LEGAL REFERENCE

How syair sd Handles Your Privacy

This is the syair sd privacy policy — the page that spells out what we collect when you open an account, why we hold it, and how long...

Account dataCookie controlsData retentionYour rightsLast updated
Account access Read FAQ
syair sd How syair sd Handles Your Privacy

Privacy Posture and Jurisdiction Notes

Our privacy practices apply to every syair sd account opened where local law permits. We collect the identifiers you give us at sign-up — name, contact details, device fingerprint — plus the transaction trail tied to your wallet activity. That information is stored on encrypted servers, accessed only by staff with a legitimate processing reason, and retained for the period Indonesian financial-conduct

rules require. You may request access, correction or deletion of your record at any time, and we'll respond within the statutory window for supported regions. Cross-border transfers, when they happen, follow standard contractual safeguards.

Service availability is jurisdiction-dependent. Users are responsible for checking local law before access.

HELP CHANNELS

Privacy Contact Paths

Data Officer Email Write to our privacy desk for access requests, correction notices or deletion claims. We acknowledge every message within one business day and close most cases inside the statutory window.
In-App Privacy Chat Open the chat icon inside your syair sd account to reach the privacy team directly. Useful when you need to update consent flags or revoke a marketing channel quickly.
Postal Records Request For formal records requests tied to Indonesian regulators, post a signed letter to our registered address. We log the date stamp and route it straight to our compliance reviewer.
WHY VISITORS TRUST US

How We Review This Policy

Quarterly Legal Review

Our in-house counsel reads this policy every quarter against shifting Indonesian data rules. Any drift between practice and wording gets...

Named Data Controller

The syair sd entity that decides what gets collected is named in the footer with a registered address. You always...

Encryption at Rest

Account records and wallet logs sit behind AES-grade encryption with rotated keys. Only staff with a documented processing reason can...

Vendor Vetting

Every third-party processor — payment rails, KYC checkers, analytics — signs our data-handling addendum before they touch a single record...

Breach Response Plan

If something does slip, our incident protocol notifies affected accounts and the relevant Indonesian authority inside the statutory window. The...

Transparent Changelog

Material edits to this policy carry a dated note at the top. You can see what changed, when, and why...

Consistency Across Our Policy Pages

Same Definitions
Terms like account data, processing and supported regions mean the same thing here as they do on our terms page and cookie page.
Aligned Retention
Retention windows quoted in this policy match the schedule referenced inside our terms of service, so nothing contradicts.
Shared Contact Desk
The privacy email here is the same address listed on our complaints page — one team, one inbox, one ticketing system.
Mirrored Jurisdiction
Where local law permits language used here matches the access clause on our responsible-use page for Indonesia accounts.
Unified Changelog
Updates to this policy, terms and cookie notice are logged together so dates line up across the three legal pages.
Same Consent Model
Marketing consent toggles described here behave identically to the ones documented on our communications-preferences page.
Equal Plain English
We write every legal page at the same reading level so switching between them doesn't feel like switching brands.

What This Policy Page Includes

Plain-English Sections

Each clause is written so you can read it without a lawyer beside you. Headings name the topic, paragraphs stay short, and jargon is unpacked the first time it appears.

Dated Revision Note

The top of the page carries the last-updated stamp. If we touched the policy in the past 30 days, you'll see exactly which section moved.

Right-to-Access Block

A dedicated block explains how to request the file we hold on your account, what format we return it in, and how quickly we turn it around.

Consent Toggle Map

We list every consent flag tied to your account — marketing email, SMS, push, analytics — and point you at the screen where each one is switched.

Cookie Cross-Link

A cross-link sends you to the cookie notice when you need finer-grained control than the policy itself offers. The two pages are kept in sync.

Contact Footer

Every policy page closes with the same contact footer: data officer email, registered address, response window. Predictable, on purpose.

Privacy Policy Questions

At sign-up we record your name, contact details, date of birth for age checks, and the device you registered on. Wallet activity tied to DANA, OVO, GoPay or QRIS is logged once you transact.

Account and transaction records are held for the period Indonesian financial-conduct rules require after your account closes. Marketing-only data is dropped sooner, on the schedule listed in the retention section above.

Yes. Email the data officer from your registered address and we'll return a machine-readable file inside the statutory window. There's no charge for a first request in any twelve-month period.

Open the communications panel inside your syair sd account and switch off the channels you no longer want. The change applies on the next send cycle, usually within a few hours.

Only with processors we've vetted — payment rails, KYC checkers and analytics vendors — and only the fields they need to do their job. Every vendor signs our data-handling addendum first.

Our incident protocol notifies affected accounts and the relevant Indonesian authority inside the statutory window. You'll receive a direct message explaining what was exposed and the steps we're taking.

Material edits carry a dated note at the top of the page and, where the change affects your rights, a direct message to your registered contact. Minor wording fixes appear in the changelog only.