Privacy Policy

We believe transparency about data handling builds better partnerships. This policy explains exactly how FlowSpotTech collects, uses, and protects your information when you work with us.

Last Updated: January 15, 2025

Who We Are

FlowSpotTech provides manual software testing and validation services to businesses throughout Thailand and internationally. We're based in Pattaya and have been helping companies improve their software quality since our founding. When you engage our testing services, share project details, or simply browse our website, you're trusting us with certain information.

This privacy policy applies to all interactions with FlowSpotTech, whether through our website, email communications, project collaborations, or phone consultations. We take this responsibility seriously and want you to understand exactly what happens with your data.

Information We Collect

The information we collect depends on how you interact with us. Here's what we typically gather and why:

Contact Information

Names, email addresses, phone numbers, and company details when you reach out for quotes or project discussions. We need this to communicate effectively and provide accurate proposals.

Project Details

Technical specifications, software descriptions, testing requirements, and project timelines you share during consultations. This helps us deliver relevant testing services.

Website Usage

Basic analytics about how visitors use our website, including pages viewed and time spent. We use this to improve our site's usefulness for potential clients.

We don't collect sensitive personal information unless it's directly relevant to a testing project you've contracted us for. If your software handles sensitive data that affects our testing approach, we'll discuss this separately and implement appropriate safeguards.

How We Use Your Information

Your information helps us provide better testing services and maintain professional relationships. Here's how we use what you share:

  • Service Delivery: Providing manual testing, creating test documentation, and communicating results for your projects
  • Project Communication: Sending updates, discussing findings, scheduling calls, and coordinating testing phases
  • Proposal Development: Creating accurate quotes and testing plans based on your specific requirements
  • Account Management: Maintaining records of our working relationship and project history
  • Service Improvement: Understanding which testing approaches work best for different types of software
  • Legal Compliance: Meeting contractual obligations and Thai business regulations

We don't use your information for marketing unless you've specifically asked to receive updates about our services. Most of our new business comes through referrals anyway, so we focus on doing excellent work rather than aggressive marketing.

Information Sharing and Disclosure

We keep your information within FlowSpotTech unless sharing is necessary for your project or required by law. When we do share information, here's what happens:

Project-Related Sharing

Sometimes we need to share limited project information with subcontractors or specialized testing tools. We only share what's necessary for the specific task and require the same confidentiality standards we maintain.

  • Service Providers: Testing tools, cloud services, or communication platforms we use for your project
  • Legal Requirements: Thai authorities if required by law, though this has never happened in our experience
  • Business Partners: Occasionally, clients ask us to coordinate with their other vendors, but only with your explicit permission
  • Emergency Situations: If there's a security issue affecting your software that requires immediate attention

We never sell client lists, share project details for marketing purposes, or discuss your business with competitors. Professional discretion is fundamental to what we do.

Data Security Measures

Protecting your information is both a professional obligation and good business sense. We've implemented several layers of security:

  • Encrypted email communication for all project-related discussions
  • Secure file sharing systems with access controls and audit trails
  • Regular backups stored in encrypted formats
  • Limited access policies - only team members working on your project see your information
  • Secure development environments isolated from production systems
  • Regular security reviews of our tools and processes

We also maintain professional indemnity insurance and follow industry best practices for software testing environments. If we discover any security issue affecting client data, we'll notify affected clients within 24 hours and take immediate corrective action.

Your Rights and Control

You have several rights regarding the information we hold about you. These aren't just legal obligations - they're practical ways to maintain control over your data:

What You Can Do

  • Access: Request a copy of all information we have about you or your projects
  • Correction: Update any inaccurate information in our records
  • Deletion: Request removal of your information after project completion (subject to legal retention requirements)
  • Restriction: Limit how we use your information for specific purposes
  • Portability: Get your project data in a format you can use elsewhere
  • Objection: Object to certain uses of your information

To exercise these rights, just contact us using the information below. We'll respond within 7 business days for most requests. Some requests might take longer if they involve complex project data, but we'll keep you updated on our progress.

Data Retention and Deletion

We keep your information only as long as it serves a legitimate business purpose. Here's our typical timeline:

Retention Schedule

Active Projects: All relevant data maintained for project duration plus 60 days

Completed Projects: Project files and communication records kept for 3 years for warranty and reference purposes

Prospects: Contact information and project discussions deleted after 18 months of no engagement

Website Analytics: Aggregated usage data retained for 25 months, then automatically deleted

We may need to retain certain information longer for legal or tax purposes, particularly invoicing records and contracts. Thai business regulations require us to maintain some financial records for up to 5 years.

When we delete information, we remove it completely from our systems, including backups. If you need project data returned before deletion, let us know and we can arrange secure transfer.

International Data Transfers

While FlowSpotTech operates primarily in Thailand, some of our tools and services involve international data transfers. For example:

  • Cloud storage services that may have servers in multiple countries
  • Communication tools for international client collaboration
  • Testing environments that simulate global user conditions
  • Backup systems that ensure data availability

When international transfers occur, we ensure appropriate safeguards are in place, such as standard contractual clauses, adequacy decisions, or certification schemes. We only work with service providers who demonstrate adequate data protection standards.

If your project has specific data residency requirements, we can discuss local-only solutions, though this may affect some testing capabilities and pricing.

Cookies and Website Technology

Our website uses minimal tracking technology. We employ basic analytics to understand which pages are most useful and identify technical issues. This helps us improve the site for future visitors.

We don't use advertising cookies, social media tracking, or complex behavioral analysis. The cookies we do use include:

  • Essential cookies: For basic site functionality and security
  • Analytics cookies: To understand general usage patterns
  • Preference cookies: To remember settings you choose

You can control cookie settings through your browser, though disabling essential cookies may affect site functionality. We don't use cookies to identify individual visitors or track them across other websites.

Changes to This Policy

We review this privacy policy annually and update it when our practices change or regulations require modifications. When we make significant changes, we'll notify current clients by email and post the updated policy on our website.

Minor clarifications or formatting changes won't trigger notifications, but we'll always update the "Last Updated" date at the top of this policy. We recommend checking this page occasionally, especially if we're working on a long-term project together.

If policy changes affect ongoing projects, we'll discuss any necessary adjustments to our working arrangements. Your continued engagement with FlowSpotTech after policy changes indicates acceptance of the updated terms.

Privacy Questions and Concerns

We're happy to discuss any privacy concerns or answer questions about how we handle your information. The easiest way to reach us:

Email: info@flowspottech.com
Phone: +66 44 257 298
Address: 20/15-16 ซอยเดยไนท์, Muang Pattaya, Bang Lamung District, Chon Buri 20260, Thailand

We typically respond to privacy inquiries within one business day. For complex requests involving project data, we might need additional time to compile information securely.