_{Last updated on 7th of April of 2026}

‍

_‍

PRIVACY POLICY

_‍

1.  Introduction

The Thai-Ukrainian Chamber of Commerce, licenced by the Chamber Registrar in Phuket Province under registration No. 0838568000013, located at No. 147/254, Moo 6, Choeng Thale Sub-district, Thalang District, Phuket Province, 83110 (hereinafter - “TUAC”, “Chamber”, “We”, or “Us”) is committed to protecting the privacy and personal data of its members, partners, Website Users, event participants, and other individuals whose personal data We process.

This Privacy Policy (hereinafter - “Policy”) explains how We collect, use, store, disclose, and protect personal data in connection with Our activities, including membership administration, events, communications, Website operation, and other services provided by the Chamber.

This Policy applies to personal data collected on the website: https://thaiukraine.org/ (hereinafter - “Website”), membership applications, event registrations, communications, and any other interactions with the Chamber, whether online or offline.

The Chamber processes personal data in accordance with applicable data protection laws, including the Personal Data Protection Act B.E. 2562 (2019) of Thailand (“PDPA”) and other applicable data protection regulations where relevant.

_‍

By providing personal data to the Chamber, You acknowledge and agree that Your personal data may be processed in accordance with this Policy and applicable data protection laws.

_‍

2.  Definitions

Data Controller means a natural person or a juristic person who has the power and duties to make decisions regarding the collection, use, or disclosure of the personal data. For the purposes of this Policy, the TUAC acts as the Data Controller, unless expressly stated otherwise.

Data Processor means a natural person or a juristic person who operates in relation to the collection, use or disclosure of the personal data pursuant to the instructions given by or on behalf of a Data Controller.

Data Subject means a natural person who is the owner of the personal data that the TUAC collects, uses, or discloses.

Personal data means any information relating to an identifiable person, whether directly or indirectly, but does not include the information of the deceased persons in particular.

 Processing of Personal data means any action taken with personal data, such as collecting, recording, copying, organizing, storing, updating, changing, using, recovering, disclosing, transferring, publishing, moving, merging, deleting, destroying, etc.

Third Party means any natural or legal person, public authority, agency or body other than the Data Subject, the Data Controller, the Processor, or persons who, under the direct authority of the Data Controller or Processor, are authorised to process Personal Data.

Sensitive data means personal data, which includes data on race, ethnicity, political opinions, religious beliefs or philosophies, sexual behavior, criminal history, health information, disability, trade union information, genetic information, biometric data, or any other data that similarly affects the data subject as determined by the Personal Data Protection Committee.

_‍

3.  Information We Collect

The TUAC may collect and process personal data in connection with membership applications, events, communications, Website use, and other Chamber activities.

We may collect the following categories of personal data:

_‍

3.1. Information You provide to Us

We may collect personal data that You provide directly to Us, including when You:

• apply for membership;
• register for events, meetings, or activities;
• subscribe to newsletters or communications;
• contact Us via email, Website forms, or other communication channels;
• update Your membership or contact information;
• participate as a speaker, partner, or attendee at Chamber events.

_‍

This information may include:

• first name and last name;
• identification and passport numbers, 
• gender;
• date of birth; 
• images, photographs, videos;
• demographic information such as academic qualifications, occupation, job details, company name, preferences and interests;
• email address and telephone number;
• business address;
• membership-related information;
• event participation information;
• correspondence and communications with the Chamber;
• other information that we may notify you about from time to time, including for the purposes of surveys, the sale of publications, and other service offerings;
• your IP address, browser type, domain names, access times and referring website addresses, which will automatically be collected by Us to maintain quality of the service and to compile general statistics regarding use of our Website;
• any documents or information You voluntarily provide to Us.

_‍

3.2. Membership and corporate member information

Where membership is held by a company or organisation, We may collect personal data relating to representatives, employees, or contact persons of corporate members, including:

• names of representatives and employees;
• job titles;
• business contact details;
• participation in Chamber committees, events, or activities;
• membership profile information.

_‍

3.3. Event participation information

If You participate in Chamber events as a speaker, attendee, sponsor, or organiser, We may collect information related to Your participation, including:

• event registration details;
• attendance records;
• participation history;
• presentations or materials provided;
• photographs, video recordings, or event-related media where applicable.

_‍

3.4. Website and technical information

When You use Website, We may automatically collect certain technical and usage information, including:

• IP address;
• browser type and version;
• device type;
• operating system;
• Website usage data;
• pages visited and interaction with the Website;
• date and time of access.

_‍

3.5. Cookies

The Website uses cookies and similar technologies to ensure proper functioning, improve user experience, and analyse Website usage. Further information on how We use cookies, including the types of cookies used, their purpose, and how You can manage or disable cookies, is provided in Our separate Cookies Policy, available on the Website.

_‍

3.6. Non-personal data

We may also collect non-personal data, including aggregated or anonymised information that does not directly identify individuals, for statistical, administrative, and Website improvement purposes.

