logo
Register

Privacy Policy

1. Introduction

RNA (PT Registrasi Neva Angkasa) ("we", "us", or "RNA") is committed to respecting and protecting the Personal Data of every user of our services in accordance with Law No. 27 of 2022 on Personal Data Protection and other applicable laws and regulations in the Republic of Indonesia.

This Privacy Policy is provided as a form of transparency to explain how we collect, use, store, process, share, transfer, and protect your Personal Data when you access RNA's websites and/or use any of our services.

We process your Personal Data on lawful bases under applicable laws and regulations, which may include: your explicit consent; performance of contractual obligations in providing our services; compliance with legal obligations; and other legitimate interests, while continuing to uphold and protect your rights.

By accessing RNA's websites, registering an account, ticking the available consent checkbox, and/or continuing to use our services, you provide your explicit consent and confirm that you have read, understood, and agreed to all provisions of this Privacy Policy voluntarily and without coercion from any party.

2. Definitions

  • Personal Data: any data about an identified or identifiable individual, directly or indirectly, through electronic or non-electronic systems.
  • Processing: any activity performed on Personal Data, including obtaining, collecting, recording, organizing, storing, correcting, using, disclosing, transferring, and deleting/destroying.
  • Personal Data Protection: all efforts to protect Personal Data throughout the Processing chain to ensure the rights of the Personal Data Subject.
  • Explicit Consent: consent you provide knowingly and expressly for specific processing purposes.
  • Performance of Contractual Obligations: Processing necessary to perform a service agreement between you and RNA.
  • Compliance with Legal Obligations: Processing carried out to comply with obligations under applicable laws and regulations (e.g., identity verification and tax reporting).
  • Legitimate Interests: Processing necessary for our legitimate interests while prioritizing the protection of your rights (e.g., system security and fraud prevention).

3. Scope of This Policy

This Privacy Policy applies to all RNA services, including:

  • RNA's official websites;
  • Client portal and service panel (RDASH);
  • Domain, SSL, Object Storage, and related services; and
  • Other interactions with RDASH systems (e.g., support tickets, live chat, email, telephone).

4. Information We Collect

Log Files
Like most websites, we collect and use information contained in log files. Such information may include your IP address (Internet Protocol), ISP (Internet Service Provider), browser type, visit time, and the pages you accessed while visiting RNA.

Cookies
Our website uses cookies to store various information such as your preferences when visiting RNA's website and your login information. RNA also uses third-party tracking services to support our website. Certain tracking services may use cookies when tracking activities on our website. RNA works with tracking tools such as Google Tag Manager and Microsoft Clarity. The information transmitted may include IP address, ISP, browser, operating system, and similar data.

User Data
User data may include your name, contact information, email address, demographic data (such as postal/ZIP code), preferences and interests, financial transaction data, support ticket history, and other information related to customer surveys and/or offers.

Methods and Sources of Data Collection
We collect data through: (i) direct interactions, such as when you register an account, complete forms, purchase services, submit requests/complaints, or contact customer support; (ii) automatic collection, when you access our websites/services (via cookies, server logs, IP address, device data, and usage data); and (iii) third parties, such as payment service providers/partners, analytics providers, or third-party integrations related to service provision and operations, to the extent permitted by applicable regulations.

Purposes of Use
We use the information and/or Personal Data collected through our websites and services for the following purposes: (i) service provision and operations, including account registration, authentication, account management, transaction processing, and service improvements; (ii) analysis and development, to understand how services are used in order to improve performance and user experience, including enhancements to features and website content; (iii) security and fraud prevention, including prevention of unauthorized access, cyber threats, misuse, and internal audits; (iv) administration and communication, including billing, invoicing, reporting, and service-related communications; and (v) marketing and personalization, including providing relevant advertising targeting, delivering relevant product offers and/or service surveys, and sending promotional information via email or WhatsApp Messenger, to the extent permitted by applicable laws and/or based on your consent.

If you use domain registration services through us, certain data may be used and/or displayed in WHOIS services in accordance with registrar/registry requirements and applicable regulations.

Storage
RNA stores personal information of resellers and domain registrants securely and protects such data from unauthorized access. We also implement appropriate security measures to prevent unauthorized access, use, or disclosure of personal information.

