Tune Insurance Public Company Limited (“Tune”) is aware of our responsibilities to handle your personal data and protect your personal data with care. We, Tune, would like to inform and explain the purpose and reason why, how and when we collect and use your information with the following;
Part 1: What personal data do we collect?
Tune will collect, use, process and disclose your personal data below;
- 1. Your personal data such as name-surname, gender, date of birth, age, nationality, details and copies of identity documents, marital status, address, telephone number, email, identity card number, passport number, work permit number
- 2. Contact details including IP address which given to customer service center, Tune’s website and Tune’s application
- 3. Any relevant personal data such as your details of your family members, beneficiary, payee, policyholder, policy member
- 4. Any contact information between you and Tune, wherever from telephone, letter, email or other channels
- 5. Your personal sensitive data such as health data, medical history, religious, genetic, disability, ethnic origin
- 6. Your health information such as health/ medical history, medical consultant, medical record, health questionnaire
- 7. Your financial or source of income and any sources from financial need analysis
- 8. Your information for performing ‘Know Your Customer’ (KYC) or due diligence
- 9. Your payment information related to premium payment or claims payment
- 10. Your purchase, transaction and service history including with any transaction between you and our partnerships
- 11. Your information to analyze your insights, needs, automated processing and profiling
- 12. Your information from the private agency or government agency or regulator such as the Office of Insurance Commission, The Anti-Money Laundering Office
- 13. Taxinformation, for e.g investment accounts(depending on the relevant product or service)
Part 2: What do we use your personal data for?
We will use, collect, process and/or disclose your personal data with the following purpose;
- 1. To consider an application for an insurance policy, assess and evaluate and underwrite your application and insurance administration
- 2. To provide any information about our products and services
- 3. To administer your policy such as policy changes, renewal, cancel policy or premium payment or any payment related to your policy
- 4. To manage and administer the company’s operation under regulation requirement and company’s policies
- 5. To conduct due diligence and know your customer base on Anti Money Laundering Office (‘AMLO’) guideline process
- 6. To perform internal audit or on-site audit from the regulator
- 7. To manage your personal data on our IT system, cloud system and other online platforms (e.g. application, website) for aligning the information security policy
- 8. To analyze the user behavior and insight when using website, application and to improve our services on such platforms
- 9. To develop the survey and area of improvement to align with customer’s need and satisfaction
- 10. To provide and offer our products and services, marketing campaign and promotions which may suitable to you including with teleconsultation service (Heath2Go) and medical second opinion service (myEliteDoctor)
- 11. To comply with the applicable laws and regulations
- 12. To deal with your request or inquiries
- 13. To handle any complaints, suggestions in relation to your insurance policy or your insurance application
- 14. To process payment instructions
- 15. To communicate with you
Part 3: Who do we share your personal data with?
From the above purpose, we do share your personal data with the following parties whether or not in or outside Thailand;
- 1. Our service provider and consultant such as third-party administrators, loss adjuster and claims expert, assistance providers, lawyer, fund manager, IT services
- 2. Your families upon request from you or allowed by you
- 3. Our regulators
- 4. Our business partner or our agents/brokers for offering our products and services or provide any assistance to you
- 5. Our reinsurer
- 6. Your policyholder
- 7. Financial/Health Instituitions
- 8. Claims investigation companies
- 9. LawEnforcement Agencies and courts
- 10. Fraud Prevention Organisation
Part 4: How long do we keep your personal data?
We will retain your personal data for as long as is reasonably necessary for the purpose of Part 2 and our record retention policy. In some circumstances we may retain your personal data for longer periods of time, for instance where we are required to do so in accordance with legal, regulatory, tax or accounting requirements. Where your personal data is no longer required, we will ensure it is either securely deleted or stored in a reasonable way which means it will no longer be used by business.
Part 5: Your personal sensitive data
We may collect, use, process and disclose your personal sensitive data such as information relating to health, genetics, biometric identifiers and sexual orientation. after we receive your express consent except the legislation allow us to use your personal sensitive data without your consent. We only process your sensitive personal data for the insurance application purpose which stated in Part 2.
Part 6: Your Cookies
Tune may record your actions or history when you visit our website to enhance your experience and ability to reconnect between Tune and you. You can click ‘Accept Cookies’ to allow us to obtain your consent and cookies
Part 7: What is your right?
Under the Personal Data Protection Act, you have right as the data subject in relation to your personal data;
- 1. Right to Withdraw Consent
You have the right to withdraw your prior consent for allowing Tune to collect, use, process and disclose your personal data except the withdrawal impact to the insurance policy administration or claims.
- 2. Right of Access
You have the right to access and request us to confirm whether we are processing your personal data or give you a copy of your personal data
- 3. Right to Data Portability
You have the right to data portability and request us to provide your personal data to you in structured, commonly used to us or another data controller, but in each case only where; the processing is based on your consent or the performance of a contract with you or the provision or porting would not violate the rights and freedoms of Tune or other persons
- 4. Right to Object
You can object to any processing of your personal data which has our legitimate interest as the legal basis if you believe your fundamental rights and freedom outweigh our legitimate interest
- 5. Right to Erasure
You can ask Tune to erase your personal data but only where it has been processed unlawfully or it is no longer needed for the purposes for which it was collected
- 6. Right to Restrict Processing
You can ask Tune to restrict your personal data, but only where its accuracy is contested, to allow us to verify its accuracy or the processing is unlawful, but you do not want it erased
- 7. Right to Rectification
You can ask Tune to rectify inaccurate personal data or may seek to verify the accuracy of the data before ratifying it
- 8. Right to Complaint
You have the right to complain if we have proceeded with your data illegally or our data processor breached the regulations
Part 8: Changes to this Privacy Policy
We may review and modify our Privacy Policy from time to time including improving our privacy practices, to reflect changes to our Services and to comply with the Personal Data Protection Act and relevant regulations. When we make any material changes to this Privacy Policy, we will notify you on our services and policy via the mobile app.
If you have any issues arising from the data privacy policy or request to exercise data subject rights, please contact [email protected] or the Data Protection Officer (‘DPO’), Tune Insurance at
3199 Maleenon Tower, 14th Floor, Rama IV RD, Khlong Ton, Khlong Toei, Bangkok, 10110
