Integrity Thailand

Privacy Notice Integrity Thailand

Effective date: 1 March 2026

1. General Terms and Scope of this Privacy Notice

This Privacy Notice represents the commitment of Integrity (Thailand) Ltd. and our associate companies (“Integrity”, “we”, “our”, or “us”) to respect and protect all data subjects, personal data, and information. This Privacy Notice applies to the following processed data:

  • The https://www.integrity-thailand.com Integrity site, its derivative sites, and Integrity applications (the “Site” and “Application”). This also applies to customer service via “Customer Care” or the “Contact Us” feature.
  • Company services related to prevention, detection, and mitigation, such as Employment Background Screening, Vendor Screening, Claims Investigation, and Whistleblowing (“Services”).
  • Integrity’s employee recruitment activities, including when you apply to Integrity, or when we create a talent pool and approach you based on the professional public information you provide, regardless of the type of position or employment status (“Recruitment”).

This Privacy Notice is intended to provide transparency regarding data processing on the Site, Application, and Integrity’s Services to data subjects, clients, vendors, sub-contractors, candidates, and any other party accessing our application and/or using our services, parties who appoint Integrity as a processor to process a data subject’s personal data, or other personal data subjects (“you” or “your” or “Data Subject”).

This Privacy Notice is one of multiple privacy statements we may issue. To comply with legal requirements and transparency principles, Integrity may provide an additional Privacy Notice directly to the Data Subject for specific processing if required.

By using our services, you understand that we will process your Personal Data as described in this Privacy Notice. The definition used in this Privacy Notice refers to the definition described in our Terms of Service or this Privacy Notice.

This Privacy Notice shall be effective upon your explicit consent to this Privacy Notice, either expressly or through the methods outlined herein.

2. Personal Data We Collect About You

To ensure transparency, we provide a description and details of the Personal Data we collect. Please note that this list does not imply that we collect all data listed nor all of the data details in any of the data types. The data we collect is both Mandatory and Voluntary, depending on the type of service and methodology you choose, the application or site you access, and your interests:

a. General Information: This may include your name, age, date of birth, gender, marital status, photos, and nationality.

b. Identity Information: This may include your name, username, national identity number, passport number, social security number, driver’s license, vehicle registration plate number, employee number, and similar identifiers.

c. Contact Information: This may include your email address, telephone number (home, mobile, and/or business), home and/or office address (street, zip, postal code, and city), and company name.

d. Employment History: This may include the company you have worked for, the time and period you worked for, and your employment position and title.

e. Education and training: This may include the type of education you completed, where you completed your education, and when you completed your education (this includes certificates of expertise and training).

f. Criminal Record: Any criminal record you may have, as decided by relevant authorities.

g. Financial Information: This may include your bank account details, credit record, income, and any existing bankruptcy records.

h. Health Information: This may include your medical records, health conditions, genetic information, and disability information.

i. Our Communication With You: When you communicate with us via email, telephone, or other means, we may retain a record of our communication. Our customer service team may also document your inquiries, complaints, needs, or other purposes in our database. Additionally, we may collect information that you choose to share with us, such as when you fill out a feedback, suggestion, or complaint form.

j. Usage Data: This includes information about your usage of our website. We may collect and store general Internet data, such as your IP addresses, login information, geo-location, domain name, browser type, device, date and time of access, the specific web pages you visited on our site, the referring Uniform Resource Locator (URL), and the duration of your visit on each page.

3. How We Obtain Personal Data About You

We may collect your Personal Data through various means, including:

3.1. Directly from You
This occurs when you provide us with your personal data directly. For instance, when you correspond with us via email or engage in other direct interactions with us, such as completing a form on our website.

3.2. Monitoring and Interactions
We may collect your personal data by monitoring your use of our websites, your interactions with any marketing materials we send to you, or any email communication sent to or received from you.

3.3. Third-Party Sources
We may receive your personal data from third-party sources. For example, we may collect information about you to assist our clients as part of our client employee acceptance procedures. Additionally, we may receive information about you from recruitment agencies for recruitment purposes.

3.4. Publicly Available Sources
We may utilize publicly available sources, such as professional networking platforms (e.g., LinkedIn), and public institutions, including law enforcement and educational institutions.

3.5. Tracking and Cookies Data

We use cookies and similar tracking technologies to track activities on our Services and store certain information. Cookies enhance the user experience by storing and managing status, preferences, and other Data Subject-related information. In other words, cookies allow a website to remember a Data Subject’s actions or preferences over time.

