disability status, criminal records, genetic and biometric data, or any other information as specified by the Personal Data Protection Committee. This data is collected when needed for insurance contracts, legal obligations, or administrative purposes. If this data isn’t provided, the Company may be unable to fulfill services fully or comply with legal requirements.

When We Collect Your Personal Data

We may collect your data in the following situations:

  1. Interest in Insurance: When you request personal or group insurance, or access our website, app, or other services.
  2. Application Submission: When you provide insurance forms or supporting documents.
  3. Communications: During any written or verbal interactions with us.
  4. Service Requests: When you request changes or updates to purchased products or services.
  5. Contact with Personnel: When you interact with our staff, agents, brokers, suppliers, or representatives via various channels (e.g., online, in person, by phone).
  6. Instructions from Partners: When we receive information about you from our personnel or partners.
  7. Marketing Participation: When you enter marketing events, competitions, or similar activities.
  8. Third-Party Information: When we receive information about you from verified external sources, such as social media, data providers, or healthcare facilities.
  9. Regulatory Purposes: When required, we may receive your data from third-party regulatory bodies, like the Insurance Commission (OIC).

If you provide personal data about others (e.g., family members, beneficiaries), you must follow the Personal Data Protection Act by obtaining their consent or notifying them of this policy. You must ensure the accuracy of this data and confirm that these individuals are informed of this policy’s details.

5

Purpose of Processing Your Personal Data

We use your personal data for these key purposes:

  1. Insurance and Contract Fulfillment: To offer, manage, and provide services such as insurance products, premium collections, policy updates, and claims processing, and to handle policy renewals or cancellations as needed.
  2. Company Interests: To operate and improve services, including designing products, communicating with customers, fraud prevention, and supporting company restructuring or transactions, if applicable. We also use your data for analytics to tailor online content to your preferences, ensure effective record-keeping, and improve product quality. Additionally, we may provide promotions, rewards, or marketing activities you choose to participate in.
  3. Analysis and Statistics: To conduct research, data analysis, and reporting for internal use, external regulatory bodies, and partners.
  4. Other Purposes: Any other essential operations related to the above purposes. If we intend to use your data for purposes beyond this policy, we will seek your consent.

Your data will only be processed within the limits set by relevant laws, including the Personal Data Protection Act.

5 Who Receives Your Personal Data

The Company keeps your data private but may share it, when necessary, with:

  1. Business Partners: Companies involved in providing insurance products or related services.
  2. Group Insurance Policyholders: For group insurance cases.
  3. Service Providers: Including staff and external providers offering payment, debt collection, IT, cloud, customer support, document storage, and marketing services.
  4. Pre-Insurance Service Providers: Such as risk assessors.
  5. Claims Service Providers: Including accident assessors, service centers, and hospitals.
  6. Other Insurance Companies: As relevant to our services.
  7. Industry Associations: For insurance sector purposes.
  8. Government Agencies and Law Enforcement: For legal compliance in Thailand or abroad.
  9. Company Group Members: Other companies in our corporate group.
  10. Professional Advisors: Such as legal, medical, and audit experts.
  11. Authorized Third Parties: Individuals or entities you’ve consented to share data with.
  12. Transactional Parties: Parties involved in transactions where your data may be included.
  13. Other Authorized Entities: As permitted by law.

Cross-Border Data Transfer

Your data may be transferred or stored abroad, in line with legal data protection standards. Within our corporate group, data transfers follow approved privacy policies (Binding Corporate Rules).

Data Retention

Your data will be kept only as long as needed, usually up to 10 years after your relationship with the Company ends, unless a longer period is required by law. After this, data will be erased, anonymized, or destroyed.

Use of Data for Original Purposes

The Company may continue using data collected before current laws took effect. If you prefer this data not be used, you may withdraw your consent by contacting info@tigonconsultancy.com.

 

× Need Expat Insurance help?