Search
Hubungi Kami

WhatsApp

Click To Chat

Waspada! 78% Ancaman Siber Mengintai Industri Ritel, Lindungi Bisnis Anda Sekarang

ancaman siber industri ritel Helios Darktrace

Seiring meningkatnya digitalisasi dan transformasi omnichannel, industri ritel kini berada dalam sorotan utama para pelaku kejahatan dunia maya. Berdasarkan laporan IBM X-Force Threat Intelligence Index 2023, sebanyak 78 persen serangan siber terhadap sektor ritel berkaitan langsung dengan pencurian data pelanggan dan penyusupan ke sistem Point of Sale (POS).  

Tak hanya memicu kerugian finansial yang besar, ancaman siber juga menggerus kepercayaan pelanggan dan dapat menghancurkan reputasi merek dalam sekejap. Dari transaksi online hingga sistem inventaris berbasis cloud, semua menjadi titik rawan yang dapat dimanfaatkan oleh penjahat digital. 

 

8 Ancaman Siber Terbesar di Industri Ritel 

8 ancaman siber terbesar di industri ritel

Dihimpun dari berbagai sumber, ada sejumlah ancaman siber yang lazim dan marak menyerang industri ritel. Berikut beberapa ancaman siber tersebut. 

Serangan Ransomware 

Pada 2024 sekitar 45 persen bisnis ritel menjadi korban serangan ransomware, dengan biaya recovery rata-rata sekitar US$2,7 juta.  Serangan ransomware yang mengenkripsi data dan sistem ritel mengganggu aliran penjualan dan mencoreng reputasi bisnis, hingga merusak kepercayaan pelangan dan kerugian finansial secara signifikan.  

Serangan Malmware 

Serangan ini umumnya terjadi melalui software berbahaya yang dirancang untuk menginfeksi sistem komputer bisnis ritel, lalu mengambil kontrol terhadap data sensitif atau mencuri informasi kartu kredit pelanggan. Malware umumnya disematkan berupa link atau lampiran email, aplikasi atau website palsu yang mengharuskan karyawan ritel untuk men-download atau menginstal. 

Phishing

Phishing biasanya melibatkan email yang menipu karyawan ritel secara psikologis untuk mengungkapkan informasi sensitif, seperti password atau nomor kartu kredit. Berdasarkan data Trustware, 58 persen serangan siber dimulai dengan phishing – di mana penjahat siber dapat meneliti operasi dan hierarki toko untuk mencuri informasi sensitif. Email phishing kerap menampilkan link atau lampiran yang seakan-akan sah dengan menyamar sebagai manajer, vendor atau supervisor kemudian mengarahkan karyawan untuk memasukkan informasi sensitif ke dalam formulir yang dapat mencuri dan mengakses data sensitif. 

Serangan DDoS

Serangan DDoS kerap membanjiri pengiriman traffic internet secara masif ke website ritel, yang mengganggu ketersediaan situs dan mengakibatkan penurunan penjualan. Serangan ini sering dilakukan oleh penjahat siber yang ingin mencuri data atau melakukan pemerasan. 

Serangan Aplikasi Web 

Serangan ini terjadi ketika penjahat siber mengeksploitasi kerentanan keamanan dalam website atau platform e-commerce. Srangan ini dapat melibatkan penyuntikkan malware, SQL, cross-site scripting atau credential stuffing. Riset Akamai mencatat sekitar sepertiga serangan aplikasi web menyasar industri ritel, termasuk di shopping cart, pemrosesan pembayaran, dan akun pengguna. 

Insider Threat 

Ancaman dari dalam organisasi ritel kerap berasal dari karyawan yang tidak puas, mantan karyawan, atau vendor yang memiliki akses ke sistem perusahaan, data pelanggan, dan informasi sensitif seperti data kartu kredit. Insider threat dapat meliputi pencurian data sensitif, menghapus, hingga merusak data dan memperjualbelikan informasi yang dicuri di dark web. Menurut  laporan Cybersecurity Insider 2024, 83 persen organisasi melaporkan setidaknya satu serangan terjadi dari dalam perusahaan ritel. 

