Privacy Policy

Welcome to the Privacy Policy of kir.insanidean.id (referred to as “we,” “us,” or “our”). This document outlines our commitment to protecting the privacy and security of visitors and users of our website, located at https://kir.insanidean.id/ (the “Website”). As a business operating in the Home Exterior niche, we may collect certain information in the course of providing our services and content. This Privacy Policy explains in comprehensive detail how we collect, use, disclose, transfer, and store your personal information, along with the choices you have regarding this information.

We understand that privacy is a fundamental right and are dedicated to maintaining the trust and confidence of our users. Our aim is to be transparent about our data practices. We encourage you to read this policy carefully to understand how we handle your personal data. By accessing or using our Website, you acknowledge that you have read, understood, and agree to the terms of this Privacy Policy. If you do not agree with our policies and practices, your choice is not to use our Website.

This policy is designed to attempt to cover a broad range of data processing scenarios and incorporate common privacy principles. It is important to remember that the specific legal requirements applicable to data processing activities depend on various factors, including but not limited to, the location of the data subjects (our users), the type of data processed, and the nature of the processing activities. While this policy strives for comprehensiveness, it is not a substitute for legal advice tailored to your specific circumstances.

2. Definitions

To enhance clarity and understanding of this Privacy Policy, the following terms are defined:

• Personal Data (or Personal Information): Any information relating to an identified or identifiable natural person (“Data Subject”). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
• Processing: Any operation or set of operations which is performed on Personal Data or on sets of Personal Data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
• Data Controller: The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data. For the purpose of this Policy, kir.insanidean.id is the Data Controller.
• Data Subject: The identified or identifiable natural person whose Personal Data is processed. In the context of this policy, this refers to you, as the user or visitor of our Website.
• Data Processor: A natural or legal person, public authority, agency or other body which processes Personal Data on behalf of the Controller. These are typically third-party service providers.
• Third Party: A natural or legal person, public authority, agency or body other than the Data Subject, Data Controller, Data Processor and persons who, under the direct authority of the Controller or Processor, are authorised to process Personal Data.
• Website: The website operated by kir.insanidean.id, located at the URL: https://kir.insanidean.id/.
• Home Exterior Niche: Refers to the specialized area of business focusing on products, services, information, or content related to the outside of residential or commercial buildings, such as roofing, siding, windows, doors, landscaping, painting, patios, decks, and related aesthetic and structural elements.

3. Principles for Processing Personal Data

We adhere to the fundamental principles relating to the processing of Personal Data, ensuring that data is:

• Processed Lawfully, Fairly, and Transparently: We process data based on valid legal grounds, treat data subjects fairly, and are open about our data practices through this policy.
• Collected for Specified, Explicit, and Legitimate Purposes: We collect data only for specific, clear objectives relevant to our Home Exterior niche website and do not process it in a manner incompatible with those purposes.
• Adequate, Relevant, and Limited to What is Necessary: We only collect data that is sufficient and pertinent for the stated purposes and avoid excessive data collection.
• Accurate and, Where Necessary, Kept Up to Date: We take reasonable steps to ensure the accuracy of the data we hold and rectify inaccuracies promptly.
• Stored Only as Long as Necessary: We retain Personal Data only for the period required to fulfill the purposes for which it was collected, considering legal and business needs.
• Processed Securely: We implement appropriate technical and organisational measures to ensure the integrity and confidentiality of the data, protecting against unauthorised or unlawful processing, accidental loss, destruction, or damage.
• Accountability: As the Data Controller, we are responsible for and must be able to demonstrate compliance with these principles.

4. Information We Collect

We collect several types of information from and about users of our Website. The type and amount of information collected depend on how you interact with our Website.

