Contact us
Close

The Percentage Company

90/5, Moo 2, Vichit, Muang, Phuket, Thailand

+66 (0)76 609 467

contact@thepercentage.asia

support@thepercentage.asia

Contact us

Privacy Policy

Percentage Consulting Co., Ltd.
Last Updated: March 2026

Percentage Consulting Co., Ltd. (“Company”, “we”, “us”, or “our”) is committed to protecting personal data and ensuring transparency in how we collect, use, process, and safeguard information.

This Privacy Policy explains how we process personal data in connection with:

  • Our websites (including www.thepercentage.asia)
  • Our software platforms, including booking engines, CRM systems, and AI-powered tools
  • Our services provided to hotels, partners, and end users

We comply with the Personal Data Protection Act B.E. 2562 (2019) (PDPA) and align with international best practices, including principles derived from GDPR.

2. Scope of This Policy

This policy applies to:

  • Website visitors
  • Clients (hotels, partners, businesses)
  • End-users (guests booking through our systems)
  • Users of our AI and analytics platforms

3. Roles and Responsibilities

Depending on the service:

  • Data Controller: When we collect and use personal data for our own purposes (e.g., marketing, website use)
  • Data Processor: When we process data on behalf of our clients (e.g., hotel guest data within our systems)

Clients remain the data controller for their customer data. We act strictly under their instructions.

4. Personal Data We Collect

We may collect the following categories:

4.1 Identity & Contact Data

  • Name, surname
  • Email address
  • Phone number

4.2 Transaction & Financial Data

  • Booking details
  • Payment tokens (processed via secure third-party providers)
  • Purchase history

4.3 Technical Data

  • IP address
  • Browser type
  • Device information
  • Cookies and tracking data

4.4 Business Information

  • Company name
  • Operational data provided by clients

4.5 User-Generated Content

  • Messages, feedback, uploaded files, images

5. How We Collect Data

We collect data through:

  • Website forms and booking engines
  • Account registration
  • Email, phone, chat communication
  • API integrations with client systems
  • Cookies and tracking technologies

6. Legal Basis for Processing

We process personal data under the following lawful bases:

  • Consent (e.g., marketing communications)
  • Contractual necessity (e.g., bookings, services)
  • Legitimate interests (e.g., improving services, fraud prevention)
  • Legal obligations (e.g., regulatory compliance)

7. Use of Personal Data

We use personal data to:

  • Provide and operate our services
  • Manage bookings and transactions
  • Deliver customer support
  • Improve and develop products
  • Conduct analytics and reporting
  • Send marketing communications (where permitted)
  • Ensure system security and prevent fraud

8. Artificial Intelligence & Automated Processing

We use AI and machine learning technologies to enhance our services.

8.1 AI Use Cases

  • Demand forecasting and pricing insights
  • Customer behavior analysis
  • Marketing personalization
  • Operational automation

8.2 Automated Decision-Making

Our systems may generate recommendations or insights based on data.
We do not make solely automated decisions that produce legal or similarly significant effects without human oversight.

8.3 AI Model Training

  • Client data is not used to train shared AI models unless explicitly agreed
  • Where used, data is anonymized and aggregated
  • Clients may opt out of any data-driven improvements
  1. Data Sharing and Disclosure

We may share personal data with:

9.1 Service Providers

Including:

  • Cloud hosting (e.g., AWS)
  • Payment processors (e.g., Stripe, Omise)
  • Communication services (e.g., Twilio, SendGrid)
  • Analytics providers (e.g., Google)

These providers process data under strict confidentiality and security obligations.

9.2 Within Our Organization

To operate and improve our services.

9.3 Legal Requirements

Where required by law or government authorities.

9.4 Business Transfers

In case of merger, acquisition, or restructuring.

10. International Data Transfers

Your data may be transferred outside Thailand.

We ensure appropriate safeguards, including:

  • Contractual data protection clauses
  • Secure infrastructure and encryption
  • Transfers to trusted jurisdictions and providers

11. Data Retention

We retain personal data only as long as necessary:

  • During active service or contractual relationship
  • As required by law
  • For legitimate business purposes

Data is securely deleted or anonymized when no longer needed.

12. Data Security

We implement appropriate technical and organizational measures:

  • Encryption (in transit and at rest where applicable)
  • Access controls and authentication
  • Monitoring and logging systems
  • Secure cloud infrastructure
  • Regular security reviews

Payment data is handled by certified third-party providers. We do not store full credit card details.

13. Cookies and Tracking Technologies

We use cookies to:

  • Improve user experience
  • Analyze traffic and usage
  • Deliver personalized content and ads

Users may manage cookie preferences via browser settings.

14. Marketing Communications

We may send marketing communications where permitted by law.

Users can unsubscribe at any time via:

  • Email unsubscribe links
  • Direct contact with us

15. Your Rights

Under applicable law, you have the right to:

  • Access your data
  • Request correction
  • Request deletion
  • Restrict processing
  • Object to processing
  • Withdraw consent
  • Request data portability
  • Lodge complaints with authorities

Requests can be made via our contact details below.

16. Children’s Data

Our services are not intended for children.

We do not knowingly collect data from individuals under the age required by applicable law without parental consent.

17. Data Breach Notification

In case of a data breach:

  • We will notify relevant authorities within required timeframes
  • We will notify affected individuals where there is a high risk

18. Third-Party Websites

Our website may contain links to third-party sites.
We are not responsible for their privacy practices.

19. Changes to This Policy

We may update this Privacy Policy from time to time.
Updates will be communicated via:

  • Website notice
  • Email (where appropriate)

20. Contact Information

Data Controller / Company
Percentage Consulting Co., Ltd.
90/5 Moo 2, Muang, Phuket 83000, Thailand
Email: data@thepercentage.asia
Phone: +66 (0) 76 609 467
Website: www.thepercentage.asia

Data Protection Contact
Email: data@thepercentage.asia

21. Governing Law

This Privacy Policy is governed by the laws of Thailand.