個人情報保護方針 (Mobile)

1. Introduction

KING OF TIME for ASEAN is a mobile application that provides time-attendance, HR management, and payroll features for organizations and their employees. This Privacy Policy explains how KING OF TIME for ASEAN collects, uses, stores, discloses, and protects personal information when you use the App or related services.

KING OF TIME for ASEAN is designed for enterprise use. Personal data processed through the App is generally collected and controlled under the direction of your Employer (“Employer”). By using the App, you acknowledge that your Employer may determine how certain data is collected, used, and retained.

If you do not agree with this Privacy Policy, please do not use the App.

2. Information We Collect

We collect information necessary to deliver KING OF TIME for ASEAN features and to meet legal, payroll, and HR requirements. Categories of data collected include:

2.1 Identity & Account Information

  • Full name, employee ID or code, profile photo, email address, phone number, job title, department, work location.

2.2 Authentication & Access

  • Username and password (when used), authentication tokens, biometric authentication setup flags (Face ID / Touch ID). Biometric templates are not stored by KING OF TIME for ASEAN: biometric authentication is handled by the device’s secure system; KING OF TIME for ASEAN stores only a flag indicating whether biometric sign-in is enabled for a given account.

2.3 Time & Attendance Data

  • Check-in/check-out timestamps, break start/end times, overtime start/end, attendance adjustments and related comments.
  • Attendance verification data such as photos taken for clock-in/clock-out when the Employer requires photo capture.

2.4 Location & Route Data

  • GPS location captured at the moment of attendance actions (check-in/check-out) when location enforcement is enabled.
  • Route tracking data if the user or Employer starts route recording: continuous location points while route recording is active (automatic start/stop behavior applies if configured to start after clock-in and stop after clock-out).
  • Workplace geo-fence definitions and workplace location details (retrieved using maps services).

2.5 Payroll & Sensitive HR Data (Highly Sensitive)

  • Base salary and wage components, allowances, bonuses, deductions, social insurance and related entitlements, Personal Income Tax (PIT) data, tax code and dependents, bank account number (for salary transfers), payroll history and payslips, salary adjustment history, and employment contract details.

2.6 Requests, Reminders & Mood Logs

  • Leave, overtime, schedule, supplemental work, and other HR requests (including attachments and photos).
  • Reminder logs and quick-submit actions.
  • Daily mood logs entered by employees (selected mood option). Mood logs are personal but not payroll sensitive.

2.7 Device & Technical Data

  • Device model, operating system version, unique device identifiers, IP address, app usage logs, crash reports and diagnostics, push notification tokens.

2.8 Third-Party Account & SSO Data

  • Information from third-party identity providers when you connect accounts for SSO (Google, LINE, Facebook, and Apple). This may include name, email, profile ID, and verification tokens, as permitted by the third party and by your consent.

2.9 Data Provided by Your Employer or External Systems

  • HR master data, payroll inputs, company settings (e.g., password policy), and data synchronized from Employer systems such as King of Time Master, HRIS, and payroll systems.

3. How We Collect Information

We collect data via:

  • Direct input in the App (profile setup, requests, mood logs, etc.).
  • Device sensors and permissions (GPS, camera) when features require them.
  • Integrations and synchronizations with Employer systems (HRIS, payroll systems).
  • Third-party SSO and map services when you connect or interact with them.
  • Automatic telemetry (logs, crash reports) to improve service quality.

4. Purposes of Processing & Uses

We process personal data for the following purposes:

4.1 Core HR & Payroll Operations

  • Record and display time attendance, leaves, overtime, and schedules.
  • Calculate payroll, generate payslips and salary history, and provide payroll exports or payslip emails.
  • Provide employee self-service features (view profile, requests, payslips).

4.2 Attendance Verification & Compliance

  • Verify attendance through GPS, geo-fencing, photo capture, biometrics (device-based), and route logs as required by Employer policies.
  • Enable Admin features (approve/reject requests, edit timecards, export data) to meet operational needs.

