SIMAHIR PRIVACY POLICY
1. Introduction
1.1 Welcome to SiMahir. We are a software house that builds custom software solutions, including web, mobile, and blockchain applications. Your privacy is important to us. This Privacy Policy outlines how we collect, use, and protect your personal data in accordance with Indonesia’s Personal Data Protection Law (UU PDP 2022).
2. Data We Collect
2.1 We may collect and process the following types of personal data:
- Full name, email address, and company information
- Project-related data and communication history
- Technical usage data such as IP address, device, and browser info
- Payment or invoicing information (excluding sensitive financial data)
- Any other data you voluntarily provide for project discussions or service delivery
3. How We Use Your Data
3.1 We use your personal data for the following purposes:
- Communicating with you about your project or inquiry
- Developing and delivering custom software solutions
- Managing payments, invoices, and contracts
- Improving our services and website performance
- Complying with legal and regulatory obligations under UU PDP 2022
4. Legal Basis for Processing Data
4.1 In accordance with UU PDP 2022, we process your personal data based on:
- Your explicit consent
- The necessity of processing for contractual or pre-contractual obligations
- Compliance with legal and regulatory requirements
5. Data Retention
5.1 We retain your personal data only for as long as necessary to fulfill the purposes stated above. After that, your data will be securely deleted or anonymized unless we are required to retain it by law.
5.2 To request deletion of your account data, follow the instruction here: simahir.com/data-deletion
6. Data Security
6.1 We implement robust technical and organizational measures to protect your data, including:
- Encryption, role-based access controls, and secure authentication
- Secure storage and backups on AWS servers located in Indonesia
- Internal security policies and staff training to minimize risks
7. Data Location & Compliance
7.1 All personal data is stored and processed on AWS cloud infrastructure located in Indonesia, ensuring compliance with UU PDP 2022 regarding data sovereignty.
8. Data Sharing and Third Parties
8.1 We do not sell or rent your personal data. We only share your data with trusted third parties when necessary to deliver our services:
- AWS for cloud hosting and data storage
- Other vendors or subcontractors involved in your project (with your consent)
8.2 All third-party access complies with UU PDP 2022 and is governed by strict data processing agreements.
9. Cookies & Tracking Technologies
9.1 We use cookies and similar tracking technologies for the following purposes:
- Maintain secure user sessions
- Remember user preferences
- Analyze usage and improve site performance
9.2 You can control cookies via your browser settings. Disabling cookies may affect website functionality.
10. Your Rights
10.1 Under UU PDP 2022, you have the right to:
- Request access to your personal data
- Update or correct your data
- Withdraw your consent at any time
- Request deletion of your data
- File a complaint with Kominfo if you believe your rights have been violated
11. Data Breach Notification
11.1 In the unlikely event of a data breach, we will promptly notify affected users and relevant authorities as required by UU PDP 2022, and take immediate action to contain and mitigate the issue.
12. Children’s Privacy
12.1 Our services are intended for business and professional use. We do not knowingly collect personal data from individuals under 18 years of age. If such data is discovered, it will be promptly removed.
13. Updates to This Privacy Policy
13.1 We may revise this Privacy Policy to reflect changes in legal requirements or our business operations. You will be notified of material updates via email or on our website.
14. Contact Us
14.1 If you have any questions about this Privacy Policy or how your data is handled, please contact us at:
- Email: info@simahir.com