System Intrution 

Serangan ini terjadi ketika penjahat menggunakan kredensial login yang dicuri untuk memperoleh akses tidak sah ke sistem, jaringan, atau perangkat. Setelah memperoleh akses, penjahat siber dapat merusak data inventaris, hingga membuat akun karyawan palsu untuk memproses pengembalian barang yang tidak sah atau menginfeksi malware untuk mengganggu operasional bisnis. 

Pencurian Kredensial 

Pencurian kredensial terjadi ketika pelaku melakukan login sistem, umumnya dilakuakan melalui serangan phishing atau pencurian data. Menurut laporan Verizon 2024 Data Breach Investigation, pencurian kredensial log in terkait dengan 77 persen pencurian data. Setelah penjahat siber mengelabui seseorag untuk membagikan atau menemukan kredensial login yang disusupi setelah pelanggaran data, mereka dapat menggunakannya untuk merusak reputasi dan finansial. Penjahat siber dapat mencuri kredensial login pelanggan dari database ritel dan digunakan untuk melakukan transaksi palsu sambil menyamar sebagai pelanggan. 

 

Bagaimana Retailer Melindungi Bisnis dari Ancaman Siber?  

bagaimana retailer melindungi bisnis dari ancaman siber

Retailer dapat melindungi bisnis dari ancaman siber dengan memanfaatkan keamanan zero trust, melakukan backup data secara berkala, dan membatasi akses. Berikut cara retailer untuk melindungi bisnis dari ancaman siber. 

Keamanan Zero Trust 

Keamanan zero trust menjadi kerangka kerja keamanan yang mengharuskan semua identitas manusia dan nonmanusia diversifikasi secara terus menerus, yang membatasi akses ke data sensitif secara ketat. Prinsip zero trust menganggap pelanggaran data akan terjadi dan tidak ada akun yang dapat dipercaya. Zero trust membatasi siapa yang dapat mengakses data sensitif berdasarkan role dan pekerjaan apa yang memerlukan akses. Zero trust memiliki visiblitas lebih besar terhadap aktivitas pengguna, komunikasi lebih kuat di berbagai jaringan, dan mengurangi risiko serangan siber. 

Backup Data secara Rutin 

Backup data secara rutin penting untuk mengurangi risiko serangan siber. Ketika terjadi serangan ransomware dan pelaku menyandera data, backup data yang minim dapat mengganggu operasional bisnis hingga recovery data dan memberikan tekanan lebih besar pada perusahaan untuk membayar tebusan. Gangguan operasional dan downtime berkepanjangan dapat memicu kerugian finansial dan kerusakan reputasi bisnis. Namun, backup data secara rutin dapat membantu ritel me-recovery data ke kondisi sebelum terjadi serangan, meminimalkan downtime, dan kebutuhan untuk bernegosiasi dengan penjahat siber. 

Principle of Least Privilege (PoLP) 

Principle of Least Privilege (PoLP) memastian bahwa pengguna hanya diberikan akses yang diperlukan sesuai role mereka. Industri ritel butuh penerapan PoLP karena karyawan tidak boleh memiliki akses yang tidak perlu ke data yang memiliki hak istimewa jika terjadi pelanggaran data atau serangan siber. Hal ini karena semakin banyak akses yang diiliki karyawan ke data sensitif, maka semakin besar permukaan serangan yang memungkinkan penjahat siber untuk mengeksploitasi kerentanan keamanan. Privileged Access Management (PAM) dapat menjadi solusi untuk meminimalkan ancaman dari orang dalam karena pengguna hanya memiliki akses ke apa yang diperlukan untuk melakukan pekerjaan mereka. 

Sistem Secure Point of Sale (POS)  

Sistem POS dapat melindungi ancaman siber melalui langkah keamanan yang kuat, seperti update software secara teratur dan tetap mematuhi Standar Keamanan Data Industri Kartu Pembayaran (PCI-DSS). Sistem POS yang aman harus dapat mengenkripsi informasi pembayaran at rest dan in transit untuk mencegah ancaman siber dan keamanan informasi dari pembobolan data. 

Implementasi Firewall dan Intrusion Detection Systems (IDS) 

Penerapan firewall dan Intrusion Detection Systems (IDS) melindungi jaringan dari ancaman eksternal dengan mengontrol dan menyaring traffic jaringan untuk hardware dan software. IDS juga dapat membantu memonitor traffic jaringan untuk aktivitas mencurigakan dengan men-scan perilaku tidak lazim dan mengamankan jaringan bisnis dari akses tidak sah. Bisnis ritel akan menerima peringatan real-time sebelum terjadi kerusakan signifikan, sekaligus mengurangi akses tidak sah dan mengidentifikasi potensi peretasan. 

