PERSONAL DATA PROTECTION NOTICE
Updated on 03.03.2025
This Personal Data Protection Notice (“Notice”) serves as a binding agreement between You and the German-Indonesian Chamber of Industry and Commerce (EKONID) (“We”, “Our”, “Us”). We are committed to protecting your personal data in accordance with the applicable data protection laws, including the Indonesian Personal Data Protection Law, Law No. 27 of 2022 (“PDP Law”), and the General Data Protection (“GDPR”) of the European Union.
We recognize the importance of your personal data and pledge to handle it with the utmost care and integrity. This Notice provides transparency regarding our data processing practices, including the purposes for which we collect your information and your rights in relation to it.
Your personal data will be used solely for the purposes outlined below. By interacting with us, through our services, events, or other platforms, you acknowledge that you have read, understood, and agreed to this Notice. We encourage you to review this document carefully to understand how we manage your data and protect your rights.
Purposes of Processing Personal Data
1. Use of the EKONID’s Website and Cookies
1.1 Scope of Processing of Personal Data
Each time our website is accessed, our system automatically collects data and information from the system of the accessing computer. Every visit to the Internet Services of EKONID is recorded in a server log file. In this server log file, the following information will be recorded:
- Browser type and its version
- User’s operating system
- User’s internet service provider
- User’s IP address
- Date and time of access
- Websites accessed by the user's system through our website.
The temporary processing of the IP address is necessary in order to deliver the website to the user’s computer. For this purpose the user’s IP address needs to be saved for the duration of the usage.
The logfiles are saved to ensure the functionality of our website. This data enables us to optimise our website and to ensure the security of our information technology systems. In this context, we will not process personal data for any other purposes.
This website is not intended for minors and we do not knowingly collect data relating to minors. Persons under the age of 18 may not submit any personal data to us without the permission of their parents or legal guardians.
This website contains links to websites of other providers. We cannot guarantee that such providers abide by the data protection regulations.
In order to further develop this website and implement new technologies to improve our services, changes to this privacy policy may apply, if necessary. Therefore, we recommend you to regularly check it.
We use cookies for the purpose of improving the quality of our website and its contents. We also analyse your usage of our website through cookies so that we can constantly optimise our offering.
When visiting our website, the users are informed via web banner about the use of cookies for analytical purposes and referred to this data privacy statement. In this context, it is also pointed out how the storing of cookies can be disabled in the browser settings. This service is provided via the Consent Manager of thePiwik PRO Analytics Suite.
We use the following cookies of the Piwik PRO Analytics:
- _pk_id = Used to recognize visitors and hold their various properties. Expires after: 13 months if user consents; expires after 30 minutes if user does not consent
- _ppms_privacy = Stores visitor’s consent to data collection and usage. Expires after: 365 days
- _pk_ses = Shows an active session of the visitor. Expires after: 30 minutes
Additionally, some features of our website cannot be offered without the use of cookies (technically necessary cookies). Therefore, it is necessary that the browser is recognized when moving from one page to another. Enabling these cookies is not strictly necessary for the website to work but it will provide you with better browsing experience. You can delete or block these cookies, but if you do that some features of this site may not work as intended.
The following files are stored and transmitted in the cookies:
(1) fonts = standard cookie variable used by us to reload the fonts in the browser after a page refresh.
(2) fullcss = standard cookie variable used by us to reload the CSS file in the browser after a page refresh.
Maximum cookie lifetime: 730 days
The data of the users collected in this way is pseudonymised. An identification of the user is not possible. These cookies are not used for any purposes other than those described here.
1.2 Legal basis for processing of personal data
The processing and storage of the data in logfiles is necessary for the operation of the website. Legal basis for the temporary processing is our legitimate interest as outlined in the PDP Law (Article 20, paragraph 2) and GDPR ( Article 6, paragraph 1, letter f)Article 6
1.3 Data Storage, and Deletion, and Individual Rights
We will delete your data when the processing of the data is no longer required to fulfil the purposes, we collected it for. When we process the data for the provision of our website, your data will be deleted when the website session ends.
