Privacy Notice 

Like me Co., Ltd. 

Like me Co., Ltd. (the “Company”) realizes the significance and its duties under the Personal Data Protection Act B.E. 2562 as well as respects the right to privacy of the customers, exhibitors, visitors, buyers, public, agents, partners, supporting organizations, vendors, suppliers and contractors including natural persons acting on behalf of the legal entity which owns personal data (hereinafter referred to as “Customers”) The Company is also strongly committed to protect the security of the Customer’s personal data to ensure that the Customers’ personal data will be protected as required by the Personal Data Protection Act  B.E. 2562 and other related acts. Therefore, the Company has implemented this Privacy Policy  to inform the Customers the details relating to the Company’s collection, use and disclosure (hereinafter collectively referred to “Processing”) and inform the Customers of his/her the legal rights as the owner of Personal Data (“Data Subject”). Details of the Privacy Notice shall  be as follow. 

Article 1. To whom does this Privacy Notice apply? 

This Privacy Notice applies to the customers, exhibitors, visitors, buyers, public, agents, partners, supporting organizations, vendors, suppliers and contractors including natural persons acting on behalf of the legal entity which owns personal data, such as directors, consultants, executives, employees, agents, and any person related to the Company's personnel. 

Article 2. Definition of Personal Data 

2.1 “Personal Data” means any information relating to a person which can be identified, directly or indirectly, however, does not include information of the deceased in particular, such as,name, surname,nickname, address, telephone number, ID number, passport number, social security card number, driving license number, tax identification number, bank account number, credit card number, email address, vehicle registration, IP Address, Cookie ID, Log File, etc. 

Nonetheless, Personal Data does not include non-personally identifiable business contact information, such as, company name, company address, company registration number, office phone number, office email address using for work purpose, group email address of the company (for example, info@company.co.th), anonymous data or pseudonymous data, information of the deceased, etc. 

2.2 “Sensitive Data” means Personal Data related to race, ethnicity, political opinions, personal belief on cult, religion or philosophy, sexual behavior, criminal records, health information, disability, information of labor union, genetic data, biological data, or any other data that affects the Data Subject in a similar manner as specified by the Personal Data Protection Committee, which the Company is required to process such data with special treatment. Processing by the Company of Sensitive Data can only be upon receipt of Data Subject’s explicit consent or upon the event that the Company has necessity to proceed as permitted by the applicable laws. 

Further in this Privacy Notice, if it is not specifically mentioned, the Personal Data and the Sensitive Data, relating to the abovementioned Customer, shall be collectively referred to as Personal Data. 

In the case that, for the purpose of verifying Data Subject’s identity for legal relationship with the Company and/or enter into any transaction with the Company, the Company receives a copy Data Subject’s ID card or the Company extracts Data Subject’s data from his/her ID card by electronic means, the Data Subject is aware that such data includes religious data which is considered as Sensitive Data. Data Subject is further aware that the Company has no policy to collect Sensitive Data from the Customer unless receipt of the Customer’s consent. Incase the consent is received, the Company shall further determine how to manage such Sensitive Data in accordance with applicable guideline and as permitted by the laws. 

Article 3. Personal Data collected by the Company 

The Company shall collect Personal Data of the Data Subject with limitations according to the purpose and scope which will be informed. In this regard, the Personal Data collected by the Company are classified as follows:

Article 4. Source of Personal Data

4.1 Data provided directly from Data Subject to the Company

From the process of event/exhibition reservation, event/exhibition registration, information used to register to create an account (Account) or profile (Profile) with the company to use the company's services both offline and online Information that you communicate with the Company, whether in written or chat form, includes images and sounds. as well as information you provide to the Company through surveys. Providing suggestions or comments through various channels, including information that you use the service at the head office or branch office Customer service center or booth to showcase products or services, etc.

4.2 Data automatically collected by the Company

Once Data Subject accesses the service platform of the Company, or visit the Company’s website through electronic devices, such as, mobile phone, computers, laptops, etc, with the technology called “cookies” or other technology with the same or similar functionality.

4.3 Data from external source or reliable public source

Department of Provincial Administration, Department of Business Development, commercial resources, websites, applications, social media resources, Data Providers, agencies/companies/associations, or confederations relating to execution of contractual commitments and/or operation of business etc.