Cookies are files that contain a small amount of data, which may include an anonymous unique identifier. They are sent to your browser from a website and stored on your device. We employ tracking technologies, such as beacons, tags, and scripts, to collect and track information and to improve and analyze our Services.

You can instruct your browser to decline all cookies or to notify you when a cookie is/would be sent. However, if you choose to decline cookies, certain portions of our Services may not be accessible to you.

Here are some examples of the types of Cookies we use:

– Session cookies. We use session cookies to operate our Services.

– Preference cookies. We use preference cookies to remember your preferences and various settings.

– Security cookies. We use security cookies for security reasons.

4. Purposes and Legal Ground of Personal Data Processing

Personal Data Protection Act B.E. 2562 (2019) Thailand allows data processing with purpose limitation and must be conducted on a legal basis. Integrity carries out the processing of Personal Data both as a data controller and as a data processor.

4.1. Integrity as a Data Controller

4.1.1. You hereby consent to data processing for the following purposes:

a. To send you offers or promotional and marketing content about our services if you have an interest in our services.

b. To contact you, store your data in the talent pool, and make arrangements if you are an applicant or looking for job opportunities.

c. To provide customer support for clients or prospective clients.

4.1.2. Performance of a Contract

a. To enable access to our Site/Application and use our services.

b. To personalize your experiences on our Site/Application so that we can tailor the services we provide to you and how we communicate with you.

c. To provide customer support for clients or prospective clients.

d. To process payments and collect arrears.

e. To develop, maintain, test, troubleshoot, enhance, and customize our service to meet your needs and preferences.

4.1.3. Legitimate Interest

a. To identify, detect, and prevent fraud and audits within our services.

b. To provide reports, analysis, and product development to management.

c. To manage records and for other administrative purposes.

d. To contact you as the person listed as an emergency contact.

e. Other legitimate interests.

4.1.4. Law Enforcement and Legal Obligation

a. To fulfil our obligation to competent authorities in accordance with prevailing statutory regulations.

4.2. Integrity as a Data Processor

As a Processor, we perform the processing of Personal Data for the benefit of Data Controllers who are our clients. The interest and legal bases are as follows:

4.2.1. Human Risk Management

Corporate entities in certain fields, especially the financial and banking sectors, are required by authorities, regulations, and standards to conduct risk mitigation measures that include human resource risks. Integrity supports this effort through our Employment Background Screening service. Through this service, we will verify, validate, and conduct searches to validate existing information. The processing of Personal Data of prospective employees from clients/data controllers is carried out by first obtaining consent from the candidate.

4.2.2. Detection, Prevention, and Mitigation: Crime and Fraud

To maintain business continuity and implement Good Corporate Governance (GCG), organizations should take steps to control and prevent misconduct. Integrity supports our clients to overcome misconduct through Whistleblower System services. The Data Subject as a whistleblower will deal with the reporting interface and provide consent for data processing.

We also provide services related to potential fraud mitigation activities and underwriting through insurance. Fraud mitigation is carried out by tracing claims from individuals with actual facts. To ensure that there is a legitimate interest to investigate and process Personal Data, especially related to health data, we ensure that the parties have a legal relationship.

4.2.3. Supporting Compliance and Law Enforcement

We support law enforcement processes, protection of intellectual property, and protection of businesses from infringement, plagiarism, misconduct or other violations of the law.

5. Access to Personal Data

Integrity will not disclose or provide access to your data except:

5.1. Related/Associate Company

5.1.1. Integrity has associates in several countries, mainly in Asia (Indonesia, Malaysia, and Thailand) with headquarters in Indonesia. Collaboration between entities and teams is possible. As an illustration, the development, design, and support of sites and applications that we use in several entities are carried out by our team in Indonesia. Therefore, developers and support teams in Indonesia have access to data from various entities. Advertising, marketing, and sales activities are also coordinated by the team in Indonesia, although it is possible for each entity to have its own marketing and sales teams. However, access is strictly limited to parties with “need to know” and “need to have” principles.

5.1.2. We apply standard binding internal policies and standard contract clauses in each and every entity of the company.

5.2. Vendors, Consultants, and Other Third-Party Service Providers

5.2.1. In order to provide Integrity’s Services, we may share your data with third-party vendors, service providers, subcontractors, subprocessors, or agents who perform services for us or on our behalf. These parties may require access to your data to carry out their work; this includes verification, technology infrastructure, software, payment processing, data analysis, promotions, fraud detection, email delivery, and other Data Subject support.

