Categories of Data Collection and Processing
Although our digital endpoint acts as a single-entry visual directory routing communication pathways exclusively via our corporate WhatsApp Cell, our infrastructure logs, retains, and evaluates specific subsets of metadata arrays required for commercial integrity and statutory validation:
a. Technical Metadata & Identifiers: IP Address, browser user-agent tokens, localized tracking cookies, referral URL logs, and operational session parameters parsed during your active traversal across our catalogs.
b. Institutional Entities: Legal entity names (PT/CV), Business Registration Indices (NIB), Corporate Tax Registration Numbers (NPWP), and structural customs registries for Free Trade Zone alignment.
c. Structural Manifests: Comprehensive Material Take-Off (MTO) sheets, dimensional pipeline profiles, metallurgical specifications, engineering blueprint parameters, and specialized logistics target coordinates.
Legal Basis and Purpose of Data Utilization
The automated handling and physical filing of your enterprise specifications rest upon pre-contractual necessity parameters, regulatory trade compliances, and legitimate commercial underwritings. These indices are executed exclusively to achieve the following bounds:
— Engineering evaluation and supply chain verification of steel pipeline availability within our Batam staging yard limits.
— Underwriting and generation of formal binding commercial invoices, performance bonds, and procurement quotations.
— Filing required maritime cargo manifest variables and customs clearance validations (PPFTZ-01 documentation entries).
— Mitigating identity fraud, executing anti-money laundering controls, and complying with systemic transaction logging for electronic processing network frameworks.
Granular Disclosures to Authorized Third Parties
PT Radin Samudera International maintains non-disclosure frameworks. Data indicators are never leased, bartered, or distributed to non-affiliated marketing entities. Controlled data transfer occurs solely within the bounds of legal mandates to the following specialized targets:
1. Licensed Payment Gateway Processors: For secure invoice validation, institutional account routing, identity checks, and fraud screening during banking clearance setups.
2. Maritime Logistics & Charter Operators: Freight forwarders handling ship allocation, port-to-port heavy cargo transit, and land transport staging vectors.
3. Statutory & Regulatory Bodies: Indonesian Directorate General of Customs and Excise (Bea Cukai) for cross-border FTZ clearance, tax auditors, and financial oversight authorities when mandated by operational code.
Cryptographic Security Measures and Storage Architectures
Electronic data packages are fully shielded leveraging 256-bit Transport Layer Security (TLS/HTTPS) algorithms during in-transit state transitions. Storage blocks are encapsulated within sandboxed cloud server network segments monitored through stringent Role-Based Access Controls (RBAC). Physical records and technical drawings are subjected to high-grade security arrays to mitigate breach points, unauthorized modification interceptors, or illegal exfiltration actions.
Definitive Data Retention Standards
In strict synchronization with Indonesian corporate taxation codes and international accounting standard requirements, commercial invoice strings, customs permits, and transaction histories are archived for a mandatory statutory duration of 5 (five) to 10 (ten) years post-contract termination. Upon passing this legal audit shelf-life threshold, data entities are systematically purged through total cryptographic deletion mechanisms, and paper assets are destroyed.
Data Subject Entitlements Under Global Jurisdictions
Governed by modern data privacy acts, your corporate representatives possess sovereign statutory entitlements that may be exercised directly via our compliance desks:
— The Right to Access: Request complete verifications regarding whether your corporate indices are actively held within our registry databases.
— The Right to Rectification: Obligate immediate structural updating of incorrect, mismatched, or outdated corporate tax identifiers or material tracking profiles.
— The Right to Erasure / Right to be Forgotten: Demand premature clearing of company profiles from our non-statutory databases, subject to pending financial audit bindings.
— The Right to Restrict Processing: Suspend specific operational processing steps concerning pending project blueprints during ongoing arbitration cycles.
Data Controller Authority Contact Details
Requests, regulatory actions, or validations of privacy rights are managed under the legal authority of PT Radin Samudera International. Direct your corporate compliance declarations to our Data Protection Officer (DPO) center: