Information We Collect

Running a financial analysis platform means we need certain information to provide accurate insights. Here's what we gather and why it matters:

Account Information

When you create an account, we collect basic details: your name, email address, company name, and phone number. We use this to identify your account and send important notifications about your financial analyses.

Financial Data

This is the heart of what we do. You provide financial statements, balance sheets, cash flow data, and business metrics. We analyze this information to generate working capital insights. Your financial data stays in secure, encrypted storage and we never share it with third parties for marketing purposes.

Technical Information

Like most online platforms, we automatically collect technical data: IP addresses, browser types, device information, and how you interact with our platform. This helps us improve performance and catch potential security issues early.

Communication Records

When you contact our support team at help@sharerglowlumix.com, we keep records of those conversations. This helps us provide better assistance and improve our educational resources.

How We Use Your Information

We're not in the business of selling data. Everything we collect serves specific purposes related to our financial education and analysis services:

• Generating working capital analyses and financial reports customized to your business
• Processing enrollment for our learning programs and managing educational content access
• Sending account notifications, security alerts, and educational updates you've opted into
• Improving our analysis algorithms and educational materials based on aggregated, anonymized usage patterns
• Responding to your support requests and technical questions
• Meeting legal obligations under Thai financial regulations and PDPA requirements
• Detecting fraud and preventing unauthorized access to sensitive financial data

Data Storage and Security

Financial information requires serious protection. Here's how we handle security:

All data transmissions use TLS 1.3 encryption. Your financial statements and analysis results are stored in encrypted databases hosted in secure facilities within Thailand, ensuring compliance with local data residency requirements.

Access to your financial data is strictly limited. Only authorized personnel who need access to provide support or maintain systems can view your information. All access is logged and regularly audited.

We conduct regular security assessments and maintain backup systems to prevent data loss. Our servers are protected by firewalls, intrusion detection systems, and continuous monitoring.

Data Retention

We don't keep your information forever. Here's our retention approach:

When retention periods expire, we securely delete or anonymize your data. You can request earlier deletion, though we may need to retain certain information for legal compliance.

Sharing Your Information

We're selective about who sees your data. Here are the limited circumstances where information might be shared:

Service Providers

We work with carefully vetted companies that help operate our platform: cloud hosting providers, email services, and payment processors. These providers are bound by strict confidentiality agreements and can only use your data to deliver services on our behalf.

Legal Requirements

If Thai authorities issue valid legal requests, or if we're required to comply with court orders or regulatory investigations, we may need to disclose information. We'll notify you when legally permitted.

Business Transfers

In the unlikely event sharerglowlumix is acquired or merged with another company, your information would transfer to the new entity. You'd be notified of any such change and your rights under this policy would continue.

With Your Consent

If you authorize us to share specific information with your accountant, financial advisor, or business partners, we'll do so only to the extent you've explicitly approved.

Your Rights Under Thai PDPA

Thailand's Personal Data Protection Act gives you significant control over your information. Here's what you can do:

1. Access Your Data: Request a copy of all personal and financial information we hold about you. We'll provide this in a readable format within 30 days.
2. Correct Inaccuracies: If information we have is wrong or outdated, you can request corrections. This is especially important for financial data accuracy.
3. Delete Your Information: Request deletion of your data when it's no longer necessary for our services. Some data may need to be retained for legal compliance.
4. Restrict Processing: Ask us to limit how we use your information in certain circumstances, such as while disputing data accuracy.
5. Data Portability: Receive your financial data in a structured, machine-readable format to transfer to another service provider.
6. Object to Processing: Oppose specific uses of your data, particularly for marketing purposes (though we do minimal marketing anyway).
7. Withdraw Consent: If processing is based on your consent, you can withdraw it anytime. This won't affect processing that occurred before withdrawal.

To exercise these rights, email help@sharerglowlumix.com with your request. We'll verify your identity and respond within 30 days as required by PDPA. There's no fee for most requests, though we may charge reasonable costs for excessive or repetitive requests.

International Students and Data Transfers

Our learning programs attract international students. If you're accessing our platform from outside Thailand, understand that your data will be transferred to and processed in Thailand where our servers are located.

We maintain the same security standards regardless of where you're located. However, Thailand's data protection laws differ from those in other countries. By using our services from abroad, you acknowledge this transfer and processing.

For students from the European Economic Area, we take additional measures to ensure adequate protection equivalent to GDPR standards, including standard contractual clauses where appropriate.

Cookies and Tracking Technologies

Our platform uses cookies and similar technologies. Here's what that means in practical terms:

Essential Cookies: These keep you logged in and remember your preferences. Without them, the platform wouldn't function properly. We don't ask permission for these because they're necessary for the service you've requested.

Analytics Cookies: We use these to understand how people use our platform—which features are helpful, where users get stuck, what educational content is most valuable. This data is aggregated and anonymized. You can disable these in your account settings.

Performance Cookies: These help us optimize loading times and ensure the platform runs smoothly across different devices and browsers.

You can control cookie settings through your browser, though disabling certain cookies might limit platform functionality. We don't use advertising cookies or third-party tracking for marketing purposes.

Children's Privacy

Our services are designed for business professionals and adult learners. We don't knowingly collect information from anyone under 18 years old. If you're a parent or guardian and believe your child has provided us with personal information, contact us immediately and we'll delete it.

Our learning programs require participants to be at least 18 years old or have documented parental consent for those aged 15-17 as permitted under Thai PDPA provisions for educational purposes.

Changes to This Policy

Financial regulations and technology evolve. We may update this privacy policy to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you by email and display a prominent notice on the platform.

We maintain an archive of previous policy versions. The "Last Updated" date at the top shows when the current version took effect. Continued use of our platform after changes indicates acceptance of the updated policy.

For major changes that affect how we use your financial data, we'll seek your explicit consent before implementing them.

Third-Party Services

Our platform may contain links to external resources: financial news sites, regulatory guidance, educational materials. These third-party sites have their own privacy policies. We're not responsible for their practices and encourage you to review their policies before sharing information.

If you access our platform through third-party integrations or APIs, those services may collect additional information subject to their own policies.

Data Breach Notification

Despite our security measures, no system is completely immune to breaches. If a security incident affects your personal or financial data, we'll notify you within 72 hours of discovering the breach, as required by Thai PDPA.

Our notification will explain what happened, what data was affected, what we're doing about it, and what steps you should take to protect yourself. We'll also notify relevant Thai regulatory authorities as required.