Legal
Data Protection Addendum
ConnectX Data Protection Addendum
This Data Processing Addendum (“Addendum”) forms part of the CONNECTX CO., LTD. Privacy Policy and the Terms and Conditions available at https://connect-x.tech/privacy-policy-connectx/ (the “Agreement”). This Addendum covers the operation of its Web Site https://connect-x.tech/(the “Site”) and its private label message services (the Site and private label service, are referred to collectively as the “Business” in this Addendum), operated on behalf of third parties (its “Clients”) regarding the processing of Personal Data in connection with Clients’ use of the Business, in accordance with the requirements of Data Protection Laws.
This Addendum applies where and only to the extent that CONNECTX CO., LTD. processes Client and Customer Data that is subject to Data Protection Laws on behalf of Clients as Data Processor while providing Business pursuant to the Agreement.
CONNECTX CO., LTD. and Clients hereby agree to comply with the following provisions with respect to any Consumers’ Personal Information:
1. DEFINITIONS
“Account Users” means any individual accessing and/or using the Business through the Client’s Account as authorized by Client.
“ConnectX” means CONNECTX CO., LTD.
“Customer Data” means any Personal Data that CONNECTX CO., LTD processes as a Data Processor on behalf of Client.
“Data Controller” means the entity which determines the purposes and means of the processing of Personal Data. Client is the Data Controller with respect to Client Data.
“Data Processor” means the entity which processes Personal Data on behalf of the Data Controller. CONNECTX CO., LTD is the Data Processor with respect to Client Data under Thailand's Personal Data Protection Act BE 2562 (PDPA).
“Data Protection Laws” means Thailand's Personal Data Protection Act BE 2562 (PDPA) and, and to the extent applicable, including General Data Protection Regulation (GDPR).
“Personal Data” shall have the same meaning as in the applicable Data Protection Laws, provided, that with respect to this Addendum, the reference is to Personal Data processed in relation to Client’s access to and use of the Service.
“Request” means a written request from a Data Subject to exercise his/her specific data subject rights under the Data Protection Laws in respect of Personal Data.
“Service” means ConnectX as a Customer Data & Engagement Platform provided as a Software-as-a-Service (SaaS). Its goal is to help organizations consolidate customer data from various sources into a central hub and leverage that data to create excellent customer experiences through modules such as Marketing Connect, Sales Connect, and Social Service Connect.
“Sub-processor” means any Data Processor engaged by CONNECTX CO., LTD. to assist in fulfilling its obligations with respect to providing Business pursuant to the Agreement or this Addendum.
The terms, “Data Subject”, “Member State”, “Processing”, “Process” and “Supervisory Authority” shall have the same meaning as in the Thailand's Personal Data Protection Act BE 2562 (PDPA), and their cognate terms shall be construed accordingly.
2. PROCESSING OF PERSONAL DATA
2.1 Roles of the Parties. The parties acknowledge and agree that regarding the Processing of Personal Data, Client is the Data Controller of Customer Data, and ConnectX will process Customer Data only as a Data Processor acting on the instructions of Client.
2.2 Client’s Processing of Customer Data. Client shall
(i) comply with the Data Protection Laws and its obligations as a Data Controller under the Data Protection Laws in respect of its use of the Business, and
(ii) maintain a legally adequate privacy policy and notices for each platform, mobile application, web domains, devices, software applications and/or communication channels owned or controlled by the Data Controller that connects to the ConnectX’s Business, and
(iii) provide notice, respond to individual rights requests, and obtain all legally required rights, releases and consents to allow Customer Data to be collected, processed, stored, used, transmitted and disclosed in the manner contemplated by the Agreement and this Addendum. Client shall have sole responsibility for the accuracy, quality, and legality of Customer Data and how Client acquires and uses Customer Data.
2.3 ConnectX’s Processing of Customer Data. ConnectX shall only process Customer Data on behalf of and in accordance with Client’s instructions. Instructions by Client to ConnectX to process Customer Data include processing initiated by Account Users in their use of the Business.
2.4 Details of Data Collection and Processing
(a) Subject matter: The subject matter of the data processing under this Addendum is the Customer Data.
(b) Duration: As between ConnectX and Client, the duration of the data processing under this Addendum is until the termination of the Agreement in accordance with its terms.
