Privacy Policy

Last updated: 14 September 2025

​

This notice explains how Prasilith Ltd. ("Prasilith", "we") processes personal data on prasilith.com. It is written to meet the EU GDPR, Germany’s BDSG and TDDDG (terminal‑device access/cookies), and Thailand’s PDPA. Where laws differ, we apply the stricter rule to the affected users.

​

1) Controller & Contacts

Controller: Prasilith Ltd., 125/31 Soi Ruamruedee 4, Bangkok 10330, Thailand
Email: privacy@prasilith.com 
DPO: Ahmet Yesilkaya, privacy@prasilith.com]
 

2) Data We Process

You provide: name, contact details, messages, account preferences, order/billing/shipping data (if you buy from us).
Automatic: IP address, device/browser info, language/time zone, pages viewed, referrer/UTM, basic diagnostics.
From third parties: payment/fulfilment and analytics providers; social media plugins if you interact with them.
We do not intentionally collect special‑category data. Please avoid sending it in free‑text.

​

3) Why We Use Your Data & Legal Bases

• Run and secure the Site (load pages, prevent fraud, logs). Bases: legitimate interests; occasionally contract/legal obligation.

• Respond to you (forms, chat, email). Bases: contract or steps before contract; legitimate interests.

• Sell and deliver products/services (checkout, fulfilment, support). Bases: contract; legal obligation (tax/audit).

• Analytics and improvement (non‑essential). Base: consent.

• Marketing (newsletters/ads, if you opt‑in or soft‑opt‑in where allowed). Base: consent; you can unsubscribe anytime.

You may withdraw consent at any time. Where we rely on legitimate interests, we balance our interests against your rights and expectations.

​

4) Cookies & Similar Tech (TDDDG/TTDSG §25 & PDPA)

• We use strictly necessary cookies for core functions.

• Non‑essential cookies/SDKs/pixels (e.g., analytics/advertising) are used only with your prior consent. In Germany/EEA, no non‑essential storage/access occurs before opt‑in.

• Manage choices anytime via Cookie Settings: [link/button]. We keep a consent log.

• Third‑party embeds (e.g., video/social) may set their own cookies; see their policies.

 

5) Sharing

We share data with service providers (hosting, security, email, analytics, payments, logistics) under contracts; with advisers/authorities when required; and in corporate transactions under safeguards. We do not sell personal data.

 

6) International Transfers

Data may be stored/processed in Thailand and other countries.

• GDPR: we use Standard Contractual Clauses or other recognized safeguards and perform transfer assessments where needed.

• PDPA: we follow PDPC rules (e.g., whitelist, binding corporate rules or appropriate safeguards) or rely on permitted exceptions.
  Details of destinations/safeguards available on request.

 

7) Retention

We keep data only as long as needed for the purposes above and legal/accounting requirements, then delete or anonymize. Typical ranges: inquiry records up to 24 months; contract/transaction data as required by law.

 

8) Your Rights

GDPR (EEA/Germany): access; rectification; erasure; restriction; portability; object (including to direct marketing); withdraw consent; complain to a Data Protection Authority.
Thailand PDPA: be informed; access/obtain copies; rectification; portability (where applicable); objection; restriction; erasure/destruction/anonymization; withdraw consent; complain to the PDPC.
To exercise rights: email privacy@prasilith.com. We will verify identity and respond within legal time limits.

 

9) Security

We apply appropriate technical and organizational measures (e.g., TLS, access controls, least‑privilege, vendor due diligence, incident response). No method is perfectly secure.

 

10) Children

This Site is not directed to children. If you believe a child’s data was provided, contact us to remove it.

 

11) Automated Decisions

We do not make decisions based solely on automated processing that produce legal or similarly significant effects.

 

12) Providing Data

Providing data is voluntary, but we may be unable to respond, create an account, or fulfil an order without certain information.

 

13) Contact

Privacy enquiries & requests: privacy@prasilith.com
Postal: Prasilith Ltd., 125/31 Soi Ruamruedee 4, Bangkok 10330, Thailand
DPO: Ahmet Yesilkaya

 

14) Changes

We will update this notice as needed. If we make material changes, we will notify you via the Site and, where required, request consent again (e.g., for new cookies or new purposes).

​