Privacy Policy

1. Overview

B-HRD is a workforce attendance and human resource management platform operated by Blackfish Code Squad Indonesia. This Privacy Policy explains what personal data is collected through the service, how that data is used, how it is protected, and how data subjects may request assistance regarding their information.

2. Data We Collect

• Account data, including employee name, employee ID, role, login identifier, and business email address.
• Company and office data, including company name, office location, radius configuration, and HR contact details.
• Attendance data, including check-in and check-out timestamps, attendance status, office match results, and distance data.
• Location data collected during attendance validation to determine whether attendance is submitted from an approved office area.
• Face reference images and attendance selfie images used to support identity validation and attendance analysis.
• Leave, permit, appeal, and support request data, including dates, written reasons, notes, and uploaded evidence files.
• Administrative audit data, such as approvals, rejections, review notes, and system actions taken by HR personnel or administrators.

3. Why We Use the Data

• To authenticate users and enforce role-based access control.
• To validate attendance submissions and office geofence rules.
• To support HR workflows, including leave approval, late permits, employee administration, and record review.
• To investigate disputes, missed check-outs, attendance appeals, and face reference assistance requests.
• To maintain platform security, auditability, and service reliability.

4. Face and AI Processing

B-HRD uses an AI analysis service to process face images for attendance validation support and face reference quality checks. The AI service returns analysis results to the backend system. Final attendance, approval, and HR decisions are made by backend rules and authorized personnel, not by the AI service alone.

5. Legal Basis and Organizational Use

B-HRD is intended for organizational HR operations. Employers or HR administrators are responsible for determining whether they have an appropriate legal basis to collect attendance, location, and supporting documentation under applicable laws, regulations, and internal employment policies.

6. Data Sharing

We do not sell personal data. Data may be accessible only to authorized employees, managers, HR administrators, super administrators, infrastructure providers, and service operators to the extent necessary to operate the system, investigate issues, or comply with legal obligations.

7. Data Storage and Security

We use technical and administrative safeguards to protect the data processed through B-HRD. These safeguards may include access controls, authenticated APIs, restricted administrative access, protected storage, and audit records. No system can guarantee absolute security, but reasonable measures are used to reduce risk.

8. Data Retention

Personal data is retained for as long as reasonably necessary to operate the service, maintain employment and attendance records, support HR workflows, resolve disputes, satisfy internal policies, or meet legal and contractual obligations.

9. Data Subject Requests

Requests relating to access, correction, deletion, or objection should be submitted through the user's HR administrator or by contacting the legal contact listed below. Some requests may be limited where retention is required for business, employment, legal, contractual, or security reasons.

10. Children's Privacy

B-HRD is not directed to children and is intended only for business and workforce management use.

11. Policy Updates

This Privacy Policy may be updated from time to time. When updates are made, the latest effective date will be published on this page.