4.1. Information You Provide to Us Directly

This includes information you provide when you interact with us through forms, communication channels, or direct input. Given the Home Exterior niche, examples could include:

• Contact Information: Name, email address ([email protected] or other emails used), telephone number, and potentially physical address if you request a quote for a service or project location assessment related to Home Exteriors.
• Inquiry Details: Information you provide when contacting us through contact forms, email, or phone calls, such as details about your specific Home Exterior project interest, questions about services, or requests for information. This might include project type (e.g., roofing, siding, windows), property type, description of needs, budget range, desired timeline, etc.
• Account Information (if applicable): If we were to implement user accounts in the future, this would include usernames, passwords (stored securely, likely hashed), and profile information. (Note: Currently, the site seems to be kir.insanidean.id – likely an informational or portfolio site within a university environment, so account creation might not be relevant now, but this section covers the possibility).
• Correspondence Information: Any information you provide when you communicate with us directly, such as feedback, support requests, or survey responses.
• Submission Information (if applicable): If the site allows users to submit project photos, descriptions, reviews, or testimonials related to Home Exteriors, this would include the content of those submissions and associated metadata.
• Payment Information (if applicable): If we were to offer direct services or products for sale through the Website now or in the future, we would collect billing addresses and payment card details (processed via secure third-party payment gateways; we typically do not directly store full payment card numbers).

4.2. Information Collected Automatically

As you navigate through and interact with our Website, we may use automatic data collection technologies to gather certain information about your equipment, browsing actions, and patterns. This information is primarily statistical data and does not identify any individual, but it may be associated with information you provide to us or that we collect from other sources. This helps us analyze trends, administer the site, track users’ movements around the site, and gather demographic information about our user base as a whole. This includes:

• Technical Information:
  • Internet Protocol (IP) address used to connect your computer to the Internet (which can potentially indicate your general location, but is typically not precise geographical data).
  • Browser type and version.
  • Operating system and platform.
  • Device type (desktop, mobile, tablet).
• Browsing Information:
  • The full Uniform Resource Locators (URLs) of pages you visit on our Website.
  • Clickstream to, through, and from our Website (including date and time).
  • Pages you viewed or searched for.
  • Page response times.
  • Download errors.
  • Length of visits to certain pages.
  • Page interaction information (such as scrolling, clicks, and mouse-overs).
  • Methods used to browse away from the page.
  • Referring/exit pages.
• Location Data: While we do not collect precise GPS location data unless explicitly consented to for a specific optional service (unlikely for a Home Exterior informational site), your IP address can provide a general indication of your city or region. This is collected as part of technical information and used for aggregated analytics (e.g., understanding where our audience is generally located).

4.3. Information from Third Parties

We may receive information about you from third parties, such as:

• Service Providers: Information from analytics providers (e.g., Google Analytics) which provide aggregated, anonymized data about website traffic and user behavior.
• Publicly Available Sources: Information from publicly available sources (e.g., business directories, public social media profiles – if relevant to making initial contact with a potential business client, always processing within legal limits).
• Partners (if applicable): If we collaborate with partners (e.g., material suppliers, related service providers), they may share information with us that you have consented for them to share, or that is necessary to fulfil a service you requested involving both parties.

It is our policy to only obtain information from third parties where we have a lawful basis to do so, such as your consent or where the information is publicly available and its processing aligns with our legitimate interests and your data protection rights. We also ensure, where possible, that such third parties are compliant with applicable data protection laws.

5. How We Use Your Information (Purposes of Processing)

We use the information we collect about you for various purposes, all of which are aimed at operating our Website, providing relevant content related to Home Exteriors, and, if applicable, delivering requested services or information. Our basis for processing varies depending on the specific purpose and the type of data involved.

5.1. To Provide, Maintain, and Improve Our Website and Services:

• Operating and managing the Website.
• Ensuring the technical functionality and security of the Website (e.g., preventing fraud or security breaches).
• Improving the content, layout, and navigation of the Website based on usage patterns.
• Developing new features, content, or services related to Home Exteriors.
• Debugging and troubleshooting technical issues.
• Legal Basis: Primarily Legitimate Interests (to operate a functional and secure website), potentially Contract (if providing specific services you’ve signed up for).

5.2. To Respond to Your Inquiries and Provide Customer Support:

• Responding to contact form submissions, emails, or phone calls.
• Providing information you have requested about Home Exterior topics or services.
• Addressing your questions, concerns, or feedback.
• Processing and fulfilling requests for quotes or consultations.
• Legal Basis: Primarily Contract (to take steps at your request prior to potentially entering a contract, or to fulfill a service explicitly requested) or Legitimate Interests (to manage customer relationships and support).

5.3. To Understand and Analyze Website Usage and Trends:

• Using analytics tools to track visitor behavior, such as pages visited, time spent on the site, and traffic sources.
• Generating aggregated statistical data about our audience (e.g., demographics based on IP location, most popular content).
• Understanding which Home Exterior topics or services are most popular or relevant.
• Monitoring and analyzing trends, usage, and activities in connection with our services.
• Legal Basis: Legitimate Interests (to understand site performance and user engagement to improve content and offer relevant information). Consent may also be used for certain types of analytics, particularly those using cookies or tracking technologies.

5.4. For Marketing and Communication (where permitted):

• Sending you newsletters, updates, or promotional materials related to Home Exteriors, if you have explicitly opted-in to receive such communications.
• Informing you about new content, services, or offers that might be of interest.
• Personalizing content or recommendations based on your browsing history or stated interests (if we implement such features).
• Conducting surveys or requesting feedback to improve our offerings.
• Legal Basis: Consent (for direct marketing communications explicitly subscribed to). Legitimate Interests (for non-marketing communications, e.g., service updates, operational notices, or potentially soft opt-in in specific jurisdictions if applicable).

5.5. For Security and Fraud Prevention:

• Detecting, preventing, and investigating potential security incidents, fraudulent activities, or violations of our Terms of Use.
• Protecting our rights and property and the safety of our users or others.
• Legal Basis: Legitimate Interests (maintaining a secure online environment) and Legal Obligation (complying with security reporting requirements).

5.6. To Comply with Legal Obligations:

• Responding to lawful law enforcement requests, court orders, or legal process.
• Complying with applicable laws, regulations, and legal procedures.
• Establishing, exercising, or defending legal claims.
• Legal Basis: Legal Obligation (compliance with mandatory legal requirements).

5.7. For Business Operations and Transfers:

• Managing our internal business operations, accounting, and record-keeping.
• In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, user information may be transferred as part of that transaction.
• Legal Basis: Legitimate Interests (effective business management, planning for potential business changes) and Legal Obligation (certain accounting/auditing).

We will not process your Personal Data for purposes incompatible with the purposes for which it was collected, unless we obtain your explicit consent or are legally required or permitted to do so.

6. How We Share Your Information (Disclosure to Third Parties)

We may disclose your Personal Data to third parties in certain circumstances, primarily to operate our business, provide requested services, or comply with legal obligations. We strive to share the minimum amount of data necessary for the specific purpose.

6.1. Service Providers:

We engage trusted third-party companies and individuals to perform services on our behalf or to assist us in operating our business and the Website. These service providers may have access to your Personal Data only to perform these tasks and are bound by contractual obligations to keep it confidential and use it only for the purposes for which we disclose it to them. Categories of service providers may include:

• Website Hosting Providers: Companies that store our Website files and databases on servers (e.g., Insan Idean’s infrastructure). They require access to data stored on their servers.
• Analytics Providers: Companies like Google Analytics that collect and process data about Website usage to provide us with reports and insights. Data shared is often aggregated or anonymized, but raw usage data may contain IP addresses or other identifiers.
• Email Service Providers: Platforms used to send emails, such as responding to inquiries or sending newsletters (if you’ve subscribed). They process email addresses and message content.
• Customer Relationship Management (CRM) Systems: Software used to manage customer and prospect information and communications.
• IT and System Administration Services: Providers who support our technology infrastructure and may require access to systems containing Personal Data for maintenance or troubleshooting.
• Professional Advisors: Lawyers, accountants, auditors, insurers who require access to certain information in the scope of the professional services they provide to us.

