Privacy Policy
Last Updated: January 15, 2025
At StreamCoreFlux, we take your privacy seriously. This policy explains how we collect, use, and protect your personal information when you interact with our budget risk management services.
We're based in Thailand and operate under both Thai data protection laws and international standards. But honestly, legal requirements aside, we believe you deserve to know exactly what happens with your information.
Questions about your data? Contact our privacy team at [email protected] or call us at +66 32 311 113. We actually respond to these inquiries.
1. Information We Collect
We collect different types of information depending on how you use our services. Some you give us directly, other data comes from your interactions with our platform.
Personal Information You Provide
When you sign up or use our services, you share certain details with us:
- Name, email address, phone number
- Business information (company name, industry, role)
- Financial data related to budget planning and risk assessments
- Payment information (processed through secure third-party providers)
- Communication records when you contact our support team
Automatically Collected Data
Our systems gather some technical information to keep things running smoothly:
- IP address and browser type
- Device information and operating system
- Pages visited and features used within our platform
- Session duration and interaction patterns
- Cookies and similar tracking technologies
2. How We Use Your Information
We're not in the business of collecting data for collection's sake. Here's what we actually do with the information you provide:
| Purpose | Data Used |
|---|---|
| Service delivery and account management | Personal details, business information, financial data |
| Platform improvement and feature development | Usage patterns, feedback, technical data |
| Customer support and communication | Contact information, communication history |
| Security and fraud prevention | IP address, device data, access logs |
| Marketing (with your permission) | Email, communication preferences |
We don't sell your personal data to third parties. Period. That's not our business model, and frankly, we find that practice questionable.
3. Data Sharing and Third Parties
Sometimes we need to share information with other organizations to provide our services. But we're selective about who gets access and why.
Service Providers We Work With
- Cloud hosting providers for secure data storage
- Payment processors for transaction handling
- Analytics platforms for service improvement
- Email service providers for communications
- Security vendors for threat protection
All third-party providers are contractually required to protect your data and use it only for the specific purposes we authorize. We vet these partners carefully.
Legal Requirements
We may disclose information if required by Thai law, court orders, or government requests. We'll notify you about such requests unless legally prohibited from doing so.
4. Your Privacy Rights
Under Thai data protection law and our own commitment to transparency, you have several rights regarding your personal information.
Access Your Data
Request a copy of all personal information we hold about you. We'll provide this in a readable format within 30 days.
Correct Inaccuracies
Update or fix any incorrect or incomplete information in your account at any time through your dashboard or by contacting us.
Delete Your Information
Request deletion of your personal data, subject to legal retention requirements. Some information may need to be kept for tax or regulatory purposes.
Restrict Processing
Limit how we use your data in certain circumstances, such as when you contest the accuracy of information.
Data Portability
Receive your data in a structured, machine-readable format to transfer to another service provider if you choose.
Withdraw Consent
Opt out of marketing communications or withdraw consent for data processing that requires your explicit agreement.
To exercise any of these rights, email [email protected] with your request. We'll verify your identity and respond within 30 days.
5. Data Security Measures
How We Protect Your Information
- 256-bit SSL encryption for all data transmission
- Encrypted database storage with regular security audits
- Multi-factor authentication for account access
- Regular security assessments and penetration testing
- Strict access controls limiting employee data access
- Automated backup systems with disaster recovery protocols
- 24/7 security monitoring and intrusion detection
No system is completely secure, and we can't guarantee absolute protection. But we invest significantly in security infrastructure and stay current with industry best practices. If we detect a data breach affecting your information, we'll notify you within 72 hours as required by Thai law.
6. Data Retention
We don't keep your data longer than necessary. Here's our general retention approach:
- Active account data: retained while your account remains active
- Financial records: 7 years for tax compliance purposes
- Communication logs: 3 years for quality assurance
- Marketing data: until you withdraw consent
- Technical logs: 90 days unless needed for security investigations
When you close your account, we'll delete or anonymize your personal data within 90 days, except where we're legally required to retain certain records.
7. International Data Transfers
Our primary servers are located in Thailand, but some service providers operate globally. When your data moves outside Thailand, we ensure it's protected through:
- Standard contractual clauses approved by Thai authorities
- Adequacy decisions recognizing equivalent data protection
- Certification programs ensuring appropriate safeguards
You have the right to request information about specific data transfers and the safeguards in place.
8. Cookies and Tracking
We use cookies to make our platform work better. Some are essential for basic functionality, others help us improve your experience.
Types of Cookies We Use
- Essential cookies: required for login and security features
- Performance cookies: help us understand how you use the platform
- Functional cookies: remember your preferences and settings
- Analytics cookies: provide insights for service improvement
You can control cookie settings through your browser, but disabling certain cookies may limit platform functionality. We respect Do Not Track signals where technically feasible.
9. Children's Privacy
Our services are designed for business professionals and organizations. We don't knowingly collect information from individuals under 18 years old. If we discover we've inadvertently collected such data, we'll delete it promptly.
10. Changes to This Policy
We update this policy occasionally to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you via email and display a notice on our platform for at least 30 days.
The "Last Updated" date at the top of this page shows when we most recently revised the policy. Continued use of our services after changes take effect means you accept the updated terms.
11. Contact Information
If you have questions, concerns, or complaints about how we handle your personal data, we want to hear from you.
StreamCoreFlux Privacy Team
666 170 Bang Phriang, Bang Bo District
Samut Prakan 10560, Thailand
Email: [email protected]
Phone: +66 32 311
113
You also have the right to lodge a complaint with Thailand's Personal Data Protection Committee if you believe we've violated your privacy rights. We'd prefer to resolve any concerns directly, but this option is available if needed.