Can electronic contracts be concluded in Thailand? Is DocuSign legally valid? Is there a license requirement for crypto-related businesses? In 2025, a significant regulatory change occurred: capital gains from crypto sold through licensed exchanges became income-tax exempt. In this final installment, we analyze the Electronic Transactions Act and digital asset regulations from a statutory perspective, and close the series with a practical digital compliance checklist for Japanese companies.
← Vol. 5: Thailand’s Cyber Laws
Part 1: Electronic Transactions Act B.E. 2544 (2001, amended 2019)
Legal Validity of Electronic Signatures — Section 9
Section 9 of the Electronic Transactions Act B.E. 2544 provides:
“An electronic signature is deemed legally equivalent to a handwritten signature if it is agreed upon by the parties and found to be reliable.”
This is the foundational provision for the legal validity of electronic signatures in Thailand — analogous to the lawful basis provisions in data protection law.
Requirements for “Reliable Electronic Signatures” (Section 26)
For an electronic signature to carry the full legal weight of a handwritten signature, Section 26 sets out four reliability requirements:
① Identifiability of the signatory: The electronic signature must be uniquely linked to a specific signatory ② Verifiability of signatory creation: It must be possible to verify that the signature was created by the signatory (e.g., through private key management) ③ Tamper detection of the signature: Post-signature changes to the signature must be detectable ④ Tamper detection of the data message: Changes to the signed document (data message) must be detectable
ETDA-Certified Electronic Signature Services
Under Section 28, ETDA accredits “Trust Service Providers (TSPs).” Electronic signatures generated by ETDA-accredited TSPs are strongly presumed to satisfy the Section 26 reliability requirements.
Is DocuSign Valid in Thailand?
This is one of the most frequently asked practical questions.
Legal conclusion (current practical interpretation): DocuSign, Adobe Acrobat Sign, and similar services that meet the technical requirements for electronic signatures (PKI infrastructure, timestamping, audit trails) may be interpreted as satisfying the “reliable electronic signature” requirements under Section 9.
Key caveats:
- Non-ETDA-certified services: In the event of a dispute, courts must assess “reliability” on a case-by-case basis
- High-value or significant contracts (real estate, long-term licensing agreements): Consider using an ETDA-certified TSP
- Contracts governed by Thai law: Explicitly confirming validity under Thai law is important before relying solely on a foreign e-signature service
Evidentiary Value of Electronic Data — Sections 11–12
Section 11: Electronically stored data carries the same legal effect as a written document. Section 12: For evidentiary purposes, electronic data must be stored in a reliable digital format that preserves its integrity.
Practical implication: Email exchanges, electronic contracts, and electronic receipts are admissible as evidence in Thai courts, provided they have been maintained in a tamper-evident format over the long term.
Formation of Electronic Contracts
Section 23: An electronic contract is formed at the point at which the offer and acceptance arrive in the recipient’s computer system (receipt rule — analogous to Japan’s Civil Code).
Click-wrap agreements (clicking “I agree”) and browse-wrap agreements (implied consent by website use) are generally considered valid under Section 23, though enforceability in specific circumstances may depend on how clearly the terms are presented.
Comparison with Japan’s Electronic Signatures Act
| Element | Thailand Electronic Transactions Act | Japan Electronic Signatures Act |
|---|---|---|
| E-signature validity | Section 9 (equivalent to handwritten) | Article 3 (presumption of authentic document) |
| Reliability requirements | Section 26 (four criteria) | Criteria for presuming the principal signed |
| Certification system | ETDA-accredited TSPs | Accredited Certification Service Providers |
| Evidentiary value | Sections 11–12 | Electronic Signatures Act / Civil Procedure Act |
| Presumption effect | No explicit presumption (courts assess individually) | Article 3: Presumed to be an authentic document based on signatory’s intent |
Part 2: Emergency Decree on Digital Asset Business B.E. 2561 (2018)
Regulatory Definitions — Crypto vs. Digital Tokens
The Emergency Decree on Digital Asset Business B.E. 2561 defines “Digital Assets” in two categories:
① Cryptocurrency Digitally generated and stored tokens used as means of payment, exchange, or value storage. Bitcoin, Ethereum, and similar assets are typical examples.
② Digital Tokens
- Utility Tokens: Tokens conferring future rights to acquire goods or services
- Security Tokens: Tokens conferring investment return or asset ownership rights
Key distinction: Security Tokens are subject to securities regulation (Securities and Exchange Act) in addition to the Digital Asset Decree. Even Utility Tokens require SEC notification via an ICO portal for large-scale public offerings.
Six License Categories
Engaging in digital asset business requires SEC license application:
| License Type | Covered Business |
|---|---|
| Digital Asset Exchange | Operating a digital asset trading marketplace |
| Digital Asset Broker | Intermediating digital asset transactions on behalf of clients |
| Digital Asset Dealer | Trading digital assets on proprietary account |
| Digital Asset Fund Manager | Managing and operating digital asset funds |
| Digital Asset Advisor | Providing digital asset investment advice |
| Digital Asset Custodian | Safekeeping and managing clients’ digital assets |
Prohibition on unlicensed business: Operating any of the above without a license → up to 5 years’ imprisonment + up to 500,000 baht fine.
ICO Regulation — SEC Notification and ICO Portal System
To conduct an ICO in Thailand:
① Route through an SEC-approved ICO portal (intermediary) ② The ICO portal files the SEC notification and registration ③ Prepare and disclose a whitepaper
Direct ICOs without routing through an approved ICO portal are prohibited.
Stablecoin Official Approval (March 2025)
In March 2025, the SEC formally approved USDC (Circle) and USDT (Tether) for legal use only through transactions conducted via licensed digital asset exchanges.