When we process data in logfiles, we will generally delete the data shortly after the processing. Extended storage is possible. In this case, the user’s IP address will be deleted or pseudonymised in order to prevent the identification of the user.
2. Contracts and Agreements
1.1 Entering into Vendor Agreement, Premium Partnership Agreement, Service Agreement, and any other Agreement
A. Scope of Processing of Personal Data
We collect and process personal data necessary for executing and managing vendor agreements, premium partnership agreement, service agreement, and any other agreements. This involves gathering essential information to facilitate communication and ensure compliance with the terms of the agreements. We collect personal data through various platforms, including direct interactions, where individuals provide information during meetings, calls, or correspondence, and from third-party sources.
The types of personal data collected include contact details such as names, addresses, phone numbers, email addresses, job titles, as well as contractual terms and billing information. This information is vital for maintaining effective partnerships and fulfilling our obligations to all parties involved.
We will process your personal data in relation to the agreements mentioned above. Generally, personal data will not be shared with third parties. However, there may be circumstances where sharing is necessary, such as legal authorities if required by law.
B. Legal basis for processing personal data
The legal basis for processing your personal data is essential for entering into or performing vendor agreements, premium partnership agreement, service agreement or any other agreement with us, as outlined in the PDP Law (Article 20, paragraph 2, letter a) and GDPR (Article 6, paragraph 1, letter a). By providing your personal data, you are granting us permission to process it for these purposes.
C. Data Storage, Deletion, and Individual Rights
We store personal data for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations. Once the data is no longer needed, we will securely delete or anonymize it.
Individuals have certain rights regarding their personal data, including the right to access, rectify, or delete their information, as well as the right to restrict or object to its processing.
3. EKONID’s Registration
2.1 Registration for Job Applications and Internship
A. Scope of Processing of Personal Data
We collect and process personal data during the recruitment process to facilitate the selection of qualified candidates for both open positions and internship opportunities within the organization. This involves gathering essential information that enables hiring users to assess applicants effectively.
The types of personal data collected include identification information such as names, addresses, and contact details (phone numbers and email addresses). Additionally, professional information such as resumes, cover letters, work experience, and educational backgrounds will be processed. We collect this personal data through filled-out application forms submitted by the applicants and direct interactions via e-mail.
We will process your personal data in relation to your application for employment or internship. Generally, personal data will not be shared with third parties. However, there may be circumstances where sharing is necessary, such as with recruitment partners or agencies involved in the hiring process, background check services, or legal authorities if required by law.
B. Legal Basis of Processing Personal Data
The legal basis for processing your personal data for recruitment purposes is your consent, as outlined in the PDP Law (Article 20, paragraph 2, letter a) and GDPR (Article 6, paragraph 1, letter a). By submitting your application, you consent to the processing of your personal data solely for the purposes of the recruitment process.
C. Data Storage, Deletion, and Individual Rights
Personal data collected during the recruitment process will be retained for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations. If a candidate is not selected, their data may still be retained for consideration in future opportunities, provided that consent has been obtained.
Individuals have certain rights regarding their personal data, including the right to access, rectify, or delete their information, as well as the right to restrict or object to its processing.
2.2 Membership Registration
A. Scope of Processing of Personal Data
We collect and process personal data to effectively manage our membership program. This includes essential contact information such as names, email addresses, phone numbers, and job titles within the member companies. This data is utilized for various purposes, including membership registration, providing updates about upcoming events, exploring business partnership opportunities, and offering additional membership packages.
Personal data is primarily obtained through business cards and direct interactions via email. This information is vital for maintaining effective communication with designated representatives from member companies, ensuring that we can provide relevant updates and support tailored to their needs.
We use the data for managing our member database, for our own marketing, for sending our newsletters, for invitations to events and invitations to participate in surveys.