4.4 Data used during the communication with the Company

The data used during the communication with the Company, employees, agents, partners, business partners, attorney, the representatives, the related third party or entity, the third party or entity appointed by the Company. Such data may be received from communication via website, application, social media, telephone, email, meeting, interview, SMS, facsimile, post, VDO Call Service or by any other means. The Company may collect data in form of text, picture, or audio.

4.5 Information that you participate in activities with the company

In respect of any marketing activities, contests, sweepstakes, events or competitions organized by or on behalf of the Company; and/or partners or alliances participating in activities with the Company or the company assigns or permits to do such activities.

When you agree and consent to provide any personal data related to third parties to  the Company. You represent and warrant the accuracy of such personal data and have fully  informed them of this Privacy Notice.

Article 5. Purposes of Processing the Personal Data

The Processing of Data Subject’s Personal Data by the Company is on the following basis:

5.1 Contractual Basis For compliance with terms and conditions, exercise of contractual rights under the contract to which the Data Subject is the party, for example, service agreement or other agreements or for the purpose of processing the Data Subject’s request/application prior to execution of the contract, as the case may be.

5.2 Legal Obligation To perform the obligation as required by the applicable laws, for example, taxation law, anti-money laundering law, computer law, personal data protection law.

5.3 Legitimate Interest For the Company’s legitimate interest, to the extent that the Data Subject can reasonably expect. In no case it can violate fundamental rights or freedoms of the Data Subject.

5.4 Consent The Company may seek for Data Subject’s consent, if the consent is required by the laws or if the Company cannot apply any of the abovementioned basis for Processing Personal Data collected from the Data Subject.

Purposes to Processing Personal Data

Processing of Personal Data are for the following purposes:

Article 6. The disclosure of the Data Subject’s Personal Data

To carry out the purposes stated in this Privacy Notice, Personal Data may be disclosed or delivered to various recipients both internal and external as follows:

6.1 Within the Company

Data Subject’s Personal Data may be disclosed or delivered to related departments within the Company those are relevant and have the necessary roles and duties to perform the Company’s duty for the purpose mentioned in the table above. The recipients of the Personal Data will have access to Personal Data on a need-to-know basis.

• Human Resource officer or officer from other department who involved in the matter. Right to access to Personal Information will be granted according to the responsibility of such officer.
• Management or direct superior of the Data Subject who mainly be responsible to manage or decide on the matters related to the Data Subject or when such management or direct superior is required to be involved in procurement tasks
• The supporting teams, for example, information and technology department, administration department, accounting department, sale & purchase department customer relationship department, business development department.

6.2 Outside the Company

Data Subject’s Personal Data may be disclosed or delivered to entities outside the Company as follow:

6.2.1 Government Agencies, regulators or other agencies as required by the Laws, for example, Revenue Department, Social Security Department, Department of Labor Protection and Welfare, Student Loan Fund, Department of Business Development, Bank of Thailand, Securities and Exchange Commission, Ministry of Commerce, Ministry of Labor or any other agency by virtue of law.

6.2.2 Organization or Third Party the Company may disclose Personal Data of Data Subject to the organization, or third party contacted to the Company for the purpose of verifying Data Subject’s transaction(s) and for the purpose of providing services and products according to the Data Subject’s needs.

Organization or Third Party the Company may disclose Personal Data of the Data Subject are as follows;

(1) SC ASSET Public Company Limited

(2) Amazon Web Services (Thailand) Limited

Article 7. Marketing and Privilege

The Company may use your personal data other than the purposes as notified to you through this Privacy Notice. and under the terms of the law. The Company may use first name, last name and contact information such as e-mail, telephone numbers, including mobile numbers. and zip code for

7.1 Send you benefit messages about the Company's products and services, including cross selling and/or upselling products or services.

7.2 Loyalty Program or Privilege Program

7.3 Promotional activities and marketing communications This includes contests, prize draws, lucky draws, events and contests that you are interested in participating in.

7.4 Contributions to charitable activities and/or other aspects non profit

The Company may have to disclose your personal data to personnel. and/or the Company's business partners to achieve any of the above objectives.

In case you do not require for any other You receive marketing information and special offers, you can notify the company at any time. You can notify the company at any time. You can unsubscribe from marketing emails by clicking on the unsubscribe link. as it appears at the bottom of each email. The company will try to expedite the implementation of your wishes as soon as possible.

