Information We Collect

When you engage with our training programs or contact us for information, we gather different types of data. Some you provide directly, while other information comes from how you use our website and services.

Personal Information You Provide

This includes data you give us when filling out forms, registering for programs, or reaching out through email:

• Full name and preferred contact name
• Email address and phone number
• Current employer and job title (if relevant to course selection)
• Educational background and technical experience level
• Payment information for course enrollment
• Career goals and specific learning interests

Technical Data We Collect Automatically

Our website collects certain technical information to improve your experience and understand how people use our platform:

• IP address and approximate geographic location
• Browser type, version, and device information
• Pages visited, time spent on site, and navigation patterns
• Referral source (how you found our website)
• Course materials accessed and learning progress

How We Use Your Information

We use collected data to deliver quality education and maintain smooth operations. Here's what happens with your information:

Data Sharing and Third Parties

Running a modern training platform means working with trusted partners. Here's who might see your information and why:

Service Providers We Work With

These companies help us deliver our services but can only use your data for the specific tasks we assign them:

• Payment processors for secure transaction handling
• Email service providers for course communications
• Cloud hosting services for platform infrastructure
• Analytics tools to understand website usage patterns
• Customer support software for handling inquiries

Legal Requirements

Sometimes we're required to share information with authorities. This only happens when legally mandated by Thai law or to protect our rights and the safety of our community.

Business Transfers

If SupremisTech undergoes a merger, acquisition, or sale of assets, your information may transfer to the new entity. We'd notify you before this happens and explain any changes to how your data is handled.

Your Rights Under Thailand PDPA

Thailand's Personal Data Protection Act gives you substantial control over your information. You can exercise these rights by contacting us:

Access and Portability

You can request a copy of all personal data we hold about you. We'll provide this in a commonly used, machine-readable format within 30 days. This includes enrollment records, payment history, and communication logs.

Correction and Updates

Found something outdated or incorrect? Let us know, and we'll fix it promptly. You can update most information yourself through your account dashboard.

Deletion Rights

You can ask us to delete your personal information, though we may need to keep certain records for legal or legitimate business purposes (like tax records or completed course certificates).

Restriction of Processing

If you're concerned about data accuracy or how we're using your information, you can request that we limit processing while we address your concerns.

Objection to Processing

You can object to certain uses of your data, particularly for marketing purposes. We'll stop that processing unless we have compelling legitimate grounds to continue.

Withdrawal of Consent

Where we process data based on your consent (like marketing emails), you can withdraw that consent anytime. This won't affect the lawfulness of processing that happened before withdrawal.

Data Security Measures

We've implemented multiple layers of protection to keep your information safe from unauthorized access, alteration, or disclosure.

Technical Safeguards

• 256-bit SSL encryption for all data transmitted between your browser and our servers
• Encrypted database storage for sensitive personal and payment information
• Regular security audits and vulnerability assessments
• Automated backup systems with encrypted off-site storage
• Multi-factor authentication for administrative access
• Firewall protection and intrusion detection systems

Organizational Measures

• Access to personal data limited to authorized staff who need it for their roles
• Regular security training for all employees handling personal information
• Confidentiality agreements with all staff and service providers
• Incident response procedures for potential data breaches

Despite our best efforts, no system is completely secure. If a breach occurs that affects your data, we'll notify you within 72 hours as required by PDPA regulations.

Data Retention Periods

We don't keep your information forever. Different types of data have different retention schedules based on legal requirements and business needs.

After these periods end, we securely delete or anonymize your information so it can no longer identify you personally.

Cookies and Tracking Technologies

Our website uses cookies and similar technologies to function properly and improve your experience. Here's what we deploy and why:

Essential Cookies

These are necessary for the website to work. They handle things like keeping you logged in, remembering your course progress, and maintaining security. You can't opt out of these without breaking the site functionality.

Analytics Cookies

We use these to understand how visitors interact with our site—which pages get the most traffic, where people drop off during enrollment, and what content resonates. This helps us make informed improvements.

Preference Cookies

These remember your choices like language preferences or accessibility settings so you don't have to reconfigure things every visit.

Managing Cookie Preferences

Most browsers let you control cookies through their settings. You can block or delete cookies, though this might affect how well our site works for you. We don't use advertising cookies or third-party tracking for marketing purposes.

International Data Transfers

Our primary operations are in Thailand, but we sometimes work with service providers based in other countries. When your data crosses borders, we take extra steps to protect it.

All international transfers comply with PDPA requirements. We use standard contractual clauses approved by Thai authorities and only work with providers who maintain adequate data protection standards.

If you're accessing our services from outside Thailand, your information will be transferred to and processed in Thailand under the protections described in this policy.

Children's Privacy

Our database administration training programs are designed for adults entering or advancing in professional careers. We don't knowingly collect information from anyone under 18 years old.

If you're a parent or guardian and believe your child has provided us with personal information, contact us immediately. We'll delete that information from our systems within 72 hours.

Changes to This Policy

We update this privacy policy occasionally to reflect changes in our practices, technology, or legal requirements. When we make significant changes, we'll notify you through email or a prominent notice on our website.

The "Last Updated" date at the top shows when we last modified this policy. We encourage you to review it periodically, especially before enrolling in new programs or updating your personal information.

Continued use of our services after changes take effect means you accept the updated policy. If you disagree with changes, you can exercise your data rights as described above, including account closure and data deletion.