Privacy Policy

Select your country to see the relevant policy.

Kids Compass Privacy Policy

Thailand PDPA Compliant · Last Updated: 3 June 2025

This Privacy Policy explains how Every One Venture Company Limited, a company incorporated in Thailand ("Kids Compass", "we", "our", "us"), collects, uses, stores, discloses, transfers, and protects personal data belonging to users ("you", "your"), including parents, guardians, children, and providers.

We respect your privacy and process your personal data in accordance with the Personal Data Protection Act B.E. 2562 (2019) of Thailand (PDPA).

By using our website, mobile applications, or services ("Platform"), you acknowledge that you have read and understood this Privacy Policy.

Quick navigation: Parents and guardians — Sections 1–6, 9–15. Providers — Sections 1–5, 7–8, and 13–15. Children's data — Section 6.

1. Who We Are

Every One Venture Company Limited (trading as Kids Compass) provides a digital marketplace that helps parents discover, book, and manage children's classes and activities offered by independent schools, centres, tutors, and instructors ("Providers").

Kids Compass is not a school or childcare operator. Providers deliver the activities, and we facilitate listings, bookings, and payments.

2. Who This Policy Applies To

This Privacy Policy applies to:

  • Parents and guardians
  • Children whose data is submitted by their parent or guardian
  • Providers and their staff
  • Visitors browsing the Platform
  • Anyone who creates an account or interacts with our services

3. Personal Data We Collect

We collect personal data in several ways:

A. Data You Provide to Us

1. Parent / Guardian Data

  • Full name
  • Email address
  • Phone number
  • Password (stored in encrypted form)
  • Home district / preferred locations
  • Profile photo (optional)
  • Payment and billing details
  • Communication preferences

2. Child Data (provided with parental consent)

  • Child's name
  • Age or date of birth
  • Gender (optional)
  • Allergies, medical conditions, behavioural notes (optional — classified as Sensitive Personal Data under the PDPA)
  • Preferences for activities
  • Attendance data

3. Provider Data

We collect the following data from Providers to enable listing, booking, payment processing, and tax compliance:

  • Business name, registered address, phone number, and email address
  • Owner or authorised representative name and identification details
  • Instructor names and profiles
  • Bank account details (for settlement payments)
  • Tax identification number (TIN) and VAT registration number (if applicable)
  • Business licences or certifications (if required by applicable law)
  • Commission rates, settlement records, and payout history
  • Withholding tax (WHT) records and PND.53 certificate data
  • Content uploaded to the Platform (photos, videos, class descriptions, logos, instructor bios)

4. Content You Submit

  • Reviews, photos, and ratings
  • Messages to Kids Compass or to Providers through the Platform
  • Support requests
  • Survey responses

B. Data Collected Automatically

When you use the Platform, we automatically collect:

  • IP address
  • Device type and unique device identifiers
  • Browser type and mobile operating system
  • Geolocation (if enabled)
  • App activity logs, session duration, and interaction with screens and features
  • Click behaviour

We also use cookies and tracking technologies (see Section 11).

C. Data Received from Third Parties

We may receive data from:

  • Social logins (Google, Facebook, Apple)
  • Payment processors
  • Providers (e.g., attendance or incident notes, photos shared via the feedback feature)
  • Marketing partners
  • Analytics providers

We do not buy personal data from external sources.

4. How We Use Personal Data

We use data only for purposes permitted under the PDPA:

A. To Provide and Improve Our Services

  • Create and manage user accounts
  • Process bookings and payments
  • Recommend classes based on preferences
  • Display schedules and availability
  • Send reminders and notifications
  • Improve app functionality and user experience

B. To Enable Provider Services

We share necessary information with Providers so they can deliver the class:

  • Child name and age
  • Parent's contact information
  • Attendance status
  • Special instructions (if the parent provided them)

C. Payment Processing and Financial Administration

We use Provider financial data to:

  • Collect payments from parents on behalf of Providers
  • Calculate and disburse monthly settlement payments to Providers
  • Deduct and remit 3% Withholding Tax (WHT) to the Thai Revenue Department on the Provider's behalf
  • Issue PND.53 Withholding Tax Certificates to Providers after each payout period
  • Calculate and remit 7% VAT on platform commissions
  • Maintain payout records and tax documentation required by Thai law

D. Communication

We send:

  • Booking confirmations
  • Class reminders
  • Safety or schedule updates
  • Support responses
  • Service announcements

With consent, we may also send:

  • Marketing messages
  • Promotions or offers
  • Provider advertising

Users may opt-out of marketing communications at any time.

