Privacy Policy

Last updated: 15 May 2026

SiamEPOS ("we", "us", "our") is committed to protecting your personal data. This policy explains how we collect, use, and protect your information in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

SiamEPOS is operated by Korakot Kongponsrisiri. If you have any questions about this policy, please contact us at info@siamepos.co.uk.

2. What Data We Collect

We may collect the following types of personal data:

• Contact information — name, email address, phone number when you book a demo or contact us
• Restaurant information — restaurant name, address when you sign up for SiamEPOS
• Usage data — how you interact with our website and application
• Booking data — reservation details collected via the booking widget on behalf of our restaurant clients
• Payment information — billing details processed securely through our payment providers (we do not store card details)

3. How We Use Your Data

We use your personal data to:

• Provide and improve the SiamEPOS service
• Process bookings and send confirmation emails on behalf of restaurants using our platform
• Send you relevant information about SiamEPOS (you can unsubscribe at any time)
• Respond to enquiries and provide customer support
• Comply with legal obligations

4. Legal Basis for Processing

We process your data on the following legal bases:

• Contract — to perform our contract with you as a SiamEPOS customer
• Legitimate interests — to improve our service and communicate with prospects
• Consent — for marketing communications (you can withdraw consent at any time)
• Legal obligation — where required by law

5. Data Sharing

We do not sell your personal data. We may share it with trusted third-party service providers including:

• Brevo — email delivery and marketing automation
• Railway — cloud infrastructure and database hosting
• Netlify — website hosting
• Make.com — workflow automation

All processors are contractually bound to protect your data and only use it as instructed.

6. Data Retention

We retain your data for as long as necessary to provide the service and comply with legal obligations. Customer data is retained for 7 years for accounting purposes. Marketing data is retained until you unsubscribe.

7. Your Rights

Under UK GDPR, you have the right to:

• Access the personal data we hold about you
• Correct inaccurate data
• Request erasure of your data ("right to be forgotten")
• Object to processing for marketing purposes
• Data portability
• Lodge a complaint with the ICO (ico.org.uk)

8. Cookies

We use essential cookies to make our website work. See our Cookie Policy for details.

9. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes by email or prominent notice on our website.