Version 1.0 | Effective: ⚠ SET data-effective ON <body> BEFORE PUBLICATION
This policy explains how WizEmp collects, uses, stores, and protects your personal data when you visit wizemp.com. It applies to all language versions of this website.
WizEmp is the personal data controller for the data processed through this website — a Power BI and Business Intelligence consultancy based in Thailand, operating under the Personal Data Protection Act B.E. 2562 (PDPA).
WizEmp | Si Racha, Chonburi, Thailand
Web: wizemp.com | DPO: dpo@wizemp.com
This website and this Privacy Policy are governed by Thai law, specifically the Personal Data Protection Act B.E. 2562 (PDPA). This English version is the authoritative text. Where any translated version of this policy conflicts with the English text, the English text governs. All other language versions are provided for convenience only.
We collect only what we need. The following table lists every category of personal data collected through this website, the source, and the purpose.
| Category | Data Collected | Source | Purpose |
|---|---|---|---|
| Contact form submissions | Name, email address, company name, message content | You — when you complete a contact form | Respond to your enquiry |
| Website analytics | Anonymised IP address, pseudonymised device type, browser, approximate city-level location, pages visited, session duration | Google Analytics 4 cookies (with your consent) | Understand how visitors use the site to improve content and performance |
| Marketing attribution | Pseudonymised browser identifiers, campaign interaction data | LinkedIn Insight Tag cookies (with your consent) | Measure the reach of WizEmp content published on LinkedIn (attribution only — not ad targeting) |
| Power BI embeds | Microsoft session cookies (from app.powerbi.com and login.microsoftonline.com domains) | Microsoft — when you interact with an embedded report | Render and operate embedded Power BI reports. WizEmp receives no personal data from these cookies. |
| Cookie consent records | Anonymised session token, consent date, policy version, categories accepted, withdrawal date (if applicable) | Your consent plugin interaction | Demonstrate compliance with PDPA accountability obligations |
| DPO correspondence | Name, email address, message content, any data you provide in your request | You — when you write to dpo@wizemp.com | Respond to data protection requests and fulfil our obligations under PDPA |
Under the PDPA, we process your data on the following lawful bases:
| Activity | Lawful Basis | Explanation |
|---|---|---|
| Contact form / DPO requests | Legitimate Interest | You actively submit your data by contacting us. A privacy notice is displayed at the point of collection. We have a legitimate interest in responding to enquiries directed at WizEmp. |
| Google Analytics | Consent | Analytics cookies only fire after you give consent via the cookie banner. |
| LinkedIn Insight Tag | Consent | Marketing cookies only fire after you give consent via the cookie banner. |
| Power BI embeds / strictly necessary cookies | Legitimate Interest | These cookies are technically necessary to deliver the functionality you requested. WizEmp receives no personal data. |
| Cookie consent records | Legal Obligation | PDPA requires us to demonstrate that consent was obtained. Storage of consent records fulfils this accountability obligation. |
We keep your data only as long as necessary for the purpose it was collected, or as required by law.
| Data Category | Retention Period | Then What |
|---|---|---|
| Contact form submissions | 2 years from last contact | Permanently deleted |
| Website analytics (pseudonymised) | 14 months (GA4 property setting) | Automatically purged by Google |
| LinkedIn attribution data | Governed by LinkedIn's retention policy | See LinkedIn Privacy Policy |
| Cookie consent records | 3 years | Permanently deleted |
| DPO correspondence | 3 years from resolution of the request | Permanently deleted |
We share personal data with the following third-party service providers, solely for the purposes described in this policy. WizEmp ensures that appropriate contractual protections are in place with each processor as required by PDPA.
| Processor | Location | Service | Privacy Policy |
|---|---|---|---|
| Google LLC | USA | Website analytics (Google Analytics 4) | Link |
| LinkedIn Ireland Unlimited Company | Ireland / USA | Marketing attribution (LinkedIn Insight Tag) | Link |
| Microsoft Corporation | USA | Power BI embedded reports | Link |
| Hostinger International Ltd. | Lithuania | Website hosting | Link |
Some of the processors listed above are located outside Thailand. Where personal data is transferred internationally, WizEmp ensures that appropriate safeguards and contractual protections are in place as required by PDPA Section 28.
Hosting infrastructure (Hostinger) processes data outside Thailand as part of normal website operation — this is strictly necessary and does not require separate consent. Analytics and marketing data is only transferred to Google and LinkedIn when you have given consent via the cookie banner.
This website uses cookies. For full details — including the specific cookies used, their purposes, durations, and how to manage your preferences — please refer to our Cookie Policy.
Thailand's Personal Data Protection Act B.E. 2562 gives you the following rights over your personal data:
To exercise any of these rights, contact us at dpo@wizemp.com. We will respond without unnecessary delay. If additional time is needed, we will notify you and explain the reason.
You may lodge a complaint with Thailand's Personal Data Protection Committee (PDPC) at www.pdpc.or.th.
This website is governed by Thai law. If you are visiting from outside Thailand and have questions or requests regarding your personal data, please contact dpo@wizemp.com. All requests will be assessed and responded to under the Personal Data Protection Act B.E. 2562 (PDPA), regardless of the requester's location.
WizEmp implements appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encrypted connections (TLS/SSL), access controls, and regular security reviews. No system is perfectly secure, and we encourage you to contact us immediately at dpo@wizemp.com if you believe your data has been compromised.
In the event of a personal data breach that is likely to affect your rights and freedoms, WizEmp will notify the Personal Data Protection Committee (PDPC) without unnecessary delay after becoming aware of the breach. If the breach poses a high risk to you, we will also notify you directly without unnecessary delay.
This website is not directed at individuals who have not reached the age of majority under Thai law (20 years). We do not knowingly collect personal data from such individuals. If you believe we have inadvertently collected data from a person under 20, please contact dpo@wizemp.com and we will delete it promptly.
When our data practices change, we publish a new version of this policy here and update the changelog below. Material changes will be clearly identified. Previous versions are held in /Website/archive/ and available on request at dpo@wizemp.com.
WizEmp — Data Protection Officer
Si Racha, Chonburi, Thailand | dpo@wizemp.com | wizemp.com
Newest first. Effective = date went live. Superseded = date replaced. Archived files: /Website/archive/privacy-policy-en-v{X.Y}.html. Copy current file to archive before publishing the next version.
| Version | Effective | Superseded | Changes |
|---|---|---|---|
| 1.0 | ⚠ SET AT PUBLICATION | Current | Initial publication. Covers contact forms, GA4, LinkedIn Insight Tag, Power BI embeds, cookie consent records, DPO correspondence. PDPA lawful bases, data retention schedule, third-party processors, cross-border transfer safeguards, data subject rights, breach notification, age requirement, visitors outside Thailand. |