Privacy Policy

Public Policy

The Privacy Policy is a commitment from ETHIS (“EFI”, PT Ethis Fintek Indonesia”) to respect and protect any user information on the site and/or mobile application from the website created, owned and operated by ETHIS at the URL www.ethis.co.id The following changes from time to time, and the ETHIS application ”ETHIS Mobile” created, owned and operated by ETHIS, including IOS and Android and their changes from time to time.

ETHIS complies with the laws and regulations in Indonesia as well as sharia provisions in its operational activities, including but not limited to the provisions of the Financial Services Authority regulation number 10/POJK.05/2022 concerning Information Technology-Based Joint Funding Services, Law Number 27 of 2022 Concerning Personal Data Protection and Fatwa of the National Sharia Council - Indonesian Ulema Council number 117/DSN-MUI/II/2018

We will only collect information or data that is important to us and will only use your information and data in accordance with this privacy policy and as long as required by law or as long as the information and data relate to the purposes for which the information was collected.

By using the ETHIS site and application services you have read, understand and agree to the collection and use of data by the ETHIS site and application (along with Terms and Conditions) and you have agreed that your data will be processed by ETHIS in accordance with the applicable laws and regulations

Definition

• “ETHIS/Us” has the same meaning as specified in the terms and conditions.

• “Services“ has the same meaning as defined in the terms and conditions.

• “Platform” has the same meaning as specified in the terms and conditions.

• “User” has the same meaning as defined in the terms and conditions.

• “Personal Data” is data of an individual user that is identified or can be identified individually or in combination with other information either directly or indirectly through electronic or non-electronic systems.

• “Personal Data Processing” are things that are done by ETHIS in terms of obtaining, collecting, processing, analyzing, storing, repairing, updating, displaying, announcing, transferring, disseminating, disclosing, and/or deleting, destroying Personal Data while taking into account the provisions current regulation.

Scope of Personal Data

ETHIS collects your personal information and data which; (a) you provide directly to us (b) related to your use of the platform (c) provided by a third party with your consent (d) participate in discussion boards or other social media functions on the platform and/or (e) when you report a problem with the Platform or our service.

Personal information and data “Personal data“ This includes but is not limited to:

• Your identity and profile data, including KTP, NPWP, full name, email address, mobile phone number, address, biological mother's maiden name, place of birth, date of birth, religion, gender, marital status, educational background, occupation, field of work, sources of funds, financial information, bank account numbers, photos, and other relevant identity and profile information;

• Identity data and your company profile including deed of establishment, deed of amendment (if any), decree of the minister of law and human rights (and the equivalent), company NPWP, business license, KTP of management, NPWP of administrators and other relevant identity and profile information ;

• Your patterns or habits in using the platform, your risk profile, your loan portfolio, search history or use of services, transactions that you make on the platform and information related to other patterns or habits;

• Your IP address, your login information, hardware and software (including browser type and version and operating system) and ETHIS application version that you use, as well as other technical information related to your use of the Platform;

• In the event of an interruption when using the platform, information relating to the occurrence of the disturbance such as menus or pages on the Platform when the interruption occurred, the date and time the interruption occurred, the menu or button that was clicked, the message displayed on the platform and other relevant information.

Cookie Policy

Our platform uses cookies which enable us to collect standard internet log information and visitor behavior information. These data include:

• Smart phones;

• Your computer;

• Geographic information;

• IP address;

• Reference source;

• The length of time you are on the page;

• Visit period;

• Pageviews;

• And click

This collection of information is mostly used to improve the performance and security of the host. You can set your browser not to accept cookies. However, some features of our Site may not work if you delete cookies from your browser.

Use of Personal Data Information

• ETHIS has the right to carry out Personal Data Processing in the framework of or related to “Usage”:

  • Manage the accuracy of the information that the User provides;

  • Assessment, analysis, verification, validation or examination of (a) requests or applications for obtaining financing as Financing Recipients, (b) processes or applications for registration as Funder; and/or (c) user profiles;

  • Fulfillment of ETHIS rights and obligations based on legal provisions and statutory regulations and in the implementation and supervision of membership agreements, power of attorney agreements and/or sharia financing agreements;

  • Survey, research, evaluation, development and/or marketing of products and/or services by ETHIS;

  • To provide information in the form of (among other things) the latest news regarding ETHIS, promotional materials, registration process, and/or other information related to ETHIS products and/or services to users through personal communication media, including but not limited to Electronic Mail (e-mail) and/or WhatsApp.

  • Study the behavior of visitors and users of ETHIS services

  • Law enforcement and ETHIS compliance with laws and regulations.

• Usage above being the basis for ETHIS to carry out the Processing of Personal Data regulated in this privacy policy, and to use it, submit or disclose it in good faith to:

  • Banks, credit scoring bureaus, Fintech Data Centers (FDC), agents, partners or other supporting service providers, including but not limited to banking services, billing, fund transfers, administration, correspondence, telecommunications, data processing, information technology, payments, checking credit references, security or other services of interest while bound by a responsibility for confidentiality of Personal Data;

  • Individuals and/or entities that are other related third parties and are responsible for the confidentiality of Personal Data for certain purposes;

  • Individuals and/or entities, including but not limited to the Financial Services Authority, courts, prosecutors, police, other government institutions either on the ETHIS initiative or as required by legal provisions and statutory regulations, directives, instructions or policies, government institutions or officials government;

  • Any party or prospective transfer from ETHIS, or transfer from ETHIS in relation to the recipient of the financing, or all or part of the assets or business of ETHIS; and/or

  • parties that provide or propose to provide guarantees or third party guarantees to guarantee or maintain the obligations of the Financing Recipient.

