Personal Data Privacy Notice
For the Participants of the Training, Seminar, Technical Visit, Community Relations Activity or Other Activities

     Global Connections Public Company Limited (hereinafter referred to as “GC”) gives highest priority to the protection of your personal data and in order for you to ensure that we will protect and manage your personal data in accordance with the laws concerning personal data protection, GC then established this Personal Data Privacy Notice for your acknowledgement of details, as a third party who is the participant of the training, seminar, technical visit, community relations activity or other activities with GC, in relation to the processing of personal data, whether it be the collection, use and disclosure (collectively referred to as “the processing”) that may be occurred and including to inform you of the rights on your personal data and our contact channels as follows:

1. Purposes for the collection, use and disclosure of personal data
     As you are the participant of the training, seminar, technical visit, community relations activity or other activities convened by GC, we may conduct the processing of your personal data for relevant purposes by relying on relevant lawful basis, as follows:

Clause

Purposes

Lawful Basis

1.1

For the proceedings necessary for the consideration and selection of the participants of the training, seminar, technical visit, community relations activity or other activities of GC which shall mean to include the interview process, the evaluation and selection process, and the process of operation management in in relation to the consideration and selection of the selection of the participants of the training, seminar, technical visit, community relations activity or other activities of GC.

Contractual basis
Legitimate interest basis

1.2

For the proper preparation of the training, seminar, technical visit, community relations activity or other activities and for your convenience such as the analysis and the arrangement of activity types, the finding of venue, the catering of food and beverage, the procuring of accommodation, the preparation of souvenirs including the preparation of relevant facilities, etc.

Legitimate interest basis

1.3

For the inspection of number of participants of the training, seminar, technical visit, community relations activity or other activities, the event registration, the preparation of registry and records on the participation of activities of the participants, the holding of activity including the provision of souvenirs and prizes (if any).

For the inspection of number of participants of the training, seminar, technical visit, community relations activity or other activities, the event registration, the preparation of registry and records on the participation of activities of the participants, the holding of activity including the provision of souvenirs and prizes (if any).

1.4

For notifying details for the participation of the training, seminar, technical visit, community relations activity or other activities such as name list of the participants, date, time and venue, etc.

Legitimate interest basis

1.5

For the proceedings on the provision of insurance in relation to the convening of activities such as the provision of group travel insurance, etc. (if any).

Legitimate interest basis

1.6

For the evaluation, analysis and improvement of the convening of the training, seminar, technical visit, community relations activity or other activities of GC including for supporting the applying for management system standards certification, and the event atmosphere pictures may be used for supporting the response to the evaluation form of the regulatory authorities or the applying for relevant prizes or awards in relation to the organization management.

Legitimate interest basis

1.7

For the risk management, supervision and inspection of operation including for the internal audit of the internal audit office, the closing of expenses and the management in the organization.

Legitimate interest basis

1.8

For maintaining security in building area or activity venue of GC by closed-circuit television (CCTV).

Legitimate interest basis

1.9

For using as database of the stakeholders of GC and/or the using of data for relations management or relevant cooperation in relation to GC including opinion survey for analysis and improvement of GC’s operation.

Legitimate interest basis

1.10

GC may record the picture or video or live broadcast for the public relations on the convening of the training, seminar, technical visit, community relations activity or other activities convened by GC (including the convening of online events). GC may publicize such picture or video or live broadcast through relevant public relations channels both inside and outside GC such as public relations through online media or GC’s website or through newspaper or television, etc.

Legitimate interest basis

1.11

For the production of media so that the participants of such training, seminar or activity can study or view the records of which later, or for producing as GC’s knowhow. 

Legitimate interest basis

1.12

For the compliance with relevant laws and for establishment, compliance, exercise or defense of legal claim, or for commencing legal proceeding including the reporting or the disclosure of information to government authorities, state authorities, independent authorities, regulatory authorities, any person or authority prescribed by laws.

