PERSONAL DATA PROTECTION POLICY

Personal Data Protection Policy for examinee receiving investigation and treatment

ADDLIFE Company Limited

 

1. Objectives

Addlife (The Company) has established a Personal Data Protection Policy to protect the personal information of all applicants who visit Addlife website.

2. Definitions

“Personal Data” means any information relating to an individual, which enables the identification of the owner of such Personal Data, whether directly or indirectly. This includes general information about the applicant, information used to verify identity, data, biometrics (e.g. fingerprints, faces, etc.), appointment information, payment information, transaction information, health information, disability information, genetic information, and any other personal information about the applicant under the law of protection of personal data. However, this does not include the data of a deceased person in particular, nor does it include statistical or unidentified information about the person who owns the Personal Data. This is not considered personal information by the law on the protection of Personal Data.

“Identification Information” means a password, Personal Identification Number (PIN), or any other code or information used for verification and verification of your access to and use of the service.  For example, health information and doctor appointment information.  This is a measure to prevent unauthorized access by other people whether it is determined by the service provider or the applicant as well as the information used to recover the code or data (if any).

3. Source of Personal Data

• The company will collect your Personal Data which you have submitted to the company website such as e-mail address, name, address, zip code, or telephone number.
• In case you sign up to apply for membership or use one of the services, we will collect additional Personal Data including sex, gender, preferences, interests, credit card number, and the billing address.
• In addition, to survey the popularity of services by using the statistics to improve services it is necessary to collect some additional information such as IP address, browser type, domain name, web page, access time, and referring website address.
• Website may contain links to third-party websites.  If you follow the link, the Personal Data Protection Policy is not applicable to such a destination site.  Please be advised that the company has no liability for the application of your Personal Data by such third parties because it is out of our legal control.  Please ensure that you are satisfied with the policy of each website where your personal data is collected.

3. Personal Data Collected

Categories of your Personal Data to be collected by the company are subject to the situation of such collection and the services requested by the applicant.  Your personal data shall be used to fulfillment of your online or offline transactions or for the completion of the services requested.  The Personal Data to be directly collected by the company from you or the third party are as follows:

• Identification data, such as name, photograph, gender, birthday, passport, identification card number, or any number enable to identify the identity;
• Contact information, such as an address, telephone number, and email address;
• Payment information, such as billing information, credit/debit card, and bank accounts;
• Service receiving information, such as medical appointments and personal data of relatives;
• Marketing activity participation information, such as the information registered for participation in our activities;
• Statistical data, such as the number of patients and website visiting;
• Information from visiting the company’s website, such as IP Address, Cookies, Online Appointment System, or Contact Us;
• Health records, report on physical and mental health, taking care of your health, the test results from the laboratory, and medical diagnosis;
• Information about your use of medications and drug allergies;
• Feedback and medical treatment results are given by you.

We certify not to use your personal information that we have collected to sell or disclose to third parties unless consented to by you only.

4. Use of Personal Data

The company shall use your Personal Data to the extent proposed as follows:

• To provide services or the company’s services;
• To make an appointment with the doctor, message information and advice for the company services;
• To coordinate and forward information, which will speed up the patient transfer process;
• To confirm the identity of patients;
• To send appointment notification or offer help from the company;
• For marketing purposes, sale promotion, and customer relations, such as the transmission of promotional messages, products and services, and promotional materials;
• As a means of communication, query response, or feedback to complaints;
• For the survey of customer satisfaction, market research, statistical analysis, processing, and display for the purpose of product and service improvement, or to create new products and services for the enhancement of customer benefits.
• For accounting or financial purposes, such as checking credit card payments, billing, verifying, and refunding request;
• For security purposes and to comply with the company’s rules;
• To comply with the laws, requirements, regulations, rules, or any requests from government agencies, such as observance of subpoenas or court orders or any other legal requests; and
• For other purposes that encourage the implementation of the above-mentioned purposes or as consented by you from time to time.

5. Disclosure of Personal Data

The company may disclose or transfer your Personal Data to any third parties. The company shall carry out any measures to the extent necessary and reasonable for so doing or in compliance with the rules and laws subject to the aforementioned purposes to the following:

• Companies;
• Bank and the payment service provider, such as credit card or debit card companies; and
• Governmental entities, supervisory units, and other units as permitted or designated by laws.

6. Keeping Personal Data and Security

The company will use security measurement and proper management in order to secure and maintain your Personal Data collected by the company in accordance with our information technology security policies and practices.

7. Accessing or Correcting Personal Data

You are able to access to or ask for updating and correcting your own Personal Data, including any rights stated here above, such as the requesting for your Personal Data copy; for suspension of usage or disclosure of your Personal Data, whenever you determine that your Personal Data has been used beyond the scope of the aforementioned purposes or without your consent.

8. Change to the Personal Data Protection Policy

The company shall review and update the Personal Data Protection Policy on regular basis in accordance with the applicable practices, laws, and rules.  The change to this Personal Data Protection Policy will be updated on our website: www.add-life.org.

9. Rights of Personal Data Owner

You have the right to act as follows:

• Right to withdraw consent: You have the right to withdraw consent for the processing of Personal Data that you have provided to the company all the times we keep your Personal Data.
• Right of access: You have the right to access your own Personal Data and ask the company for a copy of your Person Data.  You may request the company to disclose the source of acquiring your Personal Data that has not consented to you.
• Right of rectification: You have the right to ask the company to correct any wrong information or to update the data for completion.
• Right to erasure: You have the right to ask the company to erase your information for a particular reason.
• Right to restriction of processing: You have the right to restrict the use of your Personal Data for a particular reason.
• Right to data portability: You have the right to move and transfer your Personal Data provided to the company to another data controller or to yourself for a particular reason.
• Right to object: You have the right to object to the processing of your Personal Data for a particular reason.

You can contact www.add-life.org to proceed the rights as stated above without any charges. The company will consider the matter and inform you of the result no later than 30 days after receiving the application.  If Personal Data leaks are found from www.add-life.org we will notify you within 72 hours.

You are able to access to or ask for updating and correcting your own Personal Data, including any rights stated here above, such as the requesting for your Personal Data copy; for suspension of usage or disclosure of your Personal Data, whenever you determine that your Personal Data has been used beyond the scope of the aforementioned purposes or without your consent.

The application for access or correct the Personal Data as stated in the above paragraph must be in writing, together with an identification evidence, such as a copy of identification card or passport, details of an appointment with the doctor and the contact information (mailing address or email).  Please submit such application to the address stated below:

Addlife Co. Ltd.

Life Center, Q House Lumpini Building, 2^nd Floor, Unit 207-208, 1 South Sathorn Raod,

Tungmahamek, Sathorn, Bangkok 10120

Telephone +66 2 677 7077

Email: info@add-life.org

10. Change to the Personal Data Protection Policy

The company shall review and update the Personal Data Protection Policy on regular basis in accordance with the applicable practices, laws, and rules.  The change to this Personal Data Protection Policy will be updated on our website: www.add-life.org. However, if you have any queries, suggestions, or complaints about our Personal Data Protection Policy, please contact us at DPO@add-life.org.

 

This Personal Data Protection Policy is effective from 1^st June 2022.