Disclosure to Third Parties
We will not disclose a domain registrant's personal information to any third party without the registrant's written consent, unless required by law. In such cases, any disclosed information will be limited to what is necessary, such as the registrar/registry reflected in WHOIS records or the domain provider used.

5. Data Sharing, Third Parties, and Cross-Border Transfers

As part of providing RNA services, we may share your Personal Data with technology/infrastructure providers (e.g., data centers, cloud services, network providers, security providers, and payment providers). In this context, your Personal Data may be transferred, stored, and/or processed outside the territory of the Republic of Indonesia, and recipients in other jurisdictions may be subject to different data protection laws.

Such transfers/processing may be necessary to manage accounts and provide services, including customer support, communications related to services/offers, risk control, fraud prevention, legal compliance, and payment processing. We take reasonable steps to ensure that such sharing/transfers are carried out with adequate safeguards and in accordance with applicable regulations.

RNA does not sell Personal Data to any third party for marketing purposes.

6. Personal Data Security and Protection

RNA applies strict technical and organizational security standards to protect your Personal Data from unauthorized access, alteration, disclosure, and unlawful destruction. These measures include:

  • Technical Measures and Mitigation: use of up-to-date encryption technologies (such as SSL/TLS) in data transmission; multi-factor authentication; restricted internal access management (principle of least privilege); and layered infrastructure protection against cyber threats.
  • Handling Data Protection Failures: in the event of a Personal Data protection failure or cybersecurity incident, RNA will use best efforts to mitigate impacts and will provide written notification to you as the Personal Data Subject and to the relevant authorities no later than 3 x 24 hours after the incident becomes known, in accordance with the Personal Data Protection Law.

7. Rights of Personal Data Subjects

In compliance with the Personal Data Protection Law and our commitment to transparency, RNA guarantees your rights regarding Personal Data, including:

  • Right of Access and Rectification: to complete, update, or correct your data via the RDASH dashboard.
  • Right to Erasure/Destruction: to request deletion of your data from our systems, subject to any statutory data retention obligations.
  • Right to Withdraw Consent: to withdraw consent previously provided for data processing.
  • Right to Data Portability: to obtain or transfer your data in a commonly used format to another party in accordance with secure technical standards.
  • Exercising Your Rights: requests may be submitted in writing to our Data Protection Officer (DPO) via email: [email protected]. We will process your request within a maximum of 3 x 24 hours after identity verification is completed.

8. Data Retention

Data is retained for as long as:

  • the service relationship continues; and/or
  • required for the processing purposes described in this Privacy Policy; and/or
  • required by law.

We retain your Personal Data during the service relationship to fulfill processing purposes. After the service ends, we will retain data for at least five (5) years to comply with regulations in the field of Electronic Transactions, or longer if required under tax laws and other applicable legal provisions in Indonesia.

9. Limitation of Liability

RNA is committed to providing high standards of data protection; however, you acknowledge and agree to the following limitations:

  • Third-Party Actions: RNA is not responsible for failures to protect Personal Data caused by negligence or unlawful acts by third parties not directly affiliated with RNA, including but not limited to links to external websites, third-party services integrated through your control panel, or payment gateway providers.
  • Account Security & Credentials: you are fully responsible for safeguarding your username, password, and access codes (including OTP). RNA shall not be liable for any data misuse or losses arising from your negligence in securing your device or protecting your credentials.
  • Data Accuracy: RNA processes Personal Data based on information you provide. We are not responsible for inaccuracies or legal consequences resulting from incorrect, incomplete, or misleading information provided by you.
  • Force Majeure: RNA shall not be liable for failures or delays in fulfilling data protection obligations caused by events beyond our reasonable control, including but not limited to natural disasters, war, riots, nationwide internet infrastructure failures, cyberattacks that are not reasonably foreseeable under current security standards (including zero-day attacks), or government policy changes directly affecting services.
  • Cap on Damages: to the extent permitted by applicable law, RNA's cumulative liability for all claims arising from or related to the processing of Personal Data under this Privacy Policy is limited to the total service fees you paid to RNA during the twelve (12) months preceding the claim.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in data practices, technology, or regulations. Updates will be announced via RNA's official website. Continued use of our services after updates take effect will be deemed as acceptance of the updated policy.

11. Contact RNA

If you require assistance or have any questions regarding this Privacy Policy, please contact: [email protected].

Last Updated: 23 February 2026

Applicable To: All RNA services and websites