ChaloJi Policy Privacy
Effective date: November 25, 2025
This Privacy Policy Outlines how PT NUSABYTE TECHNOLOGIES INDONESIA, as the developer and operator of ChaloJi ("ChaloJi", "we", "Services" or "our"), collects, protects and uses user information, how users manage their personal information, and how this Privacy Policy applies and updates to protect the privacy rights of minors.
This Privacy Policy is based on the following laws and regulations:
1. Personal Data Protection Act (PDP) of Indonesia;
2. The European Union's General Data Protection Regulation (GDPR);
3. California Consumer Privacy Act (CCPA);
4. Google's privacy policy and relevant regulations.
When you access or use the application, you agree to our privacy policy and explicitly and knowingly consent to us collecting, storing, using, and disclosing your personal information as outlined in this policy. If you do not accept and agree to our privacy policy, you may not access or use the service. Please read and fully understand this policy before using this application.
Catalogue
1. What data and information we collect from you;
2. What we do with your data;
3. How we protect your data and security;
4. GDPR and CCPA compliance;
5. Our children's policy;
6. Your rights;
7. Change notice;
8. Contact us;
1. What data and information will we collect from you?
We handle personal data you provide to us as a product user (for example, through the use of our products) and personal data provided by users to us ("data"). We also collect information generated when you use our services, such as access logs, and information from third parties, such as when you access our services via social media accounts. Additionally, we automatically collect certain data, including information about your device and which parts of our services you interact with or spend time on.
1.1 Data provided to us by you
Communication data: When you contact our customer service or report a problem, we may collect your contact information, message content and other relevant data, such as your name or alias, email address, IP address and any other information you provide. This is mainly used to respond to and resolve your feedback.
Account data information: This application collects the information you provide to us when you register or log in your account or modify your personal Settings, and associates it with your account (such as user name, email address, phone number, profile picture, etc., and assigns a unique identifier to your account).
Financial data: All paid services in the app are processed through Google Play. We only collect transaction data from these platforms and do not collect or store sensitive information, such as full payment card numbers.
Using data: We collect data related to your use of the App, including messages, photos, videos, gifts and other user data. In addition, we process your conversations with other users and the content you share while using the App. This content may be temporarily stored to prevent violations.
1.2. Automatically collected data and information about you
Device information: We collect information from the device you use to access the service to ensure that the application and service are functioning properly, including but not limited to language Settings, IP address, time zone, browser type, device model, device unique identifier, device network information, etc
Use of Information: To ensure the security of your user account, prevent transaction risks and authenticate your identity, we may collect information related to how you use the Service, including the frequency of service, log information, click-through rates, crash data, performance data and overall usage.
Technical data: Through third-party SDKs supported by the app store, such as firebase/tenjin/kochava/Facebook/Google Play billing, we automatically collect data at key nodes of the application service for analysis to better optimize the product or provide a better product experience for users.
① Third-party usage analysis tools: Firebase, operated by Google, is also used for usage analysis purposes. It can synchronize the running status of products in real time. According to Firebase's policies, the platform will collect but not limited to: user name, phone number, email address, IP address, etc. For details, please refer to Firebase's privacy policy.
② Third-party advertising attribution tools: We use Kochavo's cross-platform data integration and user behavior analysis in our services. Tenjin offers multi-dimensional data attribution, enabling the monitoring of ad performance and tracking. Both Kochavo and Tenjin platforms comply with GDPR and CCPA regulations, ensuring the reasonable collection and processing of user information. The final interpretation rights belong to the data platform. Facebook uses precise user profiles and real-time data analysis for its advertising features, collecting personal information such as email addresses, phone numbers, and age. For more details, please refer to Facebook's privacy policy.
③ Financial related tools: We use Google Play billing method in our application. When dealing with transactions, we strictly comply with Google's relevant privacy policies to ensure the security of users' financial information. For details, please refer to Privacy Policy-Privacy and Terms-Google
1.3 Other information
Information that requires your authorization: With your permission or authorization, we may collect information such as your microphone (for calls), photo albums (for updating personal information), camera (for calls), notifications (to inform you of our preferential policies), and approximate location (to push updates). All these collected data will prompt users with a pop-up window to authorize within the app, primarily to ensure the best user experience.
Information from partners: If our ads appear on other sites or platforms, our partners may share data on the effectiveness of our ads with us.
2. What we do with your data
The main reason we use your information is to provide and improve our services. In addition, we will also use your information to help you ensure the security of your data. Please continue reading for more detailed explanations of the various reasons we use your information and actual examples.
2.1 Manage your account and provide assistance
Create an account and log in securely using your registration details (e.g. email, phone number, etc.);
Check your information and provide customer support to solve your problems;
Complete your in-app payments;
Store your chat history and friend list for continuity;
2.2, to help you establish contact with you
Analyze user behavior to enhance our services and content;
We communicate with you in the belief that you may like our products or services;
Conduct analysis to improve your connection quality and provide updates related to our services;
Adjust the matching algorithm based on data (e.g., chat duration, interaction frequency) to improve the recommendation content;
2.3 Fraud prevention
To ensure compliance, manage risk and maintain security, we use the information we collect to verify accounts and activities, prevent harmful behavior and detect illegal behavior.
