The Thailand PDPA and Cookies
First of all, the PDPA is Thailand’s new Personal Data Protection Act 2019 (‘PDPA’). The legislation will come into force on June 1st, 2021.
The Thailand PDPA is very similar to the European General Data Protection Regulation (GDPR) as it concerns the rules and requirements for processing people’s personal data.
Why do cookies fall under the PDPA?
These metrics are vital for any e-commerce site or other business website wanting to optimize their marketing efforts and improve their sales.
For that, cookies are used.
Cookies are typically set on your website by third parties whose service you use for analytics, share/like buttons or other features that brings values to your website.
That could well be your Customer Relationship Management System (e.g., HubSpot, Salesforce); your analytics services (Google Analytics, Adobe Analytics) or of course tracking pixels from Facebook, LinkedIn or other social media used for retargeted advertising.
Note: As the website owner, you are the data controller and therefore responsible for obtaining your users’ valid consent to the cookies set by third parties on your website.
How can you comply with the PDPA?
To comply with the PDPA when using cookies on your website, it’s essential that you obtain your users’ valid consent to cookies.
That does not mean only to inform users of cookies (with a simple cookie banner), it means to inform users of cookies, collect and store their consent, so you can document it to The National Data Protection Authority set to be established under the PDPA.
Here we show you two banners. The brown one you typically see on websites. It informs visitors about cookies and then states: if you use the site, you agree to the use of cookie.
It does not give the user ability to disagree, nor decline cookies. And it does not provide any information about which cookies collect and process what information.
Checklist for collecting
valid consent to cookies
* Cookies can technically be held back/blocked by the cookie banner until a consent has been given.
How Cookie Information can help you
If you want more information on how to make your website PDPA compliant for June 1st, 2021, then book a short meeting with our Thailand Country Manager, Salee Yemram.
She can guide you and your business into safe harbor and put a strong focus on your company’s privacy strategy for.
Compliance is not only about legislation and law; it is also about showing your users you care about their online privacy.
Book a compliance meeting
If you are not sure where to begin or have special needs regarding your solution, you can always book a talk with our compliance experts to find out which service fits your website best.