(c) Purpose: The purpose of the data processing under this Addendum is the provision of the Business to the Client and the performance of ConnectX’s obligations pursuant to the Agreement (including this Addendum) or as otherwise agreed by the parties.
(d) Nature of the processing: The core data processing steps are as follows:
Data Ingestion: The system receives customer data from multiple channels as defined by the client, such as API connections, file imports (CSV, Excel), or website behavior tracking.
Data Processing & Management: Ingested data undergoes a process of validation, cleansing, and unification to create an accurate and reliable Single Customer View.
Data Activation: The processed data is then utilized in various modules, including customer segmentation, marketing automation, data analytics, and customer service.
(e) Categories of data subjects: Accounts Users and any end user of a web-based application and/or communication channels owned or controlled by Client and to or with respect to whom Client sends notifications or processes Personal Data via the Service (collectively, “End Users”).
(f) Categories of Customer Data:
Client and Account Users: Account User’s login credentials to the Service, including
Profile Data: e.g., name, contact information (email, phone number), demographic data (age, gender, address).
Behavioral Data: e.g., website/app browsing history, clicks, products viewed, campaign engagement.
Transactional Data: e.g., purchase history, service usage, subscription renewal information.
Communication Data: e.g., social media conversation history, email open/click history, customer service ticket data.
End Users: Client may process Personal Data via the Service, the extent of which is determined by Client based on Client’s configuration and use of the Service, which may include, at Client’s sole discretion, but is not limited to the following categories of Personal Data:
Profile Data: e.g., name, contact information (email, phone number), demographic data (age, gender, address).
Behavioral Data: e.g., website/app browsing history, clicks, products viewed, campaign engagement.
Transactional Data: e.g., purchase history, service usage, subscription renewal information.
Communication Data: e.g., social media conversation history, email open/click history, customer service ticket data.
(g) Sources of Customer Data: All Customer Data is stored on the ConnectX database.
3. DATA REQUESTS
3.1 Data Requests. The Service provides Client with a number of functions that Client may use to retrieve, correct, delete, or restrict Customer Data, which Client may use to assist it in connection with its obligations under the Data Protection Laws including, for example, its obligations relating to responding to Requests from Data Subjects or applicable data protection authorities (including requests for information relating to the processing, and requests relating to access, rectification, erasure or portability of the Personal Information).
To the extent Client is unable to independently access the relevant Customer Data within the Service, ConnectX will provide reasonable cooperation to assist Client, at Client’s cost to the extent legally permissible, to respond to any requests from Data Subjects or applicable data protection authorities relating to the processing of Personal Data under the Agreement and this Addendum.
In the event any such request is made directly to ConnectX, ConnectX will not respond to such communication directly without Client’s prior authorization, unless legally compelled to do so. If required, ConnectX will promptly notify Client and provide it with a copy of the request unless legally prohibited from doing so.
3.2 ConnectX does not disclose or sell Customer Data to third parties.
3.3 Government Requests. If a law enforcement agency sends ConnectX a demand for Customer Data (for example, through a subpoena or court order), ConnectX will attempt to redirect the law enforcement agency to request that data directly from Client. If compelled to disclose Customer Data to a law enforcement agency, then Xxx will give Client reasonable notice of the demand to allow Client to seek a protective order or other appropriate remedy unless Xxx is legally prohibited from doing so.
3.4 Data Requests can be made by email to
Data Protection Point of Contact: Worapat Sasibut
Contact Details: HR@connect-x.tech
4. SUB-PROCESSORS
4.1 Appointment of Sub-processors. Client acknowledges and agrees that Xxx may engage third-party Sub-processors in connection with the provision of the Service. Any such Sub-processor will be permitted to customer data only to the extent needed to deliver the Services. None of this customer data is used for any promotional purposes, or shared with third parties for their promotional purposes.
5.DELETION OF PERSONAL DATA
Upon contract termination, ConnectX shall securely and systematically manage client data. All client data residing on our platform will be permanently deleted within a period of 30 days from the official contract termination date.
6. RELATIONSHIP WITH THE AGREEMENT
6.1 Except for the changes made by this Addendum, the Agreement remains unchanged and in full force and effect. If there is any conflict between this Addendum and the Agreement, this Addendum will prevail to the extent of that conflict.
