Version 1.3
Updated on 29/02/2024

The purpose of this privacy policy (“Privacy Policy”) is to inform you (“You”, “The User”, or “Data Subject”) how we collect your personal data, how we control, process, handle and protect your personal data or information while you are browsing or using this website, rights and obligations, and other terms and conditions as explained below. If you do not agree to the following privacy policy, you may wish to cease viewing or using this website and/or refrain yourself from submitting your personal data to us. We may collect and use your personal data in accordance with the purposes as detailed below. By agreeing our privacy policy, you agree to the collection and use of data in accordance with this policy.

Legal basis for collecting and processing personal data

Our legal basis for collecting, using, and processing any personal data described in this Privacy Policy depends on the personal data we collect and the specific context in which we collect the data.

Currently the legal basis of this Privacy Policy are as follows:

Law No. 1 of 2024 on the Second Amendment to Law No. 11 of 2008 on Electronic Information and Transactions;
Law No. 27 of 2022 on Personal Data Protection (PDP Law);
Consolidation of General Provisions and Tax Procedures Law After Law Number 7 of 2021
Law No. 11 of 2008 on Information and Electronic Transactions as amended by Law No. 19 of 2016;
Government Regulation No. 71 of 2019 on System Providers and Electronic Transactions;
Ministry of Communication and Informatics Regulation No. 4 of 2016 on Information Security Management System; and
Ministry of Communication and Informatics Regulation No. 20 of 2016 on Personal Data Protection in Electronics System;
Ministry of Communication and Informatics Regulation No. 5 of 2020 on Private Electronic System Organizer;
Ministry of Communication and Informatics Regulation No. 10 of 2021 on Amendment to the Ministry of Communication and Informatics Regulation No. 5 of 2020 on Private Electronic System Organizer;
Ministry of Communication and Informatics Regulation No. 11 of 2022 on Electronic Certification Implementation Governance.

We may add the above information in accordance with the development of law in Indonesia.

Our principles for processing personal data are:

Personal data collection is carried out in a limited and specific manner, legally valid, properly, and transparently.
Processing of personal data is carried out in accordance with its purpose;
Personal data processing is carried out by guaranteeing the rights of the personal data owner;
Processing of personal data is carried out accurately, whole, not misleading, updated, and can be justified;
Personal data processing is carried out by protecting the security of personal data from unauthorized access, unauthorized disclosure, unauthorized alteration, misuse, destruction and/or loss of personal data;
Personal data processing is carried out by notifying the purpose and processing activities, as well as failure to protect personal data;
Personal data is destroyed and/or deleted after the retention period ends or at the request of the personal data owner unless otherwise stipulated by laws and regulations; and
Personal data processing is carried out responsibly by fulfilling the implementation of the personal data protection principles and can be clearly proven.

Here are various reasons for which we might process your data, including but not limited to:

Utilizing our services;
Submitting an application to our company as a job seeker;
Opting to receive our company newsletter;
Ensuring compliance with the law; and
Necessitating payment processing.

PURPOSE OF DATA COLLECTION

We use the collected personal data for the below purposes:

To provide you with information regarding our services;
To screen candidate hiring process requirements;
To notify you about changes to our services and/or products;
To provide customer support;
To gather valuable analysis or information to improve our services;
To detect, prevent and address any technical issues; and
To contact you with marketing and promotional materials (newsletters, reminders, etc.) and other information that may be of interest to you (if you wish not to receive any of the materials, you can choose to unsubscribe).

In addition, we may use your personal data for other purposes that are disclosed to you at the time we collect the information with your consent. To ensure the security and privacy of your information, we kindly ask that you refrain from including any additional documents that we do not require.

SCOPE OF DATA THAT WE Collect

Personal data
Scope of personal data that we collect may include, but are not limited to:

Full name;
Gender;
Citizenship;
Religion;
Email address;
Phone number;
Curriculum Vitae;
Academic Transcript;
Address, city, province, state, ZIP code, country (location); and/or
Additional information and Personally Identifiable Information (PII) that can be used collectively to identify an individual.

Usage data

We also collect information on how our services are accessed and used. Usage data generally include the following but are not limited to: Internet Protocol (IP) address, browser type, device type, visited pages and visit period.

Cookies and tracking data

We use cookies and other tracking technologies, such as tags and scripts, to track the activities on our website pages and to hold certain information. The valuable information we gather is used to analyze and improve the quality of our services.

To ensure a seamless experience when browsing this website, you are required to accept cookies. However, you are also offered an option in which you can refuse all cookies or indicate when a cookie is being sent.

