跳转到主要内容

隐私政策

最后更新: February 1, 2026

1. 简介

OneDay Makeup Co., Ltd. ("we," "us," or "our") is committed to protecting the privacy and personal data of our clients. This Privacy Policy explains how we collect, use, store, and share your information when you use our website, book our services, or interact with us through any channel. We comply with Thailand's Personal Data Protection Act (PDPA) and are dedicated to maintaining the trust you place in us.

2. 我们收集的信息

We may collect the following types of personal information:

  • Personal identifiers: Full name, email address, phone number, date of birth, and gender.
  • Booking information: Service history, appointment dates, preferred artists, and branch preferences.
  • Payment details: Payment method used and transaction records. All card data is tokenized and processed through Omise (Opn Payments), a PCI-DSS compliant payment processor — we never store your full card number.
  • Communication data: Messages sent through LINE, email, or our website contact form.
  • Technical data: IP address, browser type, device information, and cookies when you visit our website.

3. 我们如何使用您的数据

We use your personal information for the following purposes:

  • Processing and confirming bookings, orders, and payments.
  • Communicating with you about your appointments, including reminders and follow-ups via LINE, email, or SMS.
  • Improving our services based on your feedback and usage patterns.
  • Sending promotional offers and updates (only with your consent, and you can opt out at any time).
  • Complying with legal obligations and resolving disputes.

4. 数据共享

We do not sell, rent, or trade your personal data to third parties. We may share your information only with trusted service providers who assist us in operating our business, including Omise/Opn Payments (for processing card and PromptPay transactions), cloud hosting providers (for securely storing data), and communication platforms (LINE, email services for sending booking confirmations). All third-party providers are contractually obligated to protect your data and use it only for the specified purposes.

5. Cookie

Our website uses cookies and similar tracking technologies to enhance your browsing experience. We use essential cookies for session management and website functionality, and analytics cookies to understand how visitors interact with our site. You can manage your cookie preferences through your browser settings. Disabling essential cookies may affect the functionality of our booking system.

6. 数据安全

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include SSL/TLS encryption for data in transit, encrypted databases for data at rest, role-based access controls limiting employee access to personal data, and regular security audits and vulnerability assessments. While we strive to protect your data, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

7. 您的权利

Under the PDPA, you have the following rights regarding your personal data:

  • Right to access: Request a copy of the personal data we hold about you.
  • Right to correction: Request correction of inaccurate or incomplete data.
  • Right to deletion: Request deletion of your personal data, subject to legal retention requirements.
  • Right to restrict processing: Request that we limit how we use your data.
  • Right to data portability: Request your data in a structured, machine-readable format.
  • Right to withdraw consent: Withdraw your consent at any time for consent-based processing.

To exercise any of these rights, please contact our Data Protection Officer at privacy@oneday.co.th. We will respond to your request within 30 days.

8. 数据保留

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy, or as required by law. In general, we keep your data for up to 5 years after your last interaction with us (booking, purchase, or account activity). After this period, your data will be securely deleted or anonymized. Financial records may be retained longer as required by Thai tax and accounting regulations.

9. 儿童隐私

Our services and website are not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected personal data from a person under 18 without parental consent, we will take steps to delete that information promptly. If you believe a child has provided us with personal data, please contact us immediately.

10. 本政策的变更

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or business operations. For material changes, we will notify you via email, LINE message, or a prominent notice on our website at least 30 days before the changes take effect. We encourage you to review this policy periodically to stay informed about how we protect your data.

11. 联系方式

If you have any questions or concerns about this Privacy Policy, or if you wish to exercise your data rights, please contact our Data Protection Officer:

返回顶部