Privacy Policy

1. Introduction

Orbitalink ("we," "our," or "us"), located at 55/18 Sathorn Tai Road, Sathorn, Bangkok 10120, Thailand, is committed to protecting the privacy and personal data of our website visitors and clients. This Privacy Policy explains how we collect, use, store, and protect your information when you interact with our website and services.

This policy applies to all personal data processed in connection with our AI consulting services, website, and communications. If you have questions about this policy, please contact us at privacy@orbitalinesk.

2. Data We Collect

We may collect the following categories of personal data:

Information you provide directly: When you submit a contact form, send us an email, or engage our services, we may collect your name, email address, phone number, company name, and the content of your message.

Information collected automatically: When you visit our website, we may collect technical data such as your IP address, browser type, operating system, pages visited, and time spent on each page. This data is collected through cookies and similar technologies.

Client engagement data: When you engage our consulting services, we may process additional data as needed for service delivery, as outlined in individual service agreements.

3. How We Use Your Data

We process your personal data for the following purposes:

Service delivery: To respond to inquiries, provide consultations, and deliver the services you have requested.

Communication: To send you information about your inquiry or project, and, with your consent, to share relevant updates about our services.

Website improvement: To understand how visitors use our website and to improve its functionality and content.

Legal compliance: To meet our obligations under applicable law, including Thailand's Personal Data Protection Act (PDPA).

4. Legal Basis for Processing

We process your personal data based on one or more of the following legal grounds under the PDPA:

Consent: Where you have given clear consent for us to process your data for a specific purpose.

Contractual necessity: Where processing is necessary to perform a contract with you or to take steps at your request before entering into a contract.

Legitimate interest: Where processing is necessary for our legitimate business interests, provided those interests do not override your rights and freedoms.

5. Data Sharing and Third Parties

We do not sell your personal data. We may share your data with trusted third-party service providers who assist us in operating our website and delivering our services, including:

Analytics providers: Such as Google Analytics, to help us understand website usage patterns.

Hosting providers: Who maintain the infrastructure on which our website operates.

All third-party providers are contractually required to handle your data in accordance with applicable data protection laws and to use it only for the purposes specified by us.

6. Data Protection Measures

We implement appropriate technical and organizational measures to protect your personal data, including:

Encryption of data in transit and at rest where applicable.

Access controls limiting data access to authorized personnel only.

Regular review of our security practices and infrastructure.

In the event of a data breach that poses a high risk to your rights and freedoms, we will notify you and the relevant supervisory authority as required by law.

7. Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Contact form submissions are typically retained for up to 24 months. Client engagement data is retained in accordance with individual service agreements and applicable legal requirements.

8. Cookies

Our website uses cookies and similar technologies to enhance your browsing experience and to analyze site traffic. For detailed information about the cookies we use and how to manage your preferences, please visit our Cookie Policy.

9. Your Rights

Under Thailand's PDPA, you have the following rights regarding your personal data:

Right of access: You may request a copy of the personal data we hold about you.

Right to rectification: You may request that we correct inaccurate or incomplete data.

Right to erasure: You may request that we delete your personal data, subject to legal retention requirements.

Right to data portability: You may request that we transfer your data to another controller in a structured, machine-readable format.

Right to object: You may object to the processing of your personal data in certain circumstances.

Right to withdraw consent: Where processing is based on consent, you may withdraw that consent at any time.

To exercise any of these rights, please contact us at privacy@orbitalinesk. We will respond to your request within 30 days. You also have the right to lodge a complaint with the Office of the Personal Data Protection Committee (PDPC) in Thailand.

10. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of those websites. We encourage you to review the privacy policies of any third-party sites you visit.

11. Children's Privacy

Our services are not directed at individuals under the age of 18. We do not knowingly collect personal data from minors. If we become aware that we have collected data from a person under 18, we will take steps to delete that information promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Any significant changes will be communicated through our website. The "Last Updated" date at the top of this policy indicates when the most recent revision was made.

13. Contact Information

Data Controller: Orbitalink

Address: 55/18 Sathorn Tai Road, Sathorn, Bangkok 10120, Thailand

Email: privacy@orbitalinesk

Phone: +66 2 679 3842