Bangkok's trusted medical home for British nationals.

Privacy Policy

Privacy Policy

Last updated: December 2025

This Privacy Policy explains how THE LOTUS AZURE CENTRE FOR MEDICAL COMPANY LIMITED (“we”, “us”, “our”) collects, uses, stores and protects personal data when you visit our websites thelotusazure.com and thelotusazure.co.uk, or when you contact us through our contact forms or by email.

We comply with applicable privacy laws, including the EU General Data Protection Regulation (GDPR), the UK GDPR and Data Protection Act 2018, and the Thailand Personal Data Protection Act (PDPA).

1. Data Controller

THE LOTUS AZURE CENTRE FOR MEDICAL COMPANY LIMITED
Business Registration No.: 0105565139031
Registered Office:
89, Surin Building, 2nd Floor, Chiang Mai Road,
Khlong San Sub-district, Khlong San District, Bangkok, Thailand

Email: info@thelotusazure.com
Phone: +66 2-1171801

For EU/UK visitors, our organisation acts as a foreign data controller.

  1. Personal Data We Collect

We do not use cookies, analytics tools, tracking technologies or third-party marketing services.

We only collect personal data that you voluntarily provide through:

(a) Contact forms

  • Name
  • Email address
  • Phone number (optional)
  • Message content

(b) Direct email communication

If you email us, your message may contain additional personal information voluntarily provided by you.

(c) Technical data (minimal server logs)

Our hosting environment automatically generates basic server logs for security reasons:

  • IP address
  • Date and time of access
  • Pages requested
  • Browser type and device information

These logs are not used for analytics or profiling.

  1. Purpose of Processing

We process your personal data solely for the following purposes:

  • To respond to enquiries and communicate with you
  • To schedule appointments or provide requested information
  • To manage and secure our website (server logs)
  • To comply with legal obligations

We do not use your data for advertising, profiling or automated decision-making.

  1. Legal Basis for Processing

For EU and UK users:

We process data based on:

  • Art. 6(1)(b) GDPR – performance of a contract or steps prior to entering a contract
  • Art. 6(1)(f) GDPR – legitimate interests (website security, server operation)
  • Art. 6(1)(c) GDPR – legal compliance
  • Art. 6(1)(a) GDPR – consent (when you submit a form)

For Thailand (PDPA):

Processing is based on:

  • Consent, when submitting forms
  • Legitimate interest, for security and site operation
  1. How We Store and Protect Your Data

We store your data securely on servers located in Thailand or the region.
We implement safeguards including:

  • Secure server environments
  • Access controls
  • Encryption where appropriate
  • Limited internal access based on role

We do not sell, rent or trade your personal data under any circumstances.

  1. Data Sharing

We only share personal data when necessary and lawful:

  • With medical staff or administrative personnel for scheduling
  • With service providers who host or maintain our website
  • When required by Thai law (e.g., health authorities, legal obligations)

We do not transfer personal data to advertising networks, analytics providers or social media platforms.

If data is transferred outside the EU/UK, appropriate safeguards under GDPR/UK-GDPR apply.

  1. Data Retention

We retain personal data only for as long as necessary:

  • Contact form submissions: up to 12 months unless required for the provision of medical services
  • Emails: as long as needed to respond and comply with legal obligations
  • Server logs: up to 90 days for security and operational purposes

Medical records (if applicable) are stored according to Thai healthcare regulations.

  1. Your Rights

Depending on your jurisdiction, you may have the following rights:

Under EU GDPR / UK GDPR

  • Right of access
  • Right to rectification
  • Right to erasure
  • Right to restriction
  • Right to data portability
  • Right to object
  • Right to withdraw consent
  • Right to lodge a complaint with a supervisory authority

Under Thailand PDPA

  • Right to access
  • Right to rectification
  • Right to erasure
  • Right to withdraw consent
  • Right to restrict processing
  • Right to complain

Requests can be submitted to: info@thelotusazure.com

  1. Children’s Data

Our website and services are not intended for persons under 18.
We do not knowingly collect data from minors.

  1. External Links

Our website may contain links to external sites.
We are not responsible for their privacy practices or content.

  1. Changes to This Policy

We may update this Privacy Policy when necessary.
Any changes will be published on this page with an updated date.

  1. Contact

For privacy-related questions, please contact:

THE LOTUS AZURE CENTRE FOR MEDICAL COMPANY LIMITED
Email: info@thelotusazure.com
Phone: +66 2-1171801