Legal
Privacy & Cookie Policy
How OnEveryMap, a brand of Marketing Bear Co., Ltd., collects, uses, and protects your personal data.Your data is processed under Thailand's Personal Data Protection Act (PDPA) B.E. 2562 and, where it applies, the GDPR. Use the contents list to jump to a specific clause, including how to manage your cookie consent and exercise your data rights.
1. Who We Are
OnEveryMap is a local search visibility platform operated by Marketing Bear Co., Ltd. (hereinafter "OnEveryMap", "we", "us", or "our"). Marketing Bear Co., Ltd. is the registered legal entity that acts as the data controller for the personal data described in this policy.
| Data Controller | Marketing Bear Co., Ltd. |
| Representative | Jan Rohweder, CEO & Founder |
| Trading as | OnEveryMap (a brand of Marketing Bear Co., Ltd.) |
| Registration no. | 0105558069374 |
| Registered address | Promphan Tower 3, 10th Floor, Room 1001–1002, Lad Prao Rd Soi 3, Chom Phon, Chatuchak, Bangkok 10900, Thailand |
| Website | oneverymap.com |
| hello@marketingbear.com | |
| Phone | 02 113 0123 |
2. Personal Data We Collect
2.1 Data you provide to us
When you contact us, request a demo, run a local presence audit, request a quote, or otherwise submit a form on this website, we may collect:
- Full name
- Business email address
- Phone number
- Company name and job title
- Business details, such as your locations, the platforms you use, and your visibility goals
- Any other information you voluntarily share in a message
2.2 Data collected automatically
When you visit our website we may collect, subject to your cookie consent:
- IP address (anonymised where possible)
- Browser type, language, and version
- Device type and operating system
- Pages visited, time spent, and click paths
- Referring URL / traffic source
- Cookie identifiers and session tokens
- UTM campaign parameters
2.3 Data from third parties
We may receive data about you from advertising and analytics platforms (Google, Meta, LinkedIn) and integration partners when you interact with our content on those platforms, subject to your cookie consent.
3. How We Use Your Data
We use the personal data we collect for the following purposes:
| Purpose | Legal Basis (PDPA) |
|---|---|
| Responding to your enquiries, demo, audit, and quote requests | Consent / Contract |
| Providing the OnEveryMap platform and related services | Contract |
| Sending service-related communications | Contract / Legitimate interest |
| Analysing website usage to improve user experience | Consent (analytics cookies) |
| Running advertising campaigns and retargeting | Consent (marketing cookies) |
| Complying with legal and regulatory obligations | Legal obligation |
| Fraud prevention and security | Legitimate interest |
| Sending marketing communications (with opt-in) | Consent |
4. Legal Basis for Processing (PDPA)
Under Thailand's Personal Data Protection Act B.E. 2562 (2019) ("PDPA") and, where applicable, the EU General Data Protection Regulation ("GDPR"), we process your personal data on the following legal bases:
Consent (PDPA Section 19)
Where we rely on consent, for example for analytics cookies, marketing cookies, or sending promotional emails, you have the right to withdraw consent at any time without affecting the lawfulness of prior processing. You can manage your cookie consent using the button in our footer, or unsubscribe from emails via the link in any email we send.
Contract (PDPA Section 24(3))
Where processing is necessary to enter into or perform a contract with you, for example when you sign up for or use the OnEveryMap platform, we process the minimum data required to fulfil that agreement.
Legitimate Interest (PDPA Section 24(5))
We may process certain data based on our legitimate interests, for example to prevent fraud, to analyse aggregate website performance, or to follow up on a business enquiry, provided those interests are not overridden by your fundamental rights.
Legal Obligation (PDPA Section 24(6))
We may process or retain data where we are required to do so by applicable law, such as for tax and accounting records.
7. International Data Transfers
Some of our service providers, including Google, Meta, LinkedIn, Cloudflare, and Mailgun, are based outside Thailand and may process your data in countries that may not provide the same level of data protection as Thailand. Where such transfers occur, we ensure appropriate safeguards are in place, such as:
- Standard contractual clauses approved by data protection authorities
- Vendor privacy frameworks (e.g., Google's Data Processing Terms)
- Adequacy decisions where applicable
8. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected:
| Data type | Retention period |
|---|---|
| Enquiry / form submissions | 3 years (or as required by law) |
| Customer contracts and correspondence | 7 years (Thai accounting obligation) |
| Website analytics data | 26 months (Google Analytics default) |
| Marketing / advertising data | 90 days |
| Consent records | 3 years after withdrawal |
| Strictly necessary cookies | Session or up to 12 months |
9. Your Rights Under the PDPA
Under the PDPA (Sections 30 to 43), you have the following rights with respect to your personal data. To exercise any of these rights, contact us using the details in Section 13. We will respond within 30 days.
Right to be Informed
Know what personal data we hold about you and how it is used.
Right of Access
Request a copy of the personal data we hold about you.
Right to Rectification
Request correction of inaccurate or incomplete data.
Right to Erasure
Request deletion of your data where there is no lawful basis to retain it.
Right to Restriction
Ask us to limit how we use your data in certain circumstances.
Right to Portability
Receive your data in a structured, machine-readable format.
Right to Object
Object to processing based on legitimate interest or for direct marketing.
Right to Withdraw Consent
Withdraw consent at any time without affecting prior processing.
You also have the right to lodge a complaint with the Office of the Personal Data Protection Committee (PDPC) of Thailand if you believe your data rights have been violated.
10. Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, disclosure, alteration, or destruction. These include TLS/HTTPS encryption, access controls, bot protection on our forms, and regular security reviews.
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the PDPC within 72 hours and notify affected individuals without undue delay, as required by the PDPA.
11. Children
Our website and services are directed at business professionals and are not intended for individuals under the age of 20. We do not knowingly collect personal data from minors. If you believe a minor has provided us with their data, please contact us immediately so we can delete it.
12. Changes to This Policy
We may update this Privacy & Cookie Policy from time to time. When we make material changes, we will update the "Effective" date at the top of this page and, where appropriate, notify you by email or via a notice on our website. We encourage you to review this policy periodically.
13. Contact & Data Controller
If you have any questions about this policy or wish to exercise your rights, please contact the data controller directly:
Data Controller: Marketing Bear Co., Ltd. (operating the OnEveryMap brand)
Representative: Jan Rohweder, CEO & Founder
Registration no.: 0105558069374
Address: Promphan Tower 3, 10th Floor, Room 1001–1002, Lad Prao Rd Soi 3, Chom Phon, Chatuchak, Bangkok 10900, Thailand
Email: hello@marketingbear.com
Phone: 02 113 0123
If your concern is not resolved to your satisfaction, you may contact the Office of the Personal Data Protection Committee (PDPC) of Thailand at pdpc.or.th.
For general enquiries you can also contact the OnEveryMap team in Bangkok, or see our legal notice and company information for the registered provider details.