Logo Gunungmas Nexus

Privacy Policy

Last updated: 01 Oktober 2025

This Privacy Policy explains how Gunungmas Group ("we", "us", "our") collects, uses, stores, and protects your personal information when you use our services through the `gunungmasgroup-kupang.com` domain and its integrated systems, including the Recruitment Portal, Ticketing System, E-Budgeting, and Building Management System.

We are committed to protecting your privacy and ensuring that your personal data is managed responsibly, especially when interacting with Google API services.

1. Information We Collect

We collect various types of information to provide and improve our services:

A. Data You Provide Directly

  • Recruitment Portal: Name, email address, phone number, educational history, work experience, CV, and other supporting documents you upload when applying for a job.
  • Ticketing System, E-Budgeting, BMS: Information provided by internal users (employees), such as name, department, ticket report details, budget proposals, and other data relevant to the system's function.

B. Data We Obtain Through Google API

When you choose to register or log in using your Google account, we ask for your permission to access certain information via the Google API. We only request access to data that we truly need (principle of least privilege).

  • Basic Profile Information (Scopes: .../auth/userinfo.profile and .../auth/userinfo.email):
    Purpose: To create and manage your account, and to personalize your experience.
    Data Accessed: Your full name, email address, and profile picture.
  • Reading Gmail Messages (Restricted Scope: .../auth/gmail.readonly):
    Purpose: This is a sensitive scope that we use for one specific purpose only: to assist our finance staff in tracking invoice payment notifications from banks.
    Data Accessed: The content of specific emails relevant to payment notifications.

C. Data Collected Automatically

We may collect technical information such as IP address, browser type, and site usage data through cookies to improve the functionality and security of our website.

2. How We Use Your Information

The use of your data is highly dependent on the type of data and the service you use.

A. For Internal Operations

  • Recruitment: To evaluate your qualifications, communicate about the application process, and store your profile for future openings.
  • Other Systems: To manage support tickets, process budgets, and manage building operations.

B. Specific Use of Data from Google API

  • Login and Registration: We use your Google profile information to provide a secure and easy authentication method without you needing to create a new password.
  • Financial Report Automation (Use of gmail.readonly Scope):
    Our system, after you grant explicit permission, will access your Gmail account with read-only permission. The system is programmatically set to only search for and read emails from specific senders (banks) that contain relevant keywords such as "invoice", "payment", "transfer", or "proof of payment".
    Important: The system DOES NOT read, store, or analyze your personal emails or any other irrelevant emails. The system also DOES NOT have permission to send, modify, or delete any emails from your account.
    The extracted information (such as invoice number, payment amount, and sender name) is used exclusively to automatically update data in our E-Budgeting system, which aims to speed up the internal financial reporting process.

3. Data Security

We implement strict technical and organizational security measures to protect your data:

  • Encryption: All data transmitted between your browser and our servers is encrypted using SSL/TLS. Sensitive data in our database is also encrypted at rest.
  • Access Control: We apply the principle of Role-Based Access Control (RBAC). Only authorized personnel (e.g., the HR team for applicant data, or the finance team for invoice data) can access information relevant to their duties.
  • Data Minimization: We only collect and process data that is absolutely necessary for the stated purposes.
  • Audit Keamanan: Kami secara berkala meninjau praktik keamanan kami untuk memastikan perlindungan data yang berkelanjutan.

4. Your Rights and Data Control

You have full control over your personal data:

  • Access and Correction: You can request access to or correct the personal data we hold.
  • Deletion: You can request the deletion of your account and personal data from our systems.
  • Revoking Google Access: You can revoke our application's access to your Google account at any time through your Google Account Security Page. If you revoke access, our system will immediately stop accessing any data from your Google account.

5. Contact Us

If you have any further questions regarding this Privacy Policy or how we handle your data, please contact us at:

hrdgunungmasgroup@gmail.com