Privacy Policy

This policy explains how Indonesian Legal Literacy we collect, use, store, and protect your personal data.

We respect your privacy. We only collect data that is relevant to provide services (e.g., accounts, content publication, subscriptions, tryouts) and maintain system security.

1) Data we collect

Account data: name, email address, password (stored in hashed form), profile picture (optional), and account settings.
Author profile data: biography (if you fill it out), social media links (Instagram/Facebook/LinkedIn/X), and information you display on the author page.
Content data: manuscripts you submit (opinions/news/legal materials/public space), revisions, review status, and publication metadata.
Communication data: messages through contact forms, correction reports, or service-related communications.
Transaction data: if you purchase digital products (e.g., tryouts/premium), we store transaction records and payment status (card/account details are generally processed by the payment provider, not stored on our servers).
Technical data: IP address, device type, browser, activity logs, cookies/sessions, and security data for abuse prevention.

2) How we use data

Creating and managing accounts, authentication, and account recovery.
Providing service features: submission of writings, editorial review, publication, comments/reactions (if available), and basic personalization.
Processing transactions, activating premium/tryout access, and displaying purchase history.
Maintaining system security: detecting spam, brute-force attacks, fraud, and misuse.
Contacting you for service purposes (e.g., writing status, policy updates, or important notifications).
Internal analytics to improve performance and quality of user experience.

3) Processing basis

We process your data based on one or more of the following bases (depending on the context of service usage):

Performance of service/contract (e.g., account creation, feature access, tryout/premium purchase).
Compliance with legal obligations (e.g., transaction recording, handling requests from legitimate authorities).
Legitimate interests (e.g., prevention of misuse, system security, improvement of service quality).
Consent (e.g., specific communication preferences, or non-essential cookies if implemented).

4) Cookies and similar technologies

We use cookies/sessions to make the site function (e.g., login), store preferences, and assist with performance analytics. In addition to essential cookies, certain third parties (e.g., analytics or advertising services such as Google AdSense) may use cookies/similar technologies in accordance with their policies. You can set your browser to reject cookies, but some features may not function properly.

5) Sharing data with third parties

We do not sell your personal data. However, we may share data on a limited basis with:

Service providers who assist with operations (hosting, email, payments, analytics) solely for service purposes and in accordance with agreements.
Legal obligations: if required by authorized authorities in accordance with applicable legal procedures.
Security protection: to prevent fraud, cyberattacks, or violations of the terms of service.

6) Processing location and cross-border transfer

Modern internet infrastructure may involve third-party service providers (e.g., CDNs, attack protection, email, or payments) whose servers are located in various locations. Therefore, some technical data (such as IP addresses, security logs, or caches) may be processed through the service provider's global network. We select partners who have reasonable security standards and process data as necessary for the provision of services.

7) Data retention and deletion

Account data is stored as long as your account is active or as long as it is needed for the provision of services.
Security logs may be stored for a certain period for security audits.
Transaction data is stored as required for recording and administrative compliance.

You can request account deletion through official contact channels. Publication records (e.g., published articles) may be retained for archival purposes and publication integrity, with reasonable adjustments.

8) Data security

We implement reasonable technical and organizational security measures, including access controls, password hashing, security logging, and admin access restrictions. However, no system is 100% secure. If a material security incident occurs, we will take mitigation and notification steps as needed.

9) Your rights

You can request:

Access to and copies of specific data we store about you.
Correction of inaccurate data.
Deletion of specific data (taking into account legal/archival obligations).
Withdrawal of consent for consent-based processing (if relevant).

10) Children's privacy

This service is not intended for children without parental/guardian consent. If you believe that a child's data is stored without a legitimate basis, please contact us.

11) Policy changes

We may update this privacy policy from time to time. The latest version will be displayed on this page.

12) Contact

Questions regarding the privacy policy can be sent via the page Contact or email admin@literasihukum.com.