Legal

Privacy Policy.

Last updated: April 23, 2026

1. Who We Are

TradeScope Asia ("we", "us", "our") operates tradescopeasia.com, a service providing Thailand import data reports. This Privacy Policy explains what information we collect when you use our website or purchase our products, how we use it, and the rights you have over it.

2. Information We Collect

We collect only the minimum information necessary to operate our service:

  • Email address — provided during Stripe checkout, used to send your download link and respond to support.
  • Company / organisation name — required at checkout so we can license and stamp the delivered report files to the purchasing company. Stored with your order and embedded into delivered PDF + CSV files for license tracking.
  • Tax / VAT / GST ID (optional) — collected if you choose to provide it during Stripe checkout, so it can appear on your invoice for reverse-charge or input-credit accounting.
  • Billing country and address — collected by Stripe at checkout for payment processing, fraud prevention, and tax-relevant records.
  • Payment information — processed entirely by Stripe. We never see or store your card details.
  • Technical logs — our hosting provider (Cloudflare) automatically logs basic technical data such as IP address, user agent, request time, and URL. These logs are used to operate the website, defend against attacks, and diagnose errors.
  • Contact correspondence — if you email us, we retain the content of your message and your email address to respond.
  • Site usage — we use privacy-minimal Google Analytics 4 to understand which products and company profiles are viewed, which search surfaces return company results, which sample reports are opened, which buy buttons are clicked, where customers abandon checkout, and which campaigns lead to purchases. IP addresses are anonymised, ad-personalisation storage is denied, and we do not send customer email, customer name, license ID, download token, private report URL, raw search terms, full billing address, tax ID, or payment details to Google or any other analytics platform. See Cookies and similar identifiers below for the specific cookies used.

Cloudflare may set essential security cookies (e.g., __cf_bm) to protect against bots. Where required by law, we will ask for consent before using non-essential cookies or marketing technologies.

3. Legal Basis for Processing

If you are in the European Economic Area, United Kingdom, or a jurisdiction with similar laws, we rely on the following legal bases to process your personal data:

  • Contract performance — to process your purchase, deliver your report, and provide support (email, company / organisation name, order records).
  • Legitimate interests — to operate, secure, and improve our website, prevent fraud and abuse, and defend against attacks (technical logs, security cookies).
  • Legal obligations — to comply with applicable accounting, tax, and anti-fraud laws.

4. How We Use Your Information

  • To process your purchase and deliver your report via email.
  • To generate a secure, time-limited download link.
  • To embed your company / organisation name, order ID, license ID, and other license identifiers into delivered PDF, CSV, ZIP, and license files for license tracking and customer support.
  • To respond to support inquiries.
  • To operate, maintain, and secure our website.
  • To prevent fraud, abuse, or violations of our Terms of Service.
  • To comply with legal obligations.

We do not send marketing newsletters or promotional emails. We do not sell your personal data to anyone. If we later use advertising or conversion-tracking tools (such as Google Ads, LinkedIn Insight, or Meta Conversions API), we will configure them to avoid sending customer names, emails, license IDs, download tokens, private report URLs, full billing addresses, tax IDs, or payment details. Delivered files may include company name, order ID, license ID, report ID, report version, purchase date, watermark, footer notice, embedded metadata, or other licensee-specific identifiers — used to support license enforcement and customer support, not for marketing.

5. Third-Party Services

We use the following third-party services to operate:

  • Stripe — payment processing (Stripe Privacy Policy)
  • Cloudflare — hosting, CDN, email routing, and secure file storage (Cloudflare Privacy Policy)
  • Resend — transactional email delivery (Resend Privacy Policy)
  • Google Analytics 4 — privacy-minimal site analytics (Google Privacy Policy). Configured with IP anonymisation, ad-personalisation storage denied, and Google signals disabled. We never send customer email, name, company, license ID, download token, or report contents to Google. See Cookies below for the specific identifiers used.

Each of these providers processes personal data on our behalf in accordance with their own privacy practices. We do not share your personal information with any other third parties.

Cookies and similar identifiers

We use a small number of first-party cookies and identifiers. None are used for cross-site advertising or remarketing.

