RAPID.CO.ID

The presence of this Privacy Policy underscores PT Rapid Digital Indonesia's dedication to respecting and safeguarding the personal data or information of any User through its website https://rapid.co.id, its affiliated sites, as well as the Rapid Application (referred to as the “Site” and “Application” respectively). This Privacy Policy is exclusively applicable to Rapid's services and any forthcoming services provided by Rapid (referred to as the “Rapid Service”). Its primary objective is to inform Rapid Users about PT Rapid Digital Indonesia's procedures for collecting, processing, transforming, disclosing, retaining, securing, analyzing, erasing, and/or destroying personal data for the purpose of Rapid Service (referred to as “Processing” or “To Process” or “Being Processed”). By engaging with the Rapid Services, Users acknowledge PT Rapid Digital Indonesia's handling of their personal data as outlined in this Privacy Policy. The utilization of Rapid is subject to this Privacy Policy and the Terms of Use of the Rapid Services. The definitions utilized in this Policy adhere to those detailed in the Terms of Use of Rapid Service.

This Privacy Policy becomes effective upon the User's explicit consent, either expressly or through the methods outlined within this Privacy Policy.

PERSONAL DATA PROCESSED BY RAPID.CO.ID
To create a Rapid Wallet and Utilize Rapid Service, User are strongly encouraged to provide their Personal Data to Rapid accurately, clearly, precisely, and comprehensively. Rapid is not legally responsible for any data provided by either the users or the issuers.
User-Provided Data
When users utilize Rapid Services, including Rapid Services through Third Parties, users may occasionally provide additional Personal Data (beyond those mentioned in points above) to Rapid for specific purposes agreed upon by both the user and Rapid.
PURPOSE OF PERSONAL DATA PROCESSING FOR USER
Rapid will process User's personal data for the following purposes:
1. Issuing Rapid ID;
2. Collecting, Recording and analyzing data related to user activites involving the Rapid Services;
3. Notify the User regarding transactions and/or activities occuring within the Rapid application or other systems connected to the Rapid Application;
4. For internal use, including informing the User about transactions and/or activities happening within the Rapid Application or other systems linked to the Rapid Application;
5. Fulfillment of Rapid's obligation to competent authorities in accordance with prevailing statutory regulations;
6. Other purposes as long as those purposes are not prohibited by applicable laws and regulations;
DISCLOSURE OF PERSONAL USER DATA WITHIN THE TERRITORY OF THE REPUBLIC OF INDONESIA
To alleviate any concerns users may have, Rapid refrains from selling or distributing users' Personal Data to any third parties unless explicitly consented to in this Privacy Policy. Rapid ensures that access to Electronically Uploaded Documents or Personal Data within users' Rapid Accounts is restricted to the user, authorized third parties, or other parties authorized by the user.
If a user grants consent to a Third Party to utilize the Rapid Account to access or avail services provided by the Third Party, the use of the user's Personal Data by the Third Party is subject to the terms and conditions and/or privacy policy of the Third Party.
SECURITY OF USER PERSONAL DATA
Rapid implements robust security measures and storage protocols to safeguard the confidentiality of users' Personal Data at all times. Any content uploaded and transmitted by users to the Rapid Service is securely stored and transmitted with confidentiality using industry-standard methods for securing electronic information.
The User is responsible for maintaining the confidentiality of the User's Rapid Wallets and their contents, including the User's, including but not limited to, credentials, private keys, passwords, and biometrics data. Users must always maintain and take responsibility for the security of the device they use to access the Rapid Service.
DATA STORAGE
Rapid retains the User's Personal Data for the period required for the purposes of Processing the Personal Data as specified in this Privacy Policy in accordance with the provisions of the applicable laws and regulations.
USER CONSENTS
By engaging in any of the actions listed below, the User acknowledges and declares that they have read and understood the provisions within this Privacy Policy. The User also grants Rapid consent to carry out the Processing, Disclosure, and/or storage of the User’s Personal Data in accordance with the stipulations outlined in this Privacy Policy and prevailing legal regulations:
1. Registered as Rapid ID holders;
2. The User hereby submits Personal Data to Rapid for the purpose of Processing, Disclosure, and storage of the User’s Personal Data as defined in this Privacy Policy;
3. The User provides consent as stipulated in the agreement or contract between the User and Rapid in connection with the acceptance of collaboration or in connection with the use of Rapid Service;
4. User visits and/or uses the Site and/or Application; and/or
5. User engages in communication with Rapid.
USER RIGHTS
Rapid provides Users with the rights associated with their Personal Data in accordance with applicable laws and regulations, wherein Users possess the following rights:
1. Revocation of Consent
  Users are entitled to revoke their consent for Rapid to Process, Disclose, and/or store their Personal Data. Upon revocation of such consent, Rapid will delete/destroy the User’s Personal Data from the Rapid system and cease Processing the User’s Personal Data.
