Privacy policy

Last Updated: 29 May 2025

Thank you for visiting this Privacy Policy ("Privacy Policy") of Bitazza Company Limited ("Company" or "we" or "us" or our). This Privacy Policy aims to provide information on how the Company collects, uses, stores, processes, discloses, and/or transfers overseas, the personal information of users ("User" or "you" or "your ") of the Company's sites and/or mobile phone application ("Site") when using the Company's services ("Services") related to digital assets ("Products"). The Company will collect and maintain the personal information of Users only for legitimate purposes in connection with providing our Services in compliance with Thai Personal Data Protection Act B.E. 2562 (2019), as may be amended from time to time (“PDPA”), and any subordinate regulations, notifications, and guidelines issued thereof. User's information will not be used, collected, or retained unless the Company has a legitimate Services purpose for doing so.

This Privacy Policy applies to our Users which includes:

(a) Individual customers: Our past and present customers who are individual; and

(b) Corporate customers: Directors, shareholders, employees, and legal representatives of our past and present corporate customers and other individuals authorized to act on their behalf. Our corporate customers shall ensure that the authorized persons and any of relevant individuals have acknowledged this Privacy Policy.

By clicking the "I Agree" button prior to using our Services, it means that you have read, understood, agreed, and consented to the Company's data collection, use, storage, processing, disclosure and/or cross-border transfer practices and other activities as described in this Privacy Policy. If you do not agree to our Privacy Policy, please do not click the "I Agree" button and stop using our Services, Products, and Site.

1. What information do we collect?

The Company collects the following information from Users through the Site at the time of the application or during the course of the registration to set up an account to use our Services.

1.1. Personal information provided by Users at the time or during the course of application for or registration to set up an account to use the Services, includes your name, surname, username, password, Bitazza user’s identification number, age, address, email address, telephone number, nationality, country of residence, date of birth, photographs, the identification number on the national identification card or passport number, the laser code on the national identification card, bank account information, credit card numbers (if applicable), transaction history, trading data, financial status, source of income, and other information as set out in the application form for registration or as requested by the Company for the purpose of registration and/or application, or as required by law.

1.2. The Company may also collect information when a User uses the Services, including: (1) details of requests, orders, transactions, and any other acts performed by User through our Site (including any information, evidence or documents you provide us, such as trading orders, transaction information, amount and/or time stamp); (2) device information, information of your activity and interactions with the Site (such as IP address, type of browser, your activities on the Site); (3) communications and interactions between you and the Company both online and offline (such as when you attend our events, fill in any survey, file a complaint, redeem a reward or contact customer service); and (4) general usage data (such as public posts, if applicable)

1.3. The Company may also collect certain information about Users through the use of "cookies" and other tracking technologies to enhance the User's experience. Cookies are small files that a User's browser places in the User's computer. These technologies may be used in analyzing trends, administering the Site, remembering Users' settings (e.g. language preference), and/or tracking Users' movements around the Site. Users can control the use of cookies at the individual browser level. If you reject cookies, you may still be able to use our Site, but your ability to use some features or areas of our Site may be limited. See cookies policy

2. How do we use, process and disclose the information we collect?

2.1. The Company may use information collected from User for the business purposes and process personal information relevant to legal basis following:

Performance of a contract

- to verify User's identity, User's intention to register for and/or use our Services, and User's eligibility to use the Services;
- to process the User's requests, orders, inquiries, and/or complaints (including carry out or make transactions);
- to provide service communications and customer service (including notify you with transaction alerts);
- to ensure network and information security and to enhance the protection of User's privacy;
- to carry out account maintenance and operations relating to your User’s accounts;
- to initiate, prosecute or defend potential legal claims to enforce our legal and/or contractual rights;
- to resolve disputes, collect fees, and/or troubleshoot problems;
- to disclose your personal information to our affiliate, Freedomverse Co., Ltd., for the purpose of providing its necessary services that are related to or integrated with our Services;

Performance of Legal obligations

- to comply with any requirement under the PDPA, and any subordinate regulations, notifications, and guidelines issued thereof;
- to conduct know-your-customer (KYC), customer due diligence (CDD), suitability tests and other relevant processes in order to comply with applicable laws and regulations in Thailand and relevant foreign jurisdictions;
- to report of investigation required by regulations, or relevant authorities regulatory requirement;
- for other purposes as required and/or permitted by applicable laws and regulations (e.g. Securities and Exchange Laws, Anti-Money Laundering Laws, Bankruptcy Laws and Business Rehabilitation Laws, the Prevention and Suppression Measures for Technology Crimes Laws and other laws to which we may be subjected to), or required by relevant authorities or court orders;

Performance for Our Legitimate Interest

- to conduct our business operation and the business operation of companies in our group (e.g. conduct compliance audit);
- to customize, measure, develop and improve our Products, Services and our Site to enhance our services standard;
- to analyze Services use log, access frequency, and statistics on the use of the Services, and to offer you tailor-made Services;
- to handle complaints and disputes, enforce or defend legal rights, and undertake any necessary legal proceedings, including litigation, arbitration, or other dispute resolution processes;
- to protect against any security risks to our Site, Services and/or Products;
- to conduct research, and to plan and perform statistical and analytical activities for business and service improvement;
- to support and facilitate financial audits and reviews conducted by internal or external auditors;
- to prepare summary reports and/or disclose your personal information to third parties in connection with potential or actual transfers of claims, assets, debts, or business operations, including mergers, acquisitions, reorganizations, or similar corporate transactions;

Performance of Consent

- to notify you of new opportunities, special events, offers and other marketing activities;
- to disclose your personal information to our affiliate, Freedomverse Co., Ltd., for the purpose of offering, providing, and improving its products and services including its marketing activities; and
- to disclose your personal information and any other data to any other affiliates or our business partners as we may further request for your consent from time to time for the purpose of offering or providing products, services and benefits to you.

If the personal information we collect from you is required to meet our legal obligations or to enter into a contract with you, we may not be able to provide (or continue to provide) some or all of our Products and Services to you if you do not provide such personal information when requested.

2.2. The Company may disclose and/or transfer information collected from User, within Thailand and/or overseas, to:

- any of its affiliates, service providers, and/or third parties who are working in connection with the Company to perform functions and/or provide Services, process the information on the Company's behalf, and in order to accomplish any purpose related to the purposes stated in 2.1 above. However, such disclosure or transfer will only occur with the User's explicit consent, unless otherwise required by applicable law;
- in the event of sale or transfer of claims, assets, debt or business, merger, reorganization, rehabilitation, or similar event, we may disclose and transfer your personal information to one or more third parties who are the transferees of claims, assets, debt, or business, or the parties involved in the merger or reorganizing, or the plan preparers and plan administrators, or those related to such similar event; and/or
- any government agencies, authorities, regulators, and courts, all in accordance with applicable laws.

3. Retention of Personal Information

We will cease to retain personal information, as soon as it is reasonable to assume that the purpose for collection of such Personal Information is no longer being served by such retention, and such retention is no longer necessary for legal or business purposes as table below;

4. Data processing by AI technology

We and/or our affiliate, Freedomverse Co., Ltd., may process your personal information that we collect under Clause 1 (What information do we collect?) by Artificial Intelligence (AI) technology. The purpose of this processing is to ensure that you will have a better experience when using products and services of the Company and/or Freedomverse Co., Ltd.. Below is a list of the processing objectives.

• Conducting surveys on current and potential services.
• Analyzing user reactions to new features for informed decision-making.
• Utilizing customer-entered questions to generate text and continually improving the service model.
• Enhancing personalized recommendation algorithms
• Development of services and products.

We always prioritize the security of our customers. We assure that your personal data processed by AI will be processed, protected and safeguarded under the PDPA and this Privacy Policy.

5. How secure is your personal information?

The security of your Personal Information is important to us, and we take all reasonable steps to safeguard your Personal Data. All electronic storage and transmission of Personal Information is secured with appropriate security technology.

