NepTime logo NepTime
Privacy Policy

Privacy Policy

NepTime is a human resource information system (HRIS) application used to manage employee attendance, leave, schedules, and related workforce administration. This application is not owned by, operated by, or affiliated with any government entity.

Last updated: May 7, 2026 Company: PT. INDOPASIFIK INDAHTAMA Country: Indonesia

Overview

This Privacy Policy explains what information NepTime collects, how the information is used, whether it is shared, where it is stored, how long it is retained, and how users may request access, correction, deletion, or withdrawal of consent where applicable.

Important: NepTime uses a photo-based attendance feature. Because an attendance photo can contain a user's face, this policy includes a dedicated Face Data section for clarity.

Data We Collect

Depending on the feature used, NepTime may collect the following categories of data:

Category Examples Purpose
Account and employee data Name, employee ID, account credentials, work schedule, department, contact details User authentication, attendance administration, HR operations
Attendance submission data Clock-in / clock-out time, attendance type, address, attendance notes Attendance recording, payroll support, compliance, dispute handling
Location data Latitude, longitude, and derived attendance location information Checking whether the user is within an approved attendance radius
Face data in attendance photos Selfie or attendance photo submitted at clock-in or clock-out that may contain the user's face Face presence verification and attendance evidence
Technical and usage data IP address, device identifiers, browser or operating system information, diagnostic logs Security, troubleshooting, and service improvement

Face Data for Attendance

NepTime may collect an attendance photo that contains the user's face when the user performs clock-in or clock-out. The face is used only for attendance-related verification.

What face data does the app collect?

  • An image or photo captured by the user during attendance that may contain the user's face.
  • Metadata associated with the attendance submission, such as timestamp, attendance type, and location coordinates.

What does the app not collect?

  • NepTime does not collect face data from the device photo library unless the user intentionally submits a photo for attendance.
  • NepTime does not sell face data and does not use face data for advertising.
  • Based on the current service implementation, NepTime does not store a separate biometric template, faceprint, or facial recognition profile on the server for unrelated identification purposes.

How is the face data used?

  • To detect whether a human face is present in the attendance photo during the attendance process.
  • To support verification that the attendance submission was made by the employee during clock-in or clock-out.
  • To serve as attendance documentation for internal HR administration, payroll support, audit review, and attendance dispute resolution.
  • To investigate misuse, fraud, duplicate attendance, or policy violations related to attendance submissions.

Prohibited uses of face data

  • Face data is not used to determine a user's race, ethnicity, religion, health status, sexual orientation, or other sensitive attributes.
  • Face data is not licensed, sold, or shared with advertisers or data brokers.
  • Face data is not used for unrelated marketing purposes.

How We Use Data

The Company may use personal data and attendance data for the following purposes:

  • To provide and maintain NepTime and its attendance, leave, and scheduling features.
  • To manage user accounts, employee access, and authentication.
  • To verify attendance submissions, including attendance photo review and attendance radius checks.
  • To generate attendance records used for workforce administration, payroll support, and internal reporting.
  • To contact users regarding account, operational, service, or security matters.
  • To protect the service, investigate abuse, and enforce company rules and legal obligations.
  • To improve reliability, troubleshoot issues, and maintain system security.

Sharing and Storage

Will face data be shared with third parties?

NepTime does not sell or disclose face data to advertisers, data brokers, or other unrelated third parties. Face data may only be disclosed in the following limited situations:

  • To service providers acting on the Company's behalf for hosting, storage, security, maintenance, or technical support, subject to confidentiality and data protection obligations.
  • To affiliated entities involved in workforce administration under the same privacy and security standards.
  • When required by applicable law, lawful request, court order, or regulatory obligation.

Where is face data stored?

Attendance photos and related attendance metadata are stored on company-managed application servers and storage systems used to operate NepTime. Depending on the deployment environment, storage may be provided directly by the Company or by infrastructure providers acting on the Company's behalf.

Face data is stored together with the attendance record so the Company can verify clock-in and clock-out submissions and maintain internal attendance evidence.

Retention and Deletion

How long is face data retained?

Attendance photos containing face data are retained for as long as necessary to fulfill attendance, payroll support, internal audit, dispute resolution, and legal compliance purposes. Unless a longer retention period is required by law or an ongoing investigation, dispute, or lawful request, the Company retains attendance photos for up to 2 years after collection and then deletes or anonymizes them in accordance with internal retention procedures.

How can users request deletion?

Users may request access, correction, or deletion of their data by contacting the Company using the contact information in this policy. Some information may be retained where required for legal, payroll, audit, security, or employment recordkeeping purposes.

Consent and Your Rights

  • NepTime requests access to the camera and location only to support attendance features.
  • Users may disable camera or location permissions through device settings, but some attendance features may not function properly without the required permissions.
  • Users may contact the Company to request access to, correction of, or deletion of their personal data, subject to applicable legal and operational requirements.
  • Where consent is the legal basis for processing, users may withdraw consent, although withdrawal may limit the ability to use attendance features that depend on the relevant data.

Security

The Company implements reasonable administrative, technical, and organizational measures designed to protect personal data, including attendance photos and related metadata, against unauthorized access, alteration, disclosure, or destruction. No system can be guaranteed to be completely secure, but the Company works to apply safeguards appropriate to the sensitivity of the data processed by NepTime.

Contact Us

If you have questions about this Privacy Policy or want to request access, correction, deletion, or additional information regarding your data, you can contact:

  • PT. INDOPASIFIK INDAHTAMA
  • Email: it.team1@indopasifik.id
  • Address: Jl. Jalur Sutera Barat No. 15, Kota Tangerang 15143, Indonesia