Privacy Policy

Your privacy and data security are our top priorities. Learn how we protect and handle your information.

Last updated: January 15, 2025

Our Commitment to Privacy

Xsistant is committed to protecting your privacy and ensuring the security of your personal and business data. This policy explains how we collect, use, and safeguard your information in compliance with Indonesian data protection laws (UU PDP 2022) and international standards.

Information We Collect

Business Information

  • Company name and business details
  • Contact information (email, phone, address)
  • Business owner and team member information
  • Industry and business type

Usage Data

  • AI conversation logs and interactions
  • System usage patterns and analytics
  • Performance metrics and error reports
  • Customer service interactions

Technical Information

  • IP addresses and device information
  • Browser type and version
  • Operating system and platform
  • Access logs and security events

How We Use Your Information

Service Provision

  • • Deliver AI customer service capabilities
  • • Process and respond to customer queries
  • • Manage bookings and appointments
  • • Provide analytics and insights

Service Improvement

  • • Enhance AI accuracy and performance
  • • Develop new features and capabilities
  • • Troubleshoot technical issues
  • • Optimize user experience

Communication

  • • Send service updates and notifications
  • • Provide customer support
  • • Share important security alerts
  • • Deliver marketing communications (with consent)

Legal Compliance

  • • Comply with Indonesian regulations
  • • Respond to legal requests
  • • Prevent fraud and abuse
  • • Protect user safety and security

Data Security Measures

Technical Safeguards

  • • AES-256 encryption for data at rest
  • • TLS 1.3 encryption for data in transit
  • • Multi-factor authentication
  • • Regular security audits and penetration testing
  • • Automated backup and disaster recovery

Operational Safeguards

  • • Access controls and role-based permissions
  • • Employee security training and background checks
  • • Incident response procedures
  • • Data minimization and retention policies
  • • Third-party security assessments

Your Data Rights

Access and Portability

Request a copy of your personal data and receive it in a structured, machine-readable format.

Correction and Updates

Update or correct any inaccurate or incomplete personal information we hold about you.

Deletion

Request deletion of your personal data, subject to legal and contractual obligations.

Processing Restrictions

Request that we limit the processing of your personal data in certain circumstances.

Contact Us

If you have any questions about this Privacy Policy or want to exercise your data rights, please contact us:

Data Protection Officer

Email: privacy@xsistant.com
Phone: +62 21 1234 5678
Address: Jakarta, Indonesia

Response Time

We will respond to your privacy-related requests within 30 days as required by Indonesian law.

Policy Updates

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. We will notify you of any material changes by email or through our service, and update the "Last updated" date at the top of this policy.