Privacy Policy

PT Adhyoka Berkah Maju (“IDRP”, “we”, “our”, or “us”) is firmly committed to upholding the confidentiality, integrity, and lawful processing of Personal Data belonging to individuals (“Data Subjects”) in accordance with applicable data protection regulations.

IDRP acknowledges that data protection law is an evolving regulatory landscape. Accordingly, this Privacy Policy shall be reviewed and amended periodically in line with:

1. Any changes in the PDP Law as they are promulgated;
2. Regulatory guidance or circulars issued by competent supervisory authorities;
3. Judicial interpretations or administrative rulings affecting the implementation of data protection obligations; and
4. Technological developments or changes in our data processing activities.

We commit to maintaining full legal compliance, ensuring data subject rights, and applying the highest standards of data governance.

For the purposes of this Privacy Policy, the following terms shall have the meanings assigned to them below. These definitions are intended to provide clarity regarding the rights, obligations, and responsibilities arising in connection with the Processing of Personal Data by the Company and its authorized third parties.

1. Personal Data means any data, in any form, that identifies or can be used to identify a natural person either directly or indirectly.
2. Processing means any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, including but not limited to the collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.
3. Data Subject means any identified or identifiable individual whose Personal Data is processed by the Company.
4. Controller refers to IDRP, which determines the purposes and means of processing Personal Data.
5. Processor means any natural or legal person, public authority, agency, or other body which processes Personal Data on behalf of the Controller, pursuant to a valid data processing agreement.
6. Cookies means are small files, typically composed of letters and numbers, placed on your computer, tablet, phone, or similar device. These files enable our servers to recognize your web browser, informing us about the timing and manner of your visits to our Site and Services.

This section outlines the scope of Personal Data collected by the Company, the methods of collection, and the types of data gathered. By engaging with the Services provided by the Company, you acknowledge and consent to the collection of your Personal Data as detailed below:

1. Collection of Personal Data
   

   The Company collects Personal Data through various channels and methods. These include instances when you directly provide information to us, when our business partners or service providers share your Personal Data, and when Personal Data is automatically collected as part of your interactions with our Services. These channels enable the Company to enhance the Services we offer and tailor them to your needs.

2. Information Directly Provided by You
   

   We collect Personal Data directly from you when you provide it to us. This may include, but is not limited to, account-related information such as your full name, email address, phone number, and any other Personal Data you provide when you communicate with us, register for our Services, or otherwise engage with us.

3. Automatic Data Collection
   

   As you use the IDRP Service, certain Personal Data is automatically collected to enhance your experience and ensure the proper functioning of the Services. This data includes information such as your IP address, web browser details, operating system, pages you visit, and links you click. In addition, cookies and other usage data are automatically collected to analyze and improve our Services. Moreover, any Personal Data you provide during communication with our customer service representatives or through direct interactions is also captured, with the understanding that only essential information should be shared for effective communication.

4. Data Not Collected
   

   In respecting your privacy, there are specific types of information that we deliberately do not collect when you use IDRP Services, this includes browsing history outside of the services, social media profiles, cookies for targeting and marketing. It's important to understand that while accessing or using IDRP Service, we may utilize information from your web browser, device settings, and unique identifiers. This is done solely to provide you with Services and information that are relevant and tailored to your needs in a reliable and accurate manner.

5. Authorization for Providing Others' Personal Data
   

   When supplying us with the Personal Data of others, you confirm that you have the necessary authority to do so. It's important to note that any information about third parties that you share with us during your use of the Services is your responsibility, and we disclaim any responsibility for such information provided by you.

6. f. Third-Party Services
   

   Please be aware that this Privacy Policy does not extend to third-party services. If you access third-party services through our IDRP platform, we encourage you to review the privacy policies of those third parties to understand how your Personal Data is managed. The Company is not responsible for the practices of third-party services.

To ensure transparency and to uphold the principles of lawfulness, fairness, and accountability under applicable data protection laws, this section sets out how IDRP utilizes Cookies and similar technologies in relation to the Services.

1. Purpose of Using Cookies
   

   The primary purpose of these Cookies is to enable, optimize, and analyze the performance and functionality of our Services, including improving user navigation and maintaining session integrity.

2. No Use for Targeted Advertising
   

   We affirm that Cookies employed by IDRP are not used for profiling or behavioral advertising purposes. We do not leverage Cookies to serve targeted ads, nor do we combine Cookie data with Personal Data received from third-party sources for marketing or promotional targeting.

3. Absence of Similar Technologies
   

   Technologies such as pixel tags, web beacons, clear GIFs, and JavaScript are not employed by us to track or identify you.

4. Types of Cookies
   

   Cookies can be categorized as either “session Cookies” (temporary files stored while you are using our Site or Services) or “persistent Cookies” (files stored on your device for a duration after leaving our Site or Services). The duration of persistence varies from one Cookie to another.

5. Use of Persistent Cookies
   

   Persistent Cookies are used to maintain a more accurate record of your visit frequency, return frequency, and variations in your use of the Services over time. However, we do not utilize persistent Cookies to gauge the effectiveness of advertising efforts or to collect information about your online activity after leaving our Services.