4.3 Route Recording & Travel Logs

  • Record employee routes when recording is active or configured to automatically record after clock-in and stop on clock-out. Route data is used for reporting, export, and business-travel verification. Admins with permissions may view and export route data.

4.4 Communications & Notifications

  • Send push notifications, reminders (e.g., clock-in reminders near workplace), and transactional emails (e.g., sent payslips).

4.5 Security, Fraud Prevention & Auditing

  • Prevent spoofing or fraudulent attendance, enforce access controls, maintain audit trails and logs.

4.6 App Improvement & Diagnostics

  • Analyze app usage and crash reports to improve performance and user experience. Aggregated analytics may be used for product improvement.

4.7 Legal & Regulatory Compliance

  • Retain and disclose information to comply with payroll, tax, labor, and other legal obligations.
  • KING OF TIME for ASEAN does not sell user data or provide data to advertising partners for ad targeting.

5. Third Parties, Integrations & Data Sharing

We may share data only with authorized parties and only for legitimate purposes:

5.1 Your Employer

Your Employer will have access to employee attendance, payroll, HR, and request data as required for employment management.

5.2 Service Providers and Sub-processors

We may share data with trusted vendors to provide cloud hosting, analytics, maps (e.g., Google Maps for workplace location), email delivery, and technical support. These providers are contractually bound to process data only for KING OF TIME for ASEAN’s purposes and to maintain security measures.

5.3 Identity Providers (SSO)

When you connect a third-party account for SSO (Google, LINE, Facebook, and Apple), we receive the data permitted by the provider (for example, name and email). This allows login without creating separate credentials. You may disconnect connected accounts from User Settings.

5.4 Exports, Emails & Admin Access

  • Admins with appropriate permissions can export attendance, route, workplace, or payroll data (CSV/Excel) and may send payslips to verified employee email addresses.
  • Such exports may contain sensitive payroll and attendance data and are subject to Employer access policies and audit controls.

5.5 Legal Requests

We may disclose personal data to competent authorities, courts, regulators, or other third parties when required by law, regulation, or legal process (e.g., tax audits, court orders), or to respond to lawful governmental requests.

6. Location & Route Tracking - Important Details

6.1 GPS at Check-In/Check-Out

  • When location enforcement is enabled, KING OF TIME for ASEAN collects GPS coordinates at the moment of check-in/check-out to verify location within designated workplace radius.
  • This location collection is one-time per attendance action (not continuous) unless the Employer has enabled route tracking.

6.2 Route Recording

  • If route tracking is started (manually or automatically as configured to start after clock-in), KING OF TIME for ASEAN collects continuous location points during the recording session until the recording is stopped (manually or automatically at clock-out).
  • Route data is used for reporting, verification, and admin export. Employees may view their own routes; admins may view routes of employees as permitted.

6.3 User Controls

  • Users can start and stop route recordings and may be informed when recording is active. If Employer policies require route recording, the Employer will advise users accordingly.
  • Disabling location permission may limit or block attendance features when location is required by Employer configuration.

7. Camera, Photos & Attachments

  • KING OF TIME for ASEAN may request camera and photo library access for attendance photo capture and for uploading attachments to requests.
  • Photos taken for attendance are stored with the attendance record and may be accessible to admins and HR as permitted.
  • Users must grant camera permissions for photo-based verification; if denied, photo-required attendance may be blocked by Employer policy.

8. Biometric Authentication

  • KING OF TIME for ASEAN supports device biometric sign-in (Face ID / Touch ID) for convenience. Biometric data itself (fingerprint or facial templates) is handled solely by your device’s secure system (Secure Enclave); KING OF TIME for ASEAN only stores a flag that biometric authentication is enabled for an account.
  • If biometric sign-in is enabled and properly configured on your device, you may sign in without entering a password.

