Jurnal Security and Privacy Statement Letter

Jurnal Security and Privacy Statement Letter

Many companies have entrusted PT Jurnal Consulting Indonesia with their data, and we make it a priority to take our users’ security and privacy concerns seriously. We strive to ensure that user data is kept securely, and that we collect only as much personal data as is required to provide our services to users in an efficient and effective manner.

PT Jurnal Consulting Indonesia has implemented this security and privacy policy because a fundamental component of the data-steward-to-customer relationship is a customer’s trust in this institution, and because we respect the expectations of our customers regarding security, privacy and confidentiality. Protecting your privacy, along with your data is at the core of our business. We recognize that you expect privacy and security for your company’s organizational and financial affairs. We understand the need to safeguard our sensitive information about you that you have entrusted to us within our company. We maintain standards and procedures designed to prevent misuse of this information. We believe that your privacy should not be compromised.

Privacy Policy – Jurnal’s Privacy Pledge to You

Restrictions on the Disclosure of Account Information

PT Jurnal Consulting Indonesia does not disclose any non-public personal information about its present or former customers to anyone except as permitted by request of the customer. We may, for example, disclose nonpublic personal information about customers to others for purposes of servicing their accounts with us, processing transactions that they request or authorize. We will never provide account or personal information for the purpose of independent telemarketing or direct mail marketing of any non-financial products or services of those companies. If we use a third party business partner, service company, or other business partner to prepare account documentation, service accounts, or for other purposes, we will make reasonable efforts to verify that business partners agree to safeguard our confidential information about you and your accounts with us and must abide by applicable law.

 

Limitations on Employee Access to Information

Employee access to personally identifiable customer information is limited to those with a business reason to know such information. Employees are educated on the importance of maintaining the confidentiality of your information. Employees are responsible for maintaining the confidentiality of customer information and those who violate this privacy policy will be subject to disciplinary measures.

 

Kami tidak akan:

Tanpa izin dari pelanggan, memberi atau menyebarkan data yang Anda percayakan kepada kami kepada pihak ketiga.

Kami akan:

Mengelola data pelanggan untuk membantu pelanggan kami meningkatkan hasil finansial mereka, dengan membantu mereka menghasilkan atau menghemat uang, dan menjadi lebih produktif.

Mengelola data pelanggan untuk memberi para pelanggan pengalaman layanan yang lebih baik, dan lebih mengerti produk dan layanan yang tersedia untuk membantu Anda.

Memberi pilihan kepada pelanggan, dan mendapatkan izin dengan teliti, mengenai cara kami menggunakan data yang mungkin bisa mengidentifikasi mereka.

Memberi penjelasan yang jelas dan terbuka mengenai cara kami mengelola data Anda.

Melatih karyawan kami mengenai cara menjaga data supaya aman dan terlindungi, dan juga mendidik pelanggan kami mengenai cara menjaga data mereka dan pelanggan mereka supaya aman dan terlindungi.

Contoh bagaimana kami menggunakan informasi Anda dalam bisnis kami:

Kami menggunakan informasi yang Anda masukan ke produk dan layanan kami untuk memberi hasil yang Anda minta; contohnya grafik laporan, faktur penjualan/pembelian, laporan usaha, dan lainnya.

Kami menggunakan informasi kontak Anda untuk mengantar surat dan barang yang Anda beli dari kami, atau mengirim informasi tentang akun Anda, atau mengenai gangguan dengan suatu produk atau layanan.

Kami menggunakan informasi penagihan Anda untuk proses pembayaran Anda. Kami memakai informasi tentang produk dan layanan yang Anda pernah pakai untuk meminta partisipasi Anda dalam survey atau riset, dan mengirimkan Anda informasi mengenai produk lain yang akan berguna untuk Anda. Kami menggunakan informasi kunjungan Anda ke website kami untuk mengetahui kapan Anda mengunjungi kami sebagai langkah-langkah keamanan yang kami lakukan. Dalam gabungan informasi dari banyak pelanggan, kami mengamati untuk melihat halaman web mana yang paling efektif atau untuk mencari dan memperbaiki masalah.

Security Statement

PT Jurnal Consulting Indonesia uses some of the most advanced technology for Internet security that is commercially available today. This Security Statement is aimed at being transparent about our security infrastructure and practices, to help reassure you that your data is appropriately protected.

Application and User Security

 

    • SSL/TLS Encryption: All communications with the jurnal.id website are sent over SSL/TLS connections. Secure Sockets Layer (SSL) and Transport Layer Security (TLS) technology (the successor technology to SSL) protect communications by using both server authentication and data encryption. This ensures that user data in transit is safe, secure, and available only to intended recipients.
    • User Authentication:User data on our database is logically segregated by account-based access rules. User accounts have unique usernames and passwords that must be entered each time a user logs on. PT Jurnal Consulting Indonesia issues a session cookie only to record encrypted authentication information for the duration of a specific session. The session cookie does not include the password of the user.
    • User Passwords:User application passwords have minimum complexity requirements. Passwords stored with one-way encryption method, and are individually salted and hashed.
    • Data Encryption:Sensitive user data is stored in encrypted format.
    • Automatic Backups: Backups occur hourly internally, and daily to a centralized backup system for storage in multiple geographically disparate sites.
    • Data Portability:PT Jurnal Consulting Indonesia enables you to export your data from our system in a variety of formats so that you can back it up, or use it with other applications.

Physical Security

    • Data Center Security:Our data centers are staffed and surveilled 24/7. Access is secured by security guards, visitors logs, and entry requirements such as passcards and biometric recognition. Our equipment is kept in locked cages.
    • Environmental Controls:Our data center is maintained at controlled temperatures and humidity ranges which are continuously monitored for variations. Smoke and fire detection and response systems are in place.
    • Location:All user data is stored on servers located in Singapore and Indonesia.

Organizational & Administrative Security

    • Access:Access controls to sensitive data in our databases, systems and environments are set on a need-to-know / least privilege necessary basis.
    • Audit Logging:We maintain and monitor audit logs on our services and systems (our logging systems generate gigabytes of log files each day).
    • Information Security Policies:We maintain internal information security policies, including incident response plans, and regularly review and update them.

Your Responsibilities

Keeping your data secure also depends on you ensuring that you maintain the security of your account by using sufficiently complicated passwords and storing them safely. You should also ensure that you have sufficient security on your own systems, to keep any survey data you download to your own computer away from prying eyes. We offer SSL to secure the transmission of survey responses, but it is your responsibility to ensure that your surveys are configured to use that feature where appropriate.

Yours Sincerely,

Anthony Kosasih, COO
PT Jurnal Consulting Indonesia