Legitimate interest basis

Legal obligation basis

1.13

For the compliance with laws concerning public interest in respect of public health such as health protection against dangerous communicable disease or epidemic which may be contagious or spread into the kingdom.

Legal obligation basis

1.14

For the management and administration concerning your heath, hygiene and safety.

Preventing or suppressing danger to a person’s life, body or health
(Vital Interests)

     The personal data collected by GC is the information necessary for GC’s performance of agreements or the compliance with relevant governing laws, if you refuse to provide such necessary personal data, GC may not be able to select you as the participant of the training, seminar, technical visit, community relations activity or other activities convened by GC, or may not be able to proceed on the management or administration of agreements or the provision of facilitations to you

2. Personal Data which shall be collected
     In general, GC shall collect your personal data by directly requesting the data from you; nonetheless, there may be some circumstances that GC collects your personal data from other sources such as government authorities, the department that you are positioned in, the external department which is the host of the training program or other public sources such as searchable data on the internet, etc.
     In this regard, the personal data collected by GC are as follows:
2.1 General personal data
     (1) Identity data such as first name, last name, identification card number, passport number, date of birth, gender, age, nationality, signature, photo, employee ID (in case of the employees), etc.;
     (2) Contact data such as address, phone number, email, Facebook, LINE ID, phone number of your secretary (if any), etc.;
     (3) Data concerning lifestyle and social circumstance such as hobby or interested activities, your interest;
     (4) Data on the participation of relevant activities of GC such as the registration, captured image, video records or other types of motion picture, etc.;
     (5) Data on education and training such as education profile, the program trained;
     (6) Data of work such as occupation, position, the department positioned in, work profile, level, length of work experience, length of work experience in the level.
     (7) Data concerning opinion, expectation, satisfactory on the participation in the training, seminar, technical visit, community relations activity or other activities, acknowledgement on the operation of GC;
     (8) Other personal data for the provision of facilitations as necessary such as credit card information (i.e. card number, card type and expiry date) flight details, shirt size, the preferred food or beverage, etc.;
     (9) Data of the score and test result;
(10) Screening data pursuant to communicable disease preventive measures.
2.2 Sensitive personal data
     For the convening of the training, seminar, technical visit, community relations activity or other activities, GC may request you to provide certain sensitive data such as health data, data regarding disability, religious data, food allergy data, etc. In this respect, unless otherwise prescribed by laws, GC shall proceed to request for your prior consent before the collection of such sensitive personal data.
     In case of the copy of identification card which contains sensitive personal data such as religious and blood type, in general, GC has no intention to collect and use religious and blood type data specified in your identification card for any specific purpose. In the event that you provided GC the copy of your identification card, it is requested that you conceal such data. If you did not conceal such data, it shall be deemed that you authorized GC to conceal those data and such document with concealed data shall be deemed valid and legally enforceable in all respects. In case that GC is unable to conceal those data due to some technical limitation, GC shall collect and use such data as a part of your identification documents only.

3. Period for retention of personal data
     GC shall retain your personal data for the period necessary for the purposes of the collection, use or disclosure of personal data set out in this Privacy Notice. The criteria used for determination of the retention period is the period that GC still has relation with you in any capacity such as vendor, customer, person having business relation, the person who is working in the government authority or the regulatory authority, or other stakeholders of GC, etc. and/or the period necessary for the compliance with laws or the statutory prescription period, or for the establishment, compliance, exercise or defense of legal claim, or for other reasons pursuant to the internal policies and rules in the organization of GC.