Transactions involving USDC/USDT through unlicensed exchanges or over-the-counter (OTC) channels remain problematic.
Prohibition on Using Crypto as a Payment Means
The SEC prohibits using cryptocurrencies (Bitcoin, etc.) as a means of payment for goods and services as a general principle. Crypto assets are recognized as trading and investment instruments, but not as everyday payment means under Thai regulatory policy.
Capital Gains Tax Exemption (January 2025 – December 2029)
From January 1, 2025 through December 31, 2029, capital gains from crypto asset sales conducted through licensed exchanges approved by Thailand’s Revenue Department (RD) are exempt from personal income tax.
Conditions: Gains must arise from sales through RD-approved, SEC-licensed exchanges. OTC transactions, peer-to-peer transactions, or sales through unlicensed exchanges do not qualify.
Comparison with Japan’s Payment Services Act and FIEA
| Element | Thailand Digital Asset Decree | Japan Payment Services Act / FIEA |
|---|---|---|
| Crypto exchange registration | SEC licensing | FSA registration |
| Utility Tokens | Notification via ICO portal | May qualify as ETRI under FIEA |
| Security Tokens | SEC notification + securities regulation | Securities under FIEA |
| Use as payment | Generally prohibited | Permitted (Payment Services Act) |
| Capital gains taxation | Tax exemption 2025–2029 | Miscellaneous income (up to 55% marginal rate) |
Series Summary — All Six Laws at a Glance
| Vol. | Theme | Key Laws / Bills | Authority | Status |
|---|---|---|---|---|
| 1 | Overview | 7 laws + 2 draft bills | Various | 7 enacted |
| 2 | PDPA | Personal Data Protection Act B.E. 2562 | PDPC | Effective June 2022 |
| 3 | AI Regulation | Draft AI Law | ETDA/AIGC | Draft principles stage |
| 4 | E-Commerce | Trade Competition Act B.E. 2560 / Draft PEA | TCCT/ETDA | Enacted / bill in progress |
| 5 | Cyber Laws | Cybersecurity Act / Computer Crime Act / Tech Crimes Decree | NCSA/MDES | Enacted |
| 6 | E-Trans / Crypto | Electronic Transactions Act / Digital Assets Decree | ETDA/SEC | Enacted |
Digital Compliance Priority Checklist for Japanese Companies
① [All companies — essential] PDPA Compliance
- Privacy policy in Japanese, English, and Thai
- Lawful basis assessment for each data processing activity
- DPO appointment necessity determination
- Data breach response procedure (72-hour notification process)
- DPA with AI vendors
- Cross-border transfer mechanisms (BCR/SCC) for Japan HQ ↔ Thai subsidiary data flows
② [All companies — essential] Computer Crime Act Compliance
- IT system access logs retained for 90+ days
- Procedure for handling takedown requests for illegal content
- Awareness of “false information” risks in social media and marketing
③ [IT infrastructure companies] Cybersecurity Act Compliance
- Assessment of CII operator designation (8 sectors)
- Compliance with national cybersecurity standards
- Incident response plan and BCP
- Monitor Draft Amendment for cloud/data center impacts
④ [E-commerce businesses] TCCT Guideline Compliance
- Review platform contracts (MFN clauses, logistics coercion)
- Maintain records of fee change notifications
- Transaction data backup (data portability)
⑤ [AI-deploying companies] AI × PDPA Guideline Compliance
- Disclose AI use in privacy policy
- Notification procedure for automated decision-making
- DPA with AI vendors (linked to item ①)
- Monitor Draft AI Law (high-risk AI applicability)
⑥ [Electronic contract users] Electronic Transactions Act Compliance
- Verify ETDA accreditation status of current e-signature service
- Consider ETDA-certified TSP for high-value/long-term contracts
- Long-term archiving of electronic records (evidence admissibility)
⑦ [Crypto-related businesses] Digital Asset Decree Compliance
- Assess license requirements for business model (6 categories)
- Confirm SEC notification process for any ICO activities
- Verify stablecoin transactions are through licensed exchanges
- Confirm eligibility for capital gains tax exemption (2025–2029)
Closing — Consulting on Digital Legal Compliance
Thank you for following this six-part series on Thailand’s Digital Laws. Thailand’s digital legal landscape is evolving rapidly — the enactment of the AI law and Platform Economy Act, and the amendment of the Cybersecurity Act are among the significant changes anticipated in 2026–2027.
Our firm advises on building digital compliance frameworks under both Japanese and Thai law: PDPA compliance, AI-related legal risk assessment, e-contract validity confirmation, and more. We also engage in research on AI-assisted legal services. Please feel free to contact us.
Full Series Links
| Volume | Title |
|---|---|
| Vol. 1 | Complete Map of Thailand’s Digital Laws |
| Vol. 2 | PDPA Enforcement, Eagle Eye Monitoring & AI Nexus |
| Vol. 3 | Reading Thailand’s Draft AI Law |
| Vol. 4 | Thailand’s E-Commerce Regulations |
| Vol. 5 | Thailand’s Cyber Laws |
| Vol. 6 (this article) | Electronic Signatures, Crypto Regulation + Series Summary |
Related Individual Articles
- Thai AI Regulation 2026
- Thailand’s New E-Commerce Regulations
- Thailand PDPA Practical Guide 2026
- Thailand’s Sexual Harassment Law Reform (December 2025)
This article is for general informational purposes about Thailand’s legal system and does not constitute legal advice under Thai law. For specific matters, please consult a Thai-qualified legal professional. Our firm works in collaboration with JTJB International Lawyers’ Thai-qualified attorneys.