นโยบายความเป็นส่วนตัว
1. Information We Collect
Directly provided: name, email, phone, address, profile photo, payment info. Automatically collected: IP, GPS location (to show nearby items/services), device info, browser language (for auto-translation), usage history, cookies.
2. How We Use Your Data
We use data to: provide platform services and match buyers/sellers, show items/services by GPS location, auto-translate content per user language, process ReoReo Pay payments, send order notifications, improve services, prevent fraud and maintain security.
3. Data Sharing
We do NOT sell personal data. We may share with: other users as necessary (seller name, approximate location), payment processors (ReoReo Pay), translation services (GPT-4o-mini for user content), geocoding services (Nominatim for GPS-to-location), law enforcement per court order.
4. User Rights (PDPA)
Under PDPA (2019), you have the right to: access your data, correct inaccuracies, delete data (right to be forgotten), withdraw consent, data portability, object to processing, file complaints with PDPC. To exercise rights: Profile > Privacy Settings or contact privacy@reoreo.com
5. Data Security
Security measures: SSL/TLS encryption, bcrypt password hashing, CSRF tokens, rate limiting for login attempts, security headers (CSP, XSS Protection, X-Frame-Options). Despite strict measures, 100% security cannot be guaranteed.
6. Cookies
We use cookies to: store detected language (reoreo_lang), maintain login state (PHP Session), improve UX. We do NOT use third-party tracking cookies.
7. Data Retention
Account data: retained until deletion requested. Transaction data: 5 years per tax/accounting law. GPS data: stored client-side only (localStorage), NOT on server. Translation data: stored in DB to serve other users.
8. Policy Changes
We may update this policy periodically. Significant changes notified 14 days in advance. Continued use = acceptance.
9. Contact Us
Data Controller: ReoReo Co., Ltd. Email: privacy@reoreo.com DPO: dpo@reoreo.com