E. Safety, Security & Compliance

  • Detect fraud or misuse
  • Verify accounts
  • Comply with legal obligations
  • Respond to law enforcement requests

F. Analytics & Improvement

  • Measure app performance
  • Identify trends
  • Conduct research
  • Develop new features

5. How We Share Personal Data

Kids Compass shares data only when necessary and in compliance with the PDPA.

A. With Providers

For confirmed bookings, Providers receive:

  • Child name and age group
  • Booking details
  • Parent's contact information

Providers must adhere to the PDPA and cannot use parent or child data for marketing unless the parent explicitly consents.

B. Service Providers (Data Processors)

Examples include:

  • Cloud hosting providers
  • Payment processors (e.g., Omise Thailand)
  • SMS and email providers
  • Customer support tools
  • Analytics platforms

All processors must comply with the PDPA and can only process data based on our instructions.

C. Thai Revenue Department

We share Provider tax identification and payment data with the Thai Revenue Department as required by law, including WHT remittance and VAT filings.

D. Legal or Regulatory Authorities

We disclose data only when required by Thai law or a valid court order.

E. Business Transfers

If Kids Compass undergoes a merger or acquisition, data may transfer to the new owner, subject to PDPA protections.

F. With Your Consent

We will never share children's data for marketing without explicit parental consent.

6. Children's Privacy

A. Parental Consent is Mandatory

Kids Compass does not knowingly collect data from children directly. All child data must be provided by a parent or guardian.

B. Sensitive Personal Data

If you provide medical, allergy, or behavioural information about your child, you consent to Kids Compass processing this data so Providers can deliver safe experiences.

C. Rights Over Child Data

Parents may access, correct, or delete their child's data, or withdraw consent at any time, through their account or by contacting us at contact@kidscompass.co.

7. Photography & Media

A. Feedback Feature — Photos Uploaded to the Platform

Providers may upload photos or short videos of class activities through the Kids Compass feedback feature to share progress updates with parents.

When media is uploaded to the Kids Compass Platform:

  • Only the parents of children enrolled in that class can view the media
  • Kids Compass controls and is responsible for this data
  • Media is not shared publicly or used for marketing without separate explicit consent

Parents who wish to remove photos or videos uploaded to the Kids Compass Platform may contact us at contact@kidscompass.co. We will action removal requests within a reasonable time.

B. Media Uploaded Directly by Providers to Their Own Channels

If a Provider separately uploads photos or videos to their own website, social media, or other channels (outside the Kids Compass Platform), that media is controlled by the Provider, not Kids Compass.

Parents who wish to have media removed from a Provider's own channels must contact the Provider directly. Kids Compass has no authority over media held outside our Platform.

C. Consent

By enrolling your child in a class, you consent to activity photos being shared with you through the Kids Compass feedback feature, as described above. You do not consent to public use of your child's image for marketing purposes unless you separately and explicitly agree to this.

You may withdraw your consent to the feedback feature at any time by contacting us at contact@kidscompass.co.

8. Provider Content Licence

By registering as a Provider and uploading content to the Platform, Providers grant Every One Venture Company Limited a non-exclusive, royalty-free licence to use Provider content, including:

  • Images and videos
  • Class descriptions
  • Logos and branding materials
  • Instructor names and bios

This content may be used for:

  • Marketing and promotional materials
  • Platform listings and search results
  • Social media and digital advertising
  • App store listings and website content

Kids Compass stores and processes this content as part of its ordinary platform operations. Provider content will be removed from active marketing use within a reasonable time following termination of a Provider's account. Residual copies in backups will be deleted in accordance with our standard retention schedules.

