Privacy Policy

Introduction

Privacy Policy ("Privacy Policy"): We ("Provider/cybernet.co.id") give special attention and concern to the privacy of your ("Customer") data and information.

For this reason, we will collect and use your personal/company data solely for the purpose of delivering notifications regarding products and services to your device.

The personal data we refer to includes:

• Name
• Address
• Billing and shipping information
• Phone number (mobile/office)
• Email
• Bank account details
• Internet Protocol (IP) Address
• And other data directly or indirectly related that can be used to identify you.

This ("Privacy Policy") explains what and how your personal data is collected and used by the Provider ("cybernet.co.id"). This policy also accommodates your ability to change, update, or take control of data processed by the Provider.

You may contact the Provider if you have questions regarding the data at support@cybernet.co.id. This email inbox is constantly monitored and checked at all times, allowing the Provider to respond to any inquiries and messages from you as quickly and promptly as possible.

Changes to Privacy Policy

This privacy policy ("Privacy Policy") may be changed and replaced at any time by the Provider for service development and quality improvement.

The "update/revision" date will be displayed as "last updated" located at the beginning and/or end of this policy.

If you do not agree with the content of this policy or changes to this document, then "do not use" or "continue using" if you agree.

Information We Collect

• Personal Information
  

  The Provider may collect your personal data and information online, via telephone, and through other documents you include when interacting with the Provider, whether through the website or social media.

  The types of your personal data and information may include, but are not limited to, IP address, name, address, phone number, date of birth, company establishment, billing and shipping information, email, company information, credit card, and bank account information.

• Non-Personal Data
  

  In addition to personal/company data, the Provider may also view and access other data, including but not limited to browsing history, tags, cookies, IP addresses, beacons, and other data accessed from various devices.

Use and Sharing of Customer Data

To guarantee customer comfort regarding their personal information and data, the Provider ("cybernet.co.id") implements a policy restricting the use of customer personal data, as follows:

• Use of Customer Information
  

  After the customer agrees to the terms and conditions of service use, the Provider manages the customer's personal data and information in ways that include, but are not limited to:

  • Sending notifications related to billing, order confirmations, customer service messages, and others.
  • Responding to customer requests for product information, services, and others.
  • Sending and processing survey applications.
  • Service provisioning process.
  • Sending marketing content and advertisements to customers.
  • Analyzing problems by identifying errors, security risks, and service improvements.
  • Detecting and preventing service abuse.
  • Collecting information to be processed into statistical data.
  • Analyzing customer habits in using services and determining the most relevant products.
  • Communicating with customers.
• Customer Data Transfer
  

  If customers using the service originate from and reside in a country or jurisdiction different from the Provider's, your activities will result in the transfer of personal data across international borders.

  When customers contact the Provider for technical support or other needs, customers outside the Provider's country jurisdiction will be handled under this policy.

• Sharing Customer Data
  

  For business and service development needs, the Provider has the right to share customer data with third parties within certain limits and under a new data security agreement with more specific terms.

  The following are three purposes for sharing customer data with third parties that may be conducted by the Provider:

  • Using customer personal data and information by the Provider for various business development projects that may involve third parties (partners/subcontractors).
  • Sharing customer personal data with third parties for the purpose of offers and tenders. Some data such as address, email, phone, and data unrelated to the offer will remain private.
  • Sharing customer data with law enforcement and authorized institutions to support the investigation process.
• Use and Sharing of Customer Email
  

  The use and utilization of customer email addresses and contacts will not involve third parties except for authorized law enforcement institutions.

Automatic Login via Facebook and Google

• To facilitate User login, the Provider provides automatic login facilities via Facebook and Google on the Customer's side.
• If the User logs in using the automatic login facility via Facebook and Google, the Customer is deemed to have agreed to provide the email and name data listed on the Facebook or Google account to the Provider.
• The email and name data used on the Facebook or Google account will be used by the Provider in the registration process.
• Changes to email and name data for Facebook or Google accounts can be made by sending an official notification request to the Provider.
• Customers can also delete registered Facebook or Google login integration data at the Provider by logging into the member area, then in the customer profile menu, go to and select the "Security Settings" menu and click the "Unlink" button.

