Privacy Policy
Version 1.0 | Effective: 15 May 2026
This policy explains how WizEmp collects, uses, stores, and protects your personal data when you visit wizemp.com. It applies to all language versions of this website.
1. About WizEmp
WizEmp is the personal data controller for the data processed through this website — a Power BI and Business Intelligence consultancy based in Thailand, operating under the Personal Data Protection Act B.E. 2562 (PDPA).
WizEmp | Si Racha, Chonburi, Thailand
Web: wizemp.com | DPO: dpo@wizemp.com
2. Governing Law & Language
This website and this Privacy Policy are governed by Thai law, specifically the Personal Data Protection Act B.E. 2562 (PDPA). This English version is the authoritative text. Where any translated version of this policy conflicts with the English text, the English text governs. All other language versions are provided for convenience only.
3. Personal Data We Collect
We collect only what we need. The following table lists every category of personal data collected through this website, the source, and the purpose.
| Category | Data Collected | Source | Purpose |
|---|---|---|---|
| Contact form submissions | Name, email address, company name, message content | You — when you complete a contact form | Respond to your enquiry |
| Website analytics | Anonymised IP address, pseudonymised device type, browser, approximate city-level location, pages visited, session duration | Google Analytics 4 cookies (with your consent) | Understand how visitors use the site to improve content and performance |
| Marketing attribution | Pseudonymised browser identifiers, campaign interaction data | LinkedIn Insight Tag cookies (with your consent) | Measure the reach of WizEmp content published on LinkedIn (attribution only — not ad targeting) |
| Power BI embeds | Microsoft session cookies (from app.powerbi.com and login.microsoftonline.com domains) | Microsoft — when you interact with an embedded report | Render and operate embedded Power BI reports. WizEmp receives no personal data from these cookies. |
| Cookie consent records | Anonymised session token, consent date, policy version, categories accepted, withdrawal date (if applicable) | Your consent plugin interaction | Demonstrate compliance with PDPA accountability obligations |
| DPO correspondence | Name, email address, message content, any data you provide in your request | You — when you write to dpo@wizemp.com | Respond to data protection requests and fulfil our obligations under PDPA |
4. Lawful Bases for Processing
Under the PDPA, we process your data on the following lawful bases:
| Activity | Lawful Basis | Explanation |
|---|---|---|
| Contact form / DPO requests | Legitimate Interest | You actively submit your data by contacting us. A privacy notice is displayed at the point of collection. We have a legitimate interest in responding to enquiries directed at WizEmp. |
| Google Analytics | Consent | Analytics cookies only fire after you give consent via the cookie banner. |
| LinkedIn Insight Tag | Consent | Marketing cookies only fire after you give consent via the cookie banner. |
| Power BI embeds / strictly necessary cookies | Legitimate Interest | These cookies are technically necessary to deliver the functionality you requested. WizEmp receives no personal data. |
| Cookie consent records | Legal Obligation | PDPA requires us to demonstrate that consent was obtained. Storage of consent records fulfils this accountability obligation. |
5. Data Retention
We keep your data only as long as necessary for the purpose it was collected, or as required by law.
| Data Category | Retention Period | Then What |
|---|---|---|
| Contact form submissions | 2 years from last contact | Permanently deleted |
| Website analytics (pseudonymised) | 14 months (GA4 property setting) | Automatically purged by Google |
| LinkedIn attribution data | Governed by LinkedIn's retention policy | See LinkedIn Privacy Policy |
| Cookie consent records | 3 years | Permanently deleted |
| DPO correspondence | 3 years from resolution of the request | Permanently deleted |
6. Third-Party Processors
We share personal data with the following third-party service providers, solely for the purposes described in this policy. WizEmp ensures that appropriate contractual protections are in place with each processor as required by PDPA.
| Processor | Location | Service | Privacy Policy |
|---|---|---|---|
| Google LLC | USA | Website analytics (Google Analytics 4) | Link |
| LinkedIn Ireland Unlimited Company | Ireland / USA | Marketing attribution (LinkedIn Insight Tag) | Link |
| Microsoft Corporation | USA | Power BI embedded reports | Link |
| Hostinger International Ltd. | Lithuania | Website hosting | Link |
7. Cross-Border Data Transfers
Some of the processors listed above are located outside Thailand. Where personal data is transferred internationally, WizEmp ensures that appropriate safeguards and contractual protections are in place as required by PDPA Section 28.
Hosting infrastructure (Hostinger) processes data outside Thailand as part of normal website operation — this is strictly necessary and does not require separate consent. Analytics and marketing data is only transferred to Google and LinkedIn when you have given consent via the cookie banner.
8. Cookies
This website uses cookies. For full details — including the specific cookies used, their purposes, durations, and how to manage your preferences — please refer to our Cookie Policy.
9. Your Rights Under PDPA
Thailand's Personal Data Protection Act B.E. 2562 gives you the following rights over your personal data:
- Access — obtain a copy of the personal data WizEmp holds about you
- Rectification — correct inaccurate or incomplete data
- Erasure — request deletion of your data, subject to legal retention requirements
- Restriction — pause processing while a dispute is resolved
- Portability — receive your data in a structured, machine-readable format
- Objection — object to processing based on legitimate interest
- Withdrawal of Consent — withdraw consent at any time, without affecting the lawfulness of processing carried out before withdrawal
To exercise any of these rights, contact us at dpo@wizemp.com. We will respond without unnecessary delay. If additional time is needed, we will notify you and explain the reason.
You may lodge a complaint with Thailand's Personal Data Protection Committee (PDPC) at www.pdpc.or.th.
10. Visitors Outside Thailand
This website is governed by Thai law. If you are visiting from outside Thailand and have questions or requests regarding your personal data, please contact dpo@wizemp.com. All requests will be assessed and responded to under the Personal Data Protection Act B.E. 2562 (PDPA), regardless of the requester's location.
11. Data Security
WizEmp implements appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encrypted connections (TLS/SSL), access controls, and regular security reviews. No system is perfectly secure, and we encourage you to contact us immediately at dpo@wizemp.com if you believe your data has been compromised.
12. Data Breach Notification
In the event of a personal data breach that is likely to affect your rights and freedoms, WizEmp will notify the Personal Data Protection Committee (PDPC) without unnecessary delay after becoming aware of the breach. If the breach poses a high risk to you, we will also notify you directly without unnecessary delay.
13. Age Requirement
This website is not directed at individuals who have not reached the age of majority under Thai law (20 years). We do not knowingly collect personal data from such individuals. If you believe we have inadvertently collected data from a person under 20, please contact dpo@wizemp.com and we will delete it promptly.
14. Policy Updates
When our data practices change, we publish a new version of this policy here and update the changelog below. Material changes will be clearly identified. Previous versions are held in /Website/archive/ and available on request at dpo@wizemp.com.
15. Contact
WizEmp — Data Protection Officer
Si Racha, Chonburi, Thailand | dpo@wizemp.com | wizemp.com
Version History
Newest first. Effective = date went live. Superseded = date replaced. Archived files: /Website/archive/privacy-policy-en-v{X.Y}.html. Copy current file to archive before publishing the next version.
| Version | Effective | Superseded | Changes |
|---|---|---|---|
| 1.0 | 15 May 2026 | Current | Initial publication. Covers contact forms, GA4, LinkedIn Insight Tag, Power BI embeds, cookie consent records, DPO correspondence. PDPA lawful bases, data retention schedule, third-party processors, cross-border transfer safeguards, data subject rights, breach notification, age requirement, visitors outside Thailand. |