SwipeRx Belanja Privacy Policy

1. Introduction

1.1 SwipeRx Belanja (“Application”) is a digital platform for electronic commerce where pharmacies may purchase various products offered by PT Teknologi Medika Pratama (“TMP”) through SwipeRx Belanja. 

1.2 By using the Application, accessing the SwipeRx Belanja website (“Site”) or any other application (“Services”) provided by TMP, You agree to be bound by this Privacy Policy.  The Application and Site are owned and controlled by TMP.  If You do not agree to be limited by this Privacy Policy, You are not permitted to use this Application or Site. 

1.3 The term “You” or “User” shall include anyone who has registered an account on the Application or Site, or has used the Application or Site.

2. Types of information we collect

2.1 Registration 

We collect information necessary to verify that users are pharmacy owners, pharmacists or employees of the pharmacy, including name, location, e-mail, telephone number, pharmacist license number, KTP (Resident Identity Card), signature specimen, and NPWP (Taxpayer Registration Number) (“Personal Data”). 

2.2 Profile Information 

Apart from the information provided during registration, Users may add more information about themselves. 

2.3 Customer service 

When You contact our customer service support, we may need to access your account, activity and messages and collect information to understand your questions, respond to them and provide solutions. 

2.4 Using the Services 

When You use the Services, whether through the Application or Site, we collect information about your usage activities – for example – when You click to order the products and any other activities. 

2.5 Cookies 

We use cookies and similar technologies to help us get to know You in various tools and provide a better level of security as well as, improve your experience with SwipeRx Belanja.

3. How we use your Personal Data

3.1 Consent to the Application and Site processing information about You 

When You create an account and use the Services, You share Personal Data with us. By providing Personal Data to us, You explicitly and voluntarily accept the terms of our User Agreement, accept and approve the processing and transfer of your Personal Data in accordance with this Privacy Policy.  You can withdraw your approval at any time by deleting your account information or by contacting our Data Protection Officer at the contact details provided below. 

3.2 Development of customized services and experiences. 

Depending on your Personal Data, we will provide features that improve your experience, for example providing advertisement according to your frequently purchased product preferences. 

3.3 Marketing messages 

We may send You marketing information about our goods or services including notifying You about our marketing events, initiatives and promotions, lucky draw, membership schemes, and other prizes and promotions. 

3.4 Fulfilling Orders and TMP Obligations 

TMP also processes your Personal Data for the purposes of fulfilling orders and its obligations are also to provide Services to You. 

3.5 Other Matters

For any other purposes in accordance with prevailing regulations.

4. Sharing information with third parties

 4.1 We do not sell Personal Data to any third party without your consent. 

4.2 We may disclose your Personal Data (a) to any third party data processors that we have engaged in performing any of the functions set out in paragraph 3 above, and which may be based within or outside the jurisdiction where the User exists; (b) to any third party service provider partnered with us and provide You with any other functions of the Application and Site, and other Services; (c) as part of or in preparation for the sale of TMP (either directly or indirectly), or as a sale of assets, subsidiaries or divisions; (d) as a result of or in preparation for a change in control of TMP or any of its affiliates. 

4.3 Any third party to whom we transfer or sell our assets shall have the right to continue using the Personal Data and other data that You provide to us in the manner set out in this Privacy Policy. 

4.4 In addition, we may also provide data about products, transactions, demographics and others to any third party by ensuring that the data do not contain Personal Data. 

5. Access and Correction

5.1 If the User wishes to make (a) an access request to access a copy of the Personal Data we own about the User or information about how we use or disclose the User Personal Data, or (b) a correction request to correct or update the User Personal Data that we hold, You can apply a request in writing or by email to our Data Protection Officer at the contact details provided below. 

5.2 Please note that a reasonable fee may be charged for any access request.  In that case, we will notify You of such fees before processing your request. 

5.3 We will respond to your request as soon as possible.  If we are unable to respond to your request within thirty (30) days upon receipt of your request, we will notify You in writing within thirty (30) days of when we will be able to respond to your request.  If we are unable to provide You with the Personal Data or to make corrections as You requested, we will generally tell You the reasons why we cannot do so (unless we are not required to do so under applicable laws of data protection).

6. Accuracy and Retention

6.1 To ensure that User Personal Data is current, complete and accurate, please update TMP if there is any change of User Personal Data by informing our Data Protection Officer in writing or by email at the contact details provided below. 

6.2 We may retain User Personal Data for as long as necessary to fulfil the purposes for which they were collected, or as required or permitted by applicable law. 

6.3 We will stop retaining User Personal Data, or delete that means by which such data can be associated with a particular User, as soon as it is reasonable to assume that such retention no longer serves the purposes of the Personal Data collection, and is no longer necessary for legal or business purposes.

7. Transfer

7.1 Personal Data that we collect from Users may be transferred out of the jurisdiction in which the User is based to be hosted on our third-party data processing servers located in Singapore. In the event of any transfer of Personal Data outside the jurisdiction, we will take steps to ensure that your Personal Data continue receiving a standard of protection that shall at least be comparable with that provided under prevailing regulations on personal data protection in Indonesia.

8. Change and security

8.1 Changes in this Privacy Policy 

We may change this Privacy Policy from time to time.  If there is any change in the way we treat your Personal Data or in the Privacy Policy requiring your consent under applicable regulations, we will provide You with email notification within 7 days prior to the change.  If You continue using the Application, Site and Services upon effective commencement of the changes in the Privacy Policy, You are deemed to have read, acknowledged, and agreed to the updated Privacy Policy. 

8.2 Security 

We have established and implemented security practices to protect your Personal Data from any unauthorized access, collection, use, dissemination, duplication, modification, deletion, or any risks similar thereto, equivalent to industrial standards, therein including implementation of authentication restrictions and Open SSL encryption on API, among others.  Access to your data is password protected.  We regularly monitor and keep our security standards up to date.  However, we do not guarantee the security of any information You send to us and we strongly advise against sharing any confidential information through our platform, messages and group discussion features.  We will only disclose information internally and to agents and data processors as authorized third parties.

9. Data Breach and Notification

9.1 In the event of any data breach, we will notify You as soon as practically possible, by first ensuring that the use of the personal data is harmful to You, except in conditions such as 1) the necessary corrective action has been taken so that any occurring data breach does not cause any significant harm, 2) appropriate technological measures have been applied to personal data before a breach occurs resulting in the personal data being inaccessible 3) restrictions from law enforcement agencies related to any ongoing investigation or applicable relief. In the notification provided, we will provide relevant details regarding the data breach, therein including applicable policies related to breach management and data recovery.

10. Governing Language

10.1 This Privacy Policy is prepared in Indonesian language and English. If there is any inconsistency between the two versions, the Indonesian language version prevails.

11. Data Protection Officer

11.1 Users can contact TMP Data Protection officer in case You have any questions or feedback regarding our Personal Data protection policies and procedures, or if You wish to make any request, in the following manners:

Data Protection Officer

Email : [email protected] with Privacy Policy in your email subject 

Last updated: December 4, 2023