6. Do Not Track Option
   

   Some browsers offer a “Do Not Track” (DNT) option, allowing you to signal your preference not to be tracked across different websites. As our Services collect browsing and persistent identifier data, we currently do not support Do Not Track requests. Consequently, information about your online activity may be collected while using the Services, but we refrain from collecting such information after you leave our properties.

7. Third-Party Cookies
   

   We do not exercise control over third-party Cookies. While some Cookies may be placed by third parties on your device, we neither collect nor use the information derived from such Cookies. Your privacy and control over your online experience remain our priority.

We employ Essential Cookies to deliver specific features or services that you have explicitly requested. These Cookies play a critical role in ensuring the smooth functioning of essential functions, including:

1. Secure Area Access: Enabling you to log into secure areas of our Site or Services, ensuring that your interactions with sensitive information remain protected.
2. Preference Maintenance: Facilitating the retention of your preferences over time, ensuring a personalized and consistent experience during your visits.
3. User Recognition: Recognizing you when you return to our Services, streamlining the user experience by remembering your previous interactions and settings.

Important Note:
Disabling these Essential Cookies may result in the unavailability of certain features and services. It is essential to keep these Cookies enabled to ensure the smooth and secure functioning of the requested features, maintaining the integrity of your preferences and recognizing you across your interactions with our Services.

We do not utilize the following types of Cookies:

• Performance/Analytical Cookies.
• Retargeting/Advertising Cookies.

The decision to accept or reject Cookies is within your control. You can manage this through your internet browser's settings. Most browsers include an option to disable the Cookie feature, preventing your browser from accepting new Cookies. Depending on your browser's capabilities, you may also have the ability to decide on the acceptance of each new Cookie in various ways. Additionally, you can delete all Cookies already stored on your computer.

However, be aware that disabling Cookies may require manual adjustment of preferences each time you visit a site, and certain services and functionalities may be impacted. To explore available Cookie settings, check the “preferences” or “options” section of your browser's menu. For more information about Cookies, including guidance on how to manage and delete them, please visit:

• https://ico.org.uk/for-the-public/online/cookies/ or
• https://allaboutcookies.org/

In compliance with applicable data protection laws and regulations, this section outlines the lawful bases upon which IDRP relies to process Personal Data.

1. Consent
   We may process your Personal Data based on your explicit, informed, and freely given consent. Where consent is the legal basis, you have the right to withdraw such consent at any time without affecting the lawfulness of the processing conducted prior to such withdrawal.
2. Performance of a Contract
   The processing of Personal Data may be necessary for the performance of a contract to which you are a party, or to take steps at your request prior to entering into such a contract. This includes processing required for the delivery of our Services and the fulfillment of our contractual obligations.
3. Compliance with Legal Obligations
   We may process your Personal Data where such processing is necessary for compliance with a legal obligation to which we are subject. This includes, but is not limited to, obligations under applicable laws relating to anti-money laundering (AML), counter-terrorism financing (CTF), tax reporting, and regulatory reporting.
4. Legitimate Interests
   We may also process Personal Data where it is necessary for the purposes of the legitimate interests pursued by IDRP or by a third party, provided that such interests are not overridden by your fundamental rights and freedoms. These interests may include fraud prevention, internal administrative purposes, network security, and ensuring the proper functioning of the Services.
5. Protection of Vital Interests
   In limited circumstances, we may process Personal Data where it is necessary to protect the vital interests of you or another natural person, particularly in urgent or emergency situations that threaten life, health, or safety.
6. Public Interest or Official Authority
   Where permitted or required under applicable law, we may process Personal Data in the exercise of official authority or in the performance of a task carried out in the public interest.

This section delineates the purposes for which IDRP processes your Personal Data, in accordance with applicable data protection laws. The processing activities outlined below are undertaken in good faith and are grounded on one or more of the lawful bases described in the previous section. Your Personal Data shall only be used to the extent necessary to achieve the following purposes:

1. Verifying and establishing your account.
2. Processing and fulfilling product or service purchases.
3. Protecting against fraudulent or harmful actions.
4. Communicating updates, offers, and relevant information.
5. Customer Service and Technical Support.
6. Identifying trends for business improvement.
7. Complying with legal or contractual obligations.
8. Responding to inquiries, fulfilling requests, resolving disputes.
9. Enforcing our Terms and Conditions.

We explicitly state that we do not engage in the buying or selling of user data. In the event of any data transfer, rest assured that it will be carried out in strict adherence to established privacy standards.

At IDRP, we're committed to safeguarding your information. Here's a straightforward breakdown of how and with whom we share your data:

1. Trusted Partnerships: We share only necessary information with partners like cryptocurrency exchange service providers, hosting services, email providers, and others, adhering to strict requirements.
2. Legal Compliance: When required by law or for security reasons, we may share your data with relevant authorities.
3. Safeguarding IDRP and Users: In scenarios such as enforcing our policies or preventing fraud, we might share data to protect IDRP and our users.
4. Communication Essentials: Anticipate emails and messages from us related to your use of our services.
5. Business Transitions: In the event of business changes, data may transfer to entities upholding privacy policies similar to ours. Upholding your rights and privacy is paramount to us. Any future changes will maintain the same commitment to safeguarding your data.