Article 8. Requesting the consent and possible effects from consent withdrawal

8.1 if the Processing of the Personal Data by the Company is based on the consent of Data Subject, the Data Subject has absolute right to withdraw the consent at any time. Such withdrawal will not affect the Processing which consent is given prior to the withdrawal.

8.2 in the event that the Data Subject is the minor as defined in the Civil and Commercial Code of Thailand, prior to giving consent, kindly inform the Company details of he or she who exercises the parental power, in order that the Company can further process to request for consent from such person as well.

The Data Subject has right to withdraw the consent for the Company to Processing his/her Personal Data wholly or partially by providing the Company a notification. In case the Data Subject withdraws consent for the Company to Processing his/her Personal Data, the Data Subject acknowledges that the level of benefits from the services provided by the Company may not be the same as the case that the consent is given.

Article 9. Cross-border Personal Data Transfer

9.1 The Company may transmit or transfer Data Subject’s Personal Data to the third party both within the territory and cross-border where necessary for the Company to perform its contractual obligations to which the Data Subject is a party; to perform its contractual obligations under the contracts between the Company and other natural or juristic person for the benefits of Data Subject; for use in the processing for the Data Subject’s request prior to contract execution; to prevent or suppress a danger to life, body or health of the Data Subject or any other person; or to comply with laws or as necessary to carry out mission for public interest.

9.2 The Company may store Data Subject’s Personal Data on computer, serveror could provide by any third party and the Company may use program or application of any third party in the form of ready-adesoftwareservicesor ready-made platform service for Processing Data Subject’ Personal Data. In such case, the Company shall not allow unrelated person to access the Personal Data, and the Company shall also require such third party who has access to the Personal Data to have appropriate measures for personal data security protection.

9.3 In the event that it is necessary to transmit or transfer Data Subject’s Personal Data cross-border, the Company shall comply with applicable personal data protection laws and implement appropriate measures to ensure that the Data Subject’s Personal Data is duly protected, and the Data Subject is able to exercise rights related to his/her Personal Data as permitted by the laws. In addition, the Company shall require those who have access to the Data Subject’s Personal Data to take appropriate measures to protect the Personal Data and to process the Personal Data only where necessary. The Company shall also take necessary steps to prevent unauthorized use or disclose of Personal Data

Article 10. The collection and retention period of Personal Data

10.1 By considering the necessity and purpose for which the Company has to Processing and compliance with applicable laws, the retention period of Data Subject’s Personal Data is for as long as necessary.

The criteria used by the Company to determine the retention period are (i) throughout the period that the Company has business relationship with Data Subject who may registered to be the customer or be the one acting on behalf of the one registered to be the customer (whether being a natural person or juristic person) (ii) the retention period may be as long as it is necessary for the Company to comply with applicable laws or until the end of legal enforcement period (iii) the retention period may be as long as the Company may lodge a legal claims or compliance or exercise any legal rights or to raise the defense against legal claims or (iv) the retention period may be as required by the Company’s internal policy and regulations.

10.2 The Company is able to continue to Processing the Data Subject’s Personal Data, although the business relationship between the Company and the Data Subject is terminated. Such Processing shall be limited to the extent deem necessary to comply with applicable laws for legitimate interest or such Processing will be in a form that makes the data non-identifiable either directly or indirectly, for example, by way of Anonymous Data or Pseudonymous Data.

10.3 The Company may collect the Data Subject’s Personal Data so long as it is necessary for the Company to perform or proceed to fulfill the purposes of Processing of Personal Data as described in this Privacy Notice. In this regard, the Company will keep the Personal Data within a period of 10 years from the business relationship between the Data

Subject and the Company is terminated or from the last communication between the parties. However, if legally permissible, the Company the period may be longer. 10.4 To be consistent with related prescription period under the applicable laws, the Company will collect the Personal Data in the appropriate form according to the type of Personal Data. However, the Company is obligated to continue to collect the Personal Data even after the prescription period under the applicable laws, for the legitimate interest of the Data Controller, unless such legitimate interest is less important than the fundamental right of the Data Subject to his/her Personal Data.

10.5 the Company will carry out necessary investigations to delete or destroy the Personal Data, to make the Personal Data unidentifiable permanently or otherwise in order to limit scope and volume of the Personal Data after retention period expires or the Company considers that it is beyond the necessity for the purpose to collect the Personal Data or when the Company has to comply with the request of Data Subject to delete Personal Data.

