halona Platform Privacy Notice

This page describes what we collect when you use halona and how we keep that data protected. We collect personal information to verify your identity, process your deposits and withdrawals via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or bank virtual accounts, and comply with local regulations. Our approach prioritises your control over your own data.

We at halona are transparent about data handling. We do not sell your information to third parties for marketing. We do not share your payment details with unrelated services. We store your documents securely and delete them according to our retention policy. We encrypt sensitive data in transit and at rest, and we limit access to your information to team members who need it to serve you.

This notice explains what data we collect, how we use it, who may access it, your rights regarding your information, and how to contact us if you have privacy concerns. We update this policy when our practices change; we notify members of material updates before they take effect.

What we collect when you join halona

When you register at halona, we collect your email address, phone number, and a password of your choice. We use this information to create your account and send you notifications about deposits, withdrawals, and account security. We do not share your email or phone number with advertisers or unrelated third parties.

During identity verification—required before your first deposit—we ask you to upload your government-issued ID, a proof-of-address document such as a utility bill, and a selfie. We store these documents securely and use them only to verify your identity and comply with our legal obligations. Our compliance team reviews them within a standard business window, then stores them in an encrypted database accessible only to authorised staff.

We delete your documents according to our retention policy

We retain identity documents for a period required by law, then securely delete them unless a regulatory requirement mandates longer retention. We do not indefinitely archive your ID, address proof, or selfie.

Payment data and our halona transaction history

When you deposit via DANA, e-wallet, mobile banking, local payment, online payment, e-wallet, or a bank virtual account, we receive transaction confirmation data from the payment provider—your account identifier, transaction amount, and timestamp. We do not receive or store your actual payment credentials (e.g., your e-wallet password or bank PIN). This data is encrypted and stored in our transaction database, accessible only to our finance and support teams.

We retain transaction records to settle withdrawals, investigate disputes, and comply with financial-reporting obligations. Members can access their own transaction history on halona at any time. We do not share your transaction details with unrelated third parties, though we may disclose information to law-enforcement authorities if legally required.

Third-party processors and data sharing on halona

We use third-party payment processors to handle mobile banking, local payment, online payment, e-wallet, mobile banking, and local payment transactions. These processors receive only the data necessary to complete your deposit—transaction amount and confirmation code. They do not receive your halona login credentials, your full name beyond what is required for the transaction, or unnecessary personal information. We have data-protection agreements with all processors requiring them to handle data securely.

Our servers may sit outside your jurisdiction. Your halona account data is replicated across secure data centres for redundancy and disaster recovery. We encrypt all data in transit between you and our servers using industry-standard TLS encryption. We do not disclose your account information to advertisers, analytics companies, or social-media platforms without your explicit consent.

  • Payment processors: Receive only transaction-essential data; governed by data-protection agreements.
  • Compliance services: May receive anonymised data to detect fraud patterns; bound by confidentiality.
  • Customer support systems: Store your account notes and communication history; accessible only to our support team.
  • Analytics: We track aggregate user behaviour (e.g., page views) but do not link this to personal identity without consent.

Your rights regarding data on halona

You have the right to access your personal information held by halona, request corrections to inaccurate data, and request deletion of your information subject to legal retention obligations. You can request these actions by contacting our support team. We will respond within a standard business window and provide documentation if required.

You have the right to object to certain uses of your data—for example, analytics tracking for non-essential purposes. You can manage these preferences in your halona account settings. We will honour your objection within a reasonable timeframe, though some processing may be required for legal compliance.

Cookies and tracking on halona

halona uses cookies to recognise you when you return to our site, maintain your session, and remember your preferences. These are functional cookies necessary for the platform to operate. We do not use cookies for advertising tracking without your consent. If you disable cookies in your browser, some halona features may not function correctly.

We use analytics tools to understand how users interact with halona—which pages are visited, how long users stay, what devices they use. This data is aggregated and anonymised; we do not track individual users across unrelated websites. You can opt out of analytics tracking by configuring your browser or adjusting your halona privacy settings.

Data security and halona's safeguards

We encrypt all sensitive data—passwords, payment information, identity documents—using AES-256 encryption at rest and TLS encryption in transit. We do not store your payment card numbers or e-wallet credentials. We implement access controls so that staff members can view only the information they need to perform their role. We conduct regular security audits and penetration tests to identify vulnerabilities.

If we discover a data breach affecting your halona account, we will notify you directly via email within a standard timeframe and explain the scope of the breach and the steps we are taking to remediate it. We do not delay notification; our commitment is transparency about security incidents.

Note: No security system is perfect. We use industry-standard protections, but we cannot guarantee absolute immunity from breaches. We recommend using a strong unique password on halona and enabling two-factor authentication if available.

Data retention and halona account closure

We retain your account information as long as your halona account is active. If you close your account, we retain transaction records, identity documents, and account notes for a period required by law—typically three to seven years depending on regulatory jurisdiction. After this period, we securely delete or anonymise your data. We may retain anonymised usage statistics indefinitely for analytics purposes.

If you request account deletion before the mandatory retention period expires, we will close your account and flag your data as deleted, but we cannot remove it from our systems until the retention period ends. We will not use your data for any purpose other than legal compliance after you request deletion.

Contacting halona about privacy

If you have questions about our privacy practices, wish to exercise your data rights, or believe halona has mishandled your information, contact our support team via email or our in-platform messaging system. We respond to privacy inquiries within a standard business window. We take all concerns seriously and investigate thoroughly.

We are committed to transparent, fair data handling. We do not sell your information. We do not use your data for purposes unrelated to halona without your consent. We encrypt sensitive information and limit access to authorised staff. This notice reflects our current practices; we update it as our policies evolve and notify members of material changes.

Your privacy is important to us because trust underpins our relationship with every member on halona. Whether you deposit via DANA in Jakarta, use e-wallet in Surabaya, or access our platform from Bandung, Medan, Semarang, or Yogyakarta, we apply the same data-protection standards. If you have concerns or questions about how we handle your information, reach out to our support team—we are here to help.

Related guides

Legal
Terms & Conditions on halona
8-min read
Legal
Legal Notice
4-min read
Support
Frequently Asked Questions
7-min read