Memberikan Pelatihan untuk Karyawan  

Melatih karyawan tentang praktik terbaik  dan kesadaran terhadap keamanan siber dapat melindungi bisnis ritel dari potensi ancaman. Hal ini termasuk mengedukasi karyawan tentang upaya phishing melalui simulasi tes menggunakan email phishing palsu untuk mengevaluasi bagaimana respons terhadap potensi ancaman. Hal ini dapat mengidentifikasi taktik umum yang digunakan oleh penjahat siber untuk menentukan pelatihan lebih lanjut yang diperlukan. 

 

Solusi Keamanan Siber dari Darktrace untuk Perlindungan Industri Ritel 

Darktrace menawarkan solusi keamanan siber berbasis AI untuk melindungi bisnis ritel dari ancaman siber yang semakin canggih dan kompleks. Dengan pendekatan proaktif dan adaptif, Darktrace membantu bisnis ritel dalam mendeteksi, menganalisis, dan merespons ancaman ancaman siber secara real-time. Berikut tujuh fitur canggih Darktrace untuk melindungi bisnis ritel. 

Darktrace Network & Email 

Self-Learning AI memungkinkan Darktrace untuk mendeteksi, menyelidiki, dan merespons ancaman siber secara otomatis secara real-time. Dengan memahami pola unik dari setiap lingkungan digital, Darktrace dapat mengenali aktivitas mencurigakan yang mungkin tak terdeteksi sistem keamanan tradisional. 

AI-Powered Threat Detection 

Memantau lalu lintas jaringan dan komunikasi email untuk mendeteksi aktivitas anomali seperti phishing, malware, atau insider threats. 

Autonomous Response  

Darktrace Antigena dapat langsung mengambil tindakan seperti menahan email mencurigakan atau mengisolasi perangkat yang terinfeksi tanpa mengganggu operasional bisnis. 

Account Takeover Protection

Mencegah akses tidak sah dengan mendeteksi upaya peretasan akun secara real-time. 

Supply Chain Security   

Mengidentifikasi ancaman yang mungkin berasal dari pihak ketiga dan mencegah pergerakan lateral dalam jaringan. 

Behavioral Analysis for Email Security 

Menganalisis pola komunikasi untuk menghentikan serangan berbasis social engineering. 

Dukungan Kepatuhan Regulasi 

Memberikan visibilitas dan kontrol terhadap transaksi data sensitif untuk membantu kepatuhan terhadap standar industri. 

 

Baca Juga: Menuju Ekosistem Ruang Digital Indonesia yang Aman dan Tangguh 

 

Dampak Perlindungan Darktrace dari Ancaman Siber 

Darktrace Network & Email menawarkan solusi keamanan lebih baik dengan Self-Learning AI yang dapat mendeteksi dan merespons ancaman secara real-time. Berbeda dengan sistem keamanan tradisional berbasis aturan statis, Darktrace terus beradaptasi dengan pola unik bisnis untuk memberikan perlindungan proaktif dari ancaman siber yang semakin canggih dan kompleks. 

Solusi perlindungan Darktrace dapat membantu bisnis ritel mencegah penipuan melalui kemampuan deteksi dan menghentikan upaya penipuan keuangan secara lebih baik. Respons ancaman otomatis mengurangi downtime dan gangguan, sehinggan bisnis ritel dapat memastikan operasional tetap lancar. 

Kemampuan Darktrace dalam mengotomatisasi berbasis AI dapat mengurangi beban kerja tim keamanan akibat terlalu banyak notifikasi dan investigasi manual. Darktrace dapat memberikan perlindungan dari serangan email canggih untuk mencegah phishing yang menggunakan deep fake dan domain spoofing. 

Solusi ini juga memastikan keamanan supply chain yang lebih andal untuk jaminan keamanan secara end-to-end dalam rantai pasok. Integrasi mudah dan respons otomatis memungkinkan Darktrace untuk mengamankan bisnis tanpa menghambat operasional. 

 

Dapatkan Solusi Cyber Security dari Darktrace di Helios  

Helios sebagai bagian dari CTI Group, sekaligus partner Darktrace siap memberikan perlindungan untuk industri ritel dari ancaman siber yang semakin kompleks. Helios didukung tim engineer ahli bersertifikat dan berpengalaman untuk memastikan setiap solusi diimplementasikan sesuai standar global dan best practice industri tanpa risiko trial and error. Segera hubungi tim Helios di link berikut ini! 

Share this article

Table of Contents

Related article
Get in Touch

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus, luctus nec ullamcorper mattis, pulvinar dapibus leo.

Instagram

© 2024 – PT. Helios Informatika Nusantara – All Rights Reserved

Home
Solution
Catalog
Contact
Other
Start a Conversation
Start a Conversation

TERMS & CONDITIONS

Welcome to Helios Informatika Nusantara!

These terms and conditions outline the rules and regulations for the use of Helios Informatika Nusantara’s Website, located at https://www.helios.id/.

By accessing this website we assume you accept these terms and conditions. Do not continue to use Helios Informatika Nusantara if you do not agree to take all of the terms and conditions stated on this page.

The following terminology applies to these Terms and Conditions, Privacy Statement and Disclaimer Notice and all Agreements: “Client”, “You” and “Your” refers to you, the person log on this website and compliant to the Company’s terms and conditions. “The Company”, “Ourselves”, “We”, “Our” and “Us”, refers to our Company. “Party”, “Parties”, or “Us”, refers to both the Client and ourselves. All terms refer to the offer, acceptance and consideration of payment necessary to undertake the process of our assistance to the Client in the most appropriate manner for the express purpose of meeting the Client’s needs in respect of provision of the Company’s stated services, in accordance with and subject to, prevailing law of id. Any use of the above terminology or other words in the singular, plural, capitalization and/or he/she or they, are taken as interchangeable and therefore as referring to same.

 

Cookies

We employ the use of cookies. By accessing Helios Informatika Nusantara, you agreed to use cookies in agreement with the Helios Informatika Nusantara’s Privacy Policy.

Most interactive websites use cookies to let us retrieve the user’s details for each visit. Cookies are used by our website to enable the functionality of certain areas to make it easier for people visiting our website. Some of our affiliate/advertising partners may also use cookies.

 

License

Unless otherwise stated, Helios Informatika Nusantara and/or its licensors own the intellectual property rights for all material on Helios Informatika Nusantara. All intellectual property rights are reserved. You may access this from Helios Informatika Nusantara for your own personal use subjected to restrictions set in these terms and conditions.

You must not:

  • Republish material from Helios Informatika Nusantara
  • Sell, rent or sub-license material from Helios Informatika Nusantara
  • Reproduce, duplicate or copy material from Helios Informatika Nusantara
  • Redistribute content from Helios Informatika Nusantara

This Agreement shall begin on the date hereof. Our Terms and Conditions were created with the help of the Terms and Conditions Generator.

Parts of this website offer an opportunity for users to post and exchange opinions and information in certain areas of the website. Helios Informatika Nusantara does not filter, edit, publish or review Comments prior to their presence on the website. Comments do not reflect the views and opinions of Helios Informatika Nusantara,its agents and/or affiliates. Comments reflect the views and opinions of the person who post their views and opinions. To the extent permitted by applicable laws, Helios Informatika Nusantara shall not be liable for the Comments or for any liability, damages or expenses caused and/or suffered as a result of any use of and/or posting of and/or appearance of the Comments on this website.

Helios Informatika Nusantara reserves the right to monitor all Comments and to remove any Comments which can be considered inappropriate, offensive or causes breach of these Terms and Conditions.

You warrant and represent that:

  • You are entitled to post the Comments on our website and have all necessary licenses and consents to do so;
  • The Comments do not invade any intellectual property right, including without limitation copyright, patent or trademark of any third party;
  • The Comments do not contain any defamatory, libelous, offensive, indecent or otherwise unlawful material which is an invasion of privacy
  • The Comments will not be used to solicit or promote business or custom or present commercial activities or unlawful activity.

You hereby grant Helios Informatika Nusantara a non-exclusive license to use, reproduce, edit and authorize others to use, reproduce and edit any of your Comments in any and all forms, formats or media.

