Med TU

Personal Data Protection Policy
Sahamitr Pressure Container Public Company Limited
Article 1 : Principle and Rationale
Personal data Protection Act B.E. 2562 was created to make personal data protection effective and to have efficient measures to remedy the personal data subject from infringement of the rights in personal data. The enactment of this Act is in accordance with the provision in Article 26 of the Constitution of the Kingdom of Thailand.
Sahamitr Pressure Container PLC the Company adheres to conducting business with ethics, paying respect and complying with applicable laws. The Company is aware of data privacy related to personal data and is committed to protecting the privacy of personal information. Thus, the policy is declared to be the basis for personal data protection. The Company acknowledges of the need in safety in conducting transactions and the storage of personal data. Therefore, the Company pays attention to paying respect to the privacy rights of individuals and personal data security. The Company has set out the policies, regulations and criteria for operation with strict measures for personal data security to ensure that the personal data received by the Company will be used according to individual needs and will be legally utilized.
Article 2 : Personal data
2.1 Data Collected by the Company
The Company may collect personal data of the data subject through various channels, such as:
(1) when the data subject applies for a job with us through website or telephone, as well as when employed as the employee of the Company, the Company would request for the necessary information as follows:
name-surname, telephone number, e-mail, address, profile, education, etc.
(2) When the data subject contacts for inquiry or is interested in our service, the Company may ask for the data about data subject, such as name, e-mail, telephone number, etc.
(3) The Company may record the Log Files of the data subject, including IP Address or access time, etc.
2.2 Personal data
Personal data is the data that make us be able to specify the identity of each person, directly or indirectly, which are:-
(1) Personal data that is provided to the Company directly or through other channels, including when using the service, contact, visit, search through digital channel, website, Call Center, the person in charge, or any other channels.
(2) The personal data received or accessed by the Company through other sources that is not directly from you, such as father, mother, children, spouse, sibling, government agency, financial company, financial institution, financial service provider, business partner, National Credit Bureau and data service provider, etc. which the Company will gather from other sources when receiving your consent according to the law, except when it is necessary as allowed by law.
The personal data that the Company have gathered, used and/or disclosed, such as
(1) Personal information, such as name, surname, age, dated of birth, marital status, National ID Number, Passport Number
(2) Contact information, such as accommodation, workplace, telephone, number, e-mail, LINE ID
(3) Financial information, such as saving account number, financial history, list of assets owned by the person and related parties (father, mother, children, spouse, sibling)
(4) Transaction data, such as bank statement, payment, borrowing, investment in assets of the person and related parties (father, mother, children, spouse, sibling)
(5) Information of equipment or tools, such as IP Address, MAC Address, Cookie ID
(6) Other information, such as website usage, sound, image, animated image, and any other information that is considered personal data under personal data protection law.
(7) Website of the Company may use cookies in some cases. Cookies are small-size data file that record the data that is exchanged between the computer of the data subject and our website. The Company uses cookies only to record the data that maybe useful for the data subject in the next time that the data subject return to visit the website of the Company. When the data subject use the web browser, the data subject can set up the value to accept all cookies or reject all cookies or ask the web browser to notify the data subject whenever the cookies are sent. The data subject can set up at the menu “help” in the browser to learn the method to change the use of cookies of the data subject. Please bear in mind that the disable or cookie use may affect the function of some services for the data subject.
2.3 Sensitive Data
Sensitive data is the personal data that is specifically specified by law, which are sexual behavior data, health data, political opinion, religious belief, etc. The Company will gather, use and/or disclose the sensitive personal data when the Company has obtained consent expressly from individual or in the case that the Company is necessary in case it is allowed by law. The Company may have to gather, use and/or disclose personal data, biometric data, such as fingerprint simulation data, for the purpose of proving and verification the identity of person who request to enter into the Company’s area (hereinafter the personal data and sensitive data will be collectively called “personal data”, unless the data is specific.
Article 3 : Purpose and details of the gathering, usage and/or disclosure of personal data
The Company will gather the personal data for the benefit of business operation according to the purposes, as well as to comply with any law that the Company or the individual must follow and for any purposes as specified in this policy as follows:
3.1 To make the Company be able to operate the business according to the purposes
3.2 To perform its duties according to the relevant law or legal obligations, such as:
(1) Compliance with the orders of the legal authority
(2) Compliance with the financial institution business law, securities and exchange law, life insurance law, non-life insurance law, tax law, anti-money laundering law, terrorism and proliferation of weapons of mass destruction financing law, computer law, bankruptcy law and other laws that the Company is required to comply with, both in Thailand and abroad, including announcements and regulations issued under the said laws.
