Menu-O1-JP
Logo
Main Menu
Main Menu
Main Menu
Main Menu
Main Menu
Main Menu
Main Menu
Main Menu
Main Menu
Main Menu
Main Menu
Main Menu

Privacy Policy

Enacted: February 1, 2025

In the event that CFT Engineering Co., Ltd. and its group companies (“CFT”) collect personal data concerning an individual (“Data Subject”), CFT shall handle personal data as set out below. The handling of personal data about officers and employees of CFT shall be determined separately in accordance with privacy policies implemented within CFT.

1. Lawfulness of Processing

CFT processes personal data when the law allows it to and it has the Data Subject’s consent. CFT typically processes personal data based on one of the following legal bases:

  1. Where it is necessary for CFT’s legitimate interests in processing personal data;
  2. Where it is necessary for the performance of a contract into which CFT has entered with the Data Subject; and
  3. Where CFT needs to comply with any legal obligations.

2. Types of Personal Data Collected
2.1 Personal Data Collected from Customers, Business Partners, and Stakeholders
CFT collects the following types of personal data:

  • Basic Information : Used to identify the Data Subject (e.g., name, date of birth, gender);
  • Contact Information : Needed to contact the Data Subject (e.g., telephone number, email address); and
  • Technical Information : That could be used to identify the Data Subject (e.g., IP address, type and version of browser used).
 

2.2 Personal Data Collected from Job Applicants, Visitors, and Website Users CFT collects the following types of personal data:

  • Job Application Information : Personal information on CVs (e.g., name, qualifications, work experience, salary expectations);
  • Visitor Information : Used to control access to CFT’s premises and ensure site security (e.g., image, vehicle registration, company name); and
  • Technical Information : That could be used to identify the Data Subject (e.g., IP address, type and version of browser used).
 

2.3 Sensitive Personal Data
CFT does not collect sensitive personal data (e.g., political opinions, religious beliefs, or health-related data) without the prior explicit consent of the Data Subject.

3. Purpose of Collection and Use
CFT generally uses the personal data it collects for the purposes outlined below. 

3.1 Personal Data Collected from Customers and Business Partners

  • To provide products and services handled by CFT, including related information and invoicing;
  • To plan, research, and develop new products and services;
  • To address inquiries and provide customer support;
  • To conduct negotiations, meetings, and execute business operations; and
  • To conduct accounting audits and comply with financial reporting requirements.
 

3.2 Personal Data Collected from Job Applicants

  • To conduct recruitment activities and related business operations;
  • To evaluate qualifications and suitability for employment; and
  • To communicate with candidates regarding job opportunities.
 

3.3 Personal Data Collected from Website Users

  • To improve website functionality and user experience;
  • To analyze website traffic and usage patterns; and
  • To ensure website security and prevent unauthorized access.

4. Rights of the Data Subject
4.1 Protected Rights
With respect to personal data managed by CFT, you have certain rights pursuant to applicable personal data protection laws, which may include: 

  1. The Right to Be Informed : To know the details of how your personal data is processed.
  2. The Right of Access : To obtain confirmation of whether personal data is held about you.
  3. The Right to Rectification : To correct inaccurate personal data.
  4. The Right to Erasure : To request deletion of your personal data.
  5. The Right to Restrict Processing : To limit the processing of your personal data.
  6. The Right to Data Portability : To receive your personal data in a structured, commonly used format.
  7. The Right to Object : To object to the processing of your personal data on specific grounds.
  8. Rights Related to Automated Decision-Making : Not to be subject to decisions based solely on automated processing.
  9. The Right to Withdraw Consent : To withdraw consent for processing personal data.
 

4.2 Point of Contact
If you have any questions about the processing of your personal data or wish to exercise any of the above rights, please contact the person in charge of Privacy Policy via the following:

By Email: sales@cft.co.th 

5. Provision to a Third Party
To fulfill the purposes outlined in “3. Purpose of Collection and Use,” CFT may share personal data with its group companies or trusted third-party service providers. In such cases, CFT ensures that these parties: 

  1. Process personal data only on documented instructions from CFT;
  2. Commit to confidentiality;
  3. Implement appropriate security measures;
  4. Assist in the exercise of the Data Subject’s rights; and
  5. Return or delete all personal data once the purpose of processing ceases to exist.

6. Records of Data Processing
As the controller of personal data, CFT maintains records of data processing activities and updates them periodically to ensure accuracy and compliance with applicable laws.

7. Retention Period
CFT retains personal data for the minimum period necessary to achieve the purposes outlined in this policy and only for as long as required by law or for accounting and reporting purposes.

8. Data Security
CFT implements robust organizational and technical security measures to protect personal data, including: 

  • Developing and enforcing an Information Security Policy ;
  • Anonymizing and encrypting sensitive data;
  • Conducting regular security audits; and
  • Training employees on data protection best practices.

9. Notification of Personal Data Breaches
In the event of a data breach, CFT has established a framework to promptly notify relevant supervisory authorities and affected individuals, ensuring transparency and timely communication.

10. Transfer to a Third Country
CFT may transfer personal data to third countries outside Thailand. Such countries may not have comprehensive data protection laws. In such cases, CFT will implement necessary safeguards to ensure the protection of personal data in accordance with applicable laws.

11. Revisions and Updates to This Policy
CFT reserves the right to revise or update this Privacy Policy from time to time. Any changes will take effect upon posting the updated policy on CFT’s website. Please check this page regularly for updates.

This privacy policy reflects CFT Engineering Co., Ltd.’s commitment to protecting the privacy and personal data of its customers, partners, employees, and website users. If you have any questions or concerns, please contact us using the contact information provided above.

© 2025 CFT Engineering Co., Ltd. All Rights Reserved.

Privacy Policy