Privacy Policy

We collect the following types of information when you use our services:

1. Account Information: When you register a merchant account, we collect your name, restaurant name, phone number, email address, LINE ID, and password (encrypted).

2. Business Information: Menu data (dish names, prices, categories, images), business hours, restaurant address, table configurations, and other data needed to provide the ordering system service.

3. Transaction Data: Order information processed through the system, including order amounts, payment methods, order times, and menu preferences, used for business reporting and service optimization.

4. Technical Information: When you visit our website, we automatically collect IP address, browser type, operating system, access times, and page browsing behavior.

5. Customer Data: Order information provided by your customers when they scan QR codes to order. We act as a data processor on your behalf for this data.

6. Communication Records: Records of communications with our support team, including phone calls, emails, and live chat conversations.

We do not collect sensitive personal information such as national ID numbers, bank card numbers, or health information unless required by law.

We use the collected information for the following purposes:

1. Service Delivery: Operating and maintaining your QR code ordering system, admin dashboard, payment integrations, and other core features.

2. Experience Improvement: Analyzing usage data to optimize system performance, improve user interface, and develop new features.

3. Customer Support: Responding to your inquiries, resolving technical issues, and providing usage guidance.

4. Compliance: Complying with Thailand's Personal Data Protection Act (PDPA) and other applicable laws and regulations.

5. Service Notifications: Sending service-related communications, including system updates, maintenance notices, and billing reminders.

6. Analytics: Analyzing industry trends in aggregated, anonymized form to improve our products and services.

We will not sell your personal information to third parties. We will not use your information for purposes unrelated to those described above without your consent.

We implement strict security measures to protect your personal information:

1. Storage Location: Your data is stored on Alibaba Cloud Thailand nodes (Bangkok Region), ensuring data localization compliance with Thai law.

2. Encryption: All data transmission uses TLS 1.3 encryption. Sensitive information (such as passwords) is hashed using the bcrypt algorithm.

3. Access Control: Strictly limit employee access to user data. Only authorized personnel may access data based on work requirements, and all access is logged.

4. Data Retention: We retain your data while your account is active. After account closure, we delete all related data within 90 days, unless a longer retention period is required by law.

5. Backup Policy: Automated daily backups, also encrypted, with a 30-day retention period.

6. Security Audits: Regular vulnerability scanning and penetration testing to ensure system security.

While we implement these measures, no internet environment is absolutely secure. Please protect your account password.

Under Thailand's Personal Data Protection Act (PDPA), you have the following rights:

1. Right to be Informed: You have the right to know what personal data we collect and how we use it. This Privacy Policy fulfills this obligation.

2. Right of Access: You have the right to request access to copies of your personal data held by us.

3. Right to Rectification: If your personal data is inaccurate or incomplete, you have the right to request correction.

4. Right to Erasure: Under certain conditions, you have the right to request deletion of your personal data ("right to be forgotten").

5. Right to Restrict Processing: Under certain circumstances, you have the right to request restriction of processing of your personal data.

6. Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, machine-readable format, or request direct transfer to another data controller.

7. Right to Withdraw Consent: Where processing is based on your consent, you have the right to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.

How to Exercise: To exercise any of these rights, please contact us using the information at the bottom of this policy. We will respond within 30 days.

Our website uses cookies and similar technologies to enhance your experience:

1. Essential Cookies: Required for basic website functionality, such as session management and language preference storage. These cookies are necessary for the website to function properly.

2. Functional Cookies: Remember your language preferences and regional settings to provide a personalized experience.

3. Analytics Cookies: Help us understand how visitors use our website, such as page views and time spent. We use self-hosted analytics tools, not third-party services, to protect your privacy.

4. Cookie Management: You can reject or delete cookies through your browser settings. However, disabling essential cookies may cause some website features to malfunction.

5. Cookie Duration: Session cookies expire when you close your browser. Persistent cookies are retained for a maximum of 12 months.

If you have any questions, comments, or complaints about this Privacy Policy, or need to exercise your data rights, please contact us:

Data Controller:

ChinaGoGo POS

Email: privacy@chinagogo.app

Phone: +66 98 765 4321

Office Address: Bangkok City Center (please email for detailed address)

Data Protection Officer: Contact our data protection team at privacy@chinagogo.app

We will respond to your request within 30 days. If you are unsatisfied with our response, you have the right to lodge a complaint with the Thai Personal Data Protection Committee (PDPC).

This Privacy Policy may be updated from time to time. Material changes will be notified via website announcement or email.