We use a cookie control system that allows you to accept cookies and control which cookies are saved to your device. Some cookies will be saved for specific periods, whereas others may last indefinitely. Your web browser should provide you with the controls to manage and delete cookies from your device.

DATA PROCESSING

We conduct data processing for our internal purposes. Data processing that we may perform are, but not limited to:

Acquisition and collection;
Processing and analyzing;
Storage;
Correcting and updating;
Displaying;
Announcing, transferring, distribution, or disclosure; and/or
Deletion or destruction.

RETENTION PERIOD of PErsonal DATA

Electronic documents are stored on authorized servers or document management systems with appropriate access controls. We will retain your personal data for a minimum of 5 (five) years based on Government Regulation No. 71 of 2019 on System Providers and Electronic Transactions, if there are no legal or statutory provisions to regulate it.

We will retain and use your personal data to the extent necessary to comply with our legal obligations, resolve disputes and enforce our policies.

YOUR Individual Data Protection Rights

You have the right to request information about the clarity of identity, the basis of legal interests, the purpose of the request and use of personal data, and our accountability.

You have the right to complete your personal data before we process it.

By written request:

You have the right to access your personal data in accordance with the prevailing laws and regulations.
You have the right to update and/or correct mistakes and/or inaccuracies of your personal data in accordance with the prevailing laws and regulations.
You have the right to end processing, delete and/or destroy your personal data.
You have the right to withdraw the consent for the processing of your personal data that has been given to us.
You have the right to object to decision-making based solely on automatic processing of a person’s profile (profiling).

You have the right to choose or not to choose the processing of personal data through a pseudonymous mechanism for certain purposes.

You have the right to postpone or limit the processing of Personal Data proportionally in accordance with the purposes for processing the Personal Data.

You have the right to get and/or use your personal data from us in a form that is in accordance with the structure and/or format commonly used or readable by electronic systems or hardware used in interoperability between electronic systems. We handle subject’s access requests in accordance with the law prevails in Indonesia. We ensure the security of any personal data we hold through data storage technologies that meets the Indonesian law compliance requirements.

Compliance with Law, Regulation,
and Law Enforcement Requests

We may release personal information to third parties to cooperate with government and law enforcement officials and private parties to enforce and comply with law:

To comply with legal requirements such as a law, regulation, search warrant, subpoena or court order;
When we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request; or
In special cases, such as in response to a physical threat to you or others, to protect property or defend or assert legal rights.

Data Transfer to Third Parties and Other Countries

As part of our commitment to transparency, we want to inform you that certain data you provide to us may be transferred to third-party vendors to fulfill specific business requirements. This includes personally identifiable information (PII) that may be necessary for various purposes, such as sending your data to our partner for project completion purposes. These third-party are contractually obligated to handle your information securely following applicable data protection laws.

In some cases, your PII may be transferred to other countries. This transfer may occur for purposes such as data backup and storage. For example, we utilize Microsoft servers located in the Asia Pacific region to securely store data and Google servers for our backup. Please note that these countries may not have the same data protection laws as Indonesia.

By using our services and providing us with your personal information, you consent to the transfer of your data to third-party vendors and other countries as described in this Privacy Policy clause.

Data Breach on Your Personal Information

We will notify you in the event of data breach in your personal information. The notification will be sent electronically within 24 hours the earliest since the event of data breach is discovered containing the reason and cause of why such data breach occurred. You hereby represent that you agree that such notification shall be sent electronically and that you have inform us the correct, active, and up-to-date email address for delivery of notification and account verification, therefore you agree that our notification to you regarding data breach can be deemed accepted upon the delivery date.

Changes to this Privacy Policy

We reserve the right to change or modify this privacy policy, terms, and condition, and any of our services as provided in our website at any time and any changes will be effective upon being posted unless we advise otherwise. If we make any material changes to this privacy policy, we will notify you by means of a notice on our website and/or by email to our registered users (if required) prior to the change becoming effective.

We encourage you to periodically review this privacy policy for the latest information on our privacy practices. If you do not accept the terms of this privacy policy, you have the right to not use our website or services whichever relevant.

For any inquiry, complaints, or request regarding your personal data that we manage, you may contact the respective Person In Charge (PIC) of your project, or email to:

ana@putranto-alliance.com

For any reporting regarding information security or personal data breach, you may contact our Data Protection Officer (DPO) at our dedicated email:

securityreport@putranto-alliance.com

Navigation

Have you found what you are looking for?