  • Cloudflare bot mitigation (__cf_bm, and similar) — set by Cloudflare to distinguish humans from automated traffic. Strictly necessary for security; expires within 30 minutes of inactivity.
  • Google Analytics (_ga, _ga_<id>) — set in your browser to count visits and measure anonymous funnel behaviour (which products and company profiles are viewed, which company search result counts are returned, which sample reports are downloaded, which buy buttons are clicked). Retention up to 13 months. No customer email, name, company, raw search term, tax ID, license ID, download token, or report contents is sent to Google.
  • Stripe — Stripe sets cookies on its own checkout pages (checkout.stripe.com, buy.stripe.com) to operate payment, fraud prevention, and 3D Secure. These are governed by Stripe's privacy policy linked above. We do not set Stripe cookies on our own domain.

Where required by law, we will ask for explicit consent before using non-essential cookies or marketing technologies (such as remarketing pixels, ad-network conversion tags, or third-party trackers). We do not currently use any of those.

6. Data Storage and Retention

We retain personal data only for as long as necessary:

  • Order records — retained for approximately seven years for accounting, tax, and support purposes, in line with standard business record-keeping obligations.
  • Download tokens — time-limited. Tokens expire 14 days after purchase and can be used up to 10 times, after which the associated download link no longer works.
  • Technical logs — retained by Cloudflare for a short period (typically days to weeks) in accordance with their standard retention.
  • Support correspondence — retained for a reasonable period to handle follow-up questions and disputes, then deleted.

You may request earlier deletion of your personal data by contacting us (see Section 14).

7. Security

We take reasonable technical and organisational measures to protect your information, including encryption in transit (HTTPS), restricted access to order records, and the use of reputable infrastructure providers. However, no online service can guarantee absolute security. You use the website at your own risk.

8. International Transfers

Our services operate on global infrastructure provided by Cloudflare, Stripe, and Resend. As a result, your personal data may be processed in multiple jurisdictions, including countries outside your country of residence. These providers maintain their own safeguards for international data transfers, including standard contractual clauses where applicable. By using our services, you acknowledge this processing.

9. Your Rights

Depending on where you live, you may have the following rights regarding your personal data:

  • Access — request a copy of the personal data we hold about you.
  • Correction — request correction of inaccurate or incomplete data.
  • Deletion — request deletion of your personal data, subject to legal obligations that require us to retain it.
  • Portability — receive a copy of your data in a structured, machine-readable format.
  • Restriction — ask us to limit how we process your data.
  • Objection — object to processing based on legitimate interests.
  • Withdraw consent — where processing is based on consent, withdraw that consent at any time.

To exercise any of these rights, contact us at info@tradescopeasia.com. We will respond within 30 days.

If you are in the European Economic Area, United Kingdom, or a similar jurisdiction, you also have the right to lodge a complaint with your local data protection authority if you believe we have not handled your data properly.

10. Rights of Companies Named in Reports

TradeScope Asia reports contain matched company identities and derived estimates of commercial import activity by named businesses. If you represent a company that appears in one of our reports, you may have rights under applicable data protection laws (including Thailand's Personal Data Protection Act and similar regimes) in addition to the rights listed above.

To request suppression, correction, access, or other action regarding how your company appears in our reports, please use our dedicated Takedown & Correction Requests channel. That page explains what we can and cannot do, how long requests typically take, and what information we need to process them.

If we approve a suppression or correction request, the change will apply to future regenerated reports, future deliveries, and online materials under our direct control. We cannot recall, delete, or control copies of reports that have already been downloaded or retained by customers or other third parties.

11. Automated Decision-Making

We do not make any decisions about you based solely on automated processing, including profiling, that produce legal or similarly significant effects.

12. Children

Our services are intended for business use and are not directed at individuals under 18. We do not knowingly collect personal data from children.

13. Changes to This Policy

We may update this policy from time to time. The current version will always be available at this URL, and the "Last updated" date at the top will reflect the most recent change.

14. Contact

For privacy-related questions or to exercise your rights, contact us at info@tradescopeasia.com.