5.2.2. We ensure that third parties will only utilize the Data Subject’s Personal Data as necessary to support the provision of Integrity’s Services. Additionally, we ensure that vendors, consultants or other third parties are subject to binding agreements with us and implement or have appropriate levels of protection.

5.3. Vital Interest, Compliance with Laws, and Legal Rights

5.3.1. We may disclose your Personal Data to individuals, organizations, entities, governmental authorities, or legitimate law enforcement agencies who can provide valid evidence to us and demonstrate that they are authorized and/or obligated by legal rules and/or competent authorities that impose a legal obligation on us to disclose your Personal Data if it is necessary to investigate, prevent, or take action regarding potential violations of our policies, suspected fraud, situations involving potential threats to the safety of any person, illegal activities, or as evidence in litigation in which we are involved.

5.3.2. We may disclose your Personal Data if we are legally required to do so to comply with applicable laws, governmental requests, judicial proceedings, court orders, or legal processes. This includes responding to court orders or subpoenas and meeting national security or law enforcement requirements as requested by public authorities.

5.4. With Your Consent

We may disclose your Personal Data for any other purpose with your consent.

6. Cross-Border Data Transfer

6.1. Your information, including Personal Data, may be transferred to and stored on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those in your jurisdiction.

If you are located outside of Thailand and choose to provide information to us, please note that we transfer the data, including Personal Data, to Thailand and process it there.

6.2. As explained in section 5.1, Integrity has entities in several countries, mainly in Asia (Indonesia, Malaysia, and Thailand), with headquarters in Indonesia. Collaboration between teams in various entities in different countries is possible. Integrity may also use third-party services in the form of Infrastructure as a Service (IaaS), Platform as a Service (PaaS), or Software as a Service (SaaS) with the main infrastructure possibly outside your country’s territory.

6.3. We will take all necessary and reasonable steps to ensure that your data is treated securely and in accordance with this Privacy Notice, including (if required) by conducting a Transfer Impact Assessment (TIA) to ensure higher, equivalent, or adequate protection is in place. We will not transfer your Personal Data to any organization or country unless we have implemented adequate controls to ensure the security of your data and other personal information.

6.4. By consenting to this Privacy Notice and submitting your information, you acknowledge and agree to the transfer of your data as described above.

7. Links to Other Sites

7.1. Our Service may contain links to other sites that are not operated by us. If you click on a third-party link, you will be directed to that third-party’s site. We strongly advise reviewing the Privacy Notice of every site you visit.

Please note that you can access third-party sites by clicking on hyperlinks within our Site.

7.2. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

8. Data Security

Your security and privacy are our priority. We implement technical, operational, and organizational measures to keep your data and information secure. Security measures are implemented when data is used, transmitted and stored.

9. Notice of Use of Sub-Processors

9.1. Integrity may recruit and use sub-processors to provide certain or additional services on behalf of Integrity. If you are a Data Controller, you hereby authorize the engagement of sub-processors recruited by Integrity.

9.2. Integrity, separately from this Privacy Notice, for example, through contracts, annexes, documents, or other official channels, may inform you as a client, which third parties we use if required under applicable regulations.

10. Analytics

We may use third-party service providers like Google Analytics to monitor and analyze the use of our Service. Google Analytics is a web analytics service. Read the terms of service for Google Analytics here: https://www.google.com/analytics/terms/

11. Privacy of Minors

Our Services do not address anyone under the age of 10 (“Minors”). We do not knowingly collect Personal Data from anyone under the age of 10 without the authorization of a parent or guardian. If you are a parent or guardian and you believe that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from minors without verification of parental authorization, we will take steps to remove that information from our servers.

12. Data Retention

We will retain your Personal Data as needed to provide you with services or product information, respond to inquiries, consider your employment application, partner with you, or fulfill contractual, statutory, or other legal obligations. This includes retaining data for the duration necessary to fulfill the purposes for which it was collected unless a longer retention period is mandated or permitted by law. We will take reasonable measures to ensure that your Personal Data is securely stored and protected against unauthorized access, disclosure, alteration, or destruction.

13. Data Subject Rights

13.1. You acknowledge that Integrity may act as a data controller and in some cases as a data processor for clients depending on the type of processing. Where Integrity is a data controller, we will fulfill our obligation to fulfill data subject rights as described in this Privacy Notice. Where Integrity is a data processor, we will, where required and permitted, support the fulfillment of data subject rights by data controllers.