6.2. Business Transfers:

If we are involved in a merger, acquisition, asset sale, financing, reorganization, divestiture, or bankruptcy, we may transfer your Personal Data to the involved third party as part of the transaction. Any successor entity would be bound by this Privacy Policy or a policy with similar protections.

6.3. Legal Requirements and Law Enforcement:

We may disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g., a court order or a request from a law enforcement agency). This includes cooperating with regulators, enforcement agencies, and other governmental bodies.

6.4. To Protect Our Rights and Safety:

We may disclose your Personal Data when we believe it is necessary to protect our rights, property, or safety, or the rights, property, or safety of others. This includes exchanging information with other companies and organizations for the purposes of fraud protection and credit risk reduction.

6.5. With Your Consent:

We may disclose your Personal Data to any other third party with your explicit prior consent. For example, if you ask us to share your contact information with a partner company for a joint project.

6.6. Aggregated or Anonymized Data:

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you with third parties for various purposes, including analytics, research, reporting, and marketing. This type of data does not constitute Personal Data.

We do not sell, rent, or trade your Personal Information to third parties for their direct marketing purposes without your explicit consent.

7. Data Retention

We retain Personal Data for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. The precise retention period for different types of Personal Data varies depending on:

• The purpose for which we collected the data (e.g., contact inquiry data will be kept as long as needed to respond to and follow up on the inquiry, potentially longer if it leads to a business relationship).
• The nature of the Personal Data.
• Legal and regulatory obligations (e.g., retaining transaction records for tax purposes).
• Business needs and requirements (e.g., maintaining records for potential future queries or service needs).
• Whether you have requested erasure of your data (subject to legal exceptions).

To determine the appropriate retention period for Personal Data, we consider the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of your Personal Data, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means, and the applicable legal requirements.

When Personal Data is no longer required for the purpose for which it was collected, we will securely destroy, erase, or anonymize it in accordance with applicable laws and our data destruction protocols.

8. Data Security

The security of your Personal Data is paramount to us. We have implemented appropriate technical, physical, and organizational measures designed to protect your Personal Data from accidental loss, unauthorized access, use, alteration, disclosure, and unlawful destruction. These measures include:

• Technical Security:
  • Use of Secure Socket Layer (SSL/TLS) encryption for data transmitted via the Website (indicated by “https://” in the URL and a padlock icon).
  • Implementing access controls and authentication mechanisms to limit who can access Personal Data.
  • Regular security assessments and vulnerability scanning of our systems.
  • Use of firewalls and intrusion detection/prevention systems.
  • Data backup and recovery procedures.
• Organizational Security:
  • Establishing internal policies and procedures regarding data handling and security.
  • Providing data privacy and security training to personnel who handle Personal Data.
  • Limiting data access to employees on a need-to-know basis.
  • Conducting due diligence on third-party service providers to ensure they have adequate security measures in place.
• Physical Security:
  • Securing physical access to systems and data storing facilities.

While we strive to use commercially acceptable means to protect your Personal Data, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee its absolute security. You are responsible for keeping any access credentials confidential and secure. If you believe your Personal Data has been compromised, please contact us immediately using the contact details provided below.

We have procedures in place to handle any suspected Personal Data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

9. International Data Transfers

Our Website is hosted within the Insan Idean infrastructure, the location of which you may need to ascertain. However, some of the third-party service providers we work with (as outlined in Section 6.1) may be located in, or process data in, countries outside of your jurisdiction or the country where the data was originally collected. This means your Personal Data may be transferred to and stored on servers located in countries with data protection laws that may differ from those in your country of residence.

For users interacting from within the European Economic Area (EEA), data transfers to countries not deemed by the European Commission to provide an adequate level of data protection will only be undertaken with appropriate safeguards in place. These safeguards are designed to ensure that your privacy rights are protected and include:

• Using Standard Contractual Clauses (SCCs) approved by the European Commission, which contractually obligate the recipient of the data to protect the Personal Data to the same standard as in the EEA.
• Transferring data to countries with Binding Corporate Rules (BCRs) approved by European data protection authorities.
• Transferring data to recipients in countries like the United States that participate in programs recognized as providing adequate protection (e.g., a future Trans-Atlantic Data Privacy Framework, although this is subject to ongoing legal developments and requires verification).

