Privacy Notice

The existence of this Privacy Notice (previously called the Privacy Policy) is a real commitment from PT Bank Shinhan Indonesia (hereinafter referred to as "Bank Shinhan") to respect and protect all User's personal data or information through the site https://www.shinhan.co.id. This Privacy Notice only applies to Bank Shinhan's services and products and other services provided by Bank Shinhan over time (hereinafter referred to as "Bank Shinhan Services").

This Privacy Notice is intended to provide information to Bank Shinhan Users regarding how Bank Shinhan collects, processes, processes, discloses, stores, secures, analyzes, deletes and/or destroys User's Personal Data for the purposes of Bank Shinhan Services (hereinafter referred to as "Processing" or "Processing" or "Processed").

By using Bank Shinhan Services, Users understand that Bank Shinhan will Process User's Personal Data as described in this Privacy Notice. Use of Bank Shinhan is governed by this Privacy Notice and the Terms of Use of Bank Shinhan Services. This Privacy Notice shall become effective from the time the User provides consent to this Privacy Notice, either expressly or in the manner stated in this Privacy Notice.

1.    DEFINITION

Personal Data is any data that identifies or can be used to identify an individual, alone or in combination with other data/information, directly or indirectly, in an electronic and/or non-electronic system, which is divided into Specific/Sensitive Personal Data and General Personal Data.

2.    PERSONAL DATA PROCESSED BY SHINHAN BANK

Shinhan Bank may process Personal Data of a general and/or specific/sensitive nature of Shinhan Bank Users, in the following circumstances:

       a.  At the time of User Account Creation for Bank Shinhan

The User is required to provide Basic Data for the purpose of creating a Bank Shinhan account. Personal Data including but not limited to:

            1)  Full name;

            2)  Place and date of birth;

            3)  The copy (image) of the User Identity Card (KTP) issued by Indonesia’s Government. Bank Shinhan may request other supporting documents including but not limited to Family Card (KK), Driving License (SIM), Passport, Limited Stay Permit Card (KITAS), and/or certificate from company as a supporting document for the identification and authentication process of the Electronic Certificate application, if required (including the information contained therein);

            4)  Phone number;

            5)  Email address; and/or

            6)  Biometric data.

3.    PURPOSE OF PROCESSING USER PERSONAL DATA

Shinhan Bank processes Users' Personal Data for the following purposes:

       a. Transmission of information about Shinhan Bank Services, updates, developments and/or enhancements to Shinhan Bank Services or services provided by Third Parties in co-operation with Shinhan Bank.

       b. Delivery of customised Service-related advertisements, communications and marketing (based on interesting and relevant demographic attributes or characteristics based on the User's profile), sponsors and advertisers of Third Parties in cooperation with Shinhan Bank. Shinhan Bank may communicate such advertisements, communications and marketing to Users in various ways, including and not limited to Shinhan Bank's platform, short message service (SMS), chat applications (e.g. WhatsApp and Telegram), push notifications, calls, and via email.

       c. Internal purposes, including but not limited to auditing and analysing related to developing, maintaining, testing, repairing, improving and personalising Shinhan Bank Services to meet Users' needs and preferences.

       d. Fulfilment of Shinhan Bank's obligations to authorised officials based on applicable laws and regulations.

       e. Personalisation of Shinhan Bank Applications and/or Services for Users provided by Shinhan Bank and/or Third Parties that have collaborated with Shinhan Bank.

       f. To process the User's request in relation to Shinhan Bank Services, including and not limited to access, correction, updating, and/or deletion/destruction of the User's Personal Data in Shinhan Bank's system, as well as to contact the User in relation to the User's request.

       g. Other purposes to the extent that such purposes are not prohibited by applicable laws and regulations. Shinhan Bank will notify the User of such other purposes when seeking the User's written/recorded consent where required by applicable laws and regulations.

4.    RIGHTS OF PERSONAL DATA SUBJECTS

Shinhan Bank grants the User the rights related to the User's Personal Data in accordance with the applicable laws and regulations, which the User has the following rights:

       a. Revocation of Consent/ Request for Deletion

The User has the right to revoke the User's consent and request Shinhan Bank to end the processing, delete and/or destroy the User's Personal Data from Shinhan Bank's system. Before this can be processed, the User must fulfil the verification requirements conducted by Shinhan Bank. Shinhan Bank reserves the right to request the reason for deletion of Personal Data from the User. The Basic Data deletion request can only be made by submitting a notification to Shinhan Bank through Shinhan Bank's contact. The implementation of the request for deletion of Personal Data will be carried out in accordance with applicable laws and regulations. The impact of Basic Data deletion is the closure of the Shinhan Bank Account and Shinhan Bank will delete/destroy the User's Personal Data from the Shinhan Bank system and cease to Process the User's Personal Data.

        b. Access Request

          The User has the right to request access to and obtain copies of the User's Personal Data stored in the Shinhan Bank system. Providing such access and copies to the User will be done by Shinhan Bank in accordance with the provisions of applicable laws and regulations.

        c. Change Request

            Users have the right to change, correct, add, update, complete and/or correct errors, inaccuracies to the User's Personal Data stored in the Shinhan Bank system. Changes to the Personal Data in the form of Basic Data can only be made by submitting a notification to Shinhan Bank via the Shinhan Bank contact. Meanwhile, data in categories other than Basic Data can be done through the Shinhan Bank Application. As for requests for changes to the Address of the Place of Residence, email address and/or mobile phone number, Users can also do this through the User Account with proof of conformity to the User's personal data. Shinhan Bank has the right to request supporting documents and/or verify changes, additions, or updates to the information and Personal Data in accordance with Shinhan Bank procedures. The implementation of requests for changes will be carried out in accordance with applicable laws and regulations.

