top of page

Home / Privacy Policy

Privacy Policy

Last Updated: 21 May 2025

1. Introduction and Scope

Leopard Intertrade Company Limited (the "Company", "we", "us", or "our") recognises the importance of protecting personal data and is committed to ensuring that personal data is collected, used, disclosed, and processed in a lawful, transparent, and secure manner. This Privacy Policy sets out the principles and practices governing the handling of personal data in accordance with the Personal Data Protection Act B.E. 2562 (2019) of the Kingdom of Thailand ("PDPA"), together with other applicable laws and regulations.

This Privacy Policy applies to all individuals whose personal data is collected or processed by the Company, including but not limited to website visitors, customers, prospective customers, suppliers, contractors, business partners, and other relevant stakeholders. By accessing our website or engaging with us in the course of business, you acknowledge and accept the practices described in this Privacy Policy.

2. Definitions and Interpretation

For the purposes of this Privacy Policy, terms such as "personal data", "data subject", "processing", and "data controller" shall have the meanings ascribed to them under the PDPA. Where interpretation is required, such interpretation shall be consistent with the PDPA and prevailing guidance issued by the competent authorities of the Kingdom of Thailand.

3. Data Controller

Leopard Intertrade Company Limited, a company limited registered and incorporated under the laws of the Kingdom of Thailand, acts as the data controller in respect of personal data collected and processed under this Privacy Policy. As data controller, the Company determines the purposes and means of processing personal data and is responsible for ensuring compliance with applicable data protection laws.

4. Categories of Personal Data Collected

4.1 Personal Data Provided Voluntarily

The Company may collect personal data directly from individuals where such data is voluntarily provided through communications, enquiries, or commercial interactions. This may include, without limitation, names, job titles, company affiliations, postal addresses, email addresses, telephone numbers, and other contact information provided in connection with enquiries, quotations, contractual discussions, or business correspondence.

4.2 Personal Data Collected Automatically

When individuals access or interact with the Company's website, certain technical and usage-related information may be collected automatically. Such information may include internet protocol (IP) addresses, browser types, device identifiers, operating systems, access times, referring URLs, and pages viewed. This data is collected through standard website technologies and is used primarily for operational, security, and analytical purposes.

5. Purpose and Necessity of Processing

The Company collects and processes personal data only to the extent necessary and proportionate to achieve legitimate and lawful business purposes. Such purposes include, but are not limited to, responding to enquiries, providing information regarding products and services, preparing quotations and proposals, performing contractual obligations, managing customer and supplier relationships, maintaining internal records, and ensuring the effective operation and security of the Company's website.

Personal data may also be processed to comply with legal obligations, regulatory requirements, and lawful requests from governmental authorities. The Company does not process personal data in a manner incompatible with the purposes for which it was collected unless otherwise permitted or required by law.

6. Legal Basis for Processing

In accordance with the PDPA, the Company processes personal data based on one or more lawful bases, including the necessity of processing for the performance of a contract or to take steps prior to entering into a contract, compliance with legal obligations, the pursuit of legitimate business interests, and, where applicable, the consent of the data subject.

Where consent is relied upon as the legal basis for processing, data subjects have the right to withdraw such consent at any time without affecting the lawfulness of processing carried out prior to withdrawal. To withdraw consent, data subjects should submit a written request to the Company using the contact details set out in Section 14 of this Privacy Policy.

7. Disclosure and Transfer of Personal Data

The Company may disclose personal data to third parties only where such disclosure is necessary, lawful, and consistent with the purposes set out in this Privacy Policy. Such third parties may include, without limitation:

  • Technology and IT service providers, including website hosting providers, cloud storage providers, and software-as-a-service platforms used in the ordinary course of business;

  • Professional advisers, including legal counsel, accountants, and auditors engaged by the Company;

  • Logistics and operational partners, where relevant to the fulfilment of orders or service delivery;

  • Governmental and regulatory authorities, where disclosure is required or permitted by applicable law.

Where personal data is disclosed to third parties, the Company takes reasonable steps to ensure that such parties implement appropriate data protection measures and process personal data in compliance with applicable laws.