B. Legal Basis
The legal basis for processing your personal data for EKONID’s membership registration is your consent, as outlined in the PDP Law (Article 20, paragraph 2, letter a) and GDPR (Article 6, paragraph 1, letter a). By submitting your registration, you are granting us permission to use your personal data for the purposes of membership and purposes mentioned above.
C. Data Storage, Deletion, and Individual Rights
We store personal data for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations. Once the data is no longer needed, we will securely delete or anonymize it.
Individuals have certain rights regarding their personal data, including the right to access, rectify, or delete their information, as well as the right to restrict or object to its processing.
2.3 Events and Seminars/Webinars
A. Scope of Processing of Personal Data
We collect and process personal data necessary for the registration and management of EKONID’s events and webinars through forms filled out by participants. This includes essential contact information such as names, email addresses, phone numbers, and job title. This information facilitates effective communication and ensures that participants receive timely updates regarding event details.
The personal data collected serves several purposes. It allows us to manage registrations and attendance efficiently, enhance participant engagement during events, and analyze feedback to improve future events. We are committed to ensuring that all personal data is processed in compliance with applicable data protection regulations.
The events covered under this data processing scope include Delegation Trips, Trade Fair Representation, Get Together networking sessions, Oktoberfest celebrations, TechTalk-an discussions, Online Roundtable, and Webinar Annerkennung.
Please be advised that videos and photographs will be taken at events for use on EKONID’s website, marketing material and in social media such as Facebook, twitter, Instagram, and LinkedIn. By entering our events, you consent to EKONID photographing or filming and using your image and likeness.
B. Legal basis for Processing of Personal Data
The legal basis for processing your personal data for events and seminar/webinar registration held by EKONID is your consent, as outlined in the PDP Law (Article 20, paragraph 2, letter a) and GDPR (Article 6, paragraph 1, letter a). By submitting your registration, you are granting us permission to use your personal data for the purposes of event participation.
Individuals have certain rights regarding their personal data, including the right to access, rectify, or delete their information, as well as the right to restrict or object to its processing.
C. Data Storage, Deletion, and Individual Rights
We store personal data for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations. Once the data is no longer needed, we will securely delete or anonymize it.
Individuals have certain rights regarding their personal data, including the right to access, rectify, or delete their information, as well as the right to restrict or object to its processing.
2.4 Registration for Pro-Recognition Consultation
A. Scope of Processing of Personal Data
We collect and process personal data necessary for the registration and management of Pro-Recognition Consultation sessions. This includes essential contact information such as names, email addresses, phone numbers, and educational background, which is gathered from forms filled out by individuals seeking consultation. This information facilitates effective communication and ensures that individuals seeking consultation receive timely updates regarding consultation details.
The personal data collected serves several purposes. It allows us to manage enhance engagement during the consultations. Additionally, it helps us tailor the consultation experience to better meet the needs of those interested in working in Germany. We are committed to ensuring that all personal data is processed in compliance with applicable data protection regulations.
B. Legal Basis
The legal basis for processing your personal data for registration for Pro-Recognition Consultation, as outlined in the PDP Law (Article 20, paragraph 2, letter a) and GDPR (Article 6, paragraph 1, letter a). By submitting your registration, you are granting us permission to use your personal data exclusively for the purposes of the Pro-Recognition Consultation.
C. Data Storage, Deletion, and Individual Rights
We store personal data for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations. Once the data is no longer needed, we will securely delete or anonymize it.
Additionally, we may transfer your data to third parties outside Indonesia, such as DIHK. We will ensure that the level of data protection in the recipient country is adequate and compliant with applicable laws. Such transfers will only occur with your consent.
You have the right to access, correct, and delete your personal data. You may also request restrictions on the processing of your data or object to its processing under certain circumstances.
4. Exam and Certificate
3.1 GDVET and ADA Program and Issuance of Certificate
A. Scope of Processing of Personal Data
We collect and process personal data essential for the administration of the GDVET and ADA programs, as well as for issuing certificates. Personal data collected includes personal information such as names, email addresses, phone numbers, home address, place of birth, and identification numbers. Each piece of data is critical for various administrative functions.
