Cybersecurity and Data Privacy
Goals
Number of data breaches, thefts, or losses involving customer/stakeholder data
Number of cybersecurity or data protection complaints submitted to regulatory bodies
Performance Highlights
Our Commitment
In today’s digital age, where technology plays a pivotal role in business operations, AP (Thailand) Public Company Limited places strong emphasis on cybersecurity and personal data protection. These priorities are central to building and maintaining trust among our customers, business partners, employees, and all stakeholders.
Safeguarding information is not only essential for protecting our IT systems from cyber threats, but also serves as a foundation for reliable and responsible business practices. Similarly, the protection of personal data ensures that customer and employee information is managed accurately, lawfully, and with integrity. At AP Thailand, we are committed to implementing robust cybersecurity and data protection measures that align with international standards and relevant legal requirements. Our goal is to ensure that all critical data is protected in a secure, transparent, and auditable manner — reinforcing stakeholder confidence and supporting the long-term sustainability of our business.
Supporting the SDGs Goals
Stakeholders Directly Impacted
Challenges and Opportunities
The digital transformation of the real estate industry has significantly increased challenges related to cybersecurity, particularly cyberattacks such as data leaks or theft of personal data, which can immediately impact customer trust and the Company’s reputation. In addition, the enforcement of the Personal Data Protection Act B.E. 2562 (PDPA) in Thailand has tightened compliance requirements for personal data protection. As a result, the Company must implement stringent and up-to-date measures to effectively manage such data.
Nevertheless, these challenges also present opportunities for investment in advanced cybersecurity systems and the continuous development of personnel capabilities through ongoing training. Enhancing the ability to prevent and respond to cyber threats significantly strengthens trust among customers and other stakeholders.
Moreover, the compliance with the PDPA not only helps the Company reduce risks related to legal action and regulatory requirements, but also creates a competitive advantage by enabling market expansion among customer segments that place high importance on data privacy.
Management Approach and Value Creation
AP Thailand is committed to ensuring cybersecurity and the protection of customers’ and stakeholders’ personal data. The Company implements stringent measures to safeguard information against various threats in the digital age. Data security and privacy have become key priorities, serving as critical strategies for building trust and maintaining the stability of the Company’s business operations.
The Company continuously assesses risks related to data security, implementing international standards for cybersecurity management. This includes deploying threat prevention systems such as anti-phishing tools and protection against cyberattacks, ensuring that customer and stakeholder data is fully safeguarded.
Cybersecurity
AP Thailand places the highest importance on maintaining the security of cyber data, recognizing the risks in the digital era that may affect information related to customers, employees, partners, and all stakeholder groups. The Company has therefore developed and adopted Cybersecurity and Data Privacy practices in alignment with international standards to ensure comprehensive and effective data management.
AP Thailand has implemented high-security information technology systems, such as firewalls, data backup, and data encryption, along with Penetration Test to ensure effective cyber threat prevention.
In addition, the Company has introduced Cyber Insurance to manage risks from unexpected incidents. To foster a culture of cybersecurity, AP Thailand has developed cybersecurity awareness training programs, including Phishing Mail prevention, and regularly conducts online knowledge assessments for all employees.
Personal Data Protection
AP Thailand places the utmost importance on personal data protection for customers, employees, partners, and all stakeholders. The Company strictly complies with the Personal Data Protection Act B.E. 2562 (PDPA) and adheres to international standards to promote trust in the transparency and security of its data management practices.
The Company has appointed a Data Protection Officer (DPO) and established a specialized task force to oversee compliance with PDPA regulations. Policies and operational guidelines have been clearly defined, covering the collection, use, disclosure, and storage of personal data.
Additionally, AP Thailand has widely communicated its Personal Data Protection Policy to employees, partners, and business affiliates. The Company also promotes understanding of data subjects’ rights, such as the right to access, rectify, delete, and withdraw consent, aligning with legal principles and human rights standards.
Privacy Protection in Residential Living
AP Thailand places the highest importance on safeguarding customer privacy in residential living, considering it a core principle in the design and management of the Company’s projects under the concept of “Safe, Transparent, and Trustworthy Living.” The Company has implemented strict data management systems for residents and homeowners to ensure that personal information, such as contact details, payment information, and usage of various services within the project, is protected in accordance with legal and international standards.
The Company employs high-standard security technologies, such as data encryption, access control, and regular data backups. The Company has also developed a residential data management system designed in compliance with the Personal Data Protection Act (PDPA) and aligned with guidelines from relevant regulatory authorities.
Moreover, AP Thailand places great importance on designing residential project spaces that support residents’ privacy. This includes the layout of common areas, installation of security systems, and control over access to both data and physical areas by outsiders. The Company integrates privacy considerations into every aspect of residents’ quality of life.
