Menu Close
Close
Get in Touch

Legal

Privacy Policy

How Punggawa Cybersecurity collects, uses, protects, and manages your personal information.

01

Introduction

PT Punggawa Siber Solusi (“Punggawa,” “we,” “us,” or “our“) is committed to protecting the privacy and security of your personal data. This Privacy Policy describes how we collect, use, disclose, and safeguard information when you visit our website at.punggawa.com, engage our services, or otherwise interact with us.

This policy applies to all individuals who access our website, submit enquiries, use our services, or attend our events. By using our website or services, you acknowledge that you have read and understood this Privacy Policy.

02

Information We Collect

We may collect the following categories of personal information:

Information you provide directly:

  • Name, job title, and organization
  • Email address, phone number, and business address
  • Information submitted through contact forms, consultation requests, or incident reports
  • Correspondence and communications with our team
  • Event registration details and feedback

Information collected automatically:

  • IP address, browser type, operating system, and device identifiers
  • Pages visited, time spent, referring URLs, and navigation patterns
  • Cookies and similar tracking technologies (see Section 9)

Information from third parties:

  • Publicly available business contact information
  • Information from technology partners or referral sources, with appropriate consent

03

How We Use Your Information

We use your personal information for the following purposes:

  • To respond to your enquiries, consultation requests, and incident reports
  • To deliver, manage, and improve our cybersecurity services
  • To send relevant security advisories, threat intelligence updates, and service communications
  • To process event registrations and provide related materials
  • To comply with legal and regulatory obligations
  • To maintain the security and integrity of our systems and website
  • To conduct analytics and improve our website experience

We will not use your personal data for purposes materially different from those stated above without providing notice and, where required, obtaining your consent.

04

Legal Basis for Processing

In accordance with applicable Indonesian data protection regulations, including Undang-Undang Perlindungan Data Pribadi No. 27 Tahun 2022 (UU PDP), we process personal data based on one or more of the following legal bases:

  • Consent — Where you have provided explicit consent for specific processing activities
  • Contractual necessity — Where processing is required to fulfil a service agreement
  • Legitimate interest — Where processing is necessary for our legitimate business interests, provided these do not override your rights
  • Legal obligation — Where processing is required to comply with applicable law or regulation

05

Information Sharing & Disclosure

We do not sell, rent, or trade your personal information. We may share your information in the following limited circumstances:

  • Service delivery partners — Trusted technology partners and subprocessors who assist in delivering our services, bound by confidentiality obligations
  • Legal requirements — When required by law, regulation, legal process, or government request
  • Security purposes — To protect against fraud, unauthorized access, or threats to our systems, clients, or the public
  • Business transfers — In connection with a merger, acquisition, or sale of assets, subject to continued protection of your data

06

Data Security

As a cybersecurity firm, we apply rigorous security measures to protect your personal data. These include encryption in transit and at rest, access controls based on the principle of least privilege, continuous monitoring, and regular security assessments aligned with industry frameworks including NIST CSF and ISO 27001.

While no method of transmission or storage is completely secure, we are committed to implementing and maintaining appropriate technical and organizational safeguards commensurate with the sensitivity of the data we process.

07

Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, to comply with legal obligations, to resolve disputes, and to enforce our agreements. When personal data is no longer required, we securely delete or anonymize it in accordance with our data retention policies.

08

Your Rights

Under the UU PDP and applicable data protection regulations, you have the right to:

  • Access — Request a copy of the personal data we hold about you
  • Correction — Request correction of inaccurate or incomplete personal data
  • Deletion — Request deletion of your personal data, subject to legal retention requirements
  • Restriction — Request restriction of processing in certain circumstances
  • Withdrawal of consent — Withdraw previously given consent at any time
  • Portability — Request transfer of your data in a structured, commonly used format
  • Objection — Object to processing based on legitimate interest grounds

To exercise any of these rights, please contact us using the details provided in Section 13 below. We will respond to your request within the timeframes prescribed by applicable law.

09

Cookies & Tracking Technologies

Our website uses cookies and similar technologies to enhance your browsing experience, analyze site traffic, and understand usage patterns. We use the following types of cookies:

  • Strictly necessary cookies — Required for the website to function properly
  • Analytics cookies — Help us understand how visitors interact with our website
  • Functional cookies — Enable enhanced functionality and personalization

You can manage your cookie preferences through your browser settings. Disabling certain cookies may affect the functionality of our website.

10

International Data Transfers

Your personal data is primarily stored and processed in Indonesia. In the event that data is transferred to another jurisdiction — for instance, through the use of cloud infrastructure or international service partners — we ensure that appropriate safeguards are in place to protect your data in compliance with UU PDP and applicable international standards.

11

Children's Privacy

Our website and services are not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected data from a minor, we will take prompt steps to delete such information.

12

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs. When we make material changes, we will post the revised policy on this page and update the effective date. We encourage you to review this policy periodically.

13

Contact Us

If you have questions about this Privacy Policy, wish to exercise your data protection rights, or need to report a privacy concern, please contact us:

PT Punggawa Siber Solusi

Data Protection Contact

Jl. Cempaka Putih Tengah I No 5F, Jakarta 10510, Indonesia

Email: [email protected]

Phone: +62 (81110) 127.0.0.1

Website: punggawa.com