1. Who We Are
PT. Digicorp Solusi Internasional ("Digicorp", "we", "us", or "our") is a limited liability company incorporated under Indonesian law, providing enterprise IT services including managed infrastructure, cloud solutions, security, and software development. Our registered office is located in Batam, Kepulauan Riau, Indonesia.
This Privacy Policy explains how we collect, use, disclose, and protect personal data in accordance with Undang-Undang No. 27 Tahun 2022 tentang Perlindungan Data Pribadi (UU PDP) and other applicable Indonesian regulations.
2. Information We Collect
2.1 Information you provide directly
- Name, job title, and employer name
- Business email address and phone number
- Company address and NPWP (tax identification number) where required for invoicing
- Messages, enquiries, and support tickets submitted through our website or helpdesk
- Contractual information in service agreements
2.2 Information collected automatically
- IP address and browser user-agent string
- Pages visited, time on page, and referral URL
- Cookie identifiers (see Section 9)
2.3 Information from third parties
We may receive basic professional information (name, company, role) from LinkedIn or other professional directories when you contact us through those platforms.
3. How We Use Your Information
- To respond to enquiries and provide quotations
- To deliver and manage contracted IT services
- To issue invoices and fulfil tax-reporting obligations under Indonesian law
- To provide technical support and communicate service updates
- To send service-related communications and, where you have opted in, marketing materials
- To improve our website and service offerings through aggregated analytics
- To comply with legal obligations and lawful requests from authorities
4. Legal Basis for Processing
Under UU PDP, we process personal data on one or more of the following bases:
- Consent — where you have given explicit consent, e.g. to receive marketing communications
- Contractual necessity — to perform a contract to which you are party or to take pre-contractual steps at your request
- Legal obligation — to comply with applicable Indonesian laws and regulations
- Legitimate interests — where our interests (e.g. security monitoring, fraud prevention, service improvement) are not overridden by your rights and freedoms
5. Sharing of Information
We do not sell personal data. We may share your information with:
- Service providers — hosting providers, payment processors, accounting software, and communication platforms acting as data processors under written agreements
- Technology vendors — where required to deliver contracted services (e.g. Microsoft, Veeam, VMware) under their respective data-processing terms
- Professional advisors — lawyers, accountants, and auditors bound by confidentiality obligations
- Authorities — government agencies, courts, or regulators when required by law or lawful order
- Business transfers — in the event of a merger, acquisition, or asset sale, subject to standard confidentiality commitments
6. Data Retention
We retain personal data for as long as necessary to fulfil the purposes described in this Policy, or as required by Indonesian law (including tax and commercial record-keeping requirements under Undang-Undang No. 36 Tahun 2008 and related regulations). In practice:
- Client and contractual records: 10 years from the end of the service relationship
- Invoice and financial records: 10 years per tax-law requirements
- Marketing contact records: 3 years from last interaction, or until consent is withdrawn
- Website log data: 12 months on a rolling basis
7. Your Rights
Under UU PDP, you have the right to:
- Request access to personal data we hold about you
- Request correction of inaccurate or incomplete data
- Request deletion of your data, subject to our legal-retention obligations
- Withdraw consent at any time, without affecting the lawfulness of prior processing
- Object to processing based on legitimate interests
- Request restriction of processing in certain circumstances
- Lodge a complaint with the relevant Indonesian data-protection authority
To exercise any right, contact us at privacy@digicorp.co.id. We will respond within 14 business days. We may request identity verification before fulfilling a request.
8. Security
We implement technical and organisational measures proportionate to the sensitivity of personal data, including encrypted data transmission (TLS), access controls, and regular security reviews. No method of transmission over the internet is completely secure; we cannot guarantee absolute security but are committed to protecting your information in accordance with applicable standards.
In the event of a personal data breach that poses a significant risk, we will notify affected individuals and the relevant authority in accordance with UU PDP timelines.
9. Cookies
Our website uses only essential cookies required for core functionality (e.g. language preference). We do not currently deploy third-party advertising or behavioural tracking cookies. You may configure your browser to block or delete cookies; this may affect certain site features.
10. Cross-Border Transfers
Some of our service providers operate infrastructure outside Indonesia. Where personal data is transferred internationally, we ensure appropriate safeguards are in place — such as standard contractual clauses or adequacy decisions — consistent with UU PDP requirements.
11. Changes to This Policy
We may update this Policy from time to time. Material changes will be communicated via our website or by email where we have your contact details. Continued use of our services following notice of changes constitutes acceptance of the updated Policy.
12. Contact Us
For privacy-related enquiries, data-subject requests, or complaints: