Privacy

FOUNDIX Privacy Policy

Last Updated: June 2026

1. Introduction

Foundix ("Foundix", "we", "our", or "us") respects your privacy and is committed to protecting your personal data.

This Privacy Policy explains how we collect, use, disclose, store, and protect personal information when you access or use Foundix services, websites, applications, AI-powered tools, and related products ("Services").

By using the Services, you acknowledge and agree to the practices described in this Privacy Policy.

2. Personal Data We Collect

We may collect the following categories of information:

Account Information

  • Name
  • Email address
  • Phone number
  • Company name
  • Business information
  • Login credentials

Profile Information

  • User preferences
  • Subscription details
  • Membership status
  • Billing information

Business Information

Information voluntarily submitted through:

  • Business Discovery
  • AI Consultant
  • Workspace tools
  • Business planning activities
  • Examples include business goals, business challenges, market information, team structures, and business plans.

Technical Information

  • IP address
  • Device information
  • Browser information
  • Operating system
  • Log files
  • Usage analytics

Payment Information

Payment transactions may be processed through third-party payment providers.

Foundix does not store full credit card information.

3. How We Use Your Information

We use collected information to:

  • Provide and maintain Services
  • Authenticate users
  • Process payments
  • Deliver AI-powered features
  • Improve products and user experience
  • Monitor platform performance
  • Prevent fraud and abuse
  • Comply with legal obligations
  • Communicate service updates

4. AI Processing

Certain features may involve processing information through artificial intelligence systems.

Information submitted to AI Consultant, AI-powered Workspace tools, or future AI Agent features may be processed by third-party AI providers.

We take reasonable steps to minimize unnecessary data sharing and only transmit information necessary to provide requested functionality.

Users should avoid submitting:

  • National ID numbers
  • Passport numbers
  • Credit card information
  • Sensitive personal information
  • Confidential information unless necessary

5. Legal Basis for Processing (PDPA)

Under the Personal Data Protection Act (PDPA) of Thailand, we process personal data based on one or more of the following legal bases:

  • Contract performance
  • Legitimate interests
  • Legal obligations
  • Consent
  • Protection of vital interests
  • Where consent is required, we will obtain it before processing.

6. Cookies and Tracking Technologies

Foundix may use cookies, analytics tools, session storage, local storage, and similar tracking technologies to:

  • Maintain user sessions
  • Improve performance
  • Analyze usage
  • Enhance user experience
  • Users may disable cookies through browser settings, although some functionality may be affected.

7. Sharing of Information

We do not sell personal data.

We may share information with:

Service Providers

  • Cloud hosting providers
  • Analytics providers
  • Payment processors
  • Authentication providers
  • AI service providers

Legal Authorities

  • Applicable law
  • Court orders
  • Government requests

Business Transfers

  • Merger
  • Acquisition
  • Asset transfer
  • Corporate restructuring

8. International Data Transfers

Your information may be processed in countries outside Thailand.

When transferring personal data internationally, Foundix will take reasonable measures to ensure adequate protection consistent with applicable laws.

9. Data Retention

We retain personal data only for as long as necessary to:

  • Provide Services
  • Fulfill contractual obligations
  • Resolve disputes
  • Meet legal requirements
  • Retention periods may vary depending on the nature of the information.

10. Data Security

We implement reasonable technical and organizational measures to protect personal data, including:

  • Encryption in transit
  • Access controls
  • Authentication mechanisms
  • Security monitoring
  • However, no method of transmission or storage can be guaranteed to be completely secure.

11. Your Rights Under PDPA

Subject to applicable law, you may have the right to:

  • Access your personal data
  • Request correction of inaccurate information
  • Request deletion of personal data
  • Request restriction of processing
  • Withdraw consent
  • Object to certain processing activities
  • Request data portability
  • Requests may be submitted through the contact information provided below.

12. Children's Privacy

Foundix is not intended for individuals under 18 years of age.

We do not knowingly collect personal information from children.

If we become aware that personal data from a child has been collected, we will take reasonable steps to delete it.

13. Third-Party Services

Foundix may contain links or integrations with third-party services.

We are not responsible for the privacy practices of third-party websites, applications, or services.

Users should review the privacy policies of those providers separately.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

Updated versions will be published on our website with a revised effective date.

Continued use of the Services after updates constitutes acknowledgment of the revised policy.

16. PDPA Data Controller

For purposes of Thailand's Personal Data Protection Act (PDPA), Foundix acts as the Data Controller for personal information collected through the Services.

Foundix is responsible for determining the purposes and means of processing personal data described in this Privacy Policy.