2. Access Request
  The Users has the right to request and obtain a copy of the User’s Personal Data stored on the User’s Rapid wallet. Granting access and the copy of data to Users will be carried out in accordance with the provisions of the applicable laws and regulations.
3. Change Request
  The User has the right to change, correct, add, update, complete, and/or rectify any errors or inaccuracies regarding their Personal Data stored within the Rapid system. Changes to Personal Data in the form of Basic Data can be made by notifying Rapid through its contact channels. For categories other than Basic Data, users can make changes through the Rapid Application. Requests to change email addresses and/or phone numbers can be made by users through their Rapid Account, with proof of conformity to the user's biometric data. Rapid reserves the right to request supporting documents and/or verify changes, additions, or updates to such information and Personal Data in accordance with Rapid's procedures. Implementation of the change request will be carried out in accordance with applicable laws and regulations.
4. Removal Request
  Users have the right to request Rapid to cease processing, delete, and/or destroy their Personal Data from the Rapid system. Before proceeding with the aforementioned request, users must fulfill the verification requirements conducted by Rapid. Rapid reserves the right to ask for reasons for deleting Personal Data from users. The request for deletion of Basic Data can only be made by notifying Rapid through Rapid's contact channels. Implementation of the data removal requests will be carried out in accordance with applicable laws and regulations. The impact of deleting Basic Data is the closure of the Rapid Account.
Rapid reserves the right to reject the User’s request as mentioned in point (a) above, if:
1. The User’s request is irrelevant to the User’s Personal Data stored by Rapid, including but not limited to cases where the requesting party seeks Personal Data of another party over which they have no authority and/or cannot validly demonstrate their authority over the requested Personal Data; and/or
2. Rapid is prohibited from fulfilling User requests by competent authorities and/or Rapid’s internal policy based on applicable laws and regulations.
LIMITATION OF LIABILITY
By using the Rapid Application, the User hereby agrees to release, hold harmless, indemnify, and defend Rapid, including any officers, directors, employees, or agents of Rapid from and against any and all requests, claims, losses, liabilities, costs, damages, and expenses (including but not limited to legal fees and indemnity expenses) resulting directly or indirectly from:
1. Any loss resulting from Personal Data being intercepted, accessed, stolen, disclosed, altered, or destroyed by an unauthorized Third Party, due to factors beyond Rapid's control and/or contrary to this Privacy Policy and the applicable laws and regulations, including those resulting from User error or negligence.
2. The security and confidentiality of Personal Data that have undergone Processing, Disclosure, and/or storage by the User to the public or Third Parties, whether the Processing, Disclosure, and/or storage are conducted by the User or any party other than Rapid, and such Processing, Disclosure, and/or storage occurs not due to the negligence and/or fault of Rapid in protecting the User’s Personal Data.
3. All risks and/or consequences arising from the negligence and/or personal errors committed by the User, including but not limited to losing the device containing the application, allowing a third party to access the data in the application, or showing QR code to the unauthorized party, in maintaining the security and confidentiality of the User’s Personal Data.
4. All consequences arising from the use of any media and/or application that the User employs to disclose, process, and/or store the User’s Personal Data, including, among other things, internet networks and cloud storage services.
APPLICABLE LAW AND CONFLICT RESOLUTION
1. These Terms of Use are governed and construed based on the laws of the Republic of Indonesia.
2. Users and Rapid agree that all disputes or issues arising from or related to matters regulated in this Privacy Policy (including all disputes or issues related to this Privacy Policy) will be resolved in accordance with the applicable laws and regulations, particularly those related to personal data protection.
LANGUAGE
If these Privacy Policies are presented in different languages and inconsistencies arise between them, the Indonesian version will prevail.
CONTACT AND NOTIFICATIONS
1. From Rapid:
  All notifications from Rapid addressed to Users will be communicated through the Site and sent via email or push notifications through the Rapid Application installed on the User's registered device.
2. From Users:
  Any notification from a User addressed to Rapid relating to Rapid Service and users’ privacy policy becomes effective when the notification is received by Rapid via the email address [email protected]
CHANGES
1. Rapid reserves the right to review and amend this Privacy Policy periodically to ensure its alignment with the evolving nature of Rapid Service and/or changes in applicable laws and regulations. In the event of such changes, Rapid will notify Users about the changes through notifications as described in Article 11(a) above.
2. Users understand and agree that they are responsible for periodically reviewing this Privacy Policy to stay informed of the latest information regarding it.