6.2 Claims. Any claims brought under or in connection with this Addendum will be subject to the terms and conditions, including but not limited to, the exclusions and limitations set forth in the Agreement. Other than liability that may not be limited under applicable law, each party’s liability, taken together in the aggregate, arising out of or related to this Addendum, whether in contract, tort or under any other theory of liability, is subject to the ‘Limitation of Liability’ section of the Agreement, and any reference in such section to the liability of a party means the aggregate liability of that party under the Agreement and all Addenda together.
6.3 No Third Party Beneficiary. No one other than a party to this Addendum, its successors and permitted assignees will have any right to enforce any of its terms. Any claims against ConnectX under this Addendum will be brought solely against the entity that is a party to the Agreement. Client further agrees that any regulatory penalties or other liability incurred by ConnectX in relation to the Customer Data that arise as a result of, or in connection with, Client’s failure to comply with its obligations under this Addendum or any applicable Data Protection Laws will count toward and reduce ConnectX’s liability under the Agreement as if it were liable to the Client under the Agreement.
6.4 Governing Law. This Addendum will be governed by and construed in accordance with governing law and jurisdiction provisions in the Agreement, unless required otherwise by applicable Data Protection Laws.
7. LEGAL EFFECT
This Addendum shall only become legally binding between Client and ConnectX when executed as described in the introductory paragraphs to this Addendum.
8. ANNUAL UPDATE
ConnectX ’s Privacy Policy and this Addendum will be kept current and updated annually
Name: Worapat Sasibut
Title: Data Protection Officer
Date: 13 / 08 / 2025
ConnectX Data Protection Addendum
This Data Processing Addendum (“Addendum”) forms part of the CONNECTX CO., LTD. Privacy Policy and the Terms and Conditions available at https://connect-x.tech/privacy-policy-connectx/ (the “Agreement”). This Addendum covers the operation of its Web Site https://connect-x.tech/(the “Site”) and its private label message services (the Site and private label service, are referred to collectively as the “Business” in this Addendum), operated on behalf of third parties (its “Clients”) regarding the processing of Personal Data in connection with Clients’ use of the Business, in accordance with the requirements of Data Protection Laws.
This Addendum applies where and only to the extent that CONNECTX CO., LTD. processes Client and Customer Data that is subject to Data Protection Laws on behalf of Clients as Data Processor while providing Business pursuant to the Agreement.
CONNECTX CO., LTD. and Clients hereby agree to comply with the following provisions with respect to any Consumers’ Personal Information:
1. DEFINITIONS
“Account Users” means any individual accessing and/or using the Business through the Client’s Account as authorized by Client.
“ConnectX” means CONNECTX CO., LTD.
“Customer Data” means any Personal Data that CONNECTX CO., LTD processes as a Data Processor on behalf of Client.
“Data Controller” means the entity which determines the purposes and means of the processing of Personal Data. Client is the Data Controller with respect to Client Data.
“Data Processor” means the entity which processes Personal Data on behalf of the Data Controller. CONNECTX CO., LTD is the Data Processor with respect to Client Data under Thailand's Personal Data Protection Act BE 2562 (PDPA).
“Data Protection Laws” means Thailand's Personal Data Protection Act BE 2562 (PDPA) and, and to the extent applicable, including General Data Protection Regulation (GDPR).
“Personal Data” shall have the same meaning as in the applicable Data Protection Laws, provided, that with respect to this Addendum, the reference is to Personal Data processed in relation to Client’s access to and use of the Service.
“Request” means a written request from a Data Subject to exercise his/her specific data subject rights under the Data Protection Laws in respect of Personal Data.
“Service” means ConnectX as a Customer Data & Engagement Platform provided as a Software-as-a-Service (SaaS). Its goal is to help organizations consolidate customer data from various sources into a central hub and leverage that data to create excellent customer experiences through modules such as Marketing Connect, Sales Connect, and Social Service Connect.
“Sub-processor” means any Data Processor engaged by CONNECTX CO., LTD. to assist in fulfilling its obligations with respect to providing Business pursuant to the Agreement or this Addendum.
The terms, “Data Subject”, “Member State”, “Processing”, “Process” and “Supervisory Authority” shall have the same meaning as in the Thailand's Personal Data Protection Act BE 2562 (PDPA), and their cognate terms shall be construed accordingly.
