Updated on January, 1 2026

Privacy Policy

This Privacy Policy was last updated on January 1, 2026 and will always refer to and follow the Agreement stated on the website: https://barantum.com/id/privacy_policy for the latest version which will replace this written Agreement, unless otherwise agreed in the Appendix to the Agreement and mutually agreed upon for any changes.

Barantum.com (hereinafter referred to as "BARANTUM" or "US") in this case as an institution that has a high commitment to all matters relating to the protection of data that Customer store in our media. We are fully responsible for the various types of data that Customer has, so we feel the need with full responsibility and dedication to maintain and manage all data entrusted to us with the principles of data security in accordance with applicable regulations.

In providing the Services, Barantum does not access, view, use, or otherwise process any Personal Data processed by the Customer. All Data entered into the Barantum system remains entirely under the control of the Customer as the data controller.

Access to Data may occur only in a limited and technical capacity, solely when necessary for:

  1. system maintenance;
  2. handling technical issues;
  3. data recovery (disaster recovery); or
  4. compliance with lawful legal obligations.

By using Barantum’s Services, you acknowledge that you have read, understood, and agreed to the terms set forth in this Privacy Notice.

Definitions

“Personal Data” refers to any data (whether true or not) about an individual who can be identified (i) from that data; or (ii) from that data and other information to which we have or are likely to have access to, including data in our records

“Service Data” refers to any data that is created or provided by Customer prior to using our Products and Services, including but not limited to usage data such as number of messages sent, number of active users, messaging history, log, dates, device type, browser type and version, operating systems, geographic location, IP address, referral source, time spent in our Websites, and other messaging metadata. The Personal Data owned by other people shared by Customer also counts.

“Third Party” refers to any individual or entity outside of us and our affiliates, including but not limited to Third Parties that provide services and products that support the provision of our Products and Services.

“Applicable Laws” means all laws, statutes, regulations, implementing regulations, policies, decrees, licenses, approvals, decisions, orders, or requirements issued or imposed by any court, administrative body, governmental authority, or regulatory agency having jurisdiction, as may be in effect and binding from time to time during the validity of this Privacy Notice.

How We Collect Customer Data

Barantum CRM application is a business application that is engaged in Customer Relationship Management. Where the use of this application is for all types of industries and categories of companies in Indonesia. So that when Customer use the Barantum CRM application which starts by accessing the site, then directly or indirectly Customer has provided some of Customer personal data for the data we need to run this application.

Where some of the data that Customer has provided to us is what we will directly store and protect with a security system and data storage convenience in accordance with the provisions contained in this Policy. There are some initial data related to Customer such as the following personal data: Full name, company name and Customer position in the company, office and cellular telephone numbers to Customer age data.

All the data that Customer enter into Barantum, we think is the correct data. And all matters relating to these data are Customer responsibility as a user of this CRM application. Where we as the application provider only serve as a medium for data storage and data processing services, without the right to use the data for anything.

The form of implementation of the various data that Customer enter in the Barantum application, is only used according to the function of the application itself as follows:

  1. We use personal data as a basic data that shows the number of users (active users of Barantum CRM in accordance with updating the time).
  2. Organizational / company data is the basic data that we use to make related analyzes: what kind of variations or types of industries and categories of companies are incorporated in CRM Barantum members
  3. Sharing of data to third parties: basically we will never do it in any form except to get the agreement of Customer as the account owner. As for if Customer (the user) with and for one reason or another makes a request to us to share data with third parties, the procedure we will carry out is as follows:
    1. We have received approval from the PIC (company responsible).
    2. We get authorization to share data in accordance with Customer agreement with third parties after point "A" is fulfilled first.
    3. We will not get any sanctions from Customer company or Customer as an account holder in relation to what we do at point "B".
    4. We will not be responsible for further conditions after points A, B, C are fulfilled and we provide data to third parties.

Types of personal data we process

In connection with the use of the Services, Barantum acts as a system and platform provider that enables Customers to independently input, manage, store, and process data, including Personal Data. In this regard, Barantum does not act as a party that collects Personal Data, but solely processes Personal Data that is entered and controlled by the Customer, and only to the extent necessary for the provision of the Services in accordance with the Customer’s instructions, valid consent, and applicable laws.

In this context, the categories of Personal Data that may be processed through the use of the Services (as applicable, depending on the type of Services and the data entered by the Customer) include:

  1. Identity Data: Including but not limited to name, username, gender, domicile address, place and date of birth, occupation, and other similar information.
  2. Business Data: Including but not limited to business sector, telephone number, business address, business revenue, and the identity of owners, managers, or directors.
  3. Contact Data: Including but not limited to email address, telephone number, contact lists, and other similar data.
  4. Payment Data: Including transaction or payment information made through the Services, such as payment methods, usage data, recipient details, and payment amounts.
  5. Activity Data: Data related to the use of the Services, including system interactions, input/transaction activities, communications, and other related activities.
  6. Location Data: Location information associated with the use of the Services, which may include system- or device-based location data where available.
  7. Log Data: Including server logs such as access times, system activities, and history of feature or page access within the Services.
  8. Technical Data: Including technical information relating to the use of the Services, such as user ID, system activity, duration of use, device information, and system and application information.
  9. Device Data: Including device type, model, language settings, and network information used to access the Services.

