Privacy Policies
This policy is designed to respect your privacy and protect your personal data based on standards and provisions in accordance with various regulations applicable in Indonesia, while also taking into account and considering the existence of data protection standards and/or frameworks in other countries that have an equivalent or higher level of Personal Data Protection.
In addition to this Privacy Policy, we provide specific privacy information attached to our products and certain features that use your personal data in their operation.
style=”margin-top:0px;”
Introduction
Seriyus Hutama (hereinafter referred to as the “Company”) is committed to protecting the privacy and personal data of its customers, prospective customers, business partners, job applicants, and any other parties who interact with the Company.
This Privacy Policy explains the types of personal data we collect, the purposes and legal bases for processing such data, the rights of data subjects, and how personal data is stored, used, shared, and protected.
Data Controller
Data Controller: PT. Seriyus Hutama
Address: Kamboja Street 50C, Sukajadi, Kec. Sukajadi, Pekanbaru City, Riau 28121, Indonesia
Privacy / DPO Contact
Email: info@seriyushutama.com
Phone: (0761) 856338
Scope
- Procurement, installation, maintenance, and repair of security systems, including CCTV cameras, access control systems, alarms, barrier gates, and forest fire detection systems;
- Use of applications and communication platforms, including Meta platforms such as Facebook, Instagram, and WhatsApp;
- Recruitment, employment, and internal operational activities.
Types of Personal Data Collected
- Identity Data – full name, address, phone number, email address.
- Business Contact Data – company name, job title, business contact information.
- Technical Data – device information, IP address, system logs, and communication metadata.
- Location Data – installation site locations, including CCTV placement or GPS-related site data.
- Visual and Recording Data – CCTV footage, photographs, or video recordings collected for installation, servicing, and security monitoring purposes.
- Biometric Data (Limited) – fingerprints or other biometric identifiers used in attendance or access control systems, where applicable.
- Transaction Data – service history, invoices, and payment-related information.
- Recruitment Data – CVs, portfolios, assessment results, and references.
- Communication Data – messages and correspondence exchanged via email, WhatsApp, or other communication platforms.
Purposes of Data Processing
- To provide, manage, maintain, and improve security system products and services;
- To manage contracts, billing, warranties, and technical support;
- To operate attendance, access control, and authentication systems, where applicable;
- To ensure the safety and security of customer premises, assets, and personnel through surveillance and detection systems;
- To deliver service-related information and limited marketing communications, subject to consent where required;
- To conduct recruitment and employment processes;
- To comply with applicable laws, regulations, and legal obligations.
Legal Basis for Processing
- Consent provided by the data subject;
- Performance of a contract or steps taken prior to entering into a contract;
- Compliance with legal and regulatory obligations;
- Legitimate interests of the Company, particularly in relation to service delivery, security, and operational management, provided such interests do not override the fundamental rights and freedoms of data subjects.
Use of Meta Applications (Facebook, Instagram, WhatsApp)
- WhatsApp / Messenger Communication: Messages sent to or received from the Company may be stored in the Company’s systems and/or the systems of the service provider. Although WhatsApp states that it applies end-to-end encryption for personal messages, data processing by Meta remains subject to Meta’s own privacy policies.
- Facebook and Instagram Pages & Insights: The Company may use analytics, insights, and advertising tools provided by Meta to understand user interactions with Company pages or advertisements.
- Data Sharing with Meta: Certain data, such as phone numbers used for messaging, interaction data, or analytics information, may be shared with and processed by Meta, acting as an independent or joint data controller, depending on the service used.
Third Parties and Data Processors
- Cloud service providers for data hosting, storage, and backup;
- Technical vendors and subcontractors involved in installation, maintenance, or support services;
- Payment service providers for transaction processing;
- Communication and marketing platforms, including Meta platforms;
- Government authorities or regulators, where disclosure is required by law.
Cross-Border Data Transfers
In certain cases, personal data may be transferred to, stored, or processed in countries outside Indonesia, including on servers operated by international cloud service providers or platforms such as Meta. The Company will ensure that such transfers are carried out with appropriate safeguards in accordance with applicable data protection laws.
Data Security
The Company implements reasonable technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, loss, or destruction. These measures include, but are not limited to, access controls, encryption where appropriate, internal security policies, and secure data handling procedures.
Data Retention
Personal data will be retained only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, to comply with legal and regulatory obligations, or in accordance with the Company’s internal data retention policies. Once the retention period has expired, personal data will be securely deleted or anonymized.
Data Subject Rights
- The right to access their personal data;
- The right to rectify inaccurate or incomplete data;
- The right to request deletion of personal data under certain conditions;
- The right to object to or restrict the processing of personal data for specific purposes;
- The right to withdraw consent at any time, where processing is based on consent;
- The right to data portability, where applicable.
Use of CCTV and Biometric Data
CCTV recordings and biometric data, such as fingerprints used in attendance or access control systems, are treated as sensitive or special-category data. Such data is processed strictly for security, safety, and operational purposes, with restricted access, enhanced protection measures, and defined retention periods in accordance with applicable laws and contractual agreements.
Cookies and Tracking Technologies
If the Company operates a website, cookies and similar tracking technologies may be used to improve user experience, perform analytics, and support marketing activities. Users may manage cookie preferences through browser settings or other mechanisms provided on the website, where available.
Changes to This Privacy Policy
The Company may update this Privacy Policy from time to time. Any changes will be communicated through the Company’s website or other appropriate communication channels, and the revised policy will take effect on the updated effective date.
Contact Information and Complaints
For questions, requests, or complaints regarding this Privacy Policy or the processing of personal data, please contact:
Seriyus Hutama
Email: info@seriyushutama.com
Address: Kamboja Street 50C, Sukajadi, Kec. Sukajadi, Pekanbaru City, Riau 28121, Indonesia
Phone: (0761) 856338
