The Macquarie Group respects the privacy of the people we deal with and we uphold high standards of privacy practice and security. This policy explains how we handle personal information and how we interact with you online.
Whenever we handle personal information, we take steps to ensure that appropriate standards of privacy practice and security are applied.
The Macquarie Group Privacy Policy sets out why we need to collect personal information, how we collect it, what we do with it, how it is stored and who we might share it with. The Policy also describes how you can access or correct information we hold about you, how you can ask further questions or make a complaint, and information about our websites and online activities.
Macquarie Securities (Thailand) Limited (the "Company," "we," "us," or "our") recognizes the importance of the protection of your Personal Information (as defined below).
This privacy notice (the "Privacy Policy") applies to the personal information of (1) our prospective, current and former individual customers, and (2) employees, personnel, officers, representatives, shareholders, authorized persons, members of the board of directors, contact persons, agents, and other natural persons in connection with our prospective, current and former corporate customer.
Natural/individual persons, together are referred to as "you" or "your" and the individual client and the corporate client, together are referred to as the "Client".
This Privacy Policy describes how we collect, use, disclose and cross-border transfer your personal information. This Privacy Policy applies to our business, websites, mobile applications, call centers, events and exhibitions, online communication channels, other locations and any means where we collect, use disclose, or cross-border transfer your personal information.
For most of our products and services, it is necessary or desirable for us to collect personal information such as your name, identity details, photos, contact details and transaction information. We may also need to collect other personal details (such as gender, age, marital status and financial information) and other information from which you can be identified.
We collect personal information from you if you apply for a job with the Macquarie Group. Please read the Career Privacy Policy for more information.
We may collect your information for the communication of advertising or marketing material which is directed to particular you for the purposes of promoting products or services of Macquarie Group (“Direct Marketing”) with your consent to use such information for Direct Marketing Purposes. This includes informing you of news and publications which may be of interest, events, offering new services, conducting surveys and other marketing communications by email, telephone, letters, and electronic notifications.
Generally, we do not collect sensitive information about you unless required or permitted by law or where you consent for us to do so. Sensitive information will only be collected if it is relevant to your product or the service or function you are engaging us to provide. If applicable, this will be communicated to you. For example, some forms of biometric data are collected, stored and used to support access and verification procedures.
We will not collect sensitive information about you where this is expressly prohibited by local law.
Sensitive information includes information relating to:
We collect personal information about you which is reasonably necessary to:
Without such information, we may not be able to process your application or provide you with an appropriate level of service. In such circumstances, we will endeavor to process your application and provide you with the most appropriate level of service that we can.
We collect personal information about you directly from you — this can be in person, in documents you give us, from telephone calls, emails, competitions you enter, your access to our website or from transactions you make. We take reasonable steps to be transparent about how and why we collect personal information.
We may also collect your personal information indirectly from sources such as joint account holder(s) or third parties including public sources, your adviser(s), employer (or its affiliates), agents, introducers, referrers, brokers, our related companies and service providers (including credit reporting bodies, fraud and financial crime information exchanges and other information service providers).
In addition, for Direct Marketing purposes we may collect your personal information with your consent from other sources such as social media profiles, third party’s online platforms, and other publicly available sources and through our affiliates, service providers, business partners, official authorities, or third parties (e.g. third-party custodians, sub-custodians, and brokers). Where you have provided consent to collect, use, disclose, and/or transfer your personal information, you have the right to withdraw your consent at any time. This can be done so, by contacting the details at “Contact us” below. We may also collect, use, disclose, and/or transfer your personal information without your consent based on: (1) a contractual basis, for our initiation or fulfillment of a contract with you; (2) a legal obligation; (3) the legitimate interest of ourselves and third parties, to be balanced with your own interest and fundamental rights and freedoms in relation to the protection of your personal information; (4) vital interest, for preventing or suppressing a danger to a person’s life, body or health; or (5) public interest, for the performance of a task carried out in the public interest or for the exercise of official actions.
We keep personal information in physical and electronic records, at our premises and the premises of our service providers, which may include processing or storage in the cloud, which may mean in practice that this information is stored outside Thailand. Where this occurs, we take steps to protect the security and integrity of personal information.
We also keep records of our interactions with you (including by telephone, email and online) and of your transaction history.
We use personal information about you for the purpose for which it was provided to us, including to:
We may also:
While we may sometimes - where it is lawful and with your permission if necessary - share personal information with companies we do business with (e.g. in product development, joint venture arrangements or distribution arrangements), we do not sell personal information for marketing purposes to other organizations or allow such companies to do this.
Our activities, products and services are not generally aimed at minors and we do not knowingly collect personal information from customers who are minors (those who have not reach the legal age (20 years of age or by marriage) without their parental consent when it is required, or from quasi-incompetent persons and incompetent persons without their legal guardian's consent. If you are a minor, quasi-incompetent or incompetent person and wish to engage in a contractual relationship with us, you must obtain the consent from your parent or legal guardian prior to contacting us or providing us with your personal information except where you are of sui juris or emancipated status.
If we learn that we have unintentionally collected personal information from any minor without parental consent when it is required, or from quasi-incompetent person or incompetent person without their legal guardians' consent, we will delete it immediately or continue to process such personal information if we are permitted to rely on other legal grounds apart from consent.
If you provide the personal information of any third party (such as your spouse and children, shareholders, directors, beneficiary, emergency contact, referral, and references) to us, [e.g., their name, family name, email address, and telephone number], you should ensure that you have the authority to do so and to permit us to use the personal information in accordance with this Privacy Policy. You are also responsible for notifying the third party of this Privacy Policy and, if required, obtaining consent from the third party or rely on other legal basis.
We may disclose or transfer your personal information to the following third parties (including their personnel and agents) who process personal information in accordance with the purposes under this Privacy Policy and to the extent permissible under your consent or law. These third parties may be located in or outside Thailand. You can visit their privacy policies to learn more details on how they process your personal information.
We may disclose or transfer your Personal Information to third parties or servers located overseas, and the destination countries may or may not have the same data protection standards as Thailand — this includes locations in the countries listed in the Appendix. We have taken steps and measures to ensure that your personal information is securely transferred, that the data recipients have suitable data protection standards in place in accordance with the relevant local laws, and that the transfer is lawful by relying on the derogations as permitted under the law. Please note that it may be possible for those parties to, in turn, make such information available to other third parties to comply with local law or regulations.
We take reasonable steps to ensure that all information we hold is as accurate as possible. You are able to contact us at any time at our contact details below and ask for its correction if you feel the information we have about you is inaccurate or incomplete.
We use security procedures and technology to protect the information we hold. Access to and use of personal information within Macquarie Group seeks to prevent misuse or unlawful disclosure of the information. This includes internal policies, auditing, training and monitoring of staff.
If other organizations provide support services, we require them to take appropriate technical and organizational measures to secure the privacy of the information provided to them.
We aim to ensure that personal information is protected from misuse and loss, and from unauthorized access, modification or disclosure. In doing so, we use appropriate security measures (of premises and systems) and limit internal access to personal information on a need-to know basis. We have implemented the Data Breach Plan to deal with actual or suspected data breaches. Compliance with the Data Breach Plan is mandatory, and all data breaches must be dealt with in an appropriate and timely manner. In certain cases, this will include notifying the data subject of the breach as soon as possible and notifying the relevant regulator of the breach, in some cases, within 72 hours.
We will retain your personal information for as long as necessary during the period you are a customer or under relationship with us, or for as long as necessary in connection with the purposes set out in this Policy, unless law requires or permits a longer retention period. For example, the retention period pursuant to the anti-money laundering laws for proving and examining in the event of a dispute has a legally prescribed duration of not over 10 years at the time of writing.
We may erase, destroy or anonymize the personal information when it is no longer necessary or when the relevant retention period lapses.
Subject to the applicable laws and exceptions thereto, you may have the following rights regarding your Personal Information:
You can contact us to request access to or correction of your personal information. In normal circumstances we will give you full access or make the requested corrections to your information. However, there may be some legal or administrative reasons to deny these requests. If your request is denied, we will provide you with the reason why (if we can). Where we decide not to make a requested correction to your personal information and you disagree, you may ask us to make a note of your requested correction with the information.
When you visit Macquarie websites you will generally browse anonymously unless you have logged into a client portal or accessed the website from a personalized communication from Macquarie.
For all visitors to our website, we use cookies and other web browser technologies to collect information such as the server your computer is logged on to, your browser type (for example, Internet Explorer, Chrome or Firefox), and your IP address. (An IP address is a number that is assigned to your computer automatically and required for using the Internet). We may also derive the location associated with an IP address.
Once you have logged into a Macquarie portal, accessed our website from an e-mail or other personalized communication sent to you, or provided us with personal information by completing a form online, we may be able to identify you and we may combine that with other information in order to provide you with a better online experience. If you would prefer not to be identified, you can delete the cookies and reconfigure the cookie preferences on your internet browser (see below).
A 'cookie' is a packet of information placed on a user's computer by a website for record keeping purposes. Cookies are generally used on Macquarie Group sites to:
You can configure your browser to accept all cookies, reject all cookies, or notify you when a cookie is sent. (Each browser is different, so check the Help menu of your browser to learn how to change your cookie preferences).
If you disable the use of cookies on your web browser or remove or reject specific cookies from Macquarie Group websites or linked sites, then you may not be able to gain access to all of the content and facilities on those websites.
From time to time, we may change or update this Privacy Policy. We encourage you to read this Privacy Policy carefully and periodically revisit https://www.thaidw.com/about/privacypolicy to review any changes that may occur in accordance with the terms of this Privacy Policy. We will notify you or obtain your consent again if there are material changes to this Privacy Policy, or if we are required to do so by law.
If you have any questions or complaints regarding privacy or information handling, please write to Macquarie Group (privacy@macquarie.com), Macquarie Securities (Thailand ) Limited (compliancebkk@macquarie.com or contact us by phone 02 694 7802-3). Please mark communications to the attention of our Privacy Officer. We will respond to let you know who will be handling your matter and when you can expect a further response.
If your concerns are not resolved to your satisfaction, you may be able to escalate your complaint to an external dispute resolution scheme or to a regulatory authority. We can also provide details of the appropriate scheme/regulator for you, as these may vary by jurisdiction or product.
Personal information may be disclosed to Macquarie Group entities and third parties in jurisdictions including: Australia; Austria; Brazil; Canada; China; Denmark; France; Germany; Hong Kong; India; Indonesia; Ireland; Japan; Luxembourg; Malaysia; Mexico; Netherlands; New Zealand; Norway; Philippines; Singapore; South Africa; South Korea; Spain; Switzerland; Taiwan; Thailand; United Arab Emirates; United Kingdom; United States of America.