Obtaining, Collecting and Processing of Personal Data

• Personal Data obtained and collected is Personal Data which:

  • Required or obtained by ETHIS from users or submitted, disclosed, downloaded or submitted by users through the ETHIS platform or ETHIS resources, including when users register on the ETHIS platform as users or resources from ETHIS.

  • Obtained and/or obtained from third parties with your consent

  • Collected by ETHIS when you participate in events organized by ETHIS, such as celebrations, seminars, workshops, and other events, which can include all documentation in the form of photos, video recordings and/or your voice

  • Legally obtained or accessed by ETHIS based on ETHIS internal policies and procedures regarding ETHIS services as long as you are still bound by this privacy policy; and/or

  • must be submitted or have been provided by you pursuant to the terms of the financing agreement or voluntarily from time to time.

• ETHIS is committed to processing Personal Data in accordance with the principles of Personal Data Protection including:

  • Conducted in a limited and specific manner, legally and transparently;

  • Done in accordance with the Purpose;

  • Done by guaranteeing user rights;

  • Accurate, complete, not misleading, up-to-date, and accountable;

  • Done by notifying the purposes and activities of Processing, as well as the failure of Personal Data protection;

  • Destroyed and/or deleted based on the User's request or based on the applicable laws and regulations; and/or

  • Conducted responsibly and can be proven clearly.

Limits in Compensation

ETHIS is committed not to trade your personal data and information to any party, including making reasonable efforts that every ETHIS employee is not involved in buying and selling Personal Data to anyone and any party. However, ETHIS is not responsible for losses suffered by users in any form, including the risk of loss resulting from or related to the Personal Data, including failure to protect the confidentiality of Personal Data, submission, access, acquisition, processing, storage or use or transfer there of, including disputes, investigations, audit, law enforcement and any investigative process that is not proven to be caused by or involving ETHIS or any ETHIS employee, representative, proxy, affiliate or other related party.

User Rights to Personal Data

You as the owner of Personal Data have the right to:

• Submit a request to ETHIS to complete, update and/or correct errors or inaccuracies in the Personal Data that you have submitted to ETHIS. However, we reserve the right to use our discretion in the requested corrections and/or require further documentary evidence of new data to avoid data fraud or inaccuracies.

• In the event that your Personal Data has been submitted to ETHIS, then:

  • You can access and/or obtain a copy of your Personal Data

  • Obtain information related to personal data that will or is being or has been processed.

• In the event that you require termination, cancellation and/or deletion as a user, then:

  • You have the right to apply for termination of processing, delete and/or destroy Personal Data that has been submitted to ETHIS

  • You have the right to apply for withdrawal of consent to the processing of Personal Data that has been submitted to ETHIS.

  • Submit a delay and/or restriction on Personal Data if the processing is outside the use of processing personal data.

• In the matters related to points (a) (b) and (c) above it should be done by:

  • You request by telephone, electronic mail (e-mail), and/or be careful to ETHIS;

  • ETHIS verifies the application in question after receiving the application submitted by you;

  • ETHIS provides information to you on the approval or disapproval of the application after verification;

  • ETHIS executes the application submitted by you after ETHIS has notified that the application has been approved; And

  • ETHIS will promptly notify you of the outcome of your application.

Storage, Deletion and Retention of Personal Data

• ETHIS stores personal data on a system managed by ETHIS and/or other parties that work with ETHIS to support ETHIS business activities

• Storage of Personal Data by ETHIS is carried out either on servers/applications/systems managed by ETHIS and/or through servers/applications/systems managed by other third parties who work with ETHIS by always trying to store it with the best possible level of security. We conduct an assessment of third parties who are supporting ETHIS business activities to ensure third parties are able to protect Personal Data, including seeking appropriate security standards carried out by related third parties.

• Deletion of Personal Data is carried out in the event that:

  • Personal data is no longer needed for the obtain of the purpose of processing Personal Data;

  • There is a request for deletion from the owner of the Personal Data;

  • Personal Data is obtained and/or processed in a way that violates the law;

  • The owner of the Personal Data has withdrawn the consent for processing the Personal Data.

• The retention period for storing Personal Data by ETHIS is subject to and complying with the legal provisions and laws and regulations in Indonesia. If you do not carry out activities and/or transactions until you enter the retention period, ETHIS will destroy the your personal information or data in accordance with the internal procedures that apply to us.

Privacy Policy Changes

We will constantly review our Platform Privacy Policy to ensure it is kept up to date. Therefore, we reserve the right to change and/or revise and/or modify this Privacy Policy from time to time and inform you about these changes. Changes will be uploaded to the platform immediately and it is your obligation to periodically review the information published on this page.

If you do not agree, you have the right not to use the ETHIS platform.