Privacy and Security Policy

The following are the policies and practices implemented by PT Tiki Jalur Nugraha Ekakurir (“JNE”) to demonstrate JNE’s commitment to maintaining and safeguarding the privacy and security of Customer information (“Personal Data”) when Customers conduct transactions at JNE Outlets, use the JNE Website and the JNE Loyalty Card (JLC) Website, as well as the JNE mobile application (MyJNE).

1. Privacy Policy

JNE will not sell, exchange, disclose, or transfer to the public or to any party any information related to Customers who conduct transactions at JNE Outlets, use the JNE Website and the JLC Website, and the MyJNE application, except for the disclosure of information under certain circumstances for law enforcement purposes or to fulfill the requirements of law enforcement authorities or authorized government agencies and/or applicable laws and regulations, including in the event of disputes or legal proceedings between Customers and JNE, or suspected criminal acts such as fraud and theft.

2. JNE Customer Services

• JNE Outlet, the location where Customers conduct package delivery transactions.
• JNE Website, by accessing the JNE Website Customers can enjoy features such as Shipment Tracking, Shipping Rates, and JNE Service Points.
• Mobile JNE, by using the MyJNE application Customers can access features such as Shipment Tracking, Rate Checking, MyJOB, JNE Nearby, My Shipment, Mobile Credit/Data, Electricity Tokens, Digital Wallet, Electricity Bill, PDAM, BPJS Health, Postpaid Mobile Credit, Telkom, and Cable TV.
• JLC Website, by accessing the special page for JNE loyal Customers, they can view their transactions while using JNE delivery services and the rewards provided.

3. Purpose of Customer Data Collection

a. JNE Outlets
Package delivery transactions at JNE Outlets require the following information:

• Sender’s Full Name and Recipient’s Full Name
• Sender’s Full Address and Recipient’s Full Address
• Sender’s Phone Number and Recipient’s Phone Number

Such information is required to ensure that the delivery process can be carried out quickly and accurately in accordance with the information provided to JNE.

b. JNE Website
Access to the features available on the JNE Website does not require Personal Data from Customers. All JNE Customers may use these features without any requirements.

c. MyJNE Application and JLC Website
Access to the MyJNE application and the JLC Website requires:

• Customer Email Address
• Customer Username
• Customer Password

Such information is required so that the package delivery process can be monitored directly and for confirmation of reward program deliveries provided by JNE as a form of appreciation to Customers.

4. Security of Website and Application Access

a. JNE Website
Access to the JNE Website uses Secure Socket Layer (“SSL”) encryption technology of 2048 bits to protect communications between Customers’ computers and mobile devices and JNE servers while accessing the JNE Website.

b. JLC Website and MyJNE Application
JNE uses two (2) layers of security systems to protect Customer access to the JLC Website and the MyJNE application, namely:

• SSL, a security technology that “scrambles” communication channels between computers and mobile devices so that they cannot be read by other parties.
• User ID and password, where the password is known only by the Customer. JNE cannot know the Customer’s password because all passwords are encrypted and therefore cannot be read.

JNE uses SSL 2048-bit encryption technology to protect communication between Customers’ computers and mobile devices and JNE servers while accessing the JLC Website and the MyJNE application.

The email address, in addition to functioning as protection, is also used to send transaction information to JNE Customers.

JNE requires Customers to provide an email address so that JNE can send information regarding JLC and MyJNE.

To ensure the protection of information sent by JNE to the Customer’s email address, please observe the following:

• Customers should provide a valid email address and not use a fake email address.
• Immediately update the Customer’s email address on the JLC Website and the MyJNE application if the email address changes.
• If Customers contact JNE via email, do not send confidential or sensitive Customer information, including the Customer’s password.

c. Cooperation with Third Parties
In relation to programming activities carried out by JNE, JNE may provide Customer information to third parties that use and integrate the Application Programming Interface (API) provided by JNE (including but not limited to JNE business partner service providers) with the applications or websites they operate for the purpose of tracking transaction status between partners and their Customers, based on a valid agreement between JNE and the partner.

d. Cross-Border Personal Data Transfer
If the transfer of Personal Data abroad is required, JNE will comply with the provisions stipulated in Law Number 27 of 2022 concerning Personal Data Protection, ensuring at minimum that the destination country has regulatory standards equivalent to those applicable in Indonesia.

e. Personal Data Retention
Customer Personal Data will be stored for a minimum period of five (5) years and will subsequently be destroyed through deletion, anonymization, or destruction of the storage media containing the Customer’s Personal Data.

The retention of Customer Personal Data is required in the event that it is needed for legal processes related to the Customer’s Personal Data.

5. Policy Updates

JNE may, at any time, modify or update this Privacy Policy. JNE recommends that users carefully read and periodically review this Privacy Policy page to be aware of any changes. By continuing to access and use the Website services or other JNE services, users are deemed to have agreed to any amendments to this Privacy Policy.

6. References

Law Number 27 of 2022 concerning Personal Data Protection, and other applicable laws and regulations.