TH
Security & Compliance

Your Data Security Is Our Foundation

Dooform is built from the ground up with enterprise-grade security and full compliance with Thai data protection regulations.

Security Pillars

Data Encryption

All data is encrypted at rest with AES-256 and in transit with TLS 1.3. Your documents and personal information are protected at every stage.

Access Control

Role-based access control ensures only authorized team members can view, edit, or export documents. Every action is logged.

Privacy by Design

We collect only the data necessary to provide our services. Data minimization and purpose limitation are core to our architecture.

Infrastructure

Hosted on ISO 27001-certified cloud infrastructure with automated backups, disaster recovery, and 99.9% uptime SLA.

Compliance & Standards

PDPA Compliance

Fully compliant with the Thailand Personal Data Protection Act (PDPA). We maintain lawful data processing, consent management, and data subject rights.

Data Retention Policy

Clear and configurable data retention periods per plan. Data is permanently deleted upon request or after the retention period expires.

Consent Management

Built-in consent tracking for document data collection. Users maintain full control over their data and can withdraw consent at any time.

Audit Trail

Complete audit logging of all document operations, access events, and administrative changes for compliance reporting.

Data Portability

Export all your data in standard formats at any time. We support your right to data portability as mandated by PDPA.

Incident Response

Documented incident response procedures with 72-hour notification to affected parties and regulators as required by law.

How We Protect Your Data

Every document passes through multiple layers of security from input to export.

01

Secure Input

Data is encrypted immediately upon submission via TLS 1.3. Input validation prevents injection attacks.

02

Encrypted Processing

Documents are processed in isolated environments. No data is shared across tenants or stored in logs.

03

Access-Controlled Storage

Completed documents are stored with AES-256 encryption and scoped access policies per organization.

04

Safe Export

Exports are generated on demand over encrypted channels. Temporary files are purged immediately after delivery.

Our Commitment to Trust

Security is not a feature we added — it is the foundation we built on. We continuously audit our systems, update our practices, and invest in protecting the data you entrust to us.

Get Started

Try for Free

Simply register and start filling in your data right away

RegisterAlready have an account?

By registering, you consent to the collection of your usage data.