1. Data controller
The data controller responsible for personal data processed in connection with our services is Happy 24, reachable via the contact details shown on our website footer and Contact page.
2. Personal data we may collect
- Identity & contact: name, phone number, email, delivery and pickup addresses.
- Order data: service selections, weight or item notes, order history, payment references (we do not store full card numbers when processed by a payment partner).
- Account & authentication: login identifiers, profile preferences where applicable.
- Technical data: IP address, device/browser type, cookies and similar identifiers (see our Cookie Policy).
- Communications: messages you send us via forms, LINE, Telegram, email, or phone.
- Driver and staff operations: where you interact with our driver app or staff tools, operational logs needed to fulfill orders.
3. Purposes and legal bases
We process personal data to: provide and improve laundry services; schedule pickup and delivery; process payments; communicate about your order; provide customer support; comply with law; secure our systems; and, where permitted, send service updates or marketing (you may opt out of marketing).
Under the PDPA, we rely on appropriate bases such as performance of a contract, consent where required, legitimate interests (balanced against your rights), and legal obligation.
4. Sharing and disclosure
We may share data with processors who help us run the business (hosting, payments, analytics, messaging, route planning, or booking integrations), subject to confidentiality and data protection obligations.
We may disclose information if required by law, court order, or valid government request, or to protect rights, safety, and security of customers, staff, and the public.
We do not sell your personal data in the conventional sense of selling lists to third parties for their independent marketing.
5. International transfers
Some of our service providers may process data in other countries. Where we transfer personal data outside Thailand, we take steps to ensure appropriate safeguards (such as contractual clauses) as required by applicable law.
6. Retention
We retain personal data only as long as needed for the purposes above, including legal, tax, and accounting requirements. Order and billing records may be kept for longer periods where required by law.
7. Security
We implement technical and organizational measures appropriate to the risk, including access controls and encryption where suitable. No system is 100% secure; please use strong passwords and protect your devices.
8. Your rights (PDPA)
Subject to applicable law, you may have rights to access, rectify, erase, restrict processing, object, data portability, withdraw consent, and lodge a complaint with a competent authority. To exercise rights, contact us using the details below. We may need to verify your identity before responding.
9. Children
Our services are not directed to children without parental involvement. If you believe we have collected data from a child improperly, contact us and we will take appropriate steps.
10. Changes
We may update this Privacy Policy from time to time. The “Last updated” date will change when we do. Material changes may be communicated through the website or email where appropriate.
11. Contact
For privacy requests or questions, use the Contact page or email address shown in the website footer.