1 Information We Collect

When you work with LeapProStart for mobile app testing services, we collect different types of information to provide you with effective debugging solutions. Here's exactly what we gather and why we need it.

Information You Provide Directly

• Contact details including your name, email address, and phone number
• Company information and project specifications
• App source code, testing requirements, and technical documentation
• Communication preferences and service customization requests
• Payment information processed through secure third-party providers

Technical Information We Automatically Collect

• Device information including operating system, browser type, and screen resolution
• App performance metrics, crash logs, and debugging data during testing
• Usage patterns within your applications during our testing process
• IP addresses and general location data for security purposes
• Cookie data and website interaction analytics when you visit our site

2 How We Use Your Information

Every piece of information we collect serves a specific purpose in delivering quality mobile app testing services. We don't use your data for unrelated marketing or sell it to third parties.

Legitimate Business Purposes

We use your information to provide contracted services, maintain security, comply with legal obligations, and improve our testing methodologies. This includes analyzing common bugs across projects to enhance our debugging tools - but always with identifying information removed.

3 Information Sharing and Disclosure

We operate on a strict need-to-know basis when it comes to sharing your information. Your app data and business details are treated as confidential trade information.

When We May Share Information

• With your explicit written consent for specific purposes
• To trusted subcontractors who sign confidentiality agreements
• When legally required by Thai courts or regulatory authorities
• To protect against fraud, security threats, or legal violations
• During business transitions, with equivalent privacy protections

Third-Party Service Providers

We work with carefully vetted partners for cloud storage, payment processing, and specialized testing tools. These providers access only the minimum data necessary and operate under strict contractual privacy obligations equivalent to our own standards.

4 Data Security Measures

Security isn't just a checkbox for us - it's fundamental to maintaining trust with clients who share sensitive app code and business information.

Technical Safeguards

• AES-256 encryption for data at rest and TLS 1.3 for data in transit
• Multi-factor authentication required for all team member access
• Regular security audits and penetration testing every six months
• Isolated testing environments that prevent data cross-contamination
• Automated backup systems with encrypted off-site storage

Operational Security

Our team members undergo background checks and sign comprehensive confidentiality agreements. We maintain detailed access logs, conduct quarterly security training, and use time-limited access tokens for all client data interactions.

5 Your Rights and Choices

You maintain significant control over your personal information and how we use it. These rights are enforceable, and we've built straightforward processes to honor your requests.

Your Privacy Rights Include

• Access: Request copies of all personal data we hold about you
• Correction: Update inaccurate or incomplete information
• Deletion: Request removal of your data when legally permissible
• Portability: Receive your data in a structured, machine-readable format
• Restriction: Limit how we process your data in specific circumstances
• Objection: Opt out of certain types of data processing

How to Exercise Your Rights

Contact us at help@leap-prostart.com with your specific request. We'll verify your identity and respond within 30 days with either the requested action or an explanation of any limitations. Most requests can be processed immediately, but some may require additional time for complex data retrieval.

6 Data Retention and Deletion

We don't keep your data indefinitely. Our retention schedule balances your privacy interests with legitimate business needs and legal requirements.

Standard Retention Periods

• Project files and source code: Deleted 90 days after final deliverable
• Communication records: Retained for 2 years for service quality purposes
• Financial records: Kept for 5 years as required by Thai accounting law
• Marketing preferences: Maintained until you opt out or request deletion
• Security logs: Automatically deleted after 1 year unless investigating incidents

Secure Deletion Process

When we delete your data, we use secure deletion methods that prevent recovery. This includes overwriting storage locations multiple times and physically destroying any backup media that contained your information. We can provide certification of deletion upon request for sensitive projects.

7 International Data Transfers

While LeapProStart operates primarily in Thailand, some of our cloud infrastructure and specialized testing tools are located in other countries. We ensure equivalent privacy protections regardless of where your data is processed.

Transfer Safeguards

• Standard contractual clauses with all international service providers
• Adequacy decisions recognized by Thai privacy authorities where applicable
• Enhanced encryption during cross-border data transmission
• Regular compliance audits of international partners
• Data localization options for clients with specific requirements

If you prefer to keep all data processing within Thailand, we offer localized service options. This may affect some advanced testing capabilities that rely on international tools, but we'll work with you to find suitable alternatives.

8 Thailand-Specific Privacy Rights

As a company operating in Thailand, we comply fully with the Personal Data Protection Act (PDPA) and related regulations. Thai residents have additional protections under local law.

PDPA Compliance Measures

• Appointed Data Protection Officer available at dpo@leap-prostart.com
• Regular privacy impact assessments for new services and data processing
• Consent management systems that meet PDPA requirements
• Breach notification procedures aligned with Thai regulatory timelines
• Staff training on PDPA requirements conducted quarterly

9 Children's Privacy Protection

LeapProStart's services are designed for business clients and app developers over 18. We don't knowingly collect personal information from children under 13, or under 20 in Thailand where parental consent laws apply.

If you're developing apps for children and need specialized testing that involves minor users, we require additional safeguards including parental consent documentation, data minimization protocols, and enhanced deletion procedures. Contact us to discuss child-safe testing methodologies.

10 Policy Updates and Changes

Privacy laws and our business practices evolve over time. When we update this policy, we'll notify active clients via email and post changes prominently on our website.

How We Handle Changes

• Minor updates: 30-day advance notice via email
• Significant changes: 60-day notice plus opt-in consent for new data uses
• Emergency updates: Immediate notification with explanation of urgency
• Archived versions: Previous policy versions available upon request

We maintain a change log of policy modifications dating back to our company founding. If you need historical policy information for compliance purposes, we can provide documentation of what privacy terms applied during your service period.