Information We Collect

When you use our financial stability analysis services, we need certain information to do our job properly. Here's what we gather and why:

Information You Give Us Directly

When you sign up or request our services, you provide details like your name, email address, phone number, and business address. If you're working with us on financial analysis, we'll need financial documents, business registration details, and sometimes tax information. We only ask for what's necessary – nothing more.

Information We Collect Automatically

Like most websites, ours collects technical data when you visit. This includes your IP address, browser type, device information, and how you navigate through our site. We use this to improve our service and spot any security issues. These automated systems help us understand which features people actually use versus which ones just take up space.

Financial Analysis Data

For our core service – financial stability analysis – we need access to your financial statements, cash flow records, and operational metrics. This is sensitive stuff, and we treat it that way. All financial data is encrypted both when it's moving through our systems and when it's sitting in our databases.

How We Use Your Information

We're not in the business of selling your data or using it for purposes you didn't sign up for. Here's exactly what happens with your information:

We don't use your financial data for marketing. We don't train AI models on your sensitive information. And we definitely don't share it with advertisers.

Legal Basis for Processing (Thailand PDPA Compliance)

Thailand's Personal Data Protection Act (PDPA) requires us to have a legal reason for processing your data. Here are ours:

• Contractual Necessity: Most of what we do is necessary to fulfill our service agreement with you. Can't provide financial analysis without analyzing finances.
• Legal Obligations: Thai law requires us to maintain certain records for tax and financial regulation purposes. We keep what we're required to keep.
• Legitimate Interests: We process some data to improve our services and prevent fraud. But only when it doesn't override your privacy rights.
• Consent: For anything beyond the basics, we ask for your explicit permission first.

Data Sharing and Disclosure

We're selective about who sees your information. Here's the complete list:

Service Providers

Some trusted third parties help us operate our platform – cloud hosting providers, payment processors, and security services. They only get access to what they need, and they're contractually bound to protect your data. We vet these partners carefully and review their security practices regularly.

Legal Requirements

Sometimes Thai authorities request information for legitimate legal purposes. Tax audits, court orders, regulatory investigations – these are situations where we might need to share data. We only provide what's legally required and will notify you when possible.

Business Transfers

If futurenodedrive ever merges with another company or gets acquired, your data would be part of that transfer. But the new entity would still be bound by the promises in this policy.

Your Privacy Rights

Under Thailand's PDPA, you have significant control over your personal data. These aren't just theoretical rights – we've built systems to actually honor them:

To exercise any of these rights, email us at [email protected] with your request. We'll verify your identity and respond within 30 days. There's no fee unless your request is clearly excessive or repetitive.

Data Security Measures

Security isn't an afterthought here – it's built into everything we do. Working with financial data means we can't afford to be careless.

Encryption

All data transmission uses TLS 1.3 encryption. Data at rest is encrypted using AES-256. Your financial documents are encrypted with additional layers before storage. Even if someone somehow accessed our servers, they'd find encrypted gibberish.

Access Controls

Not everyone at futurenodedrive can see your data. Access is strictly limited based on job function. Our analysts can only view the information needed for their specific assignments. Administrative access requires multi-factor authentication and is logged.

Regular Security Audits

We conduct quarterly security assessments and annual penetration testing. Third-party security firms probe our defenses to find vulnerabilities before malicious actors do. When issues are found, we fix them immediately.

Employee Training

Everyone on our team receives regular privacy and security training. They understand the importance of the data they handle and the consequences of mishandling it.

Data Retention

We don't keep your information forever. Here's how long different types of data stick around:

• Active Account Data: Maintained while your account is active and for one year after closure, unless you request earlier deletion.
• Financial Analysis Records: Kept for seven years to comply with Thai accounting and tax regulations. This is a legal requirement, not our choice.
• Communication Logs: Emails and support tickets are retained for three years for quality assurance and dispute resolution.
• Technical Logs: Server logs and access records are kept for 90 days, then automatically deleted.
• Marketing Consent: If you've opted into communications, we keep that preference until you opt out. Then it's deleted within 30 days.

When retention periods expire, data is securely deleted from our systems. This means overwriting, not just pressing delete. We ensure information can't be recovered.

International Data Transfers

Our primary servers are located in Thailand. However, some service providers we work with operate globally, which means your data might be processed in other countries.

When data leaves Thailand, we ensure adequate protection through:

• Standard contractual clauses approved by Thai data protection authorities
• Verification that destination countries have adequate data protection laws
• Additional encryption and security measures for cross-border transfers

We primarily work with providers in Singapore, Japan, and the EU – jurisdictions with strong privacy protections. We avoid countries with weak data protection standards.

Cookies and Tracking Technologies

Our website uses cookies, but we're not trying to follow you around the internet. Here's what we use and why:

Essential Cookies

These keep the site working. Session cookies remember you're logged in. Security cookies prevent fraudulent activity. You can't opt out of these without breaking the site.

Analytics Cookies

We use basic analytics to understand how people use our platform. Which features get used? Where do people get confused? This data is anonymized – we're looking at patterns, not individuals.

What We Don't Use

No advertising cookies. No social media tracking pixels. No third-party behavioral tracking. We're focused on providing financial analysis, not building advertising profiles.

You can control cookies through your browser settings. Just know that blocking essential cookies will prevent you from using certain features of our service.

Children's Privacy

Our services are designed for businesses and adult professionals. We don't knowingly collect information from anyone under 18. If we discover we've inadvertently collected data from a minor, we'll delete it immediately.

Parents or guardians who believe their child has provided us with personal information should contact us right away at [email protected].

Changes to This Policy

Privacy regulations evolve. Our business practices might change. When we update this policy, we'll notify active users by email at least 30 days before changes take effect.

Significant changes – like new data uses or expanded sharing practices – will require your renewed consent. We won't just slip them into an updated policy and hope you don't notice.

Previous versions of this policy are archived and available upon request. We're transparent about what changed and why.

Complaints and Disputes

If you're unhappy with how we've handled your personal data, contact us first. Most issues can be resolved through direct communication. We take complaints seriously and investigate them thoroughly.

If you're not satisfied with our response, you have the right to file a complaint with Thailand's Personal Data Protection Committee. Contact details:

You can also pursue legal remedies through Thai courts if you believe we've violated your privacy rights.