Privacy policy

  • This Privacy Policy outlines how Evolvy Era Consulting, including any of its consultants and partner organisations, collects, stores, uses, shares, and processes Personal Data (as defined below). The entity or person responsible for your Personal Data is the consultant or partner organisation you engage with, as appointed by Evolvy Era Consulting (referred to as the "Consultant"). Unless otherwise specified, the Consultant acts as the controller of the Personal Data it processes and is responsible for ensuring that its systems and processes comply with applicable data protection laws.
  • The Consultant may process Personal Data related to:

  • Visitors to this website, mobile applications, or other online platforms associated with this website (each the "Platform").
  • Contacts for current or prospective clients.
  • Contacts for suppliers of goods or services to the Consultant.
  • Other individuals whose Personal Data is obtained by the Consultant.
In this Privacy Policy, "Personal Data" refers to any information that, either alone or combined with other data held by the Consultant, can directly or indirectly identify you as an individual.Suppose you provide the Consultant with Personal Data about other individuals; in that case, it is your responsibility to ensure that these individuals are informed of the terms of this Privacy Policy and that you are legally authorised to share their Personal Data. You must also ensure that the Personal Data provided is accurate and up to date.
data collection
  • We collect various types of Personal Data from the Platform visitors, clients, suppliers, and other third parties, including:

  • Basic Information: Name, title, contact details (email, phone, and, in particular, case address), organisation details, and personal interests (e.g., consulting case description).
  • Registration Information: Newsletter subscriptions, event registrations and login credentials, if applied.
  • Client Data: Individual, employee, customer, or transaction-related data clients share, including invoices and feedback.
  • Client Organisation Data: Information provided by clients about the organisations they work for or manage.
  • Marketing Data: Information on event participation, interests, credentials, and preferences.
  • Transaction Data: Data in documents or communications related to legal matters or transactions.
  • Interaction Data: Metadata from emails, contact records, and technical data from communications.
  • Compliance Data: Identification details (e.g., passport numbers, government IDs) and due diligence information.
  • Device Data: IP addresses, device identifiers, cookie data, and usage patterns on a Platform.
We do not collect sensitive data such as religious beliefs, health information, or ethnic origin. We collect data directly from individuals, clients, colleagues, or publicly available sources. Clients providing data about others must ensure compliance with applicable data protection laws.
usage of personal data
  • We process Personal Data for the following purposes based on the corresponding legal grounds:

  • Providing Services: To offer legal and business advice, mentorship, and respond to inquiries, we process basic data, registration data, client service data, and device data to fulfil our contractual obligations to clients.
  • Managing Business Operations: To handle business operations, client relationships, and supplier agreements, including issuing invoices and managing services.
  • Improving the Platform Experience: Enhancing the platform's usability and layout is necessary to fulfil our legitimate interest in providing a better user experience.
  • Ensuring Security: All the data is processed to safeguard the Platform and IT system's functionality, detect fraud and ensure safe usage.
  • Building Relationships: To expand contact lists and improve interactions with clients and third parties, we process basic data, interaction data, and device data to enhance relationships and the client experience.
  • Marketing and Events: To provide tailored updates, event invitations, and service information, supporting our legitimate interest in offering relevant opportunities and services.
  • Compliance Obligations: all the data are processed to meet legal obligations, such as tax reporting, anti-money laundering, and fraud prevention.
We may use genAI technology to support the processing of personal data for the above purposes. This technology is carefully evaluated to comply with ethical, legal, and data security standards. We have implemented strict policies and training to ensure the responsible use of genAI and protect Personal Data.
data sharing
  • We may share your Personal Data with the following:

  • Trusted Affiliates and partner organisations: To deliver consultancy services, manage client relationships (e.g., invoicing, marketing), and other purposes outlined in this policy.
  • Trusted Suppliers and Service Providers: To get consultancy and other services, including IT service providers, consultants for business analytics and marketing, and external venue providers for events. These parties are contractually obligated to secure and process your data only on our behalf.
  • Financial institutions and audit organisations: for invoicing, payment and audit purposes.
  • Legal Compliance: to comply with tax reporting, legal processes, or government and regulatory requests. Data may also be shared to protect our rights, property, and safety or defend against legal claims.
To fulfil the abovementioned purposes, we may transfer Personal Data to other jurisdictions, including those with different data protection standards. Our Sites are hosted on servers in the United States. If you are outside the U.S., your data will be transferred as part of providing services or completing transactions. For transfers from the EEA and Switzerland to non-EEA countries, we use standard contractual clauses approved by the European Commission and other legal measures to ensure compliance with data protection laws. You can request details of these measures by contacting us.
marketing activities
  • You can control how we use your Personal Data for marketing. In some regions, you must provide consent before receiving marketing communications. You can opt out of marketing anytime by following the unsubscribe link in our emails or contacting us directly.
Cookies Statement
  • Occasionally, we may engage certain providers to use cookies, web beacons, and similar tracking technologies (collectively, "cookies") on the Platform. You will be asked to consent to non-essential cookies when you first visit the Platform. You can also manage your preferences anytime.
  • The following types of Cookies may be used:

  • Necessary Cookies are essential for the Platform to function. They are activated in response to your actions, such as setting privacy preferences, logging in, or filling out forms. While you can block these cookies in your browser settings, parts of the site may not function properly. They do not store personal information.
  • Functional Cookies enhance website functionality and personalisation. We set them as third-party providers whose services are integrated into the Platform if applied. Blocking these cookies may impact the performance of certain features or services.
  • Performance Cookies help to measure site traffic and performance by tracking visits and page popularity. The data collected is aggregated and anonymous. If disabled, we cannot track your visit or improve site performance.
  • Targeting Cookies may be set by affiliates, partner organisations, or advertising partners and providers. These cookies create a profile of your interests to deliver relevant ads on other sites. They do not store personal details but uniquely identify your browser and device. Disabling these may result in less tailored advertising.
  • Social Media Cookies allow sharing content via social networks and may track your activity across other sites to build a profile of your interests. Disabling these cookies may limit sharing tools and affect the content you see on different platforms.
Rights of Data Subjects
  • If you are located in the European Economic Area (EEA), you have the following rights regarding your Personal Data:

  • Access: Subject to certain exceptions, you can request a copy of the Personal Data we process about you electronically. We may require proof of identity and reserve the right to charge a reasonable fee for multiple copies.
  • Rectification: You can ask us to correct or update any incomplete or inaccurate Personal Data.
  • Deletion: You can request the deletion of your Personal Data unless we need to retain it to comply with legal obligations or defend legal claims.
  • Restriction: You can request a restriction on processing your data if you believe the data is inaccurate or the processing is unlawful; we no longer need the data for its original purpose, but you prefer it not to be deleted.
  • Portability: If you provided us with your Personal Data, you can request the transfer of that data to another controller; the processing is based on your consent or a contract with you.
  • Objection: You can object to our processing of your Personal Data if it is based on legitimate interests. We will stop processing unless we have compelling grounds to continue or need the data for legal claims.
  • Withdraw Consent: If you have given consent for processing, you can withdraw it at any time, free of charge, including for marketing purposes.
Data Protection and Security
  • We have implemented security measures to protect Personal Data, including restricting access to authorised staff and trusted service providers.
  • While we take steps to protect our systems, we cannot guarantee complete security due to the nature of the Internet. You are also responsible for protecting your data. Do not share your username or password, and avoid reusing passwords across sites. If you believe your login details have been compromised, contact us immediately.
CONTACTS
  • 299 Thanon Asok - Din Daeng, Makkasan, Ratchathewi,
  • Bangkok, 10400