4. Disclosure of personal data
     In order to carry out the proceedings for the purposes set out in this Privacy Notice, GC may disclose your personal data to the third party as follows:
     4.1 The government authorities, state authorities, independent organizations, regulatory authorities or other authorities as prescribed by laws including the officers which exercise powers according to the laws such as court, public prosecutor, police, etc.;
     4.2 Insurance agents or brokers and/or insurance companies;
     4.3 Agents, contractors/sub-contractors and/or service providers for any operation provided for GC such as transportation service providers, the service firms for the conducting of marketing activities, media producers, advertising agencies, activity organizers, event organizers, travel and accommodation agencies, guest speakers, training institutes, etc.;
     4.4 Management system standards certification institutes;
     4.5 Ordinary people (only for the public relations of photos of the event or the announcement of the name of the winners of the awards or rewards for playing games) through online and offline media of GC and of the third party such as what’s new, internal e-mail PR, Facebook, Line, Twitter, YouTube, website, mass media such as newspaper and television, etc.

5. The submission or transfer of personal data to foreign countries
     In some circumstance, for the interest or for the necessity in order to fulfill the purposes regarding the processing of personal data as mentioned above, GC may be required to disclose your personal data to foreign countries, which may have standards of personal data protection higher or lower than those of Thailand. Furthermore, GC may store your data on computer server or in the cloud of offshore service providers and there might be a processing of data by using programs or applications of the offshore service providers.
In this regard, for the submission or transfer of your data to foreign countries in whatsoever case, GC shall comply with the Personal Data Protection Act B.E 2562 (2019).

6. Your rights as the owner of personal data

     As the owner of personal data, you have the rights as prescribed in the Personal Data Protection Act B.E 2562 (2019). In this respect, you can exercise your relevant rights through the channels specified by GC in Clause 8 or through GC website, whereby you will be entitled to exercise the rights when the laws concerning personal data protection are applied to GC. The relevant rights having details as follows:
6.1 Right to withdraw consent
     In case that GC requests for your consent, you shall have the right to withdraw the consent for the processing of your personal data that has already given to GC unless such withdrawal of consent is restricted by laws or by the agreement that provides you the benefits. Such withdrawal of consent shall not affect the processing of personal data legally conducted according to your prior consent.
6.2 Right to access to personal data
     You have the right to request for an access to and the request for the copy of your personal data under control of GC, including to request GC to disclose the acquisition of such data that you have not given consent to GC.
6.3 Right to request for the submission or the transfer of personal data
     You have the right to request GC to transfer your personal data that you have given to GC as prescribed by laws.
6.4 Right to object the collection, use or disclosure of personal data
     You have the right to object the processing of data relating to you in respect of the collection, use or disclosure of your personal data as prescribed by laws.
6.5 Right to request for the erasure of personal data
     You have the right to request GC to delete your personal data as prescribed by laws. Nevertheless, GC may store your personal data using electronic system pursuant to which some systems may be unable to delete the data, and for such case, GC shall destroy or cause such data to be unable to identify your identity.
6.6 Right to request the restriction of the use of personal data
     You have the right to request GC to restrict the use of your personal data as prescribed by laws.
6.7 Right to request for the rectification of personal data
     If you found that the data controlled by GC incorrect or you have changed your personal data, you have the right to request GC to correct your personal data so that such personal data be accurate, current, complete and not causing misunderstanding.
6.8 Right to lodge a complaint
     You have the right to lodge a complaint with the competent officers under the Personal Data Protection Act B.E 2562 (2019) in case that GC breaches or does not comply with such Act.

7. Amendment of this Privacy Notice
     We may amend and update this Privacy Notice from time to time, and if there is such amendment, we will keep you posted through GC website and/or inform you via email. If it is necessary to request for your consent, we will proceed to request additional consent from you.

8. Contact channels

     If you have question or require further details concerning the protection of your personal data, the collection, use and disclose of your personal data, the exercising of your rights or if you have any complaint, you can contact GC as per the following channels:

Global Connections Public Company Limited
Office Address: 13/1 Moo2 Kingkaew Rd, Rachateva, Bangplee, Samuthprakarn 10540
Telephone : 0 2763 7999
E-mail : compliance@gc.co.th

Announced 1 July 2022