13.2. We provide you with the rights associated with the Data Subject’s Personal Data in accordance with applicable laws and regulations, wherein you possess the following rights:

13.2.1. Right to Withdraw Consent
Upon your withdrawal of consent, we will terminate processing. This withdrawal of consent does not cancel any processing that has already taken place.

13.2.2. Right of Access
You have the right to request a copy of your Personal Data stored on our system. Granting access and a copy of data to you will be carried out in accordance with the provisions of the applicable laws, regulations, and contractual requirements.

13.2.3. Right to Rectify
You have the right to change, correct, add, update, complete, and/or rectify any errors or inaccuracies regarding your Personal Data stored within our system. We reserve the right to request supporting documents and/or verify changes, additions, or updates to such information and Personal Data in accordance with our procedures. Implementation of the change request will be carried out in accordance with the applicable laws, regulations, and contractual requirements.

13.2.4. Right to Erase
You have the right to request us to cease processing, delete, and/or destroy your Personal Data from our system. Before the aforementioned matter can be processed, you must fulfill the verification requirements carried out by us. We reserve the right to ask for reasons for deleting Personal Data from our system. The request for deletion of Personal Data can only be made by notifying us through Integrity’s contact. Implementation of the data removal requests will be carried out in accordance with applicable laws, regulations, and contractual requirements.

13.3. To exercise any of these rights or if you have any questions regarding the processing of your Personal Data, please email us at dpo@integrity-asia.com. Please note that certain exceptions and limitations may apply to these rights as permitted by applicable data protection laws. We will respond to your request in accordance with the relevant legal requirements.

13.4. If you no longer wish to receive our newsletters, digest emails, or similar communications, you can unsubscribe by logging into your account and changing your email settings, or you can contact us at marketing@integrity-asia.com.

13.5. We are entitled to reject your request as mentioned in the point above, in the event that:

13.5.1. Your request is irrelevant to the Personal Data stored by Integrity, including but not limited to cases where the requesting party seeks Personal Data of another party over which they have no authority and/or cannot validly demonstrate their authority over the requested Personal Data; and/or

13.5.2. We are prohibited from executing Data Subject requests by competent authorities and/or Integrity’s internal policy based on applicable laws, regulations, and contractual requirements.

14. Limitation of Liability

14.1. You hereby agree to release, hold harmless, indemnify, and defend Integrity, including any officers, directors, employees, or agents of Integrity from and against any and all requests, claims, losses, liabilities, costs, damages, and expenses (including but not limited to legal fees and indemnity expenses) resulting directly or indirectly from:

14.1.1. Any loss due to Personal Data that is intercepted, accessed, stolen, disclosed, altered, or destroyed by an unauthorized third party, due to factors beyond our control and/or contrary to this Privacy Notice and the applicable laws and regulations, including those resulting from Data Subject error or negligence;

14.1.2. The security and confidentiality of Personal Data that has undergone processing, disclosure, and/or storage by the Data Subject to the public or third parties, whether the processing, disclosure, and/or storage are conducted by Data Subjects or any party other than us, and such processing, disclosure, and/or storage occurs not due to the negligence and/or fault of Integrity in protecting your Personal Data;

14.1.3. All risks and/or consequences arising from the negligence and/or errors committed by you in maintaining the security and confidentiality of your Personal Data; and/or

14.1.4. All consequences arise from the utilization of any media and/or application that you employ to disclose, process, and/or store your Personal Data, including, among other things, internet networks and cloud storage services.

15. Contact and Notification

15.1. Every notice from us addressed to you or Data Subjects will be announced through the Site and sent via email.

15.2. Any written notice from us addressed to you regarding failure to protect your Personal Data that occurs in the Integrity system and/or third party systems collaborating with us will be sent via email immediately after the failure becomes known to us. If you are a Data Controller and Integrity is a Data Processor, we will notify you in the first place if there is a data breach. Notices will be sent in accordance with applicable laws and regulations, especially those related to the protection of Personal Data.

15.3. Any notice from you addressed to us relating to our service becomes effective when the notice is received by us through https://www.integrity-thailand.com/contact-us/

15.4. For all notices from you relating to this Privacy Notice and Personal Data, please contact us via email at dpo@integrity-asia.com

16. Review and Revision

16.1. We have the right to review and change this Privacy Notice from time to time to ensure that the provisions of this Privacy Notice remain consistent with the evolving nature of our services in the future and/or in the event of changes to applicable laws and regulations.

16.2. You understand and agree that you are responsible for periodically reviewing this Privacy Notice and being informed of the latest information regarding this Privacy Notice from time to time.

Skip to news content

Latest News