The document explains the personal data we collect, how and where we may use it, how we protect it, who has access to it, with whom we share it, and how you may correct it.
1. General information
The operator of the website www.bitdefender.co.th is B Development (Thailand) Co.,Ltd. (the operation company to provide Bitdefender solutions in Thailand, hereafter mentioned as Bitdefender), with its official headquarters in 92/37 Sathorn Thani 2 Building, 14th Floor, North Sathorn Road, Silom, Bangrak, Bangkok 10500, e-mail email@example.com processes personal data in agreement with the Thailand Personal Data Protection Act B.E. 2562 (2019) (PDPA). Our officer in charge for data protection can be found at the following contacts: firstname.lastname@example.org, Phone: (+66) 021 08 1333.
Bitdefender offers data security products and services. Our goal is to ensure information and network security by providing quality products and services in these areas while also respecting privacy and personal data of customers, Internet users and business partners.
For this purpose, we collect only that personal data necessary for the specified purposes, on a best efforts basis.
Personal data according to the Thailand PDPA legislation definition means: “Any information relating to a Person, which enables. the identification of such Person, whether directly or indirectly, but not including the information of the deceased Persons in particular”.
In this context, Bitdefender processes personal data for the following main purposes:
- Website management and security
- Responding to your queries and comments
- Marketing for Bitdefender own needs.
- Statistical analysis and market studies;
2. Personal data collected
Bitdefender may collect personal information from its users in four different ways:
- directly provided by a user;
- indirectly provided by its websites, such as:
- traffic data registered by the servers that host our websites;
- cookies, that may share some personal information.
2.1. Personal data directly provided by a user – for example, when you complete a website form or submit a comment on our blog we might ask your name, surname and/or email address so we can contact you with updates, notices, or to provide support.
All these data are being used for contacting you on your specific request or, if you subscribed for our newsletter or commercial communication, for marketing purposes. The legal basis for processing these data is consent of the data subject in receiving that respective information or subscribing to our newsletter.
The duration of processing is until the respecting information and request is being sent, plus a period of 30 days to be sure that there are no more follow-ups needed.
As regards your subscription to our newsletter or commercial communications, we will keep our communication going, until you withdraw your consent or you don’t engage with our email in the past 5 years.
We may also send you follow-up messages if you have completed your data in order to buy our products or services, but you haven’t finalized the entire acquisition process. This data is kept unless you complete the acquisition process when data might be kept longer for purposes of performing the contract that you are a part of.
2.2. Traffic data – when a user visits a website, it automatically reveals certain information, such as the IP address, date and time of the visit or the referral website that sent you to Bitdefender websites. Bitdefender, like any other website manager, may record this kind of information for a limited period of time. We also use other external services of traffic analysis, such as Google Analytics.
All these data are used exclusively for website improvement or statistical purposes, but also for improving our web services and ensuring their security. Most of these data is being used only as aggregated data. The data is kept only as long as they are necessary for these purposes. The legal basis for this collection is legitimate interest for Improving our website for the ensuring the security of your website. Duration of processing is 1 year from the date of the visit.
For example, we use first party cookies for identification or communication purposes, such remembering your language, communication sessions or setting, other details necessary for a correct functioning of our website.
Sometimes we might use external Bitdefender services which may place third party cookies when navigating the Bitdefender websites, their purposes are for marketing, traffic analysis and social media sharing, as indicated in website.
Internet Explorer - http://windows.microsoft.com/en-gb/internet-explorer/delete-manage-cookies
Mozilla Firefox - https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer
Google Chrome - https://support.google.com/chrome/answer/95647?hl=en
Safari - https://support.apple.com/kb/PH19214?locale=en_US
You may also use third party extensions on these browser that do block intrusive cookies. The following extensions seem to be the most popular on the market at this time (in alphabetical order): AdBlock Plus, Ghostery, Privacy Badger or uBlock.
The legal basis for this data collection is consent, which is being obtained the first time when you visit our website from a specific browser. Then we will also have the opportunity to opt-out to any cookies that we may use as well as reading more information on what cookies we use and their purposes. If you opt-out, please note that we record your choice in a cookie, so if you delete all of your cookies, we will ask you again on our desired choice.
Duration of processing for this data is maximum 50 months, depending on each cookie setting.
3. Protecting the Personal data
As a leader in information security services, confidentiality and data protection are of vital importance for us. Access to the collected personal data is restricted only to Bitdefender employees and data processors that need access to this information.
Bitdefender may use other IT companies to process the collected personal data. These companies are considered data processors and have strict contractual obligations to keep the confidentiality of the processed data and to offer at least the same level of security as Bitdefender. Data processors have the obligation not to allow third parties to process personal data on behalf of Bitdefender and to access, use and/or keep the data secure and confidential.
Due to confidentiality obligations and security requirements the specific information regarding the name and details for each processor used will be provided only to competent authorities.
The following types of data processor are being used:
- hosting services in Asia, EU and USA;
- support channel communications in Asia EU and USA;
- marketing services (including email marketing) in EU, Asia, and USA.
Access to certain sections of Bitdefender websites is protected by a username and password. We recommend not to reveal this password. Bitdefender will never ask for your account's password via any kind of messages or phone calls. We advise not to disclose your password to anyone asking you to do so. If possible, we also recommend to log out of your online services account after each session. We also advice to close the browser window after navigating or using Bitdefender services.
Unfortunately, transferring data over the Internet cannot be 100% secure. Consequently, despite our efforts to protect personal data, Bitdefender cannot assure or guarantee the security of the information transmitted by the user until the information is on our servers. Any information you transmit is done on your own risk.
4. Who has access to personal data
In principle, Bitdefender will not reveal any personal data about its users to third parties without the exceptions mentioned above.
Exceptionally, Bitdefender may reveal personal data to competent authorities, upon their legal request according to the applicable laws or when this is necessary to protect the rights and interests of our clients and Bitdefender.
5. Your personal data rights
According to European Union applicable data protection legislation and Thailand’s Personal Data Protection Act (PDPA), data subjects shall have the right to access to data, rectification, erasure, restriction on processing, objection to processing and right to data portability. In the case when processing is based on consent, you have the right to withdraw it at any time.
For exercising these rights, you may send a written request, dated and signed and send it to the above mentioned Bitdefender headquarters or via email to email@example.com
You also have the right to lodge a complaint with a competent supervisory authority:
Office of the Personal Data Protection Commission
Contact Address: 7th Floor, Ratthaprasasanabhakdi Building, Government Complex, Chaloem Phrakiat 80th Birthday Anniversary, Chaeng Watthana Road, Thung Song Hong Subdistrict, Lak Si District, Bangkok 10210
Contact: (+66) 02-142-2233