Special Deal! Free Website Migration with every plan, Cheap Domain Registration, and Friendly support.

Skip to content

Privacy Policy

Current Version: 1.0
Last Updated: Nov  18, 2023

This Privacy Policy (referred to as the “Policy” or “Privacy Policy”) pertains to the processing of personal data by Standard Technology Services Co., Ltd., a registered company in Thailand (Registration number: 0125565007851), with its registered address: 34/14, Moo3, Chaengwattana Rd, Pakkret 11120, Thailand. In this document, terms such as “merry,” “we,” “us,” and “our” denote Standard Technology Services Co., Ltd., acting as the data controller for personal data.

This Policy outlines our data privacy procedures concerning the handling of personal data from individuals (“data subjects,” “you,” “your”) who visit our website (referred to as the “Site”), utilize the services and/or products obtained or accessed through the Site (the “Services”), and/or as further detailed in the Policy below. It’s important to note that this Policy does not govern the processing of your personal data by third parties whose websites are not owned and operated by us.

I. Categories of data subjects and types of personal data 

In the context of this Policy, individuals whose personal data undergoes processing under these terms, along with the types of their personal data processed by us, can be classified as follows:

  1. Website visitors 

a. Refers to individuals who browse our Site. It is clarified that websites hosted by us but managed by our Customers are excluded from the definition of Site. Our Site and Services may feature links to third-party websites that are beyond our control, and we bear no responsibility for their content. If you choose to visit these pages through a link, be aware that they may have their own privacy policies, and we lack authority over them. We recommend reviewing the privacy policies of these entities before utilizing their respective websites.

b. Types of personal data: 

  •   • Contact information – We may gather personal data, including first and last names, email addresses, and other contact details, when you subscribe to our newsletter, register , download materials from our Site such as e-books, or engage in communication, comments, reviews, and discussions in the designated sections on our Site.
  • Personal data in log files – During your visit to our Site, we may process information such as your IP address, referral URL, exit URL, browser software, operating system, date/time, and/or clickstream data.
  • Personal data collected through website analytics tools – We may collect information about your usage of our Site, including the number of visits, pages viewed, and the popularity of specific content. Analytics tools employ tracking technologies, such as cookies, to identify your device and compile information. This includes details about the pages you visit, the time spent on these pages, your assigned IP address, your operating system and web browser, and the site you visited prior to coming to our Site.
  1. Customers  

a. Definition: Persons who enter into an agreement with us for the provision of Services.  

b. Types of personal data:  

  • Customer account details: We handle personal information, encompassing first and last names, the legal entity’s name and its representative, address, phone number, email address, language preferences, IP address, and payment/billing details (e.g., credit card information, PayPal account, personal or TAX identification number). This processing facilitates order placement, information requests, support inquiries, and service utilization. Optionally, customers can choose to provide information regarding their Facebook and/or Twitter accounts.
  • Personal data in log files: When a customer visits our site, we may process details such as IP address, referral URL, exit URL, browser software, operating system, date/time, and clickstream data.
  • Personal data gathered through website analytics tools: Information about a customer’s site usage, including the number of visits, pages viewed, and the popularity of specific content, may be collected. Analytics tools, utilizing tracking technologies like cookies, identify the device used and compile information, including pages visited, time spent on pages, IP address, operating system, web browser, and the site visited before ours.
  • Other forms of personal data: In customer interactions, including support channels, provided personal data (including voice) is processed to address queries. Additionally, if a customer loses account access, we may request specific documents to verify identity. These documents may include personal data such as name, address, nationality, date of birth, and identification document number.
  1. Users

a. Definition: Individuals who access and/or administer any of the Services for and on behalf of  our Customers.

b. Types of personal data:  

  •   User information: We may handle personal details like first and last names, address, phone number, and email address to facilitate access and/or administration of the Services, request information, and provide support.
  • Personal data in log files: When a User visits our Site, we may process information such as IP address, referral URL, exit URL, browser software, operating system, date/time, and/or clickstream data.
  • Personal data collected through website analytics tools: Information about a User’s site usage, including the number of visits, pages visited, and the popularity of specific content, may be gathered. Analytics tools, utilizing tracking technologies like cookies, recognize the device used and compile information, including pages visited, time spent on pages, the assigned IP address, the User’s operating system and web browser, and the site visited before our Site.
  • Other forms of personal data: When a User contacts us, including through any of our support channels, we may process the provided personal data to address the User’s query.
  1. Registrants

a. Definition: Owners of domain names, registered with us. 

b. Types of personal data: 

  • Ownership details of domain names – We handle personal information, including first and last names, legal entity name and its representative, address, phone number, and email address of Registrants. Additionally, we process information related to the domain name, including its status, name server, IP address, etc.
  1. End Users

a. Definition: Individuals who visit, access, use, and/or interact with our Customers’ websites.

b. Types of personal data: 

  • Personal data in log files – When an End User accesses our Customer’s website, we collect information such as the End User’s IP address, domain name, date, request method, URI user agent, referrer, TLS version, and cache data.
  1. Affiliates

a. Definition: Persons who participate in our Affiliate Program.

b. Types of personal data: 

  • Affiliate account details – We handle personal information, including first and last names, date of birth, legal entity name and its representative, address, phone number, email address, IP address, and payment information (e.g., PayPal account and/or bank account details, personal or TAX identification number, etc.).
  • Personal data in log files – When an Affiliate visits our Site, we may process information such as IP address, referral URL, exit URL, browser software, operating system, date/time, and/or clickstream data.
  • Personal data collected through website analytics tools – Information about the Affiliate’s use of our Site, such as the number of visits, pages visited, and the popularity of specific content, may be collected. Analytics tools utilize tracking technologies, such as cookies, to identify the device used and compile information. This includes details about the pages the Affiliate visits, the time spent on these pages, the assigned IP address, the operating system and web browser used, and the site visited before coming to our Site.
  • Other forms of personal data – We may process our communication with the Affiliate, as well as any publicly available personal information about the Affiliate (e.g., on social media accounts and channels). Additionally, we process any voluntarily provided personal information by the Affiliate. When the Affiliate contacts us, including through support channels, we may process the provided personal data to address the Affiliate’s query. Moreover, in the event of the Affiliate losing access to their account, we may request specific documents to verify their identity. These documents may contain personal data such as name, address, nationality, date of birth, identification document number, etc.
  1. Participants in events/promotions

Definition: Individuals engaging in raffles, surveys, campaigns, and/or registering to attend events, webinars, and other promotions, whether co-organized or sponsored by us or any of the entities within the Pop-a-cloudhost Group.

b. Types of personal data: 

  • Contact information – We may handle Participant’s information, including first and last names, email addresses, addresses, phone numbers, social media usernames, etc.
  • Other forms of personal data – If the event/promotion is recorded, we may process your image and voice. In the case of promotions occurring on our Site, when you visit, we may process information such as your IP address, referral URL, exit URL, browser software, operating system, date/time, and/or clickstream data. Additionally, we may collect information about your Site usage, such as the number of visits, pages viewed, and the popularity of specific content. Analytics tools use tracking technologies, like cookies, to identify your device and compile information. This includes details about the pages you visit, the time spent on these pages, the assigned IP address, the operating system and web browser used, and the site visited before coming to our Site.
  1. Other individuals

a. Definition: Individuals who might not fit within the parameters of the previously mentioned definitions, including but not limited to potential customers, potential affiliates, third parties, participants in account ownership disputes, complainants, inquirers, and followers in our social media channels.

b. Types of personal data:

  • Contact information – We may handle details such as first and last names, legal entity name and their representatives, email addresses, addresses, phone numbers, social media usernames, etc.
  • Other forms of personal data – We may process our communication with you, including your voice if you contact us by phone, and/or your image if you choose to share such data. Additionally, we may process personal information that is publicly available (e.g., on social media or other web pages) or any other types of personal data provided to us to address your queries.

II. Sources of data collection

In addition to obtaining information directly from you, who serves as the primary source of data, we may also gather information from publicly accessible sources (e.g., trade registers of companies, WHOIS databases, local national lists of sanctioned persons, social media platforms, and other websites) and/or from third parties. These third parties may include our affiliates and trusted partners, encompassing services like marketing, advertising, and security providers, among others.

 III. Purposes of and legal basis for data processing 

We aim to gather only the essential personal data required to fulfill the purposes of data processing outlined below.

   • To deliver, manage, maintain, and safeguard the Services, including our network, information systems, and server functionality, and fulfill our commitments outlined in relevant agreements and terms. This includes the administration of any promotions jointly organized or sponsored by us or any entities within the Pop-a-cloudhost Group. The legal basis for such data processing is the execution of a contract and compliance with legal obligations.