 

Hyperlinking to our Content

The following organizations may link to our Website without prior written approval:

  • Government agencies;
  • Search engines;
  • News organizations;
  • Online directory distributors may link to our Website in the same manner as they hyperlink to the Websites of other listed businesses; and
  • System wide Accredited Businesses except soliciting non-profit organizations, charity shopping malls, and charity fundraising groups which may not hyperlink to our Web site.

These organizations may link to our home page, to publications or to other Website information so long as the link: (a) is not in any way deceptive; (b) does not falsely imply sponsorship, endorsement or approval of the linking party and its products and/or services; and (c) fits within the context of the linking party’s site.

We may consider and approve other link requests from the following types of organizations:

  • commonly-known consumer and/or business information sources;
  • dot.com community sites;
  • associations or other groups representing charities;
  • online directory distributors;
  • internet portals;
  • accounting, law and consulting firms; and
  • educational institutions and trade associations.

We will approve link requests from these organizations if we decide that: (a) the link would not make us look unfavorably to ourselves or to our accredited businesses; (b) the organization does not have any negative records with us; (c) the benefit to us from the visibility of the hyperlink compensates the absence of Helios Informatika Nusantara; and (d) the link is in the context of general resource information.

These organizations may link to our home page so long as the link: (a) is not in any way deceptive; (b) does not falsely imply sponsorship, endorsement or approval of the linking party and its products or services; and (c) fits within the context of the linking party’s site.

If you are one of the organizations listed in paragraph 2 above and are interested in linking to our website, you must inform us by sending an e-mail to Helios Informatika Nusantara. Please include your name, your organization name, contact information as well as the URL of your site, a list of any URLs from which you intend to link to our Website, and a list of the URLs on our site to which you would like to link. Wait 2-3 weeks for a response.

Approved organizations may hyperlink to our Website as follows:

  • By use of our corporate name; or
  • By use of the uniform resource locator being linked to; or
  • By use of any other description of our Website being linked to that makes sense within the context and format of content on the linking party’s site.

No use of Helios Informatika Nusantara’s logo or other artwork will be allowed for linking absent a trademark license agreement.

 

iFrames

Without prior approval and written permission, you may not create frames around our Webpages that alter in any way the visual presentation or appearance of our Website.

 

Content Liability

We shall not be hold responsible for any content that appears on your Website. You agree to protect and defend us against all claims that is rising on your Website. No link(s) should appear on any Website that may be interpreted as libelous, obscene or criminal, or which infringes, otherwise violates, or advocates the infringement or other violation of, any third party rights.

 

Reservation of Rights

We reserve the right to request that you remove all links or any particular link to our Website. You approve to immediately remove all links to our Website upon request. We also reserve the right to amen these terms and conditions and it’s linking policy at any time. By continuously linking to our Website, you agree to be bound to and follow these linking terms and conditions.

 

Removal of links from our website

If you find any link on our Website that is offensive for any reason, you are free to contact and inform us any moment. We will consider requests to remove links but we are not obligated to or so or to respond to you directly.

We do not ensure that the information on this website is correct, we do not warrant its completeness or accuracy; nor do we promise to ensure that the website remains available or that the material on the website is kept up to date.

 

Disclaimer

To the maximum extent permitted by applicable law, we exclude all representations, warranties and conditions relating to our website and the use of this website. Nothing in this disclaimer will:

  • limit or exclude our or your liability for death or personal injury;
  • limit or exclude our or your liability for fraud or fraudulent misrepresentation;
  • limit any of our or your liabilities in any way that is not permitted under applicable law; or
  • exclude any of our or your liabilities that may not be excluded under applicable law.

The limitations and prohibitions of liability set in this Section and elsewhere in this disclaimer: (a) are subject to the preceding paragraph; and (b) govern all liabilities arising under the disclaimer, including liabilities arising in contract, in tort and for breach of statutory duty.

As long as the website and the information and services on the website are provided free of charge, we will not be liable for any loss or damage of any nature.

PRIVACY POLICY

At PT Helios Informatika Nusantara, ensuring the privacy and security of your information is of utmost importance to us. As you navigate through our website, https://www.helios.id/, collectively referred to as this “Website”, we strive to create a safe and trustworthy environment for all users. This Privacy Policy establishes the terms governing your use of our website between you (“you” or “your”) and [Helios Informatika Nusantara]. By accessing our website, you acknowledge that you have reviewed, understood, and consent to be bound by this Privacy Policy.

