1. Potentially Relevant Frameworks
A website primarily operating in Indonesia should consider Indonesia’s Personal Data Protection Law. GDPR or UK GDPR may apply to certain processing involving people in Europe or the United Kingdom. The amended CCPA may apply to certain businesses handling California consumer information. Mentioning these frameworks does not state that every rule always applies.
2. Rights That May Be Available
- Information about controller identity, purposes, legal basis, and accountability.
- Access to or a copy of personal information.
- Correction of inaccurate or incomplete information.
- Deletion or destruction where conditions are met.
- Withdrawal of consent, termination, delay, or restriction.
- Objection to certain processing or automated decisions.
- Portability in a commonly used, machine-readable format where applicable.
- Opt-out from sale, sharing, or targeted advertising where applicable.
- Complaint rights and freedom from discriminatory treatment.
3. How to Submit a Request
Email privacy@kuncijawabantts.com with the subject “Data Rights Request”. Identify the right, the email linked to the information, and the context of your interaction. Do not send sensitive identity documents until requested through a secure method.
4. Identity Verification
Reasonable and proportionate information may be requested to prevent disclosure or deletion at the request of an unauthorized person. Verification information is used only for handling the request and should not be excessive.
5. Authorized Agents
A request may be made through an agent or representative where permitted. Proof of authority and direct verification may be required unless a valid power of attorney or exception applies.
6. Service Targets and Legal Deadlines
The initial acknowledgement target is 5 business days. Final deadlines follow applicable law—for example, GDPR generally provides one month and the CCPA generally provides 45 days, with extensions possible in certain circumstances. A lawful extension or refusal will be explained.
7. Fees and Repeated Requests
Requests are generally handled without charge. A reasonable fee or refusal may apply to clearly unfounded, excessive, repetitive, unverifiable, or legally prohibited requests, with an appropriate explanation.
8. Exceptions
Rights may be limited for security, fraud prevention, freedom of expression, public interest, legal obligations, recordkeeping, certain research, legal claims, or the rights of others.
9. Appeal and Complaint
If dissatisfied, reply to the decision for review. Where available, you may use an internal appeal or complain to a data-protection authority, regulator, or competent court.
10. Contact
Privacy contact: privacy@kuncijawabantts.com.