The primary purposes for processing this data are identity verification, registration management, and communication. By verifying identities, we ensure that the correct individuals are enrolled and participate in the programs, as well as registered for taking the exams. Effective registration management allows us to organize efficiently. Additionally, we use personal information to communicate important updates regarding exam schedules, results, and certification processes.
The personal data we collect is obtained from schools that collaborate with us and wish to enroll their students in the ADA or GDVET programs. Therefore, the initial collection of personal data is conducted by the schools. This data will be retained as long as necessary for its intended purposes, including information about alumni who may be contacted in the future to serve as exam supervisors, instructors, or mentors for the ADA and GDVET programs.
B. Legal Basis
The legal basis for processing your personal data upon submitting your data for the ADA or GDVET program and certification is your consent, as outlined in the PDP Law (Article 20, paragraph 2, letter a) and GDPR (Article 6, paragraph 1, letter a). By submitting your data, you are granting us permission to use your personal information exclusively for the purposes of participating in the ADA or GDVET exam and certification.
C. Data Storage, Deletion, and Individual Rights
We store personal data for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations. Once the data is no longer needed, we will securely delete or anonymize it.
Additionally, we may transfer your data to third parties outside Indonesia, such as DIHK. We will ensure that the level of data protection in the recipient country is adequate and compliant with applicable laws. Such transfers will only occur with your consent.
You have the right to access, correct, and delete your personal data. You may also request restrictions on the processing of your data or object to its processing under certain circumstances.
Transfer of Personal Data to Third Parties
EKONID shall not transfer any collected personal data to third parties, except when required by applicable laws or when the engagement of vendors is necessary. Any transfer of personal data to vendors shall only be conducted if a valid Data Processing Agreement (DPA) has been duly executed between the Company and the respective vendor.
Data that has been recorded by filling out an event registration form on one of EKONID's websites will only be transferred to third parties, if it is (a.) a joint event of EKONID and a third party and (b.)
We do not generally consider transferring any of your personal data to any third country or any International Organization.
Data Breach Notification
We take the security of your personal data very seriously and implement security measures to protect it. In the unlikely event of a data breach that could affect your rights and freedoms, we are committed to notify you without undue delay, in accordance with the provisions of the applicable law. We will provide you with clear information about the nature of the breach, its potential impact, and the steps we are taking to mitigate the situation. We aim to ensure you remain informed and empowered to take any necessary actions to protect your personal information.
Updating This Notice
We understand that the landscape of data protection is constantly evolving, and we are committed to keeping you informed about how we manage your personal data. As such, we may update this Notice from time to time to reflect changes in our practices, legal requirements, or enhancements in our services. Whenever we make significant changes, we will notify you through appropriate channels, ensuring you are aware of any updates that may affect your rights or our data processing activities. We encourage you to review this Notice periodically to stay informed about our commitment to protecting your privacy and how we handle your information.
How to Exercise Your Rights
Your rights, questions and concerns are important to us. If you have any inquiries about this Notice, our data processing practices, or your rights regarding your personal data, please don’t hesitate to reach out. You can contact us at nurul.khasbullah@ekonid.id and our team will be happy to assist you. We are committed to responding promptly and thoroughly, ensuring you feel informed and supported every step of the way.
Data Controller
For further information about our treatment of personal data, please contact us:
Perkumpulan Ekonomi Indonesia-Jerman (EKONID)
Deutsch-Indonesische Industrie- und Handelskammer (EKONID)
German-Indonesian Chamber of Industry and Commerce (EKONID)
Jl. H. Agus Salim No. 115
Jakarta 10310
Indonesia
Tel.: +62 (21) 5098 5800
Fax: +6221 5098 5801
E-Mail: info(@)ekonid.id
Data Protection Officer of EKONID
Ms. Nurul Fatimah Khasbullah
Tel.: +62 (21) 5098 5800
E-Mail: nurul.khasbullah@ekonid.id