9. Push Notifications & Messaging

  • With your permission, KING OF TIME for ASEAN uses push notifications to deliver reminders (e.g., clock-in reminders), announcements, and transactional messages.
  • Notifications rely on device-level permissions and may be disabled by the user in device settings.

10. Data Retention & Deletion

  • We retain personal data only as long as necessary to provide the App’s services, to meet Employer obligations, or to comply with laws (e.g., payroll/tax retention requirements).
  • Typical retention periods are determined by Employer policy or applicable law (for example, payroll history may be kept for multiple years as required by tax regulation).
  • Upon request and subject to legal/Employer constraints, data may be deleted, archived, or anonymized. Employment-related data deletion requests are usually handled through the Employer.

11. Security Measures

We maintain industry-standard technical and organizational safeguards for user data, including:

  • Encryption in transit (TLS/HTTPS) and encryption at rest for sensitive data (including payroll).
  • Role-based access control and audit logging for Admin actions and exports.
  • Regular security assessments and patching.
  • Access to sensitive payroll and personal data limited to authorized personnel and administrators under Employer policies.
No system is completely secure; users should follow Employer security guidance (strong passwords, device lock, etc.).

12. Your Rights & Controls

Depending on local law and Employer policy, you may have rights to:

  • Access and obtain a copy of your personal data.
  • Request correction of inaccurate personal data.
  • Request deletion of personal data (subject to Employer and legal retention obligations).
  • Withdraw consent for optional processing (e.g., SSO linking, GPS-based features) where processing depends on consent.
  • Restrict or object to some processing activities.
To exercise these rights, contact your Employer’s HR/data protection contact or use the App’s support/contact channels. Employment-related requests usually require coordination with your Employer.

13. Data for Minors

KING OF TIME for ASEAN is intended for employees and is not targeted to children. The App should only be used by individuals legally permitted to work. We do not knowingly collect personal data of children.

14. International Transfers

Data may be transferred and stored in jurisdictions outside your country (for example, cloud servers or third-party service providers). Where transfers occur, appropriate safeguards (e.g., contractual clauses or other legal measures) are implemented to protect your personal data.

15. Policy Updates

We may update this Privacy Policy to reflect changes to KING OF TIME for ASEAN features, technologies, legal requirements, or Employer-driven settings. We will update the “Effective Date” and, where appropriate, notify users of material changes. Continued use of KING OF TIME for ASEAN after the update constitutes acceptance.

16. Third-Party Services & Links

KING OF TIME for ASEAN may integrate with or link to third-party services (maps, SSO providers, cloud hosting). These third-party services maintain their own privacy practices; please review their privacy policies for details. We are not responsible for third-party privacy practices.

17. Contact Information

For questions about this Privacy Policy, to exercise your rights, or for data requests, contact:

Company Human Technologies (Thailand) Co., Ltd.
Address 952 Ramaland Building 13 Fl.,
Rama 4 Rd., Suriyawong,
Bangrak Bangkok 10500 Thailand
Telephone 02-266-5870
Support Email sales_support@h-t.co.th
If your request pertains to Employer-controlled data, your Employer’s HR or data protection contact may be the primary point of contact for retention, export, or deletion requests.

18. Additional Platform Notes
(for App Store & Google Play)

  • KING OF TIME for ASEAN uses device biometrics and device identifiers; biometric templates are never exported or stored by our servers. We will declare the use of device identifiers and biometrics in platform forms and/or App Store privacy labels.
  • The App uses location services (both single-point at check-in and continuous route recording when enabled) and camera access for attendance verification. These uses will be disclosed at runtime when requesting permissions and declared in App Store / Google Play forms.
  • KING OF TIME for ASEAN may integrate Google Maps for workplace location selection; the map provider’s terms and privacy policy apply for map features.
  • We completed submitting the Google Play Data Safety form and Apple Privacy “nutrition” details to accurately reflect data collection, purpose, storage, and sharing.