Anti-Spam Policy

The Provider is committed to protecting customer email addresses and contacts, both personal and company, from unauthorized parties to prevent misuse and spam.

Customer Data Storage

The Provider may store customer personal data and information even when you decide to unsubscribe from the service.

The Provider is committed to maintaining and using customer personal data reasonably and in compliance with Indonesian ethics, norms, and legal regulations even after the customer's account has been deactivated.

However, customers can also submit a request for the deletion of all personal data and information in the system managed by the Provider ("cybernet.co.id").

Customer Age Restriction

No customer under the age of 18 is permitted to provide their personal data and information to the Provider.

The Privacy Policy is part of a binding agreement that has legal consequences.

However, if data or personal information from children under 18 is found later, it is unintentional.

Information Security Assurance

The Provider implements commercially reasonable steps and standard operational procedures (SOP) to help protect customers and the system managed by the Provider from unauthorized access, whether in the form of alteration, disclosure, or destruction of data.

However, there is no 100% guarantee regarding internet and digital security from potential threats.

Therefore, the Provider can only establish strict standards and agreements regarding the processing of customer data and information by third parties, especially partners.

Any form of unauthorized access to customer data and information will be subject to disciplinary sanctions and may very likely lead to civil lawsuits or reports to the authorities.

User ID & Password

Every ID and password provided by the Provider is the personal responsibility of the customer.

Unauthorized access conducted through official IDs and passwords is not the responsibility of the Provider, unless such access originates externally (hacking).

Access rights to the customer's client page will be protected as much as possible; however, if a data breach still occurs, it is beyond the Provider's control and authority.

Customer Data Changes

Changes to data and information can be made by sending an official notification request to the Provider ("cybernet.co.id").

Use of WhatsApp Business API

As part of our communication services, we ("Provider") may use the WhatsApp Business API (Application Programming Interface) provided by Meta Platforms, Inc. to interact with you ("Customer").

• Types of Data Processed Through WhatsApp
  

  When using this service, we may process the following data sent or received via WhatsApp:

  • Your WhatsApp phone number.
  • The name displayed on your WhatsApp account.
  • Content of messages, notifications, or media (images, documents, etc.) that you send or receive related to our services.
  • Conversation metadata (such as delivery time, receipt status).
• Purpose of Use
  

  Data through WhatsApp Business API is used specifically for:

  • Sending important service notifications (order confirmations, billing status, service disruption information).
  • Providing customer support and service.
  • Sending updates regarding products or services you use (if you have consented).
  • Processing requests or instructions you submit via WhatsApp.
• Relationship with Meta's Policies
  

  Our use of WhatsApp Business API is subject to Meta's WhatsApp Business Service Terms and WhatsApp Privacy Policy. We only act as a data processor for the purposes described above.

  We do not control how Meta collects and processes your data more broadly on the WhatsApp platform. We encourage you to review Meta's privacy policies to understand their practices.

• Security and Storage
  

  Conversations and data transmitted via WhatsApp Business API will be stored in our systems only for as long as necessary for service purposes or as required by applicable laws. We implement reasonable technical and organizational security measures to protect this data from unauthorized access.

• Your Rights and Control
  

  You may choose to communicate with us through other available channels (such as email or support tickets). If you do not wish to receive messages from us via WhatsApp, you can:

  • Reply to our message with the word "STOP" to opt out of receiving non-transactional messages.
  • Contact us at support@cybernet.co.id to request the removal of your phone number from our WhatsApp Business contact list.
  • Use the "Block" feature on our WhatsApp Business account in your personal WhatsApp application.

  Essential service messages of a transactional or administrative nature (such as payment confirmations) may still be sent as part of fulfilling our service contract.

• Data Sharing with Meta
  

  By using this service, you acknowledge that your phone number and necessary interaction data will be shared with Meta as the provider of the WhatsApp platform to enable message sending and receiving. This data exchange is governed by the agreement between us and Meta.

