Privacy Policy

Last Updated: March 15, 2025

Who We Are and What This Policy Covers

We're Shimmerray, a software testing and validation company based in Thailand. We help businesses ensure their software works properly through manual testing services. This privacy policy explains how we collect, use, and protect your personal information when you visit our website or work with us.

Our contact details are straightforward: you can reach us at 211 Ramvithi Rd, Tambon Bo Yang, Mueang Songkhla District, Songkhla 90000, Thailand, by phone at +6653211592, or email us at contact@shimmerray.com.

We believe privacy should be clear and honest. This policy is written in plain language because legal jargon helps no one.

Information We Collect

Information You Give Us Directly

When you contact us or request our services, we collect the information you choose to share:

  • Your name and job title
  • Company name and business contact details
  • Email address and phone number
  • Project details and testing requirements
  • Communication preferences

Information We Collect Automatically

Like most websites, ours collects some technical information automatically:

  • IP address and general location (city/region level)
  • Browser type and device information
  • Pages visited and time spent on our site
  • How you found our website (search engines, direct links, etc.)

We use basic analytics tools to understand how people use our website. This helps us improve the experience for everyone.

How We Use Your Information

We use your information for practical business purposes:

Service Delivery To provide testing services, communicate project updates, and deliver results
Business Communication To respond to inquiries, send proposals, and maintain client relationships
Website Improvement To understand how visitors use our site and make it more helpful
Legal Compliance To meet our obligations under Thai and international laws

We don't use your personal information for advertising or marketing to other people. We don't sell contact lists or share client information with competitors.

Legal Basis for Processing (Thailand and International Law)

Under Thai Personal Data Protection Act (PDPA) and international privacy standards, we process your personal data based on:

  • Contract Performance: When you engage our services, we need your information to deliver what we promised
  • Legitimate Business Interest: For website analytics, business development, and improving our services
  • Your Consent: For marketing communications (which you can opt out of anytime)
  • Legal Compliance: To meet tax, accounting, and business registration requirements in Thailand

Your Rights and How to Exercise Them

You have several rights regarding your personal information. Here's what you can do and how to do it:

Access Your Data

Ask us what personal information we have about you. We'll provide a clear summary within 30 days.

Correct Information

If we have incorrect details, just let us know and we'll fix them promptly.

Delete Your Data

Request deletion of your personal information (subject to legal retention requirements).

Data Portability

Get your data in a common format to take elsewhere if you choose.

How to Exercise Your Rights

Email us at contact@shimmerray.com with "Privacy Request" in the subject line. Include your name, contact details, and what you'd like us to do.

We'll respond within 30 days and won't charge fees for reasonable requests.

Data Security and Protection

We take data security seriously and use multiple layers of protection:

Technical Safeguards

  • Encrypted data transmission (SSL/TLS) for all website communications
  • Secure servers with regular security updates and monitoring
  • Limited access controls - only authorized team members can access client data
  • Regular backups stored in secure, encrypted environments

Organizational Measures

  • Staff training on data protection and privacy requirements
  • Clear internal policies about handling client information
  • Regular review of who has access to what information
  • Incident response procedures if something goes wrong

However, no system is 100% secure. If we discover any data breach that affects your personal information, we'll notify you and relevant authorities as required by law.

Data Sharing and Transfers

We don't sell or rent your personal information to anyone. Here's when we might share data:

Service Providers

We work with trusted third parties who help us run our business:

  • Email hosting and communication tools
  • Cloud storage and backup services
  • Website analytics and hosting providers
  • Accounting and legal service providers

These partners are bound by strict data protection agreements and can only use your information for the specific services they provide to us.

Legal Requirements

We may disclose information if required by Thai law, court orders, or government authorities. We'll notify you unless legally prohibited from doing so.

International Transfers

Some of our service providers are located outside Thailand. When we transfer data internationally, we ensure appropriate safeguards are in place through standard contractual clauses or equivalent protection measures.

Data Retention

We don't keep your personal information longer than necessary. Here's our approach:

Active Client Relationships

We keep necessary information throughout our business relationship and for project documentation.

After Project Completion

Client project data is retained for 3 years for warranty support and potential follow-up projects.

Website Visitors

Analytics data is kept for 2 years to understand long-term website performance trends.

Legal Requirements

Some business records must be kept for 5 years under Thai accounting and tax laws.

You can always request early deletion of your personal information, and we'll comply unless we have a legal obligation to retain it.

Cookies and Website Technologies

Our website uses cookies and similar technologies to function properly and provide a good user experience.

Essential Cookies

These make our website work and remember your preferences during your visit. They don't track you across other websites.

Analytics Cookies

We use Google Analytics to understand how people use our website. This helps us improve content and navigation. These cookies don't identify you personally.

Your Cookie Choices

You can control cookies through your browser settings. Blocking all cookies might affect website functionality, but essential features will still work.

Changes to This Policy

We review this privacy policy annually and update it when our practices change or when required by law.

If we make significant changes that affect how we use your personal information, we'll notify existing clients by email and update the "Last Updated" date at the top of this policy.

For minor updates or clarifications, we'll simply update this page. We recommend checking back occasionally if privacy is important to you.

Contact Us About Privacy

If you have questions about this privacy policy or how we handle your personal information, we're here to help.

Privacy Questions

Email: contact@shimmerray.com (put "Privacy Question" in subject line)

Phone: +6653211592

Mail: Shimmerray Privacy Officer
211 Ramvithi Rd, Tambon Bo Yang
Mueang Songkhla District, Songkhla 90000
Thailand

Response Time: We aim to respond to privacy inquiries within 3 business days

If you're not satisfied with our response to a privacy concern, you can file a complaint with the Personal Data Protection Committee (PDPC) in Thailand or your local data protection authority if you're located elsewhere.