Privacy Policy

Effective Date: December 24, 2024 Last Updated: December 24, 2024

1. Introduction

Welcome to Rakit ERP and its modules, including Rakit POS (collectively, the "Platform"), developed and operated by Cognerest ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Platform, which includes the Rakit ERP backend system and the Rakit POS point-of-sale application ("Application"), along with related services ("Services").

By using our Platform, you consent to the data practices described in this policy. If you do not agree with this policy, please do not use our Platform.

2. Information We Collect

2.1 Information You Provide

We may collect the following information that you voluntarily provide:

  • Account Information: Name, email address, phone number, and password when you create an account.
  • Business Information: Organization name, business address, business type, and tax identification numbers.
  • Profile Information: Profile photos and display preferences.
  • Financial Data: Transaction records, sales data, inventory information, and pricing details processed through the Application.
  • Communication Data: Messages or feedback you send to us.

2.2 Information Collected Automatically

When you use our Application, we may automatically collect:

  • Device Information: Device type, operating system, unique device identifiers, and mobile network information.
  • Log Data: Access times, pages viewed, app crashes, and other system activity.
  • Location Data: General geographic location based on IP address (precise location only with your consent).
  • Usage Data: Features used, actions taken, and session duration.

2.3 Information from Third Parties

We may receive information from third-party services when you:

  • Sign in using Google Authentication or other OAuth providers.
  • Connect third-party payment processing services.
  • Use third-party analytics services.

3. How We Use Your Information

We use the collected information for the following purposes:

  • Service Provision: To create and manage your account, process transactions, and provide customer support.
  • Business Operations: To generate SAK EMKM compliant financial reports, accounting journals, and business analytics.
  • Improvement: To analyze usage patterns, fix bugs, and improve our Application.
  • Communications: To send service updates, security alerts, and promotional messages (with your consent).
  • Security: To detect, prevent, and address fraud, abuse, or security issues.
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes.

4. Data Storage and Security

4.1 Offline-First Design

Rakit POS (the mobile point-of-sale module) is designed with an offline-first approach. Your transaction data is stored locally on your device and synchronized with our Rakit ERP servers when an internet connection is available.

4.2 Security Measures

We implement industry-standard security measures including:

  • Encryption: Data transmitted between your device and our servers is encrypted using TLS/SSL.
  • Secure Storage: Sensitive data stored on your device uses secure storage mechanisms.
  • Access Controls: Strict access controls and authentication for our backend systems.
  • Regular Audits: Periodic security reviews and vulnerability assessments.

4.3 Data Retention

We retain your personal data for as long as your account is active or as needed to provide Services. Upon account deletion, we will delete or anonymize your data within 90 days, except where retention is required by law.

5. Sharing of Information

We do not sell your personal information. We may share your information in the following circumstances:

5.1 With Your Consent

We may share information when you provide explicit consent.

5.2 Service Providers

We may share data with third-party vendors who perform services on our behalf:

  • Cloud hosting providers
  • Payment processors
  • Analytics services
  • Customer support tools

All service providers are bound by confidentiality agreements and are only permitted to use your data as necessary to perform services for us.

5.3 Legal Requirements

We may disclose your information if required by law, regulation, legal process, or governmental request.

5.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

6. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data.
  • Portability: Request your data in a portable format.
  • Withdraw Consent: Withdraw consent for data processing at any time.
  • Object: Object to certain types of data processing.

To exercise these rights, please contact us at privacy@cognerest.app.

7. Google API Disclosure

7.1 Google OAuth Integration

When you sign in using Google, we access:

  • Your Google profile information (name, email, profile picture)
  • Email address for account identification

7.2 Limited Use Disclosure

Rakit POS's use and transfer to any other app of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements.

We only request the minimum required Google user data scopes necessary for authentication:

  • email
  • profile

8. Children's Privacy

Our Application is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including Indonesia and countries where our service providers operate. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.

10. Cookies and Tracking Technologies

The web version of our Application may use cookies and similar technologies to:

  • Remember your preferences
  • Analyze usage patterns
  • Provide personalized experiences

You can control cookies through your browser settings.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically. We will notify you of any material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date
  • Sending you an in-app notification or email for significant changes

12. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us:

Cognerest Email: privacy@cognerest.app Website: https://cognerest.app

13. Indonesian Privacy Law Compliance (UU PDP)

For users in Indonesia, we comply with Undang-Undang Pelindungan Data Pribadi (UU PDP). You have the right to:

  • Request information about data processing purposes
  • Request a copy of your personal data
  • Request correction of inaccurate data
  • Request deletion of your personal data
  • File complaints with the relevant data protection authority

This Privacy Policy is governed by the laws of the Republic of Indonesia.