2. PROCESSING OF PERSONAL DATA
2.1 Roles of the Parties. The parties acknowledge and agree that regarding the Processing of Personal Data, Client is the Data Controller of Customer Data, and ConnectX will process Customer Data only as a Data Processor acting on the instructions of Client.
2.2 Client’s Processing of Customer Data. Client shall
(i) comply with the Data Protection Laws and its obligations as a Data Controller under the Data Protection Laws in respect of its use of the Business, and
(ii) maintain a legally adequate privacy policy and notices for each platform, mobile application, web domains, devices, software applications and/or communication channels owned or controlled by the Data Controller that connects to the ConnectX’s Business, and
(iii) provide notice, respond to individual rights requests, and obtain all legally required rights, releases and consents to allow Customer Data to be collected, processed, stored, used, transmitted and disclosed in the manner contemplated by the Agreement and this Addendum. Client shall have sole responsibility for the accuracy, quality, and legality of Customer Data and how Client acquires and uses Customer Data.
2.3 ConnectX’s Processing of Customer Data. ConnectX shall only process Customer Data on behalf of and in accordance with Client’s instructions. Instructions by Client to ConnectX to process Customer Data include processing initiated by Account Users in their use of the Business.
2.4 Details of Data Collection and Processing
(a) Subject matter: The subject matter of the data processing under this Addendum is the Customer Data.
(b) Duration: As between ConnectX and Client, the duration of the data processing under this Addendum is until the termination of the Agreement in accordance with its terms.
(c) Purpose: The purpose of the data processing under this Addendum is the provision of the Business to the Client and the performance of ConnectX’s obligations pursuant to the Agreement (including this Addendum) or as otherwise agreed by the parties.
(d) Nature of the processing: The core data processing steps are as follows:
Data Ingestion: The system receives customer data from multiple channels as defined by the client, such as API connections, file imports (CSV, Excel), or website behavior tracking.
Data Processing & Management: Ingested data undergoes a process of validation, cleansing, and unification to create an accurate and reliable Single Customer View.
Data Activation: The processed data is then utilized in various modules, including customer segmentation, marketing automation, data analytics, and customer service.
(e) Categories of data subjects: Accounts Users and any end user of a web-based application and/or communication channels owned or controlled by Client and to or with respect to whom Client sends notifications or processes Personal Data via the Service (collectively, “End Users”).
(f) Categories of Customer Data:
Client and Account Users: Account User’s login credentials to the Service, including
Profile Data: e.g., name, contact information (email, phone number), demographic data (age, gender, address).
Behavioral Data: e.g., website/app browsing history, clicks, products viewed, campaign engagement.
Transactional Data: e.g., purchase history, service usage, subscription renewal information.
Communication Data: e.g., social media conversation history, email open/click history, customer service ticket data.
End Users: Client may process Personal Data via the Service, the extent of which is determined by Client based on Client’s configuration and use of the Service, which may include, at Client’s sole discretion, but is not limited to the following categories of Personal Data:
Profile Data: e.g., name, contact information (email, phone number), demographic data (age, gender, address).
Behavioral Data: e.g., website/app browsing history, clicks, products viewed, campaign engagement.
Transactional Data: e.g., purchase history, service usage, subscription renewal information.
Communication Data: e.g., social media conversation history, email open/click history, customer service ticket data.
(g) Sources of Customer Data: All Customer Data is stored on the ConnectX database.
3. DATA REQUESTS
3.1 Data Requests. The Service provides Client with a number of functions that Client may use to retrieve, correct, delete, or restrict Customer Data, which Client may use to assist it in connection with its obligations under the Data Protection Laws including, for example, its obligations relating to responding to Requests from Data Subjects or applicable data protection authorities (including requests for information relating to the processing, and requests relating to access, rectification, erasure or portability of the Personal Information).
To the extent Client is unable to independently access the relevant Customer Data within the Service, ConnectX will provide reasonable cooperation to assist Client, at Client’s cost to the extent legally permissible, to respond to any requests from Data Subjects or applicable data protection authorities relating to the processing of Personal Data under the Agreement and this Addendum.
In the event any such request is made directly to ConnectX, ConnectX will not respond to such communication directly without Client’s prior authorization, unless legally compelled to do so. If required, ConnectX will promptly notify Client and provide it with a copy of the request unless legally prohibited from doing so.