3.3 to conduct necessary operation under the legitimate interest without exceeding the limits that an individual can reasonably expect (Legitimate Interest), such as:
(1) CCTV recording and ticket exchange before entering the Company area
(2) Maintaining relationship with the customers, such as handling complaints, satisfaction assessment for customer care conducted by the employee of the Company
(3) Risk management, auditing supervision and internal management
(4) Making personal data to be anonymous data
(5) Preventing, handling and mitigating the risks of fraudulent activity, cyber threat, default for debt repayment or breach of contract (e.g. bankruptcy information), law violation, such as money laundering, financial support for terrorism and proliferate weapons of mass destruction, offenses relating to asset, life, body, liberty, or reputation), which includes sharing personal data to raise the standard of work of the office in preventing, handling and mitigating the above risks.
(6) Gathering, using and/or disclosing the personal data of the authorized directors, representative of the corporate customer
(7) Contacting, recording the image or voice of meeting, training, recreation activities and exhibition
(8) Gathering, using and/or disclosing personal data of the person who is under receivership by court order
(9) Receiving – delivery of parcels
3.4 Personal data that the Company has processed and categorized by the legal basis is as follows:
(1) Contract basis
(2) Vital Interest basis
(3) Legal Obligation basis
(4) Public Task basis
(5) Legitimate Interest basis
(6) Consent basis
If there is a (lawful) change in the purpose of personal data use, the Company will notify the individual within 30 days.
3.5 For the personal data that the Company has recorded the personal data usage in log, each department should record the log as follows:
(1) If it is used for general purpose of the Company, personal data usage record is not required.
(2) If it is used outside the purpose of the Company, the personal data usage must be recorded by adding the purpose of use and request for consent from the data subject again.
(3) In the case of important personal data that is used from time to time, consider to record the usage log to keep user information and the details of use
(4) In the case there is Access Log to examine the user, record the usage, so that if the information is leaked, it will be verifiable.
(5) In the case there is Access Control, limit the number of people who can access the personal data use.
Article 4 : Processing of data by third parties
The Company may need to submit or transfer the personal data to third parties for processing. The Company will ensure the submission or transfer of personal data in accordance with the law and will take action to have personal data protection measures that we deem necessary and appropriate to comply with confidentiality standards, such as fragmentation before submission of personal data. Alternately, the Company may choose to implement a personal data protection policy that has been reviewed and approved by the relevant legal authority and will proceed to submit or transfer personal data to third parties for processing according to the aforementioned personal data protection policy instead of the operation according to the law.
Article 5 : Disclosure of personal data
The Company may disclose the personal data to other people under the consent of the person, according to the Consent Form or under the criteria allowed by law.
Article 6 : Submitting or transferring the personal data abroad
the Company may need to submit or transfer personal data to companies in the Company’s network located abroad or to other recipients as part of the Company’s normal business operations, such as submitting or transferring personal data to store on the server / cloud in various countries. In the event that the destination country does not have sufficient standards, the Company will take care of the submission or transfer of personal data to be in accordance with the law and will take personal data protection measures that are deemed necessary and appropriate in accordance with confidentiality standards, such as entering into confidentiality agreements with recipients in such countries, or if the recipient is a company in the Company’s network located abroad, the Company may choose to implement a personal data protection policy that has been examined and approved by the authority according to the relevant laws. And the Company will proceed to submit or transfer personal data to the company in the Company’s network abroad to be in accordance with the aforementioned personal data protection policy instead of complying with the law provision.
Article 7 : Cookie Policy
When you enter our website, the information relating to your access to the website is stored in the form of cookies. This Cookie Policy describes the meaning, function, purpose, including deletion and refusal of cookies for privacy purposes. The access to this website is deemed you have given consent to our use of cookies in accordance with the cookie policy detailed below.
7.1 What are cookies?
Cookies are small files for storing data by storing on your computer device and/or communication device accessed by you, such as tablet, smartphone via a web browser while you enter our website. The Company’s websites may use cookies in some cases. Cookies are small data files that store information that is exchanged between computers of the data subject and our website. The Company uses cookies only to store information that may be of useful for the data subject in the next time that the data subject revisits the Company’s website. When a data subject accesses a web browser, the data subject can set to accept all cookies or reject all cookies or ask the browser to notify the data subject when cookies are being sent. The data subject can manage the setting in the “Help” menu of the browser to learn how to change the cookie usage of the data subject. Pleas be aware that the use of cookies may affect the usability of certain data subject services.
7.2 How to use cookies?
We use cookies to improve your experience and satisfaction. It will make us understand the nature of your website usage quickly and make our website easy to access and more convenient. In some cases, we may require a third party to take action which may require Internet Protocol Address (IP Address) and Cookies for Statistical Analysis as well as link information and processed according to marketing objectives.