Shinhan Bank reserves the right to reject the User's request as mentioned in point (a) above, if:

        a. User's request is irrelevant to the User's Personal Data stored by Shinhan Bank, including and not limited to if the party requesting the Personal Data is another party where the party is not authorised over the Personal Data and/or cannot legally prove that the party is authorised over the requested Personal Data; and/or

        b. Shinhan Bank is permitted not to carry out User requests in accordance with the provisions of the competent authorities and/or Shinhan Bank's internal policies and based on applicable laws and regulations.

5.    LIMITATION OF LIABILITY

The User hereby agrees to release, discharge, indemnify, and defend Shinhan Bank, including any officer, director, employee, or agent of Shinhan Bank from and against any and all demands, suits, claims, losses, liabilities, obligations, costs, damages, and expenses (including but not limited to legal fees and indemnity expenses) resulting directly or indirectly from:

       a. Any losses resulting from Personal Data being intercepted, intercepted, accessed, stolen, disclosed, altered or destroyed by unauthorised Third Parties, due to factors beyond Shinhan Bank's control and/or in contravention of this Privacy Notice and applicable laws and regulations, including those resulting from the User's fault or negligence;

       b. The security and confidentiality of the Personal Data that has been subject to Processing, Disclosure and/or Storage of the User to the public or Third Parties, whether such Processing, Disclosure and/or storage is carried out by the User or any party other than Shinhan Bank, and such Processing, Disclosure and/or storage is not due to Shinhan Bank's negligence and/or fault in protecting the User's Personal Data;

       c. All risks and/or consequences arising from the User's negligence and/or personal error in maintaining the security and confidentiality of the User's Personal Data; and/or

       d. All consequences arising from the utilisation of any media and/or applications that the User uses to Disclose, Process and/or store the User's Personal Data, such as among others; internet networks and cloud storage services.

6.    APPLICABLE LAW AND DISPUTE RESOLUTION

       a. These Terms of Use shall be governed and construed under the laws of the Republic of Indonesia.

       b. The User and Shinhan Bank agree that any dispute or disagreement arising out of or relating to the matters set out in this Privacy Notice (including any dispute or disagreement caused by a tort or breach of one or more of the terms and conditions in this Privacy Notice) will be resolved in the following manner:

           1) Either the User or Shinhan Bank (‘First Party’) shall give written notice to the other party (‘Second Party’) of the occurrence of a Dispute (‘Dispute Notice’). The Dispute shall be settled by deliberation within a maximum of 30 (thirty) calendar days from the date of the Dispute Notification (‘Deliberation Settlement Period’);

           2) If the Dispute cannot be resolved through mutual consensus until the end of the Deliberation Settlement Period, the First Party and the Second Party agree that the Dispute will be referred to and resolved by the LAPS OJK according to the LAPS OJK Regulations and Procedures located at….,, with the following provisions:

                a) The language used in the arbitration is Indonesian;

                b) The venue is in Jakarta, Indonesia;

                c) The First Party and the Second Party will jointly appoint one (1) person to be appointed to assist in resolving the dispute;

                d) The costs must be borne by the losing party; and

                e)  The decision is final and binding on the First Party and the Second Party.

7.    CONTACTS AND NOTIFICATIONS

       a. Notice from Shinhan Bank

           1) Any notification from Shinhan Bank addressed to Users will be announced via the Site and sent via electronic mail (email) and/or telephone number stored in the Bank's system.

           2) Any written notification from Shinhan Bank addressed to the User in connection with the failure of protection of the User's Personal Data occurring in the system of Shinhan Bank and/or the system of the Third Party cooperating with Shinhan Bank will be sent via electronic mail (email) or short message service (SMS) no later than 3×24 (three times twenty-four) hours since the failure is known to Shinhan Bank. Such notification is carried out in accordance with the applicable laws and regulations, including those related to the protection of Personal Data.

        b. Notice from User

            1) Any notice from the User addressed to Shinhan Bank in relation to Shinhan Bank Services shall become effective when such notice is received by Shinhan Bank through the e-mail address info.id@shinhan.com and/or through physical documents sent to PT Shinhan Bank Indonesia at International Financial Center 2 Lantai 30, 31, 32 Jalan Jenderal Sudirman Kav. 22-23, Jakarta Selatan 12920.

            2) Any notification from the User relating to this Privacy Notice or Personal Data may be submitted by the User to Shinhan Bank via the electronic mail address info.id@shinhan.com.

8.    CHANGE

       a. Shinhan Bank reserves the right to review and amend this Privacy Notice at any time to ensure that the terms of this Privacy Notice are consistent with the future development of Shinhan Bank Services, and/or if there are changes in applicable laws and regulations. In relation to such changes, Shinhan Bank will notify Users of the changes through a notice as we described in section 7 (a) above.

       b. User understands and agrees that User is responsible for reviewing this Privacy Notice periodically to find out the latest information regarding this Privacy Notice from time to time.

9.    HOW TO CONTACT US

If you have any questions or complaints regarding this Privacy Notice or if you wish to exercise your rights regarding your Personal Data, please contact us:

      PT Bank Shinhan Indonesia (Data Privacy Protection Team)

      Address: International Financial Center 2 Lantai 30, 31, 32 Jalan Jenderal Sudirman Kav. 22-23, Jakarta Selatan 12920.

      Email : info.id@shinhan.com

      Phone : 1500-881

This Privacy notice refers to UU RI No. 27 of 2022 Concerning Protection of Personal Data and Data Privacy Protection Policy PT. Bank Shinhan Indonesia.