How We Use Customer Data

Data and Information provided by Customer to us will be used for the following purposes:

  1. To provide technical assistance to Customer or to complete the tasks Customer requested for. For example, when Customer request for help from our Solution and Support team, we will use Customer Personal and Service Data to provide assistance which is tailored to Customer needs;
  2. To monitor, maintain and improve our Services
  3. To manage billing and payments. Third Party payment gateways and Third Party credit card processing providers are involved in our billing and payment processes. These Third Parties are not allowed to store, retain or use Billing Information except for the sole purpose of credit card processing and is subject to confidentiality obligations restricting the disclosure of information collected to other Third Parties;
  4. To follow-up or communicate with Customer about Customer interest in using Barantum when Customer contact us to request for more information, sign-up for our events or send in Customer enquiries and so on;
  5. To share with Customer useful content which may be of interest to Customer and to update Customer about our latest Products and Services (“Marketing”);
  6. To manage and administer Customer Barantum account;
  7. To provide and administer our events community. We may provide blogs, community chat groups or even forums on our Website or Apps (collectively, “Community Platforms”). Any Personal Data Customer choose to submit in such Community Platforms may be read, collected, or used by others who visit these platforms, and may be used to send Customer unsolicited messages. It is not our responsibility to manage the Personal Data Customer decide to share with these Community Platforms;
  8. To link Customer Barantum account to third-party accounts such as WhatsApp Business, Instagram, Google, Github, Facebook, Telegram, Instagram, LINE, e-mail, and so on;
  9. To produce training data derived from the Service Data for research, development and business analysis purposes;
  10. For other purposes that we believe to be necessary or appropriate: (a) under applicable law, including laws outside Customer country of residence; (b) to comply with legal processes; (c) to respond to requests from public and government authorities, including public and government authorities outside Customer country of residence; (d) to enforce our terms and conditions; (e) to protect our operations or those of any of our Affiliates; (f) to protect our rights, privacy, safety or property, and/or that of our Affiliates, Customer or others; and (g) to allow us to pursue available remedies or limit the damages that we may sustain.
  11. Customer agree that Barantum will use Customer company name and logo in all promotional, marketing materials, press releases, and on Barantum's website. This consent covers all forms or formats of promotion and marketing, including but not limited to print, digital, and other promotional media.
  12. To conduct the necessary verification prior to the provision of the Services, including Customer identity verification (Know Your Customer / KYC), in order to ensure the validity of identity, legal compliance, and the prevention of misuse of the Services. Such verification is carried out on a limited basis and only when necessary, and does not involve access to or processing of Personal Data without valid consent or a lawful basis as required under applicable laws.

Access to personal data by other parties

In providing the Services, the Customer acts as the controller of Personal Data, including in giving consent for the processing and/or disclosure of Personal Data belonging to customers, users, or other related parties that is managed through the Barantum system.

Access to Personal Data may only be granted under the following circumstances:

  1. based on consent provided by the Customer as the Personal Data controller;
  2. where permitted or required under applicable laws and regulations;
  3. pursuant to a formal request from a competent government authority acting within its lawful powers; or
  4. pursuant to a valid and binding court order.

The Customer is prohibited from sharing or granting access, in any form whatsoever, to Barantum staff.

In addition to the disclosures described above, your Personal Data may also be disclosed under the following circumstances:

Social Media

In the use of Barantum Services, including communication features such as BarantumChat, Personal Data processed through the Barantum system is not published and is not automatically accessible to the public or other users. Access to such Personal Data remains entirely under the control of the Customer in accordance with the configurations, authorizations, and access settings determined by the Customer. Barantum shall not be responsible for any disclosure of Personal Data resulting from configurations, usage, or actions taken by the Customer outside the control of the Barantum system.

Third-Party Websites/Links

If Personal Data is entered, accessed, or processed through third-party websites, applications, or links that are outside Barantum’s control, such processing shall be subject to the privacy policies of the respective third parties. Barantum shall not be responsible for the Personal Data processing practices of such third parties.

Google Ads, Google OAuth, Gmail

While using our Product and Services, Customer may be asked to grant authorization and share Customer data to Google OAuth (“Google OAuth”), Google Ads ("Google Ads"), and/or Gmail ("Google Mail"). Customer may need to give Customer consent to Google OAuth, Google Ads, and/or Gmail through OAuth Consent Screen on the Google API Console. We assure Customer that every data Customer provide to Google OAuth, Google Ads, and/or Gmail will only be used for the purpose of service provision.

NOTE

The use of the Service Data is also governed by the Service Agreement Customer enter into with us in connection with the services Customer subscribed to or are engaging with us. In the event of any conflict arising between this Privacy Policy and the Service Agreement, the Service Agreement supersedes.