8. Cross-Border Transfers of Personal Data

Certain third-party service providers engaged by the Company, including cloud hosting and software platforms, may process personal data on servers located outside the Kingdom of Thailand. Where such cross-border transfers occur, the Company takes reasonable steps to ensure that the recipient country provides an adequate level of protection for personal data, or that appropriate safeguards are in place, in accordance with the requirements of the PDPA.

Data subjects who require further information regarding cross-border transfers and the applicable safeguards may contact the Company using the details set out in Section 14.

9. Retention of Personal Data

Personal data is retained only for as long as is reasonably necessary to fulfil the purposes for which it was collected, including the duration of any contractual or business relationship and any additional period required to comply with legal, accounting, or regulatory obligations. Upon the expiration of the relevant retention period, personal data will be securely deleted, destroyed, or anonymised in accordance with the Company's internal policies and procedures.

10. Data Security Measures

The Company implements appropriate technical and organisational measures designed to safeguard personal data against unauthorised access, accidental loss, destruction, alteration, or disclosure. Such measures include access controls, secure systems, and internal data handling procedures. While the Company endeavours to protect personal data using reasonable and commercially appropriate means, no system of transmission or storage can be guaranteed to be entirely secure.

In the event of a personal data breach that poses a risk to the rights and freedoms of data subjects, the Company will notify the Personal Data Protection Committee ("PDPC") within 72 hours of becoming aware of the breach, to the extent reasonably practicable. Where the breach is likely to result in a high risk to the rights and freedoms of data subjects, affected individuals will also be notified without undue delay.

11. Rights of Data Subjects

In accordance with the PDPA, data subjects have certain rights in relation to their personal data, including:

  • Right of access — to obtain confirmation of whether personal data is being processed and to request a copy of such data;

  • Right to rectification — to request correction of inaccurate or incomplete personal data;

  • Right to erasure — to request deletion or anonymisation of personal data in certain circumstances;

  • Right to restriction — to request that the processing of personal data be restricted in certain circumstances;

  • Right to object — to object to certain types of processing, including processing based on legitimate interests;

  • Right to data portability — to receive personal data in a structured, commonly used, and machine-readable format, and to request that such data be transmitted to another data controller where technically feasible;

  • Right to withdraw consent — to withdraw consent at any time where processing is based on consent, without affecting the lawfulness of prior processing.

Requests to exercise any of the above rights must be submitted in writing to the Company using the contact details set out in Section 14. The Company will respond to all valid requests within 30 days of receipt. The Company reserves the right to verify the identity of the requesting individual before taking any action, and to refuse requests that are manifestly unfounded, excessive, or contrary to applicable law.

12. Use of Cookies and Similar Technologies

The Company's website may utilise cookies and similar technologies. Cookies are small text files stored on a user's device that assist in the operation and improvement of the website. The Company uses the following categories of cookies:

  • Strictly necessary cookies — required for the website to function and cannot be disabled. These do not require consent.

  • Analytical and performance cookies — used to understand how visitors interact with the website, such as pages visited and time spent. These cookies are only deployed with the user's consent.

  • Functional cookies — used to remember user preferences and improve the browsing experience. These cookies are only deployed with the user's consent.

Users may manage or withdraw their consent to non-essential cookies at any time by adjusting their browser settings or using the cookie preference controls available on the website. Please note that disabling certain cookies may affect the functionality of the website.

13. Amendments to This Privacy Policy

The Company reserves the right to amend or update this Privacy Policy from time to time to reflect changes in legal requirements, regulatory guidance, or business practices. Any amendments shall be published on the Company's website and shall take effect upon publication. The date of the most recent revision is indicated at the top of this document. Data subjects are encouraged to review this Privacy Policy periodically.

14. Governing Law and Jurisdiction

This Privacy Policy shall be governed by and construed in accordance with the laws of the Kingdom of Thailand. Any disputes arising in connection with this Privacy Policy shall be subject to the jurisdiction of the competent courts of Thailand.

15. Contact Information

Any enquiries, concerns, or requests relating to this Privacy Policy or the exercise of data subject rights should be directed in writing to:

Leopard Intertrade Company Limited 19 Satri Witthaya 2 Soi 5 Lat Phrao Sub-district, Lat Phrao District, Bangkok 10230, Thailand

Email: info@leopath.com Telephone: +66 2932 9888

The Company endeavours to acknowledge all enquiries promptly and to respond substantively within 30 days of receipt.

bottom of page