Security and Data Protection Policy

Last updated: 17 July 2025

1. Introduction

TH - Dashsecurity (“we”, “our”, “us”) is committed to protecting the privacy, integrity, and security of your personal data in accordance with the Personal Data Protection Act (PDPA) and other applicable laws. This Security and Data Protection Policy explains how we collect, use, store, and protect your information.

2. Data Collection and Purpose

• To identify and authenticate users within the website
• For statistical analysis and to understand user behavior
• To provide, operate, and maintain our services
• To improve, personalize, and expand our website and services
• To communicate with you, including for customer service, updates, and marketing (where permitted)
• To process your requests, transactions, and manage your account
• To detect, prevent, and address technical issues or security incidents
• To comply with legal and regulatory obligations
• To ensure the security and integrity of our platform and user data

3. Lawful Basis for Processing

We process your personal data based on your consent, contractual necessity, legal obligations, or our legitimate interests, as required by the PDPA.

4. Data Protection Measures

• All personal data is stored securely with access restricted to authorized personnel only.
• We employ industry-standard encryption for data in transit and at rest.
• Regular security audits and vulnerability assessments are conducted to identify and mitigate risks.
• Access to personal data is logged and monitored.
• We follow data minimization principles, collecting only what is necessary for the stated purposes.
• Secure software development practices are implemented to prevent vulnerabilities.
• Incident response plans are in place to address potential data breaches or security incidents promptly.
• Third-party service providers are assessed for their data protection standards and required to comply with our security requirements.
• Our data protection policies and procedures are reviewed and updated regularly to ensure ongoing compliance and effectiveness.

5. User Rights

• Access and obtain a copy of your personal data
• Request correction or update of your data
• Withdraw consent at any time (where applicable)
• Request deletion or restriction of processing, subject to legal requirements
• Object to certain types of processing

To exercise your rights, please contact us at the email address below.

6. Data Retention

We retain personal data only as long as necessary to fulfill the purposes stated above or as required by law. Data that is no longer needed will be securely deleted or anonymized.

7. Responsible Disclosure

If you discover a security vulnerability in our website or services, please report it promptly to our security team at tigerzaza5678@gmail.com. We value your assistance in keeping our platform secure.

8. Incident Response

In the event of a data breach or security incident, we will promptly investigate, take appropriate remedial action, and notify affected users and authorities as required by law.

9. Policy Updates

We may update this policy from time to time to reflect changes in our practices or legal requirements. Please review this page periodically for the latest information.

10. Contact Information

For any questions, concerns, or requests regarding this policy or your personal data, please contact:

Email: security@kpltgroup.com

Visit GitHub: https://github.com/ThemeHackers/