IDRP prioritizes the security and storage of User Personal Data, implementing rigorous measures to uphold confidentiality. We seek to protect Personal Data using appropriate technical and organizational measures based on the type of Personal Data and applicable processing activity. Content uploaded or sent by Users through IDRP Service is securely stored and transmitted, adhering to industry standards for electronic information security. IDRP upholds stringent information security standards, boasting ISO 27001:2013 certification for Information Security Management Systems and ISO 27701:2019 certification for Privacy Information Management Systems.

We maintain your Personal Data as long as your account remains active or for the duration necessary to furnish our Services, unless you initiate a request for deletion (refer to the section below). In certain instances, we may preserve Personal Data for extended periods to meet legal obligations, settle disputes, recover owed fees, or adhere to applicable laws, rules, or regulations. Subsequently, we retain some information in a depersonalized or aggregated manner, eliminating any personal identification.

We do not knowingly collect or solicit Personal Data from anyone under the age of 18. If you are under the age of 18, you are not allowed to use the Services. Please refrain from accessing or using the Site or the App, and do not attempt to send us any Personal Data. If we confirm that we have inadvertently collected Personal Data from an individual under 18, we will promptly delete that information.

IDRP acknowledges and respects your rights concerning your Personal Data, as outlined by applicable laws and regulations. You possess the following rights:

1. Revocation of Consent:
   You have the right to revoke your consent for IDRP to process, disclose, and/or store your Personal Data.
   Upon revocation, IDRP will promptly delete/destroy your Personal Data and cease further Processing.
2. Access Request:
   You can request and obtain a copy of your Personal Data stored in your IDRP Account. Access and data copy processes will comply with applicable laws and regulations.
3. Change Request:
   You have the right to change, correct, add, update, complete, and/or rectify any errors or inaccuracies in your Personal Data within the IDRP system. Basic Data changes require notification to IDRP, while other categories can be updated through the IDRP Application.
   Change requests for email addresses and/or phone numbers require your verification through biometric data. IDRP may request supporting documents and/or verify changes following established procedures. Implementation of change requests will adhere to applicable laws and regulations.
4. Removal Request:
   You can request IDRP to cease processing, delete, and/or destroy your Personal Data from the IDRP system. Prior to processing, you must fulfill IDRP's verification requirements. IDRP reserves the right to inquire about reasons for deleting Personal Data. Deletion of Basic Data results in the closure of your IDRP Account. Implementation of removal requests aligns with applicable laws and regulations.

IDRP may reject your requests if:

1. The request is irrelevant to your stored Personal Data, particularly if seeking data of another party without valid authority.
2. Execution of your requests is prohibited by competent authorities and/or IDRP's internal policy based on applicable laws and regulations.

You hereby agree to release, hold harmless, indemnify, and defend IDRP, including any officers, directors, employees, or agents of IDRP from and against any and all requests, claims, losses, liabilities, costs, damages, and expenses (including but not limited to legal fees and indemnity expenses) resulting directly or indirectly from:

1. Any loss due to Personal Data that is intercepted, accessed, stolen, disclosed, altered, or destroyed by an unauthorized Third Party, due to factors beyond IDRP's control and/or contrary to this Privacy Policy and the applicable laws and regulations, including those resulting from your error or negligence;
2. The security and confidentiality of Personal Data that have undergone Processing, Disclosure, and/or storage by you to the public or Third Parties, whether the Processing, Disclosure, and/or storage are conducted by you or any party other than IDRP, and such Processing, Disclosure, and/or storage occurs not due to the negligence and/or fault or IDRP in protecting your Personal Data;
3. All risks and/or consequences arising from your negligence and/or personal errors committed by you in maintaining the security and confidentiality of your Personal Data; and/or;
4. All consequences arising from the utilization of any media and/or application that you employ to Disclose, Process, and/or store your Personal Data, including, among other things, internet networks and cloud storage services.

1. These Terms of Use are governed and construed in accordance with the laws of the Republic of Indonesia.
2. Users and IDRP mutually agree that any disputes arising from or related to the matters stipulated in this Privacy Policy, including disputes related to this Privacy Policy, will be resolved by reference to the applicable laws and regulations, especially those concerning personal data protection.

In the event that these Privacy Policy are displayed in a variety of language choices and there is a discrepancy between one language and another, the Indonesian text will prevail.

All notifications from IDRP to Users will be disseminated through our Site, electronic mail (email), or short message service (SMS). Users can submit any notifications related to this Privacy Policy or Personal Data to IDRP through the designated email address: info@idrp.io

1. IDRP has the right to review and change this Privacy Policy from time to time to ensure its alignment with the evolving nature of the IDRP Service and any alterations in applicable laws and regulations. Users will be informed about these changes through our site.
2. User understands and agrees that users are responsible for regularly reviewing this Privacy Policy to stay informed about any updates or modifications.