Accessing, Correcting and Deleting Customer Information

Customer may access, correct or delete the Personal Data Customer has provided us by using the tools within the Products and/or Services (for example, editing Customer profile information on the Products and Services ) or by contacting support@barantum.com.

Changes Customer make to Customer information on our Products and Services will take immediate effect on Customer network but data will be retained in secure storage for a limited period afterward as part of our Customer data backup process.

Children

It is hard for us to distinguish the age of users who access and use the Website. If a person, according to applicable laws, is classified as a minor and has provided us with Personal Data or Service Data without parental or guardian consent, the parent or guardian should contact us to remove the relevant Personal Data or Service Data and unsubscribe the minor.

If we learn that a user is under the age of 13 (thirteen), he/she may not register an account with us or use our Services and will take appropriate steps to remove the user’s information from the database and restrict the user from future access to our Products and Services.

Security Systems

Barantum takes the security of your information very seriously. We recognize and value the trust you place in us by entrusting important information and documents to Barantum. Your information is encrypted and protected using leading security technologies and standards.

To safeguard your data, we implement international Information Security Management System standards based on ISO 27001. Barantum personnel are trained to understand and comply with ISO 27001 requirements when processing your Personal Data. In addition, we utilize international SSL & HTTPS standards with 2048-bit certificate encryption to ensure the confidentiality, integrity, and availability of data.

We continuously strive to enhance the security of your data by adopting the latest technologies and complying with applicable regulations, including meeting the expectations of relevant stakeholders. The protection of your Personal Data is our top priority, and we apply the highest standards to secure your information.

However, as the transmission of information over the internet is not completely secure, we cannot guarantee the integrity and accuracy of Personal Data transmitted by you via the internet. Therefore, you are responsible for maintaining the confidentiality of your account details, including your password and One-Time Password (OTP), and for ensuring the security of the devices you use.

You agree to release, discharge, and indemnify Barantum from any losses, risks, or consequences arising from Personal Data being intercepted, accessed, tapped, stolen, disclosed, altered, or destroyed by unauthorized third parties due to factors beyond our reasonable control.

We Encrypt All Identifiable Customer Data

In our system, all Customer data is stored securely, with keys that are made specifically for each user. We encrypt any data that can be known as the customer's property, including Customer name & e-mail address.

For the security of Customer password, we use Hashing technology to minimize password cracking to a minimum. We apply the same technique to all file Customer uploaded.

Like other systems, the security of Customer information also depends on Customer. Choose a strong password (we do our best to guide Customer to do this and protect Customer from breaking passwords), and never tell or distribute it to others

Secure Customer Data in Transit

Even if someone tries to “eavesdrop” on Customer communication, they still cannot decrypt the data. All communication between Barantum and Customer is encrypted with SSL using a 2048-bit certificate, and we require SSL for all communications. This technique is done so that even if someone tries to “eavesdrop” on Customer communication, they still won't be able to decryption to steal Customer data.

Privacy

This privacy policy (hereinafter referred to as "POLICY") is designed to collect and manage data in accordance with what is in our interest to serve Customer. Specifically the management of data contained in: https://barantum.com and or the CRM application that we developed at https://barantum.com (hereinafter referred to as "PRODUCT"). By using a CRM product and accessing our site, Customer agree to and are directly bound by the matters contained in the policy.

Therefore, we hope Customer will read and understand all matters related to this privacy policy.

Use of Cookies

Cookies are text files that are placed on Customer computer and cell phone. Where the function of cookies is for recording purposes. We use cookies to help Customer make it easier to use the product. Cookies cannot be used to run programs or send viruses to Customer computer. However, cookies will function to record Customer data such as the data Customer store on the Site or Product.

Examples of use are: If Customer create an account on the Site, cookies will help us to remember data specific to Customer next visit. When Customer return to the Site, the data that Customer provided previously will appear again. With conditions like this, Customer work process becomes easier with Customer activate Customer cookies. Another function of cookies is that it can be used by other parties to be able to analyze data for us. As Google Analytics does, they will collect Customer data that cannot be identified as private with all their activities, especially when using the product.

Contact

And to facilitate communication between the two parties, both from Customer side or Barantum's side. If in Customer trip Customer has a complaint or input about the data that Customer has or the data in our system. Then Customer can submit a request for an answer or contact us via E-mail : support@barantum.com

Changes to the Privacy Policy

With all the things we have explained above, we hereby explain that we have the right and authority to change or improve this Policy whenever we feel we need to revise or improve it in accordance with existing conditions. Where we will automatically upload the latest Policy to the Site.

Policy updates that occur directly will affect Customer use of the Site and Products concerned. But before that we will try to always update or provide the latest information related to the revision or changes in our Policy (of course if we feel we need to convey to clients within the timeframe that we adjust to the needs). By reading and understanding all of the discussion about Security and Privacy, as long as Customer is still using the Barantum CRM application, Customer will immediately agree to everything that is included in the content on this Security and Privacy page.

All-in-One Solutions Omnichannel CRM

Sales CRM - Customer Services CRM - Omnichannel Communication

Contact Sales