_‍

4.  How We Use Collected Information

We may use personal data for the following purposes:

• to process membership applications and manage membership records;
• to organise and administer events, meetings, and Chamber activities;
• to communicate with members, partners, and Website Users, including sending newsletters, updates, invitations, and announcements;
• to facilitate networking, business cooperation, and communication between members and partners of the Chamber;
• to operate, maintain, and improve the Website and Chamber services;
• to respond to enquiries, requests, and correspondence;
• to maintain administrative, accounting, and internal records;
• to comply with legal and regulatory obligations;
• periodically send you email updates regarding new activities, service offerings, or other information that may be relevant to you using the email address you have provided. You may opt out of receiving such communications at any time;
• to protect the rights, property, or security of the Chamber and its members.

We may also use personal data for statistical, analytical, and organisational purposes in aggregated or anonymised form where possible.

We do not sell personal data.

_‍

5. Legal Basis for Processing Personal Data

The TUAC may process personal data based on one or more of the following legal bases: 

1. Consent. Where You have given consent for the collection, use, or disclosure of Your personal data, for example when You subscribe to newsletters, register for events, or agree to receive communications.
2. Performance of a contract or membership relationship. Where processing is necessary for membership administration, event participation, communications, or the provision of Chamber services.
3. Legal or regulatory obligations. Where processing is necessary to comply with applicable laws, regulations, legal processes, accounting requirements, or requests from competent authorities.
4. Legitimate interests. Where processing is necessary for the legitimate interests of the TUAC, including administration of the Chamber, communication with members and partners, organisation of events and activities, networking and cooperation between members, operation and improvement of the Website and services, internal administration, and protection of the rights or security of the Chamber and its members.
5. Public interest / legal claims. The TUAC may also process personal data where necessary for the establishment, exercise, or defence of legal claims or for compliance with legal obligations.

The TUAC will process personal data only for the purposes for which it was collected or for purposes compatible with those purposes, unless otherwise required or permitted by law.

_‍

6. Consent

Where the processing of Personal Data is based on consent, We will obtain your express consent at the time of collecting your Personal Data. In certain circumstances, your consent to the collection, use, or disclosure of your Personal Data may be implied from the nature of your interactions with Us, the purpose for which the information is provided, or in the course of your participation in our activities, services, events, or membership processes.

Where You provide Personal Data of another individual (for example, your spouse, family members, employees, representatives, or other individuals), You confirm and represent that you have obtained the necessary consent from that individual for the collection, use, and disclosure of their Personal Data by the Chamber for the relevant purposes, and that the individual has been informed of and agreed to the terms of this Policy.

This Policy shall supplement any other policies that You may have previously provided consent to Us in respect of your Personal Data.

_‍

7. Rights of Data Subjects

You have certain rights in relation to Your personal data under applicable data protection laws. These rights may be exercised subject to legal limitations and applicable regulations.

1. Right of access. You have the right to request access to and obtain a copy of Your personal data held by the Chamber, and to request information about how Your personal data is collected, used, or disclosed.
2. Right to data portability. You have the right to request Your personal data in a structured, commonly used, and machine-readable format and to request that such data be transferred to another Data Controller where technically feasible.
3. Right to object. You have the right to object to the collection, use, or disclosure of Your personal data in certain circumstances, including where personal data is processed for direct marketing or based on legitimate interests.
4. Right to erasure. You have the right to request that Your personal data be erased, destroyed, or anonymised where:

• the personal data is no longer necessary for the purposes for which it was collected;
• You withdraw consent and there is no legal basis for further processing;
• the personal data has been unlawfully processed; or
• You have objected to the processing and there are no overriding legitimate grounds.

5. Right to restriction of processing. You have the right to request that the Chamber restrict the use of Your personal data in certain circumstances, for example where the accuracy of the data is contested or where the data is no longer needed but must be retained for legal claims.
6. Right to rectification. You have the right to request correction of inaccurate, incomplete, outdated, or misleading personal data.
7. Right to withdraw consent. Where personal data is processed based on Your consent, You have the right to withdraw Your consent at any time. Withdrawal of consent will not affect the lawfulness of processing carried out before the withdrawal.
8. Right to file a complaint. You may file a complaint with the Personal Data Protection Committee if We or the data processor, including our employees or contractors, violate or fail to comply with the PDPA.

If You wish to exercise any of Your rights, please contact the TUAC using the contact details provided in Section 14 of this Policy. The Chamber may need to verify Your identity before processing Your request.

_‍

8. Disclosure and Sharing of Personal Data

The TUAC may share or disclose personal data where necessary for the operation of the Chamber, the provision of services, organisation of events, or where required by law, with the following categories of recipients:

1. Members and networking activities.

Personal data may be shared with other members, partners, or participants of Chamber activities where this is necessary to facilitate communication, networking, business cooperation, or participation in Chamber events and activities. Information included in membership directories, event participant lists, or Chamber communications may be accessible to other members or participants.

