Who We Are and How to Reach Us

Ripple Transferly operates as a financial analysis service based in Thailand. Our physical office is located at 111/39 แจ้งวัฒนะ ปากเกร็ด 19 บางพูด ปากเกร็ด Nonthaburi 11120, Thailand. If you have questions about how we handle your data, you can reach our privacy team at [email protected] or call us at +6629447916.

We comply with Thailand's Personal Data Protection Act (PDPA), which came into full effect in 2022 and mirrors many principles found in international privacy regulations.

Information We Collect

Direct Information You Provide

When you sign up or use our services, we collect what you give us directly. This includes:

• Your name, email address, and phone number when you create an account
• Company details and business information for analysis purposes
• Financial data you upload or input for profitability analysis
• Payment information when you subscribe to our services
• Messages you send us through contact forms or support channels

Automatic Collection

Like most web services, our systems automatically log certain information when you visit. This happens whether you have an account or not:

• Your IP address and general location (city level, not your exact address)
• Browser type and device information
• Pages you visit and features you use
• Time stamps for your activities
• Referring websites that brought you to us

We use cookies and similar tracking technologies. You can control these through your browser settings, though some features might not work properly if you disable them entirely.

Financial Analysis Data

Our core service involves analyzing your business finances. The data you upload for analysis gets special treatment. We collect revenue figures, expense breakdowns, profit margins, and other financial metrics you choose to share. This information stays encrypted and is only accessible to systems performing your requested analysis.

How We Use Your Information

We're not in the business of collecting data for its own sake. Everything we gather serves specific purposes:

1. Processing your analysis requests and generating reports based on the data you provide
2. Managing your account, including authentication and subscription status
3. Communicating with you about your account, analysis results, and service updates
4. Processing payments and maintaining billing records
5. Improving our analysis algorithms based on aggregated, anonymized patterns
6. Troubleshooting technical issues when you report problems
7. Preventing fraud and maintaining platform security
8. Complying with legal obligations under Thai and international law

We don't use your financial data for marketing purposes. Your actual business numbers stay within the analysis system and aren't shared with advertisers or third parties.

Legal Basis for Processing

Under Thailand's PDPA, we need legitimate grounds to process your personal data. Here's what applies:

• Contractual Necessity: Most of our processing happens because we need it to deliver the service you purchased. You can't get financial analysis without sharing financial data.
• Consent: For certain activities like marketing communications or optional features, we ask for your explicit consent. You can withdraw this anytime.
• Legal Obligation: Some data retention and processing happens because Thai law requires it, particularly around financial records and tax documentation.
• Legitimate Interests: We process some data to improve our services and maintain security, balanced against your privacy rights.

Sharing Your Information

We're selective about who gets access to your data. Here's the complete picture:

Service Providers

Some companies help us operate. These include our hosting provider for servers, payment processor for subscriptions, and email service for communications. They only get access to information necessary for their specific function and are contractually bound to protect your data.

Legal Requirements

If Thai authorities issue a valid legal request, we may need to disclose information. This happens rarely, but we're obligated to comply with court orders, regulatory requirements, and legitimate law enforcement requests. When possible, we notify users before disclosure unless prohibited by law.

Business Transfers

Should Ripple Transferly be acquired or merged with another company, your information would transfer as part of that transaction. You'd be notified beforehand, and the new entity would need to honor this privacy policy.

What We Don't Do

Your Rights Under Thai Law

Thailand's PDPA gives you specific rights regarding your personal data. These aren't just theoretical — you can actually exercise them:

Access and Portability

You can request a copy of all personal data we hold about you. We'll provide this in a structured, commonly used format within 30 days. If you want to transfer your data to another service, we'll facilitate that where technically feasible.

Correction and Updates

Found something wrong in your profile or data? You can update most information directly through your account settings. For corrections requiring manual intervention, contact us and we'll make changes within a reasonable timeframe.

