Privacy Policy - Advanced Info Services Public Company Limited and Subsidiary Companies

Last Updated on: 08/02/2021

Advanced Info Service Public Company Limited and Subsidiary Companies ("Company") have created this Privacy Policy ("Policy") by slipulating the process of data collect store, use and disclose including other rights of the Data Subject. Therefore, Company would like to announce the Policy as followings:

1. Personal Data 

"Personal Data" means any information pertaining to a Data Subject, which enables the identification of Data Subject, whether direct or indirect.

2. Data collection and storage restriction

• Data collection and storage under this policy will be conducted within the purpose, scope and lawful methods by taking into account the human rights of the Date Subject without conflict with the law in collecting and storing data as necessary for the scopes of service, or other services provided by electronic means within Company's scope of service. Accordingly, the Company will inform Data Subject to acknowledge and giving written consent explicitly through written statement or via electronic channel, eg Short Message Service (SMS) or other appropriate and acceptable methods, unless it is an exception as prescribed by law.  
• The Company may collect and use personal data relating to service preference or subscribed service in which consisting of racial, religious or philosophical beliefs, health information, biological information, disabilities, heredity information or other information. Being that, the Company shall comply with the law.

3. Measures to secure Personal Data

• The Company recognizes the importance of maintaining the security of Data Subject personal data. Therefore, the Company has established measures to maintain the secunty of personal data appropriatety and consistency as prescribed by law. 
• Any personal data that the Company received from the Data Subject such as name, residential address, contact number, identification number, financial information which is identifiable. complete and up-to-date. The Company will carry out appropriate measures to protect the right of the Data Subject.

4. Purpose of Collecting, Storing and Use Personal Data 

The Company shall collect, store, use of Personal Data for the purpose of providing telecommunication service, broadcasting service, television business, payment service, debt collection, or digital service, marketing research and survey, promotional activities, create data base and analysis in order to offer privilege, goods or services, including the investigation in order to execute relevant actions in the event of any breach of the terms of service or any illegal activities, and for any other purpose under the law and/or legal obligations or regulation to which the service is subjected to, including send, transfer and/or disclose personal data to Company business group, business alliance, any agency, organization or juristic person who has a contract or a legal relationship with the Company.

5. Right of Data Subject:

• Request to access, request a copy of Personal Data in accordance with the requirements and methods set by the Company at AIS Service Center or request Company to provide the acquisition of Personal Data.
• Request the Company to correct or change Personal Data that is not correct or inaccurate in order to keep such data up-to-date.
• Request the Company to delete or destroy such Personal Data, except in the case that the company must comply with the relevant laws.

6. Disclosure of Operations, Practices and Policies with respect to Personal Data. 

The Company has complied with laws, including the Notification of the National Telecommunications Commission on Measures for Protection of Telecommunications Service Users' Rights Related to Personal Information, Privacy Rights and Freedom to Communicate by Means of Telecommunications, and other applicable privacy laws, as well as, publish a NBTC Privacy Guideline on the Company's website.

7. Data Protection Officer 

The Company has appointed the Data Protection Officer (DPO) to monitor the operation of the Company with respect to the collect, use and disclose Personal Data in accordance with the Personal Data Protection Act B.E. 2562, and relevant laws.

8. Contact Information 

Customer and Service Management Business Unit
Advanced Info Service Public Company Limited and subsidiary companies
Data Protection Office Email: DPOOFFICE@ais.co.th

9. Enforcement 

In order to comply with this Policy, the Company has appointed the Personal Data and Cyber Security Committee ("Committee"). The Committee has the authority to manage the Personal Data by issuing operation guidelines or approaches as well as amending, improving operation guidelines or approaches in order to manage the Personal Data of the Company with an approval of the Chief Executive Officer to further establish guidelines regarding the operation relating to the Personal Data between the Company and all stakeholders.