2. Service providers.

We may share personal data with third-party service providers who assist Us in operating the Chamber, the Website, or Our activities, including:

• IT service providers;
• Website hosting providers;
• communication and email service providers;
• administrative or professional service providers.

Such third parties are required to process personal data only for specified purposes and in accordance with PDPA.

3. Event organisation.

Where necessary for event organisation, We may share limited personal data (such as name, company, or dietary requirements) with event venues, organisers, or service providers involved in the organisation of events.

4. Legal and regulatory obligations.

We may disclose personal data where required to comply with applicable laws, regulations, legal processes, or requests from authorities, or where necessary to protect the rights, property, or security of the Chamber, its members, or third parties.

_‍

9.  Third Party Services

The Website may contain links to third-party websites or services that are not operated by the TUAC. This Policy does not apply to such third-party websites or services. The Chamber is not responsible for the content, privacy practices, or data processing activities of third parties. Users are encouraged to review the privacy policies of any third-party websites they visit.

_‍

10.  Transferring Information Outside of Thailand

The TUAC may transfer personal data to recipients located outside Thailand where such transfer is necessary for the operation of the Chamber, cooperation with members or partners, organisation of events, or the provision of services.

Where personal data is transferred outside Thailand, the Chamber will take reasonable steps to ensure that appropriate safeguards and security measures are in place to protect personal data in accordance with applicable data protection laws. Where required by applicable law, the TUAC will obtain consent prior to transferring personal data outside Thailand.

_‍

11. Data Security

The TUAC implements appropriate technical and organisational measures to protect personal data against unauthorised or unlawful access, use, disclosure, alteration, loss, or destruction. Access to personal data is limited to authorised persons who have a legitimate business need to access such data and who are subject to confidentiality obligations.

While the TUAC takes reasonable steps to protect personal data, the transmission of information via the internet is not completely secure and the Chamber cannot guarantee absolute security of data transmitted electronically. We take reasonable measures to protect your Personal Data; however, we cannot guarantee the absolute security of any Personal Data collected from or about you, nor can we guarantee that our websites will be free from harmful elements such as viruses, bugs, trojan horses, spyware, or adware. You acknowledge the inherent risks associated with transmitting information over the Internet or conducting transactions through online platforms. We strongly recommend that You take appropriate precautions when disclosing Personal Data online, including using strong passwords, updating them regularly, and accessing our services through a secure browser.

Where applicable, You are responsible for maintaining the confidentiality and security of your username and password and must not disclose them or allow them to be disclosed to any unauthorized person. You must notify us as soon as reasonably practicable if you become aware or suspect that your username or password has been compromised, lost, stolen, disclosed, or used without authorization, or if You suspect any unauthorized transactions or activity. We shall not be liable for any loss or damage arising from your failure to keep your username and password secure or from any unauthorized use resulting from such failure.

In the event of a personal data breach, the TUAC will take all reasonable technical and organisational measures to contain, investigate, and mitigate the breach and to prevent further unauthorised access, disclosure, or loss of personal data. We implement appropriate security technologies and procedures, to minimise the risk of data breaches.

If we become aware that a personal data breach is likely to result in a high risk to the rights and freedoms of affected individuals, we will notify the affected persons as soon as reasonably practicable using email or any other appropriate communication channel available. Where required by applicable law, we will also notify the relevant authorities.

_‍

12. Data Retention

The Chamber will retain personal data only for as long as necessary to fulfil the purposes for which it was collected.

Personal data related to membership, events, and communications may be retained for the duration of the membership relationship and for a reasonable period thereafter to comply with legal obligations, resolve disputes, maintain records, and protect the legitimate interests of the TUAC.

In determining the appropriate retention period, the Chamber considers:

• the purpose for which the personal data was collected and processed;
• the nature and sensitivity of the personal data;
• legal and regulatory requirements;
• administrative and operational needs of the Chamber;
• potential risks associated with unauthorised use or disclosure.

When personal data is no longer required for the purposes for which it was collected, the TUAC will securely delete, destroy, or anonymise the personal data in accordance with applicable laws and internal data retention procedures. In some circumstances, the Chamber may retain anonymised or aggregated information for statistical, historical, or organisational purposes without further notice.

_‍

13. Changes to this Policy

We may update or amend this Policy from time to time to reflect changes in legal requirements, TUAC activities, data processing practices, or organisational changes. Any updated version of this Policy will be published on the Website. Where appropriate, We may also notify members or users by email or through Chamber communications.

The updated Policy becomes effective upon publication on the Website unless otherwise stated.

We encourage You to review this Policy periodically to stay informed about how We protect and process personal data.

_‍

14. Contact Details

If You have any questions, requests, or concerns regarding this Policy or the processing of Your personal data, You may contact Us using the contact details below:

Thai-Ukrainian Chamber of Commerce (TUAC)

Address: No. 147/254, Moo 6, Choeng Thale Subdistrict, Thalang District, Phuket Province 83110

E-mail: info@thaiukraine.org