Privacy Policy

How we collect, use, and protect your personal information

Last updated: December 1, 2024

1. Introduction

At Crypto2Cash.in.th ("we," "us," or "our"), we are committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, process, and safeguard your information when you use our cryptocurrency exchange services.

This policy applies to all users of our platform and services. By using our services, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Personal Information

We may collect the following personal information:

  • Full name and contact information
  • Email address and phone number
  • Date of birth and nationality
  • Government-issued identification documents
  • Address and proof of residence
  • Bank account and payment information

2.2 Transaction Information

We collect information related to your transactions:

  • Cryptocurrency wallet addresses
  • Transaction amounts and timestamps
  • Exchange rates and fees
  • Payment methods used
  • Transaction history and patterns

2.3 Technical Information

We automatically collect certain technical information:

  • IP address and device information
  • Browser type and version
  • Operating system
  • Log files and usage data
  • Cookies and similar technologies

3. How We Use Your Information

We use your personal information for the following purposes:

  • Service Provision: To provide and maintain our exchange services
  • Identity Verification: To verify your identity and comply with KYC/AML requirements
  • Transaction Processing: To execute and facilitate your cryptocurrency exchanges
  • Customer Support: To respond to your inquiries and provide assistance
  • Legal Compliance: To comply with applicable laws and regulations
  • Fraud Prevention: To detect and prevent fraudulent activities
  • Service Improvement: To analyze usage and improve our services
  • Communication: To send important updates and notifications

4. Legal Basis for Processing

We process your personal information based on the following legal grounds:

4.1 Contractual Necessity

Processing necessary to perform our contract with you and provide our services.

4.2 Legal Obligations

Processing required to comply with legal obligations, including anti-money laundering and tax regulations.

4.3 Legitimate Interests

Processing necessary for our legitimate business interests, such as fraud prevention and service improvement.

4.4 Consent

Processing based on your explicit consent for specific purposes, such as marketing communications.

5. Information Sharing and Disclosure

We may share your information in the following circumstances:

5.1 Service Providers

We may share information with trusted third-party service providers who assist us in:

  • Payment processing
  • Identity verification services
  • Cloud hosting and data storage
  • Customer support services
  • Analytics and monitoring

5.2 Legal Requirements

We may disclose information when required by law or to:

  • Comply with legal processes or government requests
  • Respond to regulatory inquiries
  • Prevent fraud or illegal activities
  • Protect our rights and property
  • Ensure user safety

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity.

6. Data Security

🔒 Security Measures

We implement industry-standard security measures to protect your personal information.

Our security measures include:

  • Encryption: All sensitive data is encrypted both in transit and at rest
  • Access Controls: Strict access controls and authentication procedures
  • Regular Audits: Regular security audits and vulnerability assessments
  • Staff Training: Regular security training for all employees
  • Monitoring: 24/7 monitoring of our systems and networks
  • Incident Response: Comprehensive incident response procedures

7. Cookies and Tracking Technologies

7.1 Types of Cookies

We use different types of cookies:

  • Essential Cookies: Necessary for basic website functionality
  • Performance Cookies: Help us analyze website usage
  • Functional Cookies: Remember your preferences and settings
  • Marketing Cookies: Used for advertising and marketing purposes

7.2 Cookie Management

You can control cookies through your browser settings. However, disabling certain cookies may affect website functionality.

8. Data Retention

We retain your personal information for as long as necessary to:

  • Provide our services to you
  • Comply with legal and regulatory requirements
  • Resolve disputes and enforce our agreements
  • Prevent fraud and abuse

Specific retention periods:

8.1 Account Information

Account information is retained for the duration of your account and up to 7 years after closure for compliance purposes.

8.2 Transaction Records

Transaction records are retained for at least 5 years as required by financial regulations.

8.3 Communication Records

Customer support communications are retained for up to 3 years for quality assurance.

9. Your Rights

You have the following rights regarding your personal information:

  • Access: Right to access your personal information
  • Rectification: Right to correct inaccurate information
  • Erasure: Right to request deletion of your data
  • Portability: Right to receive your data in a portable format
  • Restriction: Right to restrict processing of your data
  • Objection: Right to object to certain processing activities
  • Withdraw Consent: Right to withdraw consent at any time

To exercise these rights, please contact us using the information provided below. We will respond to your request within 30 days.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. When we transfer data internationally, we ensure adequate protection through:

  • Adequacy decisions by relevant authorities
  • Standard contractual clauses
  • Certification schemes and codes of conduct
  • Other appropriate safeguards

11. Third-Party Services

Our website may contain links to third-party services. This Privacy Policy does not apply to such third-party services. We encourage you to review the privacy policies of any third-party services you access through our platform.

12. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected such information, we will take steps to delete it promptly.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Updating the "Last updated" date
  • Sending email notifications for significant changes
  • Displaying prominent notices on our platform

Your continued use of our services after such modifications constitutes your acceptance of the updated Privacy Policy.

14. Regulatory Compliance

We comply with applicable data protection regulations, including:

  • Thailand Personal Data Protection Act (PDPA)
  • European General Data Protection Regulation (GDPR)
  • Other applicable privacy laws in jurisdictions where we operate

15. Contact Information

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us:

Email: [email protected]
Data Protection Officer: [email protected]
Website: https://crypto2cash.in.th
Support: [email protected]

Your Privacy Matters

We are committed to protecting your privacy and maintaining the trust you place in us. If you have any concerns about how we handle your personal information, please don't hesitate to contact us.