Privacy Policy
Last Updated: March 12, 2025
At Pulsewavefusion, we respect your privacy and take protecting your personal information seriously. This policy explains how we collect, use, and safeguard your data when you interact with our budget approval workflow services. We comply with Thailand's Personal Data Protection Act (PDPA) and international privacy standards.
Information We Collect
Running a budget approval platform means we need certain information to provide our services effectively. Here's what we gather and why it matters.
Information You Provide Directly
When you sign up or use our services, you share information with us voluntarily. This includes your name, email address, phone number, company details, and payment information. We also collect data you input into our system, like budget requests, approval workflows, and financial documents.
Important: We only collect information that's necessary for providing budget approval services. You control what you share, and we won't ask for anything beyond what's needed to run your workflows efficiently.
Automatically Collected Information
Our systems automatically log technical data when you use our platform. This covers your IP address, browser type, device information, and how you navigate through our service. We use cookies and similar tracking tools to understand user behavior and improve functionality.
- Login timestamps and session duration
- Pages visited and features accessed
- Error logs and performance metrics
- Geographic location data based on IP address
- Referral sources and campaign data
How We Use Your Information
Every piece of data we collect serves a specific purpose. We don't use your information for anything outside these defined purposes without getting your explicit consent first.
| Purpose | Details |
|---|---|
| Service Delivery | Processing budget approvals, managing workflows, and facilitating communication between stakeholders |
| Account Management | Creating and maintaining your account, verifying identity, and providing customer support |
| Platform Improvement | Analyzing usage patterns, fixing bugs, and developing new features based on user behavior |
| Security | Detecting fraud, preventing unauthorized access, and protecting against security threats |
| Communication | Sending service updates, notifications about your workflows, and responding to inquiries |
| Legal Compliance | Meeting regulatory requirements, responding to legal requests, and enforcing our terms |
We process financial data with extra care since budget approval workflows involve sensitive business information. All financial documents and approval records are encrypted and stored securely with restricted access.
Data Sharing and Third Parties
We don't sell your data to anyone. Period. But running a modern platform means we work with service providers who help us deliver our services. Here's who might see your information and why.
Service Providers
We partner with companies that handle specific functions like payment processing, cloud storage, and email delivery. These providers only access data necessary for their specific tasks and are bound by strict confidentiality agreements.
- Payment processors for handling transactions and invoicing
- Cloud hosting services for data storage and platform infrastructure
- Email service providers for notifications and communications
- Analytics tools for understanding platform usage patterns
- Security services for threat detection and prevention
Legal Requirements
Sometimes we're legally required to share information. This happens when we receive valid subpoenas, court orders, or other legal demands from Thai authorities or international law enforcement. We'll notify you about these requests unless prohibited by law.
If Pulsewavefusion is involved in a merger, acquisition, or sale of assets, your data might transfer to the new entity. You'll receive notice before this happens, and you can choose to delete your account if you're uncomfortable with the change.
Your Privacy Rights
You have significant control over your personal information. Thailand's PDPA gives you specific rights, and we've built tools to help you exercise them easily.
Access Your Data
Request a copy of all personal information we hold about you. We'll provide it in a readable format within 30 days.
Correct Inaccuracies
Update or fix incorrect information directly through your account settings or by contacting our support team.
Delete Your Data
Request deletion of your account and associated data. Some information may be retained for legal compliance.
Withdraw Consent
Revoke permission for specific data processing activities. This might limit certain service features.
Data Portability
Download your data in a machine-readable format to transfer to another service provider.
Object to Processing
Challenge how we use your information for marketing, analytics, or other non-essential purposes.
To exercise any of these rights, send your request to our data protection team at support@pulsewavefusion.com. We'll respond within 30 days and verify your identity before processing sensitive requests.
Data Security Measures
Protecting your information isn't just about having good passwords. We've implemented multiple layers of security to keep your data safe from unauthorized access, loss, or misuse.
Technical Safeguards
All data transmissions use TLS encryption, and sensitive information is encrypted at rest using industry-standard algorithms. Our infrastructure undergoes regular security audits, and we maintain intrusion detection systems that monitor for suspicious activity 24/7.
- Multi-factor authentication for account access
- Regular security patches and system updates
- Isolated database environments with restricted access
- Automated backup systems with encrypted storage
- Access controls based on role-based permissions
Organizational Measures
Our team follows strict data handling protocols. Employees only access data necessary for their job functions, and all staff complete regular security training. We maintain incident response procedures to handle potential breaches quickly and effectively.
Data Breach Notification: If a security incident affects your data, we'll notify you within 72 hours of discovering the breach. The notification will explain what happened, what data was affected, and what steps we're taking to address the situation.
Data Retention and Deletion
We don't keep your data forever. Our retention periods balance operational needs with your privacy rights and legal requirements.
Active Account Data
While your account is active, we maintain all necessary data to provide our services. This includes your profile information, workflow history, and approval records. You can delete specific documents or records anytime through your account dashboard.
After Account Closure
When you close your account, we begin a deletion process. Most data is removed within 90 days. However, we retain certain information longer for legal compliance, including financial records (7 years), tax documents (10 years), and legal correspondence (as required by law).
| Data Type | Retention Period |
|---|---|
| Budget approval records | 7 years after fiscal year end |
| Financial transaction data | 10 years per Thai accounting standards |
| User account information | 90 days after account closure |
| Marketing communications data | Until consent withdrawal |
| Support correspondence | 3 years after ticket closure |
| Security logs | 2 years for audit purposes |
International Data Transfers
Our primary servers are located in Thailand, but we use cloud services with global infrastructure. This means your data might be processed in facilities outside Thailand, including in the United States and European Union.
When data crosses borders, we ensure it receives equivalent protection through standard contractual clauses and other approved transfer mechanisms. All international service providers must meet the same security standards we follow domestically.
If you're accessing our services from outside Thailand, your data will be transferred to and processed in Thailand where our company is based. By using our services, you consent to this transfer and acknowledge that Thai privacy laws will apply.
Cookies and Tracking Technologies
We use cookies to make our platform work better and remember your preferences. You can control cookie settings through your browser, though disabling some cookies might affect functionality.
Types of Cookies We Use
- Essential Cookies: Required for login, security, and basic platform functions
- Performance Cookies: Help us understand how users interact with features
- Functionality Cookies: Remember your preferences and settings
- Analytics Cookies: Provide insights into usage patterns and popular features
We don't use advertising cookies or share cookie data with ad networks. Our analytics are solely for improving the platform experience and understanding user needs.
Children's Privacy
Our services are designed for business use and aren't intended for anyone under 18. We don't knowingly collect information from minors. If you're a parent and believe your child has provided us with personal data, contact us immediately so we can delete it.
Changes to This Policy
Privacy practices evolve, and we occasionally update this policy to reflect changes in our services or legal requirements. When we make significant changes, we'll notify active users via email at least 30 days before the new terms take effect.
The "Last Updated" date at the top shows when we last modified this policy. We recommend reviewing it periodically to stay informed about how we protect your information.
Questions About Privacy?
We're here to help. If you have concerns about your data, want to exercise your privacy rights, or just have questions about this policy, reach out to our team.