Information We Collect

When utilizing or engaging with our Website, we may gather or receive various types of information, collectively referred to as “Information”, including but not limited to:

  1. “Personal Information,” such as your name, email, contact details, or any other personal content provided to us via forms on our website or other means of communication (e.g., email, phone, mail, etc.).
  2. “Technical Information,” such as browser type, operating system, device type, IP address, and similar technical data typically obtained automatically from browsers or devices when interacting with our Website. This may also encompass the referring URL that directed you to our website.
  3. “Usage Information,” such as the pages visited on our website, click activity, searches conducted, and other related data on how you have utilized our website. This category may also encompass details regarding your interaction with emails, including whether you opened, clicked on links, or received them.

We acknowledge that certain Technical Information or Usage Information may be considered personal data, either independently or when combined with other data, under various laws and jurisdictions. We are committed in handling such data in accordance with applicable laws and regulations.

The Methods We Use to Collect and Receive Information

Depending on the type of Information, we collect or receive it through various channelsincluding but not limited to the following conditions:

  1. When you voluntarily share Information with us. For instance, when you subscribe to our newsletter or fill out our online form to request contact.
  2. By using cookies and similar technologies. These technologies help us analyze how our Website is utilized and tailor content that is pertinent to you. They also assist in delivering more relevant advertisements on our own or third-party sites.
  3. Information obtained from third-party sources. This encompasses Information acquired through various business support tools and services we utilize, such as Website, analytics services, etc., as well as public sources like social media sites. We may merge the Information from these sources with other data we possess to maintain updated records and provide you with pertinent content.

The Purposes

We utilize Information for the following purposes:

  1. Processing your inquiries and responding to your requests, such as when you reach out to learn more about our products or services.
  2. Sending you information related to our services and products that we believe may be of interest to you, such as an invitation to our upcoming events, follow-up by WhatsApp blast and/or call, newsletters, or updates on products and services. These communications are sent to you either based on your explicit consent or when we have a legitimate interest in marketing our products and services. You always have the option to optout of receiving invitation, newsletters, and/or updates on products and services.
  3. Understanding how you interact with our Website and tailoring it to align with your interests, past actions, and preferences. We do this to enhance our Website, diagnose any issues, and improve your experience while navigating through them.
  4. Preventing fraud or harm to us or any third party, and ensuring the security of our network and services, which is in our legitimate interest.
  5. Complying with our legal obligations and exercising and enforcing our legal rights as necessary for PT Helios Informatika Nusantara.
  6. Utilizing certain third-party marketing and advertising networks to assist in marketing our products on our website and third-party Website.

Who We Share Information With

To facilitate our business operations and the functioning of our Website, we may disclose Information to various third parties, including:

  1. Our global branches and subsidiary companies.
  2. Third-party service providers aiding in the operation of our Website, such as hosting companies, recruitment platforms and agencies, payment processors, business management,and email distribution service providers, and similar service providers. These entities are authorized to use your personal information solely to provide these services to us.
  3. When compelled by law, such as to comply with court orders, search warrants, regulatory orders, subpoenas, and other lawful requests from public authorities, including those for national security or law enforcement purposes.
  4. Legal authorities, consultants, advisors, or service providers required to investigate, respond to, or prevent fraud, or to ensure the security of our network and services and safeguard the well-being of PT Helios Informatika Nusantara or the public.
  5. In the event of a merger and/or acquisition involving PT Helios Informatika Nusantara, Information may be transferred to the merging or acquiring entity, as well as to any advisors representing parties involved in discussions related to such merger or acquisition.
  6. Principal, resellers, partners, sponsors, or service providers acting on our behalf in conjunction with the offering of PT Helios Informatika Nusantara]’s products or services.
  7. Third-party marketing and advertising networks assisting in the promotion of our products on our Website and on third-party websites, such as Google for remarketing ads across the Internet.
  8. PT Helios Informatika Nusantara may also disclose general aggregate and anonymized information (e.g., statistical data) pertaining to the use of its Website.