9. Credits & Membership Data

Kids Compass may offer credit-based plans, monthly memberships, class bundles, and promotional passes. In connection with these services, we collect and store:

  • Purchase history and transaction records
  • Credit balances and remaining usage
  • Credit expiry dates and plan details
  • Promotional credit conditions and restrictions
  • Membership status and renewal history

This data is used to administer your plan, apply credits to bookings, and provide you with accurate account information. It is retained for the duration of your account and for any period required by Thai tax or consumer protection law after closure.

10. Data Security

We use industry-standard technical and organisational safeguards, including:

  • Encryption in transit and at rest
  • Access controls and authentication
  • Secure data centres
  • Monitoring and intrusion detection
  • Staff training on PDPA compliance
  • Regular security reviews and audits

However, no system is completely secure. In the event of a personal data breach, Kids Compass will notify affected users and the PDPC as required by Thai law.

11. Cookies & Tracking Technologies

We use cookies and similar technologies to:

  • Remember preferences
  • Improve functionality
  • Analyse usage
  • Deliver personalised content
  • Enable essential platform features

Users can manage cookie preferences through their browser settings. A separate Cookie Policy is available on request.

12. Data Transfers Outside Thailand

If data is transferred or stored outside Thailand (e.g., on international cloud servers), Kids Compass ensures:

  • Adequate protective measures are in place
  • Transfers are based on PDPA-approved mechanisms
  • Contracts requiring the recipient to protect the data to PDPA standards

13. Data Retention

We retain personal data only as long as necessary:

  • Account data: kept until deletion is requested
  • Booking and payment records: minimum period required by Thai law and tax regulations
  • Child data: deleted upon parent request or account closure
  • Provider tax records (WHT certificates, VAT invoices, settlement records): retained for the period required by the Thai Revenue Department
  • Credits and membership records: retained for the duration of the account and any legally required period thereafter

If deletion is not immediately possible (e.g., data held in encrypted backups), data will be isolated and securely deleted at the next available opportunity.

14. Your Rights Under the Thailand PDPA

You have the following rights:

  • Right to Access — Request a copy of your personal data
  • Right to Correct — Ask us to fix inaccurate or incomplete data
  • Right to Delete — Request deletion, unless retention is required by law
  • Right to Withdraw Consent — For any processing based on consent
  • Right to Data Portability — Request transfer of your data to another provider
  • Right to Object — To certain types of processing or profiling
  • Right to Restrict Processing — Temporarily limit our use of your data
  • Right to Lodge a Complaint — With Thailand's Personal Data Protection Committee (PDPC)

To exercise any of these rights, contact us at contact@kidscompass.co.

15. Marketing & Communication Preferences

You may opt-out of marketing at any time by:

  • Clicking "unsubscribe" links in emails
  • Replying "STOP" to SMS messages
  • Updating your account settings in the App
  • Contacting us directly at contact@kidscompass.co

Service-related notifications (booking confirmations, safety alerts, tax certificates) cannot be disabled.

16. Third-Party Links

The Platform may contain links to third-party websites. Kids Compass is not responsible for their privacy practices. We encourage you to review their policies separately.

17. Data Protection Officer (DPO)

Under the Thailand PDPA and the PDPC Notification effective December 2023, a Data Protection Officer must be appointed where the core activities of an entity involve regular monitoring of personal data on a large scale, or where the primary activity involves processing Sensitive Personal Data.

Because Kids Compass processes children's sensitive personal data (including medical, allergy, and behavioural information) as a core part of its service, we have appointed a Data Protection Officer.

You may contact our DPO for any privacy-related matter at:

Data Protection Officer

Every One Venture Company Limited (Kids Compass)

Email: contact@kidscompass.co

18. Updates to This Privacy Policy

We may update this Privacy Policy periodically. Changes will be posted with a new "Last Updated" date.

If changes are significant, we will notify users via:

  • Email
  • App notifications
  • Banner alerts on the Platform

Continued use of the Platform after updates means you accept the revised Privacy Policy.

19. Contact Information

If you have questions, wish to exercise your PDPA rights, or have a privacy concern, please contact us:

Every One Venture Company Limited (trading as Kids Compass)

Email: contact@kidscompass.co

For DPO-specific enquiries: contact@kidscompass.co

Note: This policy is written in English. In the event of any conflict between this English version and any translated version, the English version shall prevail to the extent permitted by applicable Thai law.