7.3 Types of cookies that are used
Types of cookies
Persistent cookies

Terms & Condition
Sahamitr Pressure Container Public Company Limited
Article 1 : Principle and Rationale
Personal data Protection Act B.E. 2562 was created to make personal data protection effective and to have efficient measures to remedy the personal data subject from infringement of the rights in personal data. The enactment of this Act is in accordance with the provision in Article 26 of the Constitution of the Kingdom of Thailand.
Sahamitr Pressure Container PLC the Company adheres to conducting business with ethics, paying respect and complying with applicable laws. The Company is aware of data privacy related to personal data and is committed to protecting the privacy of personal information. Thus, the policy is declared to be the basis for personal data protection. The Company acknowledges of the need in safety in conducting transactions and the storage of personal data. Therefore, the Company pays attention to paying respect to the privacy rights of individuals and personal data security. The Company has set out the policies, regulations and criteria for operation with strict measures for personal data security to ensure that the personal data received by the Company will be used according to individual needs and will be legally utilized.
Article 2 : Personal data
2.1 Data Collected by the Company
The Company may collect personal data of the data subject through various channels, such as:
(1) when the data subject applies for a job with us through website or telephone, as well as when employed as the employee of the Company, the Company would request for the necessary information as follows:
name-surname, telephone number, e-mail, address, profile, education, etc.
(2) When the data subject contacts for inquiry or is interested in our service, the Company may ask for the data about data subject, such as name, e-mail, telephone number, etc.
(3) The Company may record the Log Files of the data subject, including IP Address or access time, etc.
2.2 Personal data
Personal data is the data that make us be able to specify the identity of each person, directly or indirectly, which are:-
(1) Personal data that is provided to the Company directly or through other channels, including when using the service, contact, visit, search through digital channel, website, Call Center, the person in charge, or any other channels.
(2) The personal data received or accessed by the Company through other sources that is not directly from you, such as father, mother, children, spouse, sibling, government agency, financial company, financial institution, financial service provider, business partner, National Credit Bureau and data service provider, etc. which the Company will gather from other sources when receiving your consent according to the law, except when it is necessary as allowed by law.
The personal data that the Company have gathered, used and/or disclosed, such as
(1) Personal information, such as name, surname, age, dated of birth, marital status, National ID Number, Passport Number
(2) Contact information, such as accommodation, workplace, telephone, number, e-mail, LINE ID
(3) Financial information, such as saving account number, financial history, list of assets owned by the person and related parties (father, mother, children, spouse, sibling)
(4) Transaction data, such as bank statement, payment, borrowing, investment in assets of the person and related parties (father, mother, children, spouse, sibling)
(5) Information of equipment or tools, such as IP Address, MAC Address, Cookie ID
(6) Other information, such as website usage, sound, image, animated image, and any other information that is considered personal data under personal data protection law.
(7) Website of the Company may use cookies in some cases. Cookies are small-size data file that record the data that is exchanged between the computer of the data subject and our website. The Company uses cookies only to record the data that maybe useful for the data subject in the next time that the data subject return to visit the website of the Company. When the data subject use the web browser, the data subject can set up the value to accept all cookies or reject all cookies or ask the web browser to notify the data subject whenever the cookies are sent. The data subject can set up at the menu “help” in the browser to learn the method to change the use of cookies of the data subject. Please bear in mind that the disable or cookie use may affect the function of some services for the data subject.
2.3 Sensitive Data
Sensitive data is the personal data that is specifically specified by law, which are sexual behavior data, health data, political opinion, religious belief, etc. The Company will gather, use and/or disclose the sensitive personal data when the Company has obtained consent expressly from individual or in the case that the Company is necessary in case it is allowed by law. The Company may have to gather, use and/or disclose personal data, biometric data, such as fingerprint simulation data, for the purpose of proving and verification the identity of person who request to enter into the Company’s area (hereinafter the personal data and sensitive data will be collectively called “personal data”, unless the data is specific.
Article 3 : Purpose and details of the gathering, usage and/or disclosure of personal data
The Company will gather the personal data for the benefit of business operation according to the purposes, as well as to comply with any law that the Company or the individual must follow and for any purposes as specified in this policy as follows:
3.1 To make the Company be able to operate the business according to the purposes
3.2 To perform its duties according to the relevant law or legal obligations, such as:
(1) Compliance with the orders of the legal authority
(2) Compliance with the financial institution business law, securities and exchange law, life insurance law, non-life insurance law, tax law, anti-money laundering law, terrorism and proliferation of weapons of mass destruction financing law, computer law, bankruptcy law and other laws that the Company is required to comply with, both in Thailand and abroad, including announcements and regulations issued under the said laws.