3.2 ConnectX does not disclose or sell Customer Data to third parties.
3.3 Government Requests. If a law enforcement agency sends ConnectX a demand for Customer Data (for example, through a subpoena or court order), ConnectX will attempt to redirect the law enforcement agency to request that data directly from Client. If compelled to disclose Customer Data to a law enforcement agency, then Xxx will give Client reasonable notice of the demand to allow Client to seek a protective order or other appropriate remedy unless Xxx is legally prohibited from doing so.
3.4 Data Requests can be made by email to
Data Protection Point of Contact: Worapat Sasibut
Contact Details: HR@connect-x.tech
4. SUB-PROCESSORS
4.1 Appointment of Sub-processors. Client acknowledges and agrees that Xxx may engage third-party Sub-processors in connection with the provision of the Service. Any such Sub-processor will be permitted to customer data only to the extent needed to deliver the Services. None of this customer data is used for any promotional purposes, or shared with third parties for their promotional purposes.
5.DELETION OF PERSONAL DATA
Upon contract termination, ConnectX shall securely and systematically manage client data. All client data residing on our platform will be permanently deleted within a period of 30 days from the official contract termination date.
6. RELATIONSHIP WITH THE AGREEMENT
6.1 Except for the changes made by this Addendum, the Agreement remains unchanged and in full force and effect. If there is any conflict between this Addendum and the Agreement, this Addendum will prevail to the extent of that conflict.
6.2 Claims. Any claims brought under or in connection with this Addendum will be subject to the terms and conditions, including but not limited to, the exclusions and limitations set forth in the Agreement. Other than liability that may not be limited under applicable law, each party’s liability, taken together in the aggregate, arising out of or related to this Addendum, whether in contract, tort or under any other theory of liability, is subject to the ‘Limitation of Liability’ section of the Agreement, and any reference in such section to the liability of a party means the aggregate liability of that party under the Agreement and all Addenda together.
6.3 No Third Party Beneficiary. No one other than a party to this Addendum, its successors and permitted assignees will have any right to enforce any of its terms. Any claims against ConnectX under this Addendum will be brought solely against the entity that is a party to the Agreement. Client further agrees that any regulatory penalties or other liability incurred by ConnectX in relation to the Customer Data that arise as a result of, or in connection with, Client’s failure to comply with its obligations under this Addendum or any applicable Data Protection Laws will count toward and reduce ConnectX’s liability under the Agreement as if it were liable to the Client under the Agreement.
6.4 Governing Law. This Addendum will be governed by and construed in accordance with governing law and jurisdiction provisions in the Agreement, unless required otherwise by applicable Data Protection Laws.
7. LEGAL EFFECT
This Addendum shall only become legally binding between Client and ConnectX when executed as described in the introductory paragraphs to this Addendum.
8. ANNUAL UPDATE
ConnectX ’s Privacy Policy and this Addendum will be kept current and updated annually
Name: Worapat Sasibut
Title: Data Protection Officer
Date: 13 / 08 / 2025
AI Powered Customer Data Platform
& Marketing Automation - One platform connects all
Contact Us
Connect X
No. 75/42, 14th Floor, Richmond Building,
Sukhumvit 26, Khlong Tan, Khlong Toei District,
Bangkok 10110
Monday – Friday 08:00 – 17:00
Closed Saturday – Sunday
Email: sales@connect-x.tech
Tel: 098-850-9558
© 2026 ConnectX. All rights reserved.
AI Powered Customer Data Platform
& Marketing Automation - One platform connects all
Contact Us
Connect X
No. 75/42, 14th Floor, Richmond Building,
Sukhumvit 26, Khlong Tan, Khlong Toei District,
Bangkok 10110
Monday – Friday 08:00 – 17:00
Closed Saturday – Sunday
Email: sales@connect-x.tech
Tel: 098-850-9558
© 2026 ConnectX. All rights reserved.
AI Powered Customer Data Platform
& Marketing Automation - One platform connects all
Contact Us
Connect X
No. 75/42, 14th Floor, Richmond Building,
Sukhumvit 26, Khlong Tan, Khlong Toei District,
Bangkok 10110
Monday – Friday 08:00 – 17:00
Closed Saturday – Sunday
Email: sales@connect-x.tech
Tel: 098-850-9558
© 2026 ConnectX. All rights reserved.
