Privacy Policy

Last Updated: January 15, 2025

Introduction

At rippletaplynetflux, we take your privacy seriously. This policy explains how we collect, use, and protect your personal information when you interact with our budget consolidation services. We're based in Bangkok and operate under Thai law, specifically the Personal Data Protection Act B.E. 2562 (2019), which shapes how we handle your data.

You're trusting us with sensitive financial information. That's not something we take lightly. This document walks you through exactly what happens with your data from the moment you share it with us until the moment you ask us to delete it.

Data We Collect

When you use our platform, we gather different types of information. Some you give us directly, some we collect automatically, and some comes from how you use our services.

Personal Information You Provide

  • Your name, email address, and phone number when you register
  • Financial account information you connect for budget consolidation
  • Payment details when you subscribe to premium features
  • Communication records when you contact our support team
  • Identity verification documents if required for compliance

Automatically Collected Data

  • Device information including IP address, browser type, and operating system
  • Usage patterns showing which features you access and when
  • Transaction metadata that helps us improve our services
  • Location data based on IP address for security purposes

Important: We never access your banking credentials directly. Our platform uses secure API connections that allow read-only access to transaction data. You can revoke these connections anytime through your account settings.

How We Use Your Information

Every piece of data we collect serves a specific purpose. We don't collect information just to have it sitting in our database.

Primary Service Functions

Your financial data powers the core consolidation features. We analyze transactions across your connected accounts to give you a unified view of your spending patterns. This requires processing transaction descriptions, amounts, dates, and categories.

Account Management

We use your contact information to manage your account, send service notifications, and respond to your support requests. If there's a security concern with your account, we'll reach out using the email or phone number you provided.

Service Improvement

Aggregated, anonymized usage data helps us understand which features work well and which need refinement. For example, if we notice users struggling with a particular workflow, that tells us where to focus development efforts.

Legal Compliance

As a financial services platform operating in Thailand, we're required to maintain certain records and report specific activities. This includes anti-money laundering checks and tax reporting where applicable.

Data Storage and Security

Security isn't just a checkbox for us. Your financial data deserves bank-level protection, and that's what we provide.

Where Your Data Lives

We store data on servers located in Singapore and Thailand, both chosen for their robust data protection frameworks. Your information is encrypted both in transit (using TLS 1.3) and at rest (using AES-256 encryption). Database access is restricted to specific engineering team members who need it for their work.

Security Measures

  • Multi-factor authentication required for all team accounts
  • Regular security audits conducted quarterly by external firms
  • Automated monitoring systems that alert us to suspicious activity
  • Strict access controls based on role and necessity
  • Regular backups stored in geographically separate locations

Despite our best efforts, no system is 100% secure. If we detect a breach that affects your data, we'll notify you within 72 hours as required by Thai law, along with details about what happened and steps you should take.

Sharing Your Information

We don't sell your data. Period. But we do share information with specific partners who help us provide our services.

Service Providers

Third-party services handle certain functions like payment processing, email delivery, and cloud hosting. These partners are contractually bound to protect your data and can only use it for the specific services they provide to us.

Service Type Purpose Data Shared
Payment Processor Handle subscription billing Payment details, email
Cloud Infrastructure Host platform and data All user data (encrypted)
Email Service Send notifications Email address, name
Analytics Provider Usage insights Anonymized behavior data

Legal Requirements

We may disclose your information if required by Thai law, court order, or government request. This includes cooperation with law enforcement investigations and compliance with financial regulations. We'll notify you of such requests unless legally prohibited from doing so.

Your Rights Under Thai Law

Thailand's Personal Data Protection Act gives you significant control over your personal information. Here's what you can do and how to do it.

Access Your Data

You can request a copy of all personal data we hold about you. We'll provide this in a structured, commonly used format (usually JSON or CSV) within 30 days. Log into your account and navigate to Settings > Privacy > Request Data Export.

Correct Inaccurate Information

If you spot errors in your profile or financial data, you can update most information directly through your account dashboard. For data that comes from connected bank accounts, you'll need to correct it at the source.

Delete Your Account

You have the right to request complete deletion of your account and associated data. Go to Settings > Account > Delete Account. This action is permanent and cannot be undone. We'll retain some transaction records for seven years as required by Thai financial regulations, but these will be dissociated from your personal identifiers.

Object to Processing

You can object to how we process your data for marketing purposes or certain analytical uses. However, you cannot object to processing that's essential for providing the service you signed up for.

Data Portability

Request your data in a format that allows you to transfer it to another service. We support standard financial data formats that most competitors can import.

Processing Time: We handle most requests within 30 days. Complex requests might take up to 60 days, and we'll let you know if we need the extra time.

Data Retention

We don't keep your data forever. Different types of information have different retention periods based on business necessity and legal requirements.

Active Account Data

While your account is active, we retain all your financial data and personal information to provide continuous service. Transaction history remains accessible for as long as you maintain your account.

After Account Closure

When you close your account, we delete most personal data within 90 days. Financial transaction records are anonymized and retained for seven years to comply with Thai anti-money laundering regulations and tax laws.

Backup Systems

Deleted data may persist in backup systems for up to 90 additional days before being permanently purged from all systems.

International Data Transfers

Some of our service providers operate outside Thailand. When we transfer data internationally, we ensure adequate protection through approved mechanisms.

Transfer Safeguards

  • Standard contractual clauses approved by Thai data protection authorities
  • Partners located in countries with adequate data protection laws
  • Binding corporate rules for multinational service providers
  • Encryption during all international data transmissions

If you're concerned about international transfers, contact us. We can discuss alternatives or provide more details about the safeguards in place.

Children's Privacy

Our services are designed for adults managing their personal finances. We don't knowingly collect information from anyone under 20 years old (the age of majority in Thailand). If you're a parent and believe your child has provided us with personal information, contact us immediately and we'll delete it.

Changes to This Policy

We update this policy occasionally to reflect new practices or legal requirements. When we make significant changes, we'll notify you via email at least 30 days before the new policy takes effect. Continuing to use our services after that period means you accept the updated terms.

Minor clarifications or formatting changes won't trigger a notification, but we'll always update the "Last Updated" date at the top of this page.

Complaints and Concerns

If you're not satisfied with how we've handled your privacy concerns, you have the right to file a complaint with Thailand's Personal Data Protection Committee. You can reach them through the Office of the Personal Data Protection Committee (PDPC) at the Ministry of Digital Economy and Society.

That said, we'd appreciate the chance to address your concerns directly first. Most issues can be resolved through conversation.

Privacy Questions? We're Here to Help

Email us at [email protected]

Call us at +66 2 804 2887

Visit us at Lat Phrao 102 Alley, Phlabphla, Wang Thonglang, Bangkok 10310, Thailand

Our data protection officer reviews all privacy inquiries and typically responds within 3 business days.