All your personal data is kept confidential and In order to protect your personal data, We have in place various security procedures, technical and organizational measures to safeguard your Personal Data.

Technical measures include appropriate actions to address online security, risk of data loss, alteration of data, or unauthorized access, taking into consideration the risk presented by the processing and the nature of the personal data being processed. e.g. using a strong encryption method while exchanging data, implementing a firewall, and customer or service-to-service TLS connections etc.

Organisational measures include implementing an access control policy to restrict access to personal data solely to authorized persons with a legitimate need to know for the purposes of the processing operations and conducting security awareness programs for our employees.

Therefore, we maintain security arrangements in respect of Personal Information to prevent unauthorized access, collection, use, disclosure, copying, modification, disposal, or similar risks. However, we cannot guarantee the security of information transmitted over the internet is impenetrable.

6. What rights do you have?

You are entitled to:

6.1. request access to your personal information kept under our responsibility, or request that we disclose how the personal information was obtained if it was obtained without your consent;
6.2. request to obtain your personal data if we organize such personal data in automatic machine-readable or usable format and can be processed or disclosed by automatic means; to request us to send or transfer the personal data in such format directly to other data controllers if doable by automatic means; and to request to obtain the personal data in such format sent or transferred by us directly to other data controller unless not technically feasible.
6.3. request that we delete, destroy, temporarily suspend or restrict the use of your personal information, or convert it into information that cannot be used to identify who you are in cases where (i) the data is no longer necessary, (ii) you withdraw your consent and we have no legal ground for such collection, use, or disclosure, or (iii) the processing is unlawful under the PDPA.;
6.4. request that we make your personal information accurate, up-to-date, complete, and not misleading;
6.5. be informed, upon your request, how your personal information is being processed;
6.6. object to the processing of personal information unless the processing is necessary for the performance of a task carried out for reasons of public interest; and
6.7. not be subject to a decision based solely on an automated process if such decision adversely affects your legal rights.

We will respond to your request as soon as reasonably possible. Should we not be able to respond to your request within thirty (30) days after receiving your request, we will inform you in writing within thirty (30) days of the time by which we will be able to respond to your request.

7. International transfer of personal information

The Company may transfer your personal information outside of Thailand. However, such disclosure or transfer will only occur with the User's explicit consent, unless otherwise required by applicable law. By clicking the "I Agree" button prior to using our Services, it means that you have read, understood, agreed, and consented to the personal information you provide being transferred to, used, stored, and/or processed within Thailand, or other countries, the laws of which may or may not ensure the same level of data protection as in Thailand or your country of residence.

8. Amendment of the Privacy Policy

Your personal information is subject to the Privacy Policy in effect at the time such information is collected. We may, however, modify and revise our Privacy Policy from time to time. If we make any material changes to this Privacy Policy that affect how we collect, use, process, disclose and/or transfer your personal information, we will notify you of such changes and obtain your consent again. The new Privacy Policy will indicate when such changes will become effective. If you agree to the changes, please click the "I Agree" button to the revised Privacy Policy before continuing to use our Services or Site. If you do not agree to our revised Privacy Policy, please do not click the "I Agree" button. However, you may not be able to use certain Services and/or features of the Site until you have once again provided your consent.

9. Data breach notification

In the unlikely event of a data breach, the Company will notify you of the breach without delay.

10. How to contact us

Bitazza Company Limited is the provider of the Site and Services.

If the User wishes to exercise your rights or if you have any questions concerning this Privacy Policy, please address your request by sending Data Subject Right Request Form to us through the channel below:

Download Data Subject Right Request Form Here [EN]

Download Data Subject Right Request Form Here [TH]

Data Protection Officer: Bitazza DPO
Email: [email protected]
Mail Address: 2922/280, Charnissara Tower 2, Floor 24, New Phetchaburi Road, Bang Kapi Sub-district, Huai Khwang District, Bangkok 10310.