Deletion Rights

You can request deletion of your personal data. We'll comply unless we have legitimate grounds to retain it, such as ongoing legal obligations or unresolved disputes. Some financial records must be kept for tax purposes even after account closure.

Objection and Restriction

You can object to certain types of processing, particularly for marketing purposes. You can also request we restrict processing while you challenge the accuracy of data or the lawfulness of our processing activities.

How to Exercise These Rights

Send requests to [email protected] with "Privacy Rights Request" in the subject line. We'll verify your identity before processing requests. Most requests are handled within 30 days, though complex requests may take up to 90 days.

Data Security Measures

Financial data demands serious security. Here's how we protect your information:

• Encryption: All data transmits over HTTPS. Financial analysis data is encrypted at rest using AES-256 encryption standards.
• Access Controls: Our team operates on strict need-to-know basis. Only authorized personnel with legitimate business reasons can access user data.
• Infrastructure Security: Our servers run behind firewalls with intrusion detection systems. We perform regular security audits and vulnerability assessments.
• Authentication: User accounts require strong passwords. We support two-factor authentication and strongly recommend enabling it.
• Monitoring: Automated systems watch for unusual access patterns or potential security breaches. We investigate anomalies immediately.

No system is completely invulnerable. If we discover a breach affecting your data, we'll notify you within 72 hours as required by Thai law, along with details about what happened and steps we're taking.

Data Retention and Deletion

We don't keep your data forever. Different types of information have different retention periods:

When retention periods expire, we securely delete data through multi-pass erasure processes. Backup copies are purged according to our backup rotation schedule, typically within 90 days of primary deletion.

International Data Transfers

Our primary infrastructure operates within Thailand. However, some service providers we work with may process data outside Thailand. When this occurs:

• We use providers in countries with adequate data protection standards as recognized by Thai authorities
• Contractual agreements include data protection clauses equivalent to PDPA requirements
• Your financial analysis data specifically stays within Thai data centers
• We maintain documentation of all international transfer safeguards

If you have concerns about international transfers affecting your data, contact our privacy team for specific details about where your information might be processed.

Cookies and Tracking Technologies

Our site uses cookies and similar technologies. Here's what's running and why:

Essential Cookies

These make the site function. They handle authentication, remember your session, and maintain security features. You can't really disable these without breaking core functionality.

Analytics Cookies

We track how people use our site to improve it. This tells us which features are popular, where users encounter problems, and how to make navigation more intuitive. This data is anonymized and doesn't identify you personally.

Preference Cookies

These remember your settings like language preferences, dashboard layout, and display options. They make your experience more convenient but aren't strictly necessary.

Most browsers let you control cookies through settings. You can block or delete them, though this may affect site functionality. Check your browser's help section for specific instructions.

Children's Privacy

Ripple Transferly is a business financial service. We don't knowingly collect information from individuals under 18. Our terms of service require users to be at least 18 years old or the age of legal capacity in Thailand. If we discover we've inadvertently collected data from a minor, we'll delete it immediately.

Changes to This Policy

Privacy practices evolve as laws change and services expand. When we update this policy, we'll post the revised version here with a new "Last Updated" date. Significant changes get announced through email and prominent site notices.

Continued use of our services after policy changes constitutes acceptance. If you disagree with modifications, you should discontinue use and may request account deletion under your data rights.

Third-Party Links

Our platform may contain links to external websites or services. We're not responsible for their privacy practices. When you click through to another site, that site's privacy policy applies. We recommend reviewing privacy policies of any third-party services you use.

Complaints and Regulatory Contact

If you're unhappy with how we handle your data, please contact us first. We take complaints seriously and will investigate thoroughly.

You also have the right to lodge a complaint with Thailand's Personal Data Protection Committee (PDPC). They oversee PDPA enforcement and can investigate potential violations. Contact details for the PDPC are available through the Ministry of Digital Economy and Society's website.