Analysis of data to develop strategies to combat fraud;
Detect and identify any activity (e.g. fake accounts, spam, etc.);
2.4. Legal compliance
As a global service, we comply with the laws of each region:
Regulatory requirements: Process or store data in accordance with local laws.
Law enforcement cooperation: meet legal requirements and assist law enforcement.
3. How we protect your data and security
We implement necessary management, technical, and physical security measures to protect your personal information from unauthorized access and disclosure. For example, only authorized employees can access this information, which is used exclusively for approved business purposes. However, we cannot fully guarantee the security of the transmission and storage of your personal information. When providing information through the ChaloJi service, you should exercise caution and carefully consider the information you choose to share with us.
3.1 Data storage
3.1.1 As the controller of the data, we retain personal information only when necessary, taking into account its nature, sensitivity, and legal requirements. Once resolved, we will not retain any information submitted for feedback or support purposes. Account data will be deleted within 30 days after the account is deactivated. Chat records will be automatically deleted after a conversation, unless they are retained for security or compliance checks.
3.1.2. Personal information can only be accessed by authorized personnel, and the personal data collected by us may be stored on servers in the world (e.g., the United States, Australia, Europe, etc.);
3.2 Data transmission
In the process of collecting necessary information, we will encrypt the transmission of sensitive data;
3.3 Disclosure of third party data
We are committed to maintaining your trust and personal information security. Unless we have obtained your consent or the applicable law allows, we will not provide, disclose or share your personal information with any third party. This policy outlines the third-party service providers we may engage to assist or enhance our services, as follows:
3.3.1. Agora Series: The platform uses RTC and RTM services, and involves and collects the following personal information: user ID, device information, IP address;
3.3.2. Rongyun: The platform uses IM and RTC services, and involves and collects the following personal information: user ID, device information, IP address;
When you upload or post your personal information, posts, comments, videos, and other content, anyone on the platform may see such content. ChaloJi cannot guarantee that your content will not be discovered on other third-party platforms. You should exercise caution when disclosing personal information. You are responsible for maintaining the confidentiality of your account details at all times.
4. GDPR and CCPA compliance
4.1 GDPR (General Data Protection Regulation)
If you are located in the European Economic Area (EEA), under the GDPR, you have the right to: Request a copy of your personal data.
Right to know: You can obtain information about the processing of your personal data.
Access: You have access to your personal data.
Right to correction: You can request that incorrect, inaccurate or incomplete personal data be corrected.
Right to Delete: You can request the deletion of personal data when it is no longer needed or processing of personal data is illegal.
Restriction of processing: In certain circumstances, you may request that your personal data be processed restrictively.
Right to data portability: You can receive your personal data in a machine-readable format and send it to another controller.
Right to object: You can object to the processing of your personal data for marketing purposes or for reasons relevant to your particular circumstances.
Rights associated with automated decision-making and analysis: You can require that decisions made on your personal data that have a significant impact on you be made by a natural person, not just a computer
To exercise your GDPR rights, please contact us by supporting email.
The full legislation is here.
4.2, CCPA (California Consumer Privacy Act)
The California Consumer Privacy Act (CCPA) of 2018 gives consumers more control over the personal information that businesses collect about them. The CCPA provides guidance on how to implement the law. If you are a California resident, under the CCPA, you have the right to:
The right to know about the personal information collected by an enterprise and how it is used and shared;
The right to delete personal information they collect (with some exceptions);
The right to choose not to sell or share their personal information, including through GPC;
The right to be free from discrimination in the exercise of CCPA rights;
The right to correct inaccurate personal information owned by the enterprise;
Limit the right to use and disclose sensitive personal information collected about them.
To exercise your CCPA rights, please contact us by supporting email.
The full legislation is here.
5. Our children's policy
ChaloJi prohibits individuals under the age of 18 from using the service. We do not intentionally collect or request personal information from children under 18. If we realize that we have inadvertently collected personal data from children under 18, we will take steps to delete this data. You can report and provide evidence of suspected underage users through email or within the app. If you are a parent or guardian and believe we have collected information about a child under 18, please contact us at [asep09061991@gmail.com].
We place great importance on the protection of minors' (referring to individuals under the age of 18 or those who have not reached the legal age of majority according to the laws of their jurisdiction) personal information. We strictly adhere to relevant laws and regulations, including COPPA (Children's Online Privacy Protection Act) and GDPR-K (the children's provisions of the EU General Data Protection Regulation), and have implemented the following measures to effectively safeguard the personal information of minors:
6.1. Restrictions on Collection of Minor Data
We do not provide services to minors under the age of 18 (or the legal age of majority in the relevant jurisdiction). We do not knowingly collect, store, or process any personal information from such users, including but not limited to their name, address, email address, contact information, device identifiers, location data, or any other information that can be used to identify them.