Facebook Developer Apps & Login Integration

Services that involve Facebook Developer Apps, including but not limited to Facebook Login integration ("Facebook Services"), are provided subject to compliance with Meta Platforms, Inc. ("Meta") policies and developer terms. The Customer is solely responsible for their Facebook App configuration and data handling practices.

• Compliance with Meta Policies. The Customer must adhere to:
  • Meta Platform Terms
  • Meta Developer Policies
  • Facebook Login Requirements
  • All applicable data protection regulations (GDPR, PDPA, etc.)
• App Configuration Responsibility.
  • The Customer is solely responsible for configuring their Facebook App in the Meta Developer Console.
  • The Provider only assists with technical implementation on the Customer's server/infrastructure.
  • Any misconfiguration leading to service disruption, data exposure, or policy violations is the Customer's responsibility.
• Required App Details & Privacy Policy.
  • App Privacy Policy: The Customer must maintain a publicly accessible privacy policy that clearly discloses:
    • What user data is collected through Facebook Login
    • How the data is used, stored, and shared
    • Data retention and deletion procedures
    • Contact information for data-related inquiries
  • App Display Details: The Customer must ensure their Facebook App configuration includes:
    • Accurate app name, description, and logo
    • Valid contact email and business information
    • Appropriate category and purpose selection
    • Valid privacy policy URL and terms of service URL
• Login Dialog Requirements. When implementing Facebook Login, the Customer must:
  • Request only necessary permissions (avoid excessive data access)
  • Clearly explain why each permission is needed
  • Implement proper consent mechanisms
  • Provide clear option to revoke access
  • Not pre-check permission boxes by default
• Data Handling & Security.
  • Data Minimization: Collect only data necessary for app functionality.
  • Secure Storage: Implement appropriate security measures for stored user data.
  • Data Deletion: Provide mechanism for users to delete their data upon request.
  • Breach Notification: Promptly notify affected users and authorities in case of data breach.
• Prohibited Practices. The Customer must not:
  • Use Facebook Login for unauthorized surveillance or tracking
  • Share user data with third parties without explicit consent
  • Use data for purposes beyond what was disclosed
  • Circumvent Meta's review processes
  • Create fake accounts or fake engagement
  • Violate any Facebook Advertising policies
• Meta Review & Compliance.
  • The Customer is responsible for submitting their app for Meta's review when required
  • The Provider cannot guarantee approval from Meta's review team
  • Changes to app functionality may require re-review by Meta
  • Apps must maintain compliance throughout their lifecycle
• Provider's Limited Role.
  • The Provider is not responsible for:
    • Meta's policy changes affecting app functionality
    • App rejection or suspension by Meta
    • Data breaches originating from Customer's app configuration
    • Legal compliance of Customer's data practices
  • The Provider may suspend support services if:
    • The Customer's app violates Meta policies
    • Required to comply with legal requests
    • The app poses security risks to our infrastructure
• Audit & Verification Rights.
  • The Provider reserves the right to audit Customer's Facebook App configuration if integrated with our services
  • The Customer must provide access to app settings for compliance verification upon request
  • Non-compliant apps may be disconnected from our services until fixed
• Indemnification. The Customer agrees to indemnify and hold harmless the Provider from any claims, damages, or penalties arising from:
  • Violations of Meta's policies
  • Improper data handling or privacy violations
  • Misrepresentation in app details or privacy policy
  • Any legal action taken by Meta or regulatory authorities

Example Privacy Policy Clause for Facebook Login:
"Our application uses Facebook Login to authenticate users. When you log in with Facebook, we collect your basic profile information [specify exactly what: e.g., name, email, profile picture]. This information is used solely for [specify purposes: e.g., account creation, personalization]. We do not share this data with third parties without your consent. You may revoke our access to your Facebook data at any time through your Facebook settings. For data deletion requests, contact us at [email]."

By integrating Facebook Developer Apps with our services, the Customer certifies that their app complies with all Meta requirements and applicable laws. The Provider reserves the right to terminate services for any Customer found in violation of these terms.