  • To upkeep and secure our Site, network, information systems, and server functionality, involving activities such as investigating and preventing fraudulent transactions, unauthorized access, and other illicit activities. This encompasses addressing queries, enforcing our terms, defending against claims, and protecting the rights, property, or safety of Pop-a-cloudhost. Additionally, we may notify you about Service-related matters and invite you to provide feedback or reviews regarding the quality of our Services or your experiences with us. This data processing is grounded in our legitimate interest.
  • To promote our brand and Services, including sending marketing communication, newsletters, surveys, and monitoring and analyzing activities for advertising purposes. The legal basis for this data processing is your consent, which is voluntary and can be revoked at any time through settings in the Customer account or the unsubscribe link in marketing emails.
  • To fulfill legal obligations, such as compliance with court orders, requests from competent authorities, and applicable legislation. The legal basis for this data processing is the fulfillment of a legal obligation to which we are subject.
  • For other purposes not covered by the aforementioned categories, we will seek your consent. 
  •      If you are in a country governed by privacy laws where consent is the sole or most appropriate legal basis for processing personal data, your acceptance of this Privacy Policy, use of our Site and/or Services, or communication with us will be considered as such.

IV. Cookies, beacons, tags, pixels

We utilize cookies to collect certain information detailed in this Policy. Cookies can store your account identifier, ordering status, personalisation, or website tracking. They serve technical purposes, such as tracking your ongoing shopping session, enabling you to proceed to checkout and complete your order, or saving previously entered information (such as language preference and region). This facilitates providing enhanced and more personalised Services, products, and relevant communication tailored to you. Cookies also assist in fulfilling contractual obligations to third parties and partners when you make a purchase on our Site via a link from theirs.

Additionally, we may employ remarketing pixels from third parties to gather information indicating your visit to our Site and interest in specific offers.

Beacons, tags, click tracking codes, and scripts are used to analyze user trends and site navigation, gather insights about the user base, enhance Services and the Site, provide advertising based on activities and interests, and measure advertising effectiveness. Consequently, we may present targeted or interest-based offers to you, reflecting products you currently own or have recently viewed, and deliver other communications more relevant to your interests beyond our Site, on other websites within the third party’s network.

We may share a unique code, such as a hashed email address, with advertising platforms and social networks. This allows us to track online conversions from various sources and deliver targeted advertising to you or a custom audience sharing similar traits.

You can find detailed information about our use of cookies and you may also adjust your preferences as described in our Cookie Policy

V. Sharing of personal data

We disclose entire or part of your personal data in the following circumstances and always ensure that the appropriate safeguards for your privacy are undertaken:

  • 1. To deliver the Services and manage our business operations, we may enlist the assistance of third-party service providers for administrative, billing, tax, compliance, and other purposes related to account management. Your personal data may be shared with entities within the Pop-a-cloudhost Group, business partners, independent contractors, intermediaries, external consultants, auditors, collaborators, and more. These third-party providers operate in various industries such as fraud detection, technology services, internet information, payments and data processing, finance, media and communication, internet content and information, advertising, marketing, analytics, etc. They may be located globally, including but not limited to the EU, EEA, Switzerland, UK, USA, Canada, Australia, Singapore, Japan, Brazil, etc.
    • 1.1. Personal data may be shared with our payment partner Stripe, which act as an independent controller for processing shared personal data. Stripe’s privacy statement can be found at https://stripe.com/en-gb/privacy.
    • 1.2. Data may also be shared with Google, the provider of the invisible reCaptcha service used to safeguard our website from malicious activity. Use of invisible reCaptcha is subject to  Google’s Privacy Policy and Terms of Service
  • 2. To resell products and/or services from our contractors and comply with their rules, regulations, and policies, we may share your personal information from orders with contractors (e.g., domain name registrars, SSL certificate providers, etc.). Contractors process the shared personal data following their privacy policies.
  • 3. To comply with applicable legislation and exercise rights, we may share personal data in good faith to meet laws, regulations, legal procedures, enforceable requests, and/or competent authority requirements. This is done to enforce our terms, defend against claims, and protect the rights, property, or safety of Pop-a-cloudhost, our customers, and/or the public as required and/or permitted by law.
  • 4. In the event of business reorganization, transfers, and/or acquisitions, your information may be shared with third parties regarding any prospective or completed business reorganization, merger, sale of company assets, or acquisition of our business by another entity. This includes the unlikely scenario of Pop-a-cloudhost going out of business or entering bankruptcy. In such events, we will take reasonable steps to notify you.
  • 5. Your information may be shared with third parties as per your explicit consent or direction, but we will not sell, rent, share, or disclose personal data for commercial purposes in a manner contrary to the commitments made in this Policy.
  • 6. Third-party service providers, such as Trustpilot or similar vendors, may be utilized for reviews to collect feedback regarding our Services. In such cases, your name, email, chat or ticket ID, or other reference data will be shared with these providers, who will process your data under their own privacy policies and practices.

VI. International data transfers

During our business operations and the provision of services, personal data may be transferred globally, including but not limited to regions such as the EU/EEA, USA, Canada, Australia, Singapore, Japan, Brazil, etc. This occurs when both we and the third parties mentioned in Section V utilize data centers, and facilities, and/or conduct data processing operations.

 VII. Security measures

We utilize the Secure Sockets Layer (SSL) protocol to encrypt the information you input on our Site, ensuring its security during transmission to and from our Site. When storing information, we employ encryption for critical data, with access to this information tightly restricted, logged, and periodically reviewed. Credit card data and payments, where collected (without storing full credit card numbers and CVV codes), undergo tokenization and stringent security measures enforced by our payment processors in compliance with PCI DSS requirements.

For the collection, storage, and disclosure of personal data, we uphold physical, logical, electronic, and procedural safeguards. Our security procedures may, in certain instances, necessitate proof of identity before disclosing personal data. To prevent unauthorized access to your account and information, we implement session management, robust authentication requirements, login expiration mechanisms, and offer the option of 2-factor authentication for Client Area access. Authentication data is encrypted. As an extra precaution, we encourage you to sign out when concluding the use of your account and computer.

While we implement appropriate technical and organizational measures to safeguard your personal data against loss, theft, and unauthorized use, access, or modification, it is important to note that no transmission of information over the Internet is entirely secure. Therefore, we cannot provide an absolute guarantee of the security of any personal data transferred over the Internet to us.

VIII. Retention periods

The information gathered on our website will be maintained only for the duration necessary to accomplish the intended purpose of its collection. Generally, your Client Area account details will be automatically and securely erased two years after the cessation of any active services with us. However, to adhere to applicable regulations concerning the retention of personal information related to contractual agreements, service provision, financial transactions, billing, invoicing operations, tax calculations, etc., a versioned copy of your order, payment, and billing documentation may be retained for a period of 10 years following the termination of your customer account. Our systems automatically delete your personal data in accordance with these specified retention periods.

IX. Your rights

You are entitled to the following rights in relation to your personal data:

  • Right to information: You possess the entitlement to be informed regarding the gathering and utilization of your personal data.
  • Right to access: You maintain the privilege to examine and request duplicates of your personal data.
  • Right to rectification: You hold the authority to seek the correction of inaccurate, incomplete, or outdated information.
  • Right to erasure (“right to be forgotten”): Under specific circumstances, you have the right to request the deletion of your personal data.
  • Right to data portability: You are entitled to request the transfer of your data to another controller or its provision to them (if technically feasible) in a machine-readable electronic format.
  • Right to restrict processing: Under certain conditions, you have the right to request limitations on the processing of your personal data.
  • Right to withdraw consent: You have the right to retract your previously given consent for the processing of your personal data, especially when we rely on your consent as the legal basis for processing.
  • Right to object: Under specific conditions, you possess the right to object to the processing of your personal data (e.g., when we rely on our legitimate interests as the legal basis for processing).
  • Right to object to automated processing: You have the right to oppose decisions made with your data solely based on automated decision-making or profiling.

X. Age Restrictions

In alignment with the Terms of Service of Pop-a-cloudhost, our Site and Services are intended for utilization by individuals who are at least 18 years old. If you are below the age of 18, it is necessary to seek permission from your parent or guardian to access the Site. If you have information indicating that an individual under the age of 18 has purchased Services and shared their personal information with us, kindly reach out to us using the contact details provided in the “Contact Information” section below. Upon awareness that we are processing the personal data of an individual under the age of 18, we will promptly delete the data and cease the use of the Services.

XI. Changes to the Privacy Policy

 We reserve the right to amend this Policy at any given time. In the event of such modifications, we will communicate the updates on the Site and any other location we consider suitable, ensuring that you stay informed about the personal data we gather, our processing methods, and the circumstances, if any, under which we disclose it.

If substantial alterations are made to this Policy, we will provide notification here, via email, or through a notice on our Site, at least ten (10) calendar days prior to the implementation of the changes, unless otherwise specified in the respective notification.

XII. Data Protection Authority

You have the right to direct questions or lodge a complaint about the processing of your personal data at any time with the competent supervisory authority for data protection – Office of the Personal Data Protection Commission In Thailand 

XIII. Contact information

For any data processing-related questions and/or requests, please contact us at: dpo@popacloudhost.com