Article 11. Security of Personal Data

The Company will keep the Personal Data appropriately according to technical Measure  and organizational Measure to secure the Processing of Personal Data and to prevent any  breach of Personal Data. The Company has implemented policy, rule and regulation for  Personal Data protection and measures to prevent the recipient of Personal Data from the  Company using or disclosing the Personal Data without the right to do so. The Company is also  reviewing such policy, rule and regulation periodically. The managements, employees, service  providers, agents of the Company are also required to keep confidential of Personal Data  according to the rules and regulations of the Company.

Article 12. Rights of the Data Subject

12.1 Data Subject has the rights as follows:

(1) Right to withdraw the consent

If the Data Subject gives consent to the Company to Processing his/her Personal Data  (either such consent was given prior to the enforcement date of applicable personal data  protection laws or after), the Data Subject is entitled to the right to withdraw the given consent  at any time during the period that the Personal Data is with the Company, unless there is any  limitation by laws or applicable contracts.

The Data Subject, however, acknowledges that the withdrawal of consent may affect  he/she from using products or services of the Company. For example, the Data Subject may not receive benefits, promotions, new offers, better products, or services those meet he/she  needs or may not receive newsletter. Thus, it is advisable to study and inquire about the effects  prior to withdraw.

(2) Right to Access

The Data Subject is entitled to the right to access his/her Personal Data and request the  Company to make a copy of such Personal Data, and also request the Company to disclose  how the Data Subject’s Personal Data was collected. In this regard, the Company may reject  Data Subject’s request, if the request to access and receive of copy of such Personal Data will  affect the right and freedom of any third party or the Company has the obligation to comply  to the law or court order prohibiting the disclosure of such Personal Data.

(3) Right to data portability

The Data Subject is entitled to right to receive his/her Personal Data in the event the  Company has provided the Personal Data in a readable or usable format by tools or device  that works automatically and able to Processing Personal Data by automatic means. The Data  Subject further has right to request a transmission or transfer such Personal Data to another  Data Controller, if such transmission or transfer is doable by automatic means. Also, Data  Subject has right to receive Personal Data so transmitted or transferred to another Data  Controller, unless it is unable to be received due to technical reasons.

However, the Personal Data of the Data Subject in the above paragraph must be the  Personal Data which the Data Subject has provided consent to the Company to Processing; or  such Personal Data is necessary for the Company to Processing in order to allow the Data  Subject to use the products or services of the Company according to the objective of the Data  Subject, who is the contractual party of the Company; or such Personal Data is necessary for  the Company to Processing in order to process the request of the Data Subject prior to the use  of project and/or service of the Company ;or other Personal Data as required by the laws

(4) Right to object

The Data Subject is entitled to the right to object the Processing of Personal Data at  any time, if the Processing of Personal data is for purpose of legitimate interest of the Company  or other person either natural person or juristic person as long as such collection is not beyond  the limit he/she can reasonably expect or to carry out the mission for public interest. In case  the Data Subject objects, the Company can still Processing his/her Personal Data only to which  the Company can demonstrate that such Processing is more important that the Data Subject’s  fundamental right or such Processing is needed for the Company to insist its right under the  laws, to comply with laws or to defense itself in the litigation case, as the case may be

Moreover, the Data Subject is entitled to the right to object the Processing of his/her  Personal Data, if it is for the purposes related to marketing, scientific research, historical research  or statistics.

(5) Right to Erasure

The Data Subject is entitled to right to request the Company to erase or destroy his/her  Personal Data or to render it unidentifiable to the Data Subject, in the event that (i) the Data  Subject trusts that his/her Personal Data was unlawfully Processing or (ii) the Data Subject views  that the Company has no longer needs to collect the Personal Data according to this Privacy  Notice or (iii) the Data Subject exercises the right to withdraw his/her consent to the Company  to Processing the Personal Data or exercises the right to object as stated above. However, the  right of Data Subject under this section is subject to the Company’s duty to comply with the  laws and the Company’s legal right to claim for retention of such Personal Data.

(6) Right to suspension

The Data Subject is entitled to right to temporarily suspend the use of Personal Data, if  the Company is processing his/her request to rectify Personal Data or request to object the  Processing or if it is no longer necessary for the Company to Processing his/her Personal Data  and the Company has to delete or destroy the Personal Data, however, the Data Subject  chooses to request for suspension instead.