Cross Border Data Transfers

  1. We may need to transfer Information to countries where we and/or our service providers operate. These countries may have different data protection laws compared to the country where the data originated, potentially offering different levels of protection. By using our Website, you consent to such transfers. In cases where applicable to the services provided, we will establish agreements with our service providers to ensure a level of privacy consistent with the terms of this policy.
  2. Regarding the collection, use, and retention of personal information transferred from Indonesia, please note that PT Helios Informatika Nusantara remains compliant with all relevant laws concerning such transfers.

Protecting Your Information

We aim to uphold top-tier security standards throughout our business operations. We have adopted suitable technical and organizational safeguards aligned with industry best practices. These safeguards are devised to prevent unauthorized access or unlawful handling of Personal Information and to mitigate the risk of accidental loss, destruction, or damage of such information. As part of these efforts, we have instituted several policies and procedures to guide us, covering aspects such as asset management, access control, physical security, personnel security, product security, cloud and network infrastructure security, third-party security, vulnerability management, security monitoring, and incident response.

Information Storage and Retention

We may store Information on both our own servers and those managed by third-party data hosting providers. As explained in Section 5 above (Cross Border Transfers), these servers may be situated globally. We will retain your Personal Information only for as long as necessary to fulfill the collection’s intended purpose. Additionally, we may retain your Personal Information for the duration required to pursue our legitimate business interests, address any legal claims, and ensure compliance with legal obligations. In instances where we utilize your information for direct marketing, we will retain your data until you choose to opt-out of receiving marketing materials; however, certain information may need to be retained to maintain a record of your request.

Modifications to This Policy

PT Helios Informatika Nusantara reserves the right to amend this Privacy Policy at any time. In the event of a significant change, we will provide notice on this page and/or adjacent to the link leading to this page. These updates will become effective immediately for new Information collected or provided from the date of the update, and within thirty (30) days for any Information collected or provided to PT Helios Informatika Nusantara prior to the update. If you do not agree to the terms of the revised policy, please contact our Legal Department using the contact details provided in Section 11 below. We encourage you to periodically review this page for any updates.

Your Choices

We offer you various options regarding the use of Information in relation to: (i) our marketing activities; and (ii) our utilization of cookies and similar technologies for interest-based advertising and website usage analysis

  1. You can choose to discontinue receiving our newsletter or marketing emails by following the unsubscribe instructions included in these emails, adjusting email preferences in your account settings page, or contacting us through https://www.helios.id/You can manage your preferences concerning our use of cookies and similar technologies, which are used to provide targeted interest-based advertisements and analyze your website usage, by referring to our Cookie Policy for guidance.
  2. Moreover, the laws in some jurisdictions may grant you various rights concerning our processing of certain Information. These rights may include:
    • The right to withdraw previously provided consent;
    • The right to access specific information about you that we process;
    • The right to rectify or update any Personal Information;
    • The right to request the erasure of certain Information;
    • The right to temporarily suspend our processing of certain Information;
    • The right to receive Information in a common machine-readable format;
    • The right to object to our processing of Information for direct marketing purposes or when we rely on legitimate interests as the lawful basis for processing your information; and
    • The right to file a complaint with the relevant data protection authority.

We will address your requests promptly. Please note that these rights may be subject to limitations under applicable law. For further information on these rights or to exercise them, please contact [Helios Informatika Nusantara] at: [email protected].

Social Media and Third-Party Services

Our Website may include a blog with a ‘comments’ section and several social media features, such as a ‘share’ button or links to third-party websites and services like Facebook, X, YouTube, LinkedIn, and Instagram. When utilizing these features, certain information may be gathered by these third parties, such as your IP address or the specific page you are visiting on our website. Additionally, these third parties may set cookies to ensure the proper functioning of the features. Any data collected by these third parties is subject to their respective privacy policies. We encourage you to thoroughly review the privacy policies of these third parties.

Contacting Us

If you have any questions or concerns regarding this Website Privacy Policy, the information we collect, PT Helios Informatika Nusantara’s practices, or your interactions with the Website, please feel free to contact us. You can reach us via email at [email protected] or by physical mail addressed to: PT Helios Informatika Nusantara  Centennial Tower, 12th Floor Jl. Jend. Gatot Subroto Kav. 24-25 Jakarta 12930, Indonesia phone: +62 21 8062 22