Privacy Policy
Last Updated: February 15, 2025
At BlazeChargeFlow, we understand that your privacy matters. This policy explains how we collect, use, and protect your personal information when you work with us on test case development and execution projects. We're committed to being transparent about our data practices and respecting your rights under Thailand's Personal Data Protection Act (PDPA) and international privacy standards.
Information We Collect
We collect information that helps us provide better testing services and maintain professional relationships with our clients. Here's what we typically gather and why we need it.
Business Contact Information
- Names and job titles of key contacts
- Business email addresses and phone numbers
- Company names and addresses
- Project requirements and technical specifications
Project-Related Data
During test case development, we might access system data, user workflows, and application details necessary to create comprehensive testing scenarios. We only access what's required for your specific project and with your explicit permission.
Technical Information
Our website collects standard technical data like IP addresses, browser types, and page visit patterns. This helps us improve our site performance and understand how clients find our services.
How We Use Your Information
Everything we collect serves specific purposes related to delivering quality testing services and maintaining professional client relationships.
| Purpose | Information Used | Legal Basis |
|---|---|---|
| Project delivery and communication | Contact details, project specifications | Contract performance |
| Quality assurance and testing | System data, user workflows | Contract performance |
| Invoice processing and payments | Business information, project details | Contract performance |
| Service improvement | Feedback, project outcomes | Legitimate business interest |
Data Protection and Security
We take data security seriously, especially when handling sensitive testing data and business information. Our security measures include both technical safeguards and operational procedures.
- Encrypted data transmission and secure file sharing platforms
- Access controls ensuring only authorized team members handle your data
- Regular security audits and system updates
- Secure backup procedures with encryption at rest
- Employee training on data protection best practices
- Incident response procedures for any potential data breaches
We understand that test environments often contain sensitive information. That's why we establish separate, secure channels for each client project and ensure data isolation between different client engagements.
Data Sharing and Third Parties
We don't sell your personal information to anyone. However, we do work with carefully selected service providers who help us deliver our testing services effectively.
Service Providers We Work With
- Cloud storage providers for secure file sharing and backup
- Communication platforms for project coordination
- Testing tools and software platforms required for your projects
- Payment processors for invoicing and financial transactions
All our service providers are bound by strict confidentiality agreements and are required to implement appropriate security measures. We only share the minimum amount of data necessary for them to provide their services.
Important Note About Client Confidentiality
We never share details about your testing projects, system vulnerabilities, or business processes with other clients or third parties unless required by law.
Your Rights and Choices
Under Thailand's PDPA and international privacy laws, you have several rights regarding your personal information. We've made it straightforward to exercise these rights.
What You Can Request
- Access: Get a copy of the personal information we hold about you
- Correction: Update or correct any inaccurate information
- Deletion: Request removal of your data (subject to legal and contractual obligations)
- Portability: Receive your data in a commonly used format
- Restriction: Limit how we process your information in certain circumstances
- Objection: Object to processing based on legitimate interests
To exercise any of these rights, simply contact us using the information provided at the end of this policy. We'll respond within the timeframes required by applicable law, typically within 30 days.
Note: Some data may need to be retained for legal compliance, contract fulfillment, or legitimate business purposes even after you request deletion. We'll explain any limitations when processing your request.
Data Retention
We don't keep your information longer than necessary. Our retention periods are based on business needs, legal requirements, and industry best practices for IT services.
| Data Type | Retention Period | Reason |
|---|---|---|
| Project files and test cases | 3 years after project completion | Client support and reference |
| Communication records | 2 years after project completion | Quality assurance and dispute resolution |
| Invoice and payment data | 7 years | Tax and legal compliance |
| Marketing contact information | Until you unsubscribe or request removal | Ongoing business relationship |
When retention periods expire, we securely delete or anonymize your information. For test data containing sensitive information, we use certified data destruction methods to ensure complete removal.
International Data Transfers
As an IT services company, we sometimes work with international clients or use global service providers. When your information crosses borders, we ensure it remains protected.
- We only transfer data to countries with adequate protection levels
- For other transfers, we use standard contractual clauses or similar safeguards
- Client data for testing purposes stays within agreed geographic boundaries
- We maintain documentation of all international transfers
Cookies and Website Analytics
Our website uses cookies to improve your browsing experience and help us understand how visitors use our site. Most cookies we use are essential for the website to function properly.
Types of Cookies We Use
- Essential cookies: Required for basic website functionality
- Analytics cookies: Help us understand site usage patterns
- Preference cookies: Remember your settings and preferences
You can control cookie settings through your browser preferences. However, disabling certain cookies might affect website functionality or your user experience.
Changes to This Policy
Privacy laws and our business practices evolve over time. When we make significant changes to this policy, we'll notify existing clients via email and update the "Last Updated" date at the top of this page.
For minor updates or clarifications, we'll update the policy and post the changes on our website. We encourage you to review this policy periodically, especially before starting new projects with us.
Continued Use Means Acceptance
By continuing to use our services after policy changes take effect, you're indicating acceptance of the updated terms.
Legal Compliance
BlazeChargeFlow operates under Thailand's Personal Data Protection Act (PDPA) and maintains compliance with international privacy standards including GDPR principles for our global clients.
We regularly review our data practices to ensure ongoing compliance with applicable laws and regulations. Our legal basis for processing personal data is typically contract performance, legal compliance, or legitimate business interests as outlined in this policy.
Privacy Questions and Contact
We're here to address any questions or concerns about your privacy and data protection. Don't hesitate to reach out if you need clarification about our practices or want to exercise your privacy rights.
919/9 Moo 2 Taiban Mueang Samut Prakan District
Samut Prakan 10280, Thailand
Phone: +66 53 800 800
info@blazechargeflow.com
For privacy-related inquiries, please include "Privacy Request" in your email subject line. We'll respond to all privacy requests within 30 days as required by applicable law.