Information We Collect

We gather different types of information to provide you with quality educational services. Some data comes directly from you, while other information is collected automatically as you use our platform.

Educational Performance Data

We track your progress through course materials, quiz results, assignment submissions, and time spent on different modules. This helps us personalize your learning experience and measure course effectiveness. You can request to see this data anytime by contacting us.

Communications

When you email us, fill out contact forms, or participate in surveys, we keep records of those interactions. This helps us respond to your questions and improve our services based on your feedback.

How We Use Your Information

Your data serves specific purposes that directly benefit your learning experience. We don't use your information for unrelated activities without getting your permission first.

• Enrolling you in courses and providing access to learning materials
• Processing payments and maintaining transaction records
• Sending course updates, schedule changes, and important announcements
• Personalizing content recommendations based on your interests and progress
• Responding to your support requests and technical questions
• Analyzing platform usage to improve course quality and user experience
• Preventing fraud and maintaining platform security
• Complying with legal requirements and educational regulations in Thailand

Marketing Communications

We might send you emails about new courses, upcoming programs, or educational resources that match your interests. You can opt out of these messages at any time by clicking the unsubscribe link in any email or adjusting your account preferences. We'll still send you essential emails about courses you're enrolled in.

Data Sharing and Third Parties

We don't sell your personal information to anyone. However, we do share data with specific partners who help us run our educational platform.

Service Providers

We work with companies that handle payment processing, email delivery, cloud hosting, and analytics. These providers only access the data they need to perform their services and must protect your information according to our standards.

Educational Partners

Some courses involve collaboration with other educational institutions or industry experts. When relevant, we may share your enrollment information and progress with these partners, but only for course delivery purposes.

Legal Requirements

We'll disclose your information if required by Thai law, court orders, or government requests. This might happen during investigations, legal proceedings, or to protect someone's safety.

Business Transfers

If desktopxsys merges with another company or sells assets, your data might transfer to the new entity. We'd notify you before this happens and explain any changes to how your information is handled.

Your Privacy Rights

Under Thailand's PDPA, you control your personal data. These aren't just theoretical rights – we've set up clear processes for you to exercise them.

How to Exercise Your Rights

Send an email to [email protected] with your request. Include your account email and specify what you want us to do. We'll verify your identity and respond within 30 days. Some requests might take longer if they're complex, but we'll keep you updated on progress.

Limitations

Sometimes we can't delete or modify your data immediately. For example, we need to keep financial records for tax purposes, maintain course completion certificates for accreditation, or preserve data involved in legal disputes. We'll explain if any limitations apply to your request.

Data Security Measures

We use multiple layers of protection to keep your information safe. While no system is completely immune to threats, we've implemented strong safeguards.

Technical Protections

All data transmission uses SSL/TLS encryption. Our servers sit behind firewalls and intrusion detection systems. We encrypt sensitive data at rest and regularly update our security protocols to address new threats.

Access Controls

Only authorized staff members can access your personal information, and only when necessary for their work. We use two-factor authentication, maintain detailed access logs, and review permissions regularly.

Vendor Security

Our third-party providers must meet security standards comparable to ours. We review their practices annually and require them to notify us immediately if they experience data breaches.

Incident Response

If we discover a data breach that affects you, we'll notify you within 72 hours as required by Thai law. We'll explain what happened, what data was involved, and what steps we're taking to address the situation.

Data Retention

We don't keep your information forever. Different types of data have different retention periods based on legal requirements and business needs.

• Account information stays active while you use our services, plus three years after your last activity
• Course completion records remain for ten years to support credential verification
• Financial records are kept for seven years as required by Thai tax law
• Marketing consent records stay until you withdraw permission
• Technical logs and analytics data are deleted after two years
• Support correspondence is archived for three years

Deletion Process

When retention periods expire, we securely delete or anonymize your data. Deletion means permanent removal from active systems and backups. Anonymization strips identifying information so the data can't be traced back to you.

International Data Transfers

Our servers are located in Thailand, but some service providers operate in other countries. When we transfer data internationally, we ensure adequate protection.

Transfer Safeguards

We use standard contractual clauses approved by data protection authorities. These contracts require recipients to maintain data protection levels comparable to Thailand's PDPA. We also conduct due diligence on the privacy laws in destination countries.

Where Your Data Goes

Some data processing happens in Singapore and Japan for cloud hosting. Email services route through servers in the United States. Payment processing may involve banks in various countries depending on your payment method.

Cookies and Tracking

Our website uses cookies and similar technologies to function properly and understand how people use our platform.

Types of Cookies

Essential cookies keep you logged in and remember your preferences. Analytics cookies help us see which courses are popular and where users struggle. We don't use advertising cookies or tracking pixels from social media companies.

Your Cookie Choices

You can control cookies through your browser settings. Blocking essential cookies might prevent some platform features from working. Analytics cookies are optional – you can opt out while still using all course features.

Children's Privacy

Our courses are designed for adults aged 18 and older. We don't knowingly collect information from children under 18. If you're a parent who discovers your child provided us with personal information, contact us immediately and we'll delete it.

Educational Institutions

Sometimes schools or training centers enroll students in our courses. In these cases, the institution is responsible for obtaining appropriate consent from students or their parents. We process student data on behalf of the institution according to their instructions.

Changes to This Policy

We update this privacy policy occasionally to reflect new practices or legal requirements. When we make significant changes, we'll notify you by email and display a notice on our website for at least 30 days.

Notification Method

For minor updates like clarifying existing practices, we'll update the "Last Updated" date at the top. For major changes affecting how we use your data, you'll get a direct email explaining what changed and why.

Your Options After Changes

If you don't agree with updated terms, you can close your account. We'll delete your data according to our retention schedule, keeping only what's legally required.