6.2. Measures Regarding Illegal Data Processing
If we discover or receive confirmation that a user under the age of 18 has provided personal information, we will immediately take measures including but not limited to the following:
a. Promptly delete the relevant data, ensuring its complete removal from servers and databases;
b. Block the user from further access to and use of the application;
c. Send an account closure notification to the user, clearly informing them that their data has been deleted;
d. Prohibit the user from registering again to prevent subsequent submission of personal information.
6.3. Minor Reporting Mechanism
If you encounter a user suspected of being a minor while using our services, please retain relevant evidence and report it to us through the application's customer service email or complaint channel. We will complete verification and processing within 72 hours of receiving the report and notify you of the outcome via email.
If you are a parent or guardian and become aware that a minor under your care is using our application, please contact us immediately through the customer support email or complaint channel. We will complete user verification within 24 hours and take necessary measures, with the results provided via email. We also fully support guardians in deleting or uninstalling the application themselves.
Parents or legal guardians are responsible for supervising and managing the minor's use of [ChaloJi]. If a minor provides false information claiming to have reached the legal age of majority, you will bear full responsibility for any consequences arising therefrom. We strongly advise parents and guardians to educate their children about the importance of online safety and to monitor their online activities to ensure compliance with our policies and applicable laws and regulations.
7. Child Protection Policies
7.1. Child Safety Standards for ChaloJi
7.1.1. Introduction
ChaloJi, operated and published by PT NUSABYTE TECHNOLOGIES INDONESIA, is committed to providing a safe, healthy, and strictly regulated communication environment for all users.
This Child Safety Standards document is publicly available and outlines our zero-tolerance policy toward Child Sexual Abuse and Exploitation (CSAE) in compliance with Google Play’s Child Safety Standards Policy.
These standards apply to all users and all content on ChaloJi.
7.1.2. Zero-Tolerance Policy Toward CSAE
ChaloJi is committed to protecting the safety and rights of minors and takes the strictest measures to prohibit any form of child sexual abuse and sexual exploitation (CSAE). Users are strictly prohibited from engaging in the following activities, including but not limited to:
Any violation of the above regulations will be considered a serious breach, and we will not tolerate it. We will report the relevant content and information to law enforcement agencies in accordance with the law.
7.2.Age Restriction Statement
This service is only available to users aged 18 and over. We prohibit providing any services to children under the age of 13, and we will proactively delete their accounts if we discover such cases,
nor do we intentionally collect any personal information from them. If you are under the age of 13, please stop using this service immediately.
If we have unknowingly collected personal information from children under the age of 13, we will delete it immediately in accordance with applicable laws.
7.3. Protection of personal information of children (under 13 years old)
We strictly comply with applicable laws (including the Children's Online Privacy Protection Act (COPPA)) regarding the protection of children's privacy and take the following measures when processing children's information:
We do not knowingly collect personal information from children under the age of 13, including account information, contact details, device information, etc.
This service does not contain content, advertisements, or behavioral guidance targeted at children, and will not attract or target users under the age of 13 in any way.
If a parent or guardian believes that their child under the age of 13 has submitted personal information to us, they can contact us through the contact information provided in this Privacy Policy. We will promptly delete the relevant data after verifying the identity.
7.4. Parental and Guardian Responsibilities
Guardians should guide minors in the proper use of online services and strengthen their awareness of protection. If guardians discover any inappropriate behavior or data submissions by minors on this service, please contact us immediately.
8. Your rights
You can log in to your account to view and correct stored personal data, such as usernames, emails, and chat records. Some requests may be restricted due to security or legal reasons. Additionally, you can request the deletion of account data, chat records, or payment information through your account settings or by sending an email to [asep09061991@gmail.com]. The processing period is 7 working days, but some data may need to be retained temporarily due to legal requirements. You can also withdraw your consent at any time: adjust location, notification, or microphone/camera permissions in device settings (which may affect related functions); unsubscribe via email or disable marketing notifications in app settings; disable personalized recommendations, data analysis, or third-party data sharing in privacy settings. All requests will be processed and confirmed by email within 7 days, but some data may still need to be retained due to legal requirements. If you have any questions, please contact customer service for privacy-related issues.
9. Change notice
We may update or modify this Privacy Policy from time to time to reflect changes in business practices, legal requirements, or service content. Any revised policy will be posted on this page and the "Effective Date" at the top will be updated accordingly. We recommend that you regularly review this policy to understand how we collect, use, and protect your information.
10. Contact us
If you have any questions about this Privacy Policy, please contact us at [asep09061991@gmail.com].
Your feedback is important to us and we want to make sure you have a clear understanding of our privacy policy.