nexorain.blog

Legal

Privacy Policy

Last updated:

nexorain.blog ("we", "us", "our") is committed to protecting your personal information. This Privacy Policy explains how we collect, use, store, and protect data about you when you interact with our website at nexorain.blog or enquire about our financial education programs. We operate in accordance with Thailand's Personal Data Protection Act B.E. 2562 (PDPA).

1. Who We Are

nexorain.blog is a financial education service provider based in Bangkok, Thailand. Our registered address is 50/8 Pattanakarn Soi 20, Suan Luang, Bangkok 10250. You may contact us at +66 2 322 8641 or by email at [email protected].

2. Information We Collect

2.1 Information you provide directly

When you submit an enquiry form on our website, we collect:

  • Your name
  • Your email address
  • Your telephone number (if provided)
  • The content of your message or enquiry
  • Your interest in specific programs (if indicated)

2.2 Information collected automatically

When you visit our website, we may collect certain technical information automatically, including:

  • Your IP address and general geographic location (country/city level)
  • Browser type and version
  • Pages visited and time spent on each page
  • Referring website address
  • Device type and operating system

This information is collected through cookies and similar technologies. Please see our Cookie Policy for details.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To respond to your enquiry — when you contact us, we use your details to provide a personal reply.
  • To deliver educational services — if you enrol in a program, we use your information to schedule and manage sessions.
  • To improve our website — anonymous usage data helps us understand how people navigate our site and where we can make it clearer.
  • To comply with legal obligations — we may retain records as required by Thai law, including tax and accounting requirements.

We do not use your personal information for automated decision-making or profiling that has legal or similarly significant effects on you.

4. Legal Basis for Processing

Under the PDPA, we process your personal data on the following lawful bases:

  • Your consent — for analytics cookies and marketing communications, where you have given explicit consent.
  • Contractual necessity — for information needed to deliver the service you have requested.
  • Legitimate interests — for basic website security and fraud prevention, where this does not override your rights.
  • Legal obligation — where Thai law requires us to retain certain records.

5. How We Share Your Information

We do not sell, rent, or trade your personal information to any third party. We may share limited information with trusted service providers who help us operate our website (for example, web hosting, email delivery, or analytics platforms), under strict data processing agreements. These providers are not permitted to use your data for any other purpose.

We may also disclose information where required by Thai law or a legitimate legal process.

6. Data Retention

We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected or as required by law. Enquiry records are generally kept for up to three years. If you enrol in a program, records related to that engagement may be retained for up to seven years for accounting and legal compliance purposes.

7. Your Rights Under the PDPA

As a data subject under Thailand's PDPA, you have the right to:

  • Access — request a copy of the personal data we hold about you.
  • Correction — ask us to correct inaccurate or incomplete information.
  • Erasure — request deletion of your data, subject to legal retention requirements.
  • Withdrawal of consent — where processing is based on your consent, you may withdraw it at any time without affecting the lawfulness of prior processing.
  • Objection — object to processing based on legitimate interests.
  • Data portability — receive your data in a structured, commonly used format.
  • Lodge a complaint — file a complaint with the Personal Data Protection Committee (PDPC) if you believe your rights have been violated.

To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days.

8. Security

We take appropriate technical and organisational measures to protect your personal data against accidental loss, unauthorised access, alteration, or disclosure. Our website uses HTTPS encryption. Access to personal data is restricted to staff who need it to perform their duties.

No method of transmission over the internet is entirely secure. If you have concerns about the security of your information, please contact us directly.

9. Cookies

We use cookies and similar technologies to operate and improve our website. For full details on what cookies we use and how to manage your preferences, please read our Cookie Policy.

10. Third-Party Links

Our website may contain links to external websites. We are not responsible for the privacy practices or content of those sites and encourage you to review their privacy policies separately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "last updated" date at the top of this page. Continued use of our website after a change constitutes acceptance of the revised policy. For significant changes, we will make reasonable efforts to notify you directly.

12. Contact Us

If you have any questions about this Privacy Policy or how we handle your personal data, please contact us:

Back to Home