Policy
Introduction :
IASO Co., Ltd. is committed to protecting your privacy. The following outlines our practices regarding the processing of your personal data, including the collection, use, disclosure (collectively referred to as "Processing"), and protection of the personal information you provide during your visit to our website https://www.iasosleep.com/ or when using the IASO Sleep application or our services. This privacy policy applies to any data that can identify you directly or indirectly, whether received from you directly or disclosed by third parties ("Data" or "Personal Data"). In addition to adhering to this policy, we will comply with applicable laws, regulations, announcements, orders, or rules from relevant regulatory authorities, including any amendments. As the data controller of your personal data, we have established this privacy policy as part of the terms and conditions for providing services on our website and your access to those services. By using our services, you acknowledge that you have read and agreed to this privacy policy.
Collection of Personal Data
We collect your personal data only to the extent necessary when you voluntarily provide it directly to us, whether through our website or other channels. Examples include appointments with doctors, online registration, subscribing to newsletters, and offline transactions, such as patient registration at a hospital's registration counter, including through our dealers, service providers, or public agencies, when you have consented to the disclosure of such data or as required by law.
Types of Personal Data Collected
The types of personal data we collect depend on the purpose of data processing as described in this privacy policy. This includes, but is not limited to: - Identity Information: Name, photo, gender, date of birth, passport number, national ID number, or other identifying numbers. - Contact Information: Address, phone number, email, and other social media contacts. - Contractual Information: Data related to service agreements. - Service Access Data: Appointment information, personal data of relatives, accommodation preferences, and additional services. - Subscription and Marketing Participation Data**: Registration for seminars, promotional offers, etc. - Statistical Data: Number of patients, website visits. - Website Usage Data: IP address, cookies, online appointment information. - Health Data: Reports on physical and mental health, your healthcare management, laboratory test results, and diagnoses. - Feedback Data: Your feedback and treatment outcomes. - Other Data: Photographs, audio recordings of conversations. We will not collect or use your sensitive information, such as religious beliefs or criminal history, unless required by law or with your explicit consent.
Purpose of Processing Personal Data
We may process your data based on your consent, contractual obligations, or other legitimate interests. The purposes include: - Medical Services: Providing or delivering our services and facilitating access to your services, both online and offline, such as medical appointments, sending notifications, and identifying patients. - Supportive Activities: Other purposes related to the aforementioned services or that you have consented to occasionally. - Legal Compliance: Recording individuals visiting or receiving services at our hospitals via CCTV for security purposes and complying with government requests or legal obligations. - Marketing: We will process your data for marketing purposes only with your consent, including promoting our services, sending promotional information, customer satisfaction surveys, and market research.
Disclosure of Personal Data
We may disclose or transfer your personal data to third parties, both within and outside Thailand, that meet the legal standards for personal data protection. We will implement necessary measures in accordance with legal regulations for the following parties: - Affiliated hospitals and companies. - Service providers acting on our behalf, such as laboratory testing services, IT service providers, and business partners. - Banks and payment service providers, such as credit or debit card companies. - Government agencies, regulatory bodies, and other entities as permitted by law.
Links to Third-Party Websites
Our website may contain links to third-party websites. This privacy policy does not cover these websites, and we are not responsible for their actions or the processing of your personal data by these third parties.
Data Retention and Security
Your personal data will be retained only as long as necessary for the purposes described in this privacy policy or as required by law. Once the retention period has expired, if you do not consent to further processing, we will destroy your personal data in accordance with our data destruction procedures without delay. We will use appropriate technical and administrative measures to protect your personal data according to the NIST Cybersecurity Framework to prevent unauthorized access, alteration, use, or disclosure
Rights of Personal Data Owners
You may contact us to exercise the following rights regarding your data: - Access your personal data and request a copy or to transfer it to another data controller. - Object to the collection, use, or disclosure of your personal data. - Request correction of inaccurate or incomplete data. - Request deletion or destruction of your data or disclose its source if consent was not provided. - File a complaint with the Personal Data Protection Committee if you believe your data is being processed unlawfully. - Withdraw your consent to process your personal data at any time, although this may affect your ability to receive our services.
Changes to the Privacy Policy
We may review and change this privacy policy periodically to reflect changes in our services, operations, or applicable laws. The latest version will be published on our website.
Contact Us
If you have any questions or need further information regarding the collection, use, or disclosure of personal data, exercising your rights, or withdrawing consent, you can contact us at:
IASO Co., Ltd.
Contact Address: 819/8 Soi Priyanon, Bangpongpang, Yan Nawa, Bangkok 10120 Phone: 02-295-3777
Data Protection Officer
(Data Protection Officer) Email: marketing@amcmedicalcenter.com
Please include your name, surname, ID card/passport number, subject of inquiry, details of any issues, and your contact information, including an email address for correspondence.