By using our Website, you understand that your Personal Data may be transferred to our facilities and those third parties with whom we share it as described in this Privacy Policy. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy and applicable data protection laws, regardless of the country to which it is transferred. However, it is important to be aware that transferring data across international borders carries inherent risks, including potential access by foreign government authorities. We continuously monitor the legal landscape around international data transfers and adapt our practices accordingly, particularly in light of complex legal judgments such as those that have impacted the EU-US data transfer framework.

10. Your Data Protection Rights

Depending on your location and the specific privacy laws applicable to you (e.g., GDPR for users in the EEA, CCPA/CPRA for residents of California, etc.), you may have certain rights regarding your Personal Data. These rights may include:

• The Right to Access: You have the right to request access to the Personal Data we hold about you and receive a copy of it.
• The Right to Rectification: You have the right to request that we correct any inaccurate or incomplete Personal Data we hold about you.
• The Right to Erasure (“Right to Be Forgotten”): You have the right to request the deletion or removal of your Personal Data where there is no compelling reason for its continued processing, subject to certain exceptions (e.g., needing to retain data to comply with a legal obligation).
• The Right to Restrict Processing: You have the right to request that we restrict the processing of your Personal Data in certain circumstances (e.g., if you contest the accuracy of the data, the processing is unlawful, or we no longer need the data but you require it for legal claims).
• The Right to Object to Processing: You have the right to object to the processing of your Personal Data where we are relying on a legitimate interest or for direct marketing purposes.
• The Right to Data Portability: You have the right to receive Personal Data you have provided to us in a structured, commonly used, machine-readable format and transmit that data to another controller, where technically feasible and the processing is based on consent or contract.
• The Right to Withdraw Consent: If we are processing your Personal Data based on your consent, you have the right to withdraw that consent at any time. Withdrawing consent will not affect the lawfulness of processing based on consent before its withdrawal.
• Rights Related to Automated Decision Making and Profiling: You have the right not to be subject to a decision based solely on automated processing (including profiling) which produces legal effects concerning you or similarly significantly affects you, unless certain exceptions apply. (Note: Automated decision-making or profiling that significantly impacts users is unlikely for a standard Home Exterior informational site, but this right is included for completeness).
• The Right to Object to Direct Marketing: You have the absolute right to opt-out of receiving direct marketing communications from us at any time.

To Exercise Your Rights:

If you wish to exercise any of these rights, please contact us using the contact information provided in the “Contact Us” section (Section 14) of this Privacy Policy.

To protect your privacy and security, we may take steps to verify your identity before granting access to or making changes to your Personal Data. This might involve asking you to provide specific information that only you would know or answering questions related to your past interactions with us.

We will respond to legitimate requests from you within the timeframes required by applicable law. In some cases, we may not be able to fully comply with your request, such as if it conflicts with a legal obligation or affects the privacy of others. We will inform you if we are unable to comply with your request and the reasons for that.

Please note that opting out of certain data processing activities (like analytics cookies) may affect your experience on the Website.

11. Cookies and Tracking Technologies

We use cookies, web beacons, and similar tracking technologies to track the activity on our Website and hold certain information.