3.3 to conduct necessary operation under the legitimate interest without exceeding the limits that an individual can reasonably expect (Legitimate Interest), such as:
(1) CCTV recording and ticket exchange before entering the Company area
(2) Maintaining relationship with the customers, such as handling complaints, satisfaction assessment for customer care conducted by the employee of the Company
(3) Risk management, auditing supervision and internal management
(4) Making personal data to be anonymous data
(5) Preventing, handling and mitigating the risks of fraudulent activity, cyber threat, default for debt repayment or breach of contract (e.g. bankruptcy information), law violation, such as money laundering, financial support for terrorism and proliferate weapons of mass destruction, offenses relating to asset, life, body, liberty, or reputation), which includes sharing personal data to raise the standard of work of the office in preventing, handling and mitigating the above risks.
(6) Gathering, using and/or disclosing the personal data of the authorized directors, representative of the corporate customer
(7) Contacting, recording the image or voice of meeting, training, recreation activities and exhibition
(8) Gathering, using and/or disclosing personal data of the person who is under receivership by court order
(9) Receiving – delivery of parcels
3.4 Personal data that the Company has processed and categorized by the legal basis is as follows:
(1) Contract basis
(2) Vital Interest basis
(3) Legal Obligation basis
(4) Public Task basis
(5) Legitimate Interest basis
(6) Consent basis
If there is a (lawful) change in the purpose of personal data use, the Company will notify the individual within 30 days.
3.5 For the personal data that the Company has recorded the personal data usage in log, each department should record the log as follows:
(1) If it is used for general purpose of the Company, personal data usage record is not required.
(2) If it is used outside the purpose of the Company, the personal data usage must be recorded by adding the purpose of use and request for consent from the data subject again.
(3) In the case of important personal data that is used from time to time, consider to record the usage log to keep user information and the details of use
(4) In the case there is Access Log to examine the user, record the usage, so that if the information is leaked, it will be verifiable.
(5) In the case there is Access Control, limit the number of people who can access the personal data use.
Article 4 : Processing of data by third parties
The Company may need to submit or transfer the personal data to third parties for processing. The Company will ensure the submission or transfer of personal data in accordance with the law and will take action to have personal data protection measures that we deem necessary and appropriate to comply with confidentiality standards, such as fragmentation before submission of personal data. Alternately, the Company may choose to implement a personal data protection policy that has been reviewed and approved by the relevant legal authority and will proceed to submit or transfer personal data to third parties for processing according to the aforementioned personal data protection policy instead of the operation according to the law.
Article 5 : Disclosure of personal data
The Company may disclose the personal data to other people under the consent of the person, according to the Consent Form or under the criteria allowed by law.
Article 6 : Submitting or transferring the personal data abroad
the Company may need to submit or transfer personal data to companies in the Company’s network located abroad or to other recipients as part of the Company’s normal business operations, such as submitting or transferring personal data to store on the server / cloud in various countries. In the event that the destination country does not have sufficient standards, the Company will take care of the submission or transfer of personal data to be in accordance with the law and will take personal data protection measures that are deemed necessary and appropriate in accordance with confidentiality standards, such as entering into confidentiality agreements with recipients in such countries, or if the recipient is a company in the Company’s network located abroad, the Company may choose to implement a personal data protection policy that has been examined and approved by the authority according to the relevant laws. And the Company will proceed to submit or transfer personal data to the company in the Company’s network abroad to be in accordance with the aforementioned personal data protection policy instead of complying with the law provision.
Article 7 : Cookie Policy
When you enter our website, the information relating to your access to the website is stored in the form of cookies. This Cookie Policy describes the meaning, function, purpose, including deletion and refusal of cookies for privacy purposes. The access to this website is deemed you have given consent to our use of cookies in accordance with the cookie policy detailed below.
7.1 What are cookies?
Cookies are small files for storing data by storing on your computer device and/or communication device accessed by you, such as tablet, smartphone via a web browser while you enter our website. The Company’s websites may use cookies in some cases. Cookies are small data files that store information that is exchanged between computers of the data subject and our website. The Company uses cookies only to store information that may be of useful for the data subject in the next time that the data subject revisits the Company’s website. When a data subject accesses a web browser, the data subject can set to accept all cookies or reject all cookies or ask the browser to notify the data subject when cookies are being sent. The data subject can manage the setting in the “Help” menu of the browser to learn how to change the cookie usage of the data subject. Pleas be aware that the use of cookies may affect the usability of certain data subject services.
7.2 How to use cookies?
We use cookies to improve your experience and satisfaction. It will make us understand the nature of your website usage quickly and make our website easy to access and more convenient. In some cases, we may require a third party to take action which may require Internet Protocol Address (IP Address) and Cookies for Statistical Analysis as well as link information and processed according to marketing objectives.
7.3 Types of cookies that are used
Types of cookies
Persistent cookies