(7) Right to Rectification

The Data Subject is entitled to right to request the Company to rectify his/her Personal  Data to be correct, up-to-date, complete, and not misleading.

(8) Right to complain

The Data Subject is entitled to the right to lodge a complaint with the relevant legal  authority, if he/she believe that the Processing of Personal Data was done in a manner that  violates or in compliance with applicable laws. In case the Data Subject has any concerns or  queries about the Company’s practice related to his/her Personal Data, please feel free to  contact the Company through the channel indicated in Article 14 of this Privacy Notice. If there  is a reasonable ground to believe that the Company has violated the data protection law, the  Data Subject has right to lodge a complaint with a panel of experts appointed by the Personal  Data Protection Committee in accordance with procedures prescribed by such law.

If the Data Subject submits a request to exercise his/her right under the personal data  protection law, upon receipt by the Company of such request, the Company shall promptly  act as requested within the period specified by the laws. The Company, however, reserves the  right to reject or not act upon such request, if legally permissible.

12.2 It is the Company’s sole discretion to accept or reject the request of Data Subject. The rights of Data Subject under Article 12.1 may be limited by applicable laws. In case it is  necessary for the Company, the Company may reject request of the Data Subject or the  Company may inform that it is unable to act upon the request, for example, it is the duty of  the Company to perform as required by the laws or the court order, for the public interest or  in case the exercise of the right of Data Subject violates other’s right and freedom etc. In case  the Company rejects the request of the Data Subject, rest assured that the Company will  elaborate the reasons.

Article 13. Security Measures to Protect the Personal Data

Security of the Personal Data is the Company’s priority. Encryption restriction, limitation to the right to access Personal Data are some of our security measures to ensure the Data Subject that the Company’s staffs and third party who acts on behalf of the Company have complied and will always comply with appropriate measures to protect Personal Data. The Company is responsible to duty to prevent Personal Data leakage and the Company has appropriate measures to protect and Processing the Personal Data.

The Company regularly reviews and revises security measures and procedures to protect Personal Data to be up-to-date in order to obtain an appropriate level of security of Personal Data when compares with the possible risks as well as in order to ensure that confidential of Personal Data, completeness and readiness of Processing are continuous. The security measures must prevent the loss of Personal Data and prevent unauthorized collection, access, use, modification, or disclosure of Personal Data. Rest assured that the Company will use security measures for Processing all kind of Personal Data, no matter such Processing is in electronic form or paper form.

Article 14. Link to Third Party’s Website

By using the Company’s application or website, you agree that it may contain links to social networks, platforms and other websites operated by third parties. It is the Company’s attempts to link to the websites that have appropriate standards to protect personal data, however, the Company has no responsibility to the content or standard of personal data protection of those websites unless otherwise agreed. Data Subject acknowledges that the information provides by him/her to such website of third party will be collected by such third party and the personal data will be processed according to such third party’s policy (if any). In this case, the Data Subject is recommended to read and follow the policy appearing in the third party’s website separately from the Company’s.

Article 15. Change in this Privacy Notice

The Company may consider reviewing this Privacy Notice regularly to be in line with related guidelines, laws, regulations. The Company shall keep the Customer informed of important changes in this Privacy Notice together with announcement of the revised version of the Privacy Notice via appropriate channel. The Customer is recommended to check and review the changes to this Privacy Notice periodically.

Article 16. Communication Channel

In case you are of the opinion that any Processing of your Personal Data is not in compliance with Personal Data Protection Act B.E. 2562, you have right to lodge a complaint to Data Controller.

Details of Data Controller

     Like me Co., Ltd.

     Address 126/5 Thai Sri Tower, Krungthonburi Rd., Banglamphulang, Klongsan, Bangkok, 10600

     Contact Number 02-408-5410

     email:

Details of Data Protection Officer

     Name-Surname Kochaporn Pathomnupong

     Address 134/341 Ideo Mobi Sathorn, Krungthonburi Rd., Banglamphulang, Klongsan, Bangkok, 10600

     Contact Number 082-417-7253

     email: kochaporn.p@likemeasia.com

Article 17. Governing Law

You acknowledge and agree that this Privacy Notice is governed and construed in accordance with Thai laws, and Thai courts shall have the competent jurisdiction over any dispute arising from this Privacy Notice.

Announced on 18 January B.E. 2566