• Cookies: Cookies are small text files placed on your computer or mobile device by a website that you visit. They are widely used to make websites work, or operate more efficiently, as well as to provide information to the owners of the site. Cookies can be “persistent” or “session” cookies. Persistent cookies remain on your personal computer or mobile device when you go offline, while session cookies are deleted as soon as you close your web browser.
• How We Use Cookies: We use cookies and tracking technologies for various purposes, including:
  • Essential/Necessary Cookies: These cookies are strictly necessary to provide you with services available through our Website and enable you to use some of its features, such as accessing secure areas. Without these cookies, services that you have asked for cannot be provided.
  • Performance/Analytics Cookies: These cookies allow us to collect information about how visitors use our Website, such as the number of visitors, which pages are most popular, and how visitors navigate the site. This helps us improve the way our Website works. Data collected by these cookies is often aggregated and therefore anonymous. An example is cookies used by Google Analytics.
  • Functionality Cookies: These cookies allow our Website to remember choices you make (such as language preferences or the region you are in) and provide enhanced, more personal features.
  • Targeting/Advertising Cookies: These cookies are used to deliver advertisements that are more relevant to you and your interests. They are also used to limit the number of times you see an advertisement and help measure the effectiveness of advertising campaigns. They are usually placed by advertising networks with the website operator’s permission. (Use of such cookies depends on whether the site implements advertising).
• Web Beacons (Pixel Tags): Small electronic files that permit us, for example, to count users who have visited certain pages and for other related website statistics (e.g., recording the popularity of certain website content and verifying system and server integrity).
• Log Files: Standard server log files record information such as requested URLs, IP addresses, browser type, and the time of visit.
• Third-Party Cookies: Third parties (like Google Analytics) may also place cookies on your device when you visit our Website. We do not control these third-party cookies. You should check the respective privacy policies of these third parties for more information.

Managing Cookies:

You have several options for managing cookies:

• Browser Settings: Most web browsers automatically accept cookies, but you can modify your browser setting to decline cookies or be notified when a cookie is placed. Instructions for managing cookie settings vary by browser (e.g., Chrome, Firefox, Safari, Edge). Blocking all cookies may prevent you from taking full advantage of the Website.
• Third-Party Opt-Outs: Many advertising networks offer mechanisms to opt-out of targeted advertising. You can visit sites like the Network Advertising Initiative (http://www.networkadvertising.org/) and the Digital Advertising Alliance (http://www.aboutads.info/) in the US, or the European Interactive Digital Advertising Alliance (http://www.youronlinechoices.com/) in Europe, to learn more and opt-out of targeted advertising from participating companies.
• Specific Service Opt-Outs: For tools like Google Analytics, you can install the Google Analytics Opt-out Browser Add-on provided by Google.
• Website Consent Tools (if implemented): Some websites use cookie consent banners or tools that allow you to choose which types of cookies you accept when you first visit the site. While not currently explicitly described as implemented by kir.insanidean.id based on the request details, implementing such a tool is a common practice for sites targeting users subject to GDPR and similar laws. If implemented, this tool would provide you with granular control over non-essential cookies.

By continuing to use our Website without changing your browser settings to block cookies, you are consenting to our use of cookies and tracking technologies as described in this policy.

12. Children’s Privacy

Our Website is not intended for individuals under the age of 16 (or the applicable age of digital consent in their jurisdiction). We do not knowingly collect Personal Data from children under this age. If we learn that we have collected Personal Data from a child under 16 without verified parental consent, we will take steps to delete that information promptly. If you believe we might have any information from or about a child under this age, please contact us immediately.

13. Links to Other Websites

Our Website may contain links to third-party websites that are not operated by us. These links are provided for your convenience or information only, for example, linking to manufacturer websites, industry resources, or related services.

We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. The inclusion of a link does not imply endorsement of the linked site or services. We strongly advise you to review the Privacy Policy of every site you visit after leaving our Website.

We are not responsible for the privacy practices or the content of such other websites and linking to them is at your own risk.

14. Changes to This Privacy Policy

We may update our Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. The “Effective Date” at the top of this policy indicates when it was last revised.

If we make material changes to how we treat our users’ Personal Data, we will notify you through a prominent notice on the Website homepage or by sending a notification directly to you if we hold your contact information and are legally permitted to do so. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.

Your continued use of the Website after we make changes is deemed to be acceptance of those changes, so please check the policy periodically for updates.

15. Contact Us

If you have any questions ABOUT this Privacy Policy, our data practices, your Personal Data, or if you wish to exercise any of your data protection rights, please contact us:

By email:
[email protected]

We are committed to working with you to obtain a fair resolution of any complaint or concern about privacy. If you believe that we have not been able to assist with your complaint or concern, you may have the right to lodge a complaint with a data protection supervisory authority in your jurisdiction.