Effective Date: March 20, 2026
Last Updated: March 20, 2026
1. Introduction
PT Diagma Visi Solusi (“Diagma”, “we”, “us”, or “our”) operates the Diagma mobile application (the “App”) and the website at https://diagma.co.id (the “Website”). This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our services.
By using our App or Website, you agree to the collection and use of information as described in this Privacy Policy. If you do not agree with this policy, please do not use our services.
2. Information We Collect
2.1 Information You Provide
- Account Information: Name, email address, phone number, and profile photo.
- Student Information: Student level, academic progress, class enrollment details, and target completion dates.
- Documents: Files you upload for program applications, including academic transcripts, identification documents, visa-related documents, and other supporting materials.
- Communication Data: Messages, notification preferences, and correspondence with us.
2.2 Information Collected Automatically
- Device Information: Device identifier, device name, brand, model, operating system, and app version.
- Usage Data: App interactions, feature usage patterns, focus session history, and session timestamps.
- Push Notification Tokens: Firebase Cloud Messaging (FCM) tokens used to deliver push notifications.
- Connection Data: Periodic heartbeat signals to maintain real-time connectivity and ensure service reliability.
2.3 Information from Third Parties
- Authentication Providers: When you sign in using Single Sign-On (SSO), we receive basic profile information from the authentication provider to create or link your account.
3. How We Use Your Information
We use the information we collect for the following purposes:
- Service Delivery: To provide and maintain the App, manage your account, and deliver educational program services.
- Communication: To send you important updates, push notifications, schedule reminders, document status updates, and visa process notifications.
- Academic Tracking: To track your learning progress, class schedules, module completion, and focus session analytics.
- Document Processing: To manage document submissions, track approval workflows, and support visa application processes.
- Service Improvement: To analyze usage patterns and improve app functionality, performance, and user experience.
- Security: To detect and prevent fraud, unauthorized access, and other security incidents.
- Legal Compliance: To comply with applicable laws, regulations, and legal processes.
4. Data Storage and Security
4.1 Data Storage
Your data is stored on secure servers located in Indonesia. Some data is also stored locally on your device in encrypted form to enable offline functionality.
4.2 Security Measures
We implement appropriate technical and organizational measures to protect your personal information, including:
- Encrypted data transmission using TLS/HTTPS protocols.
- Encrypted local storage for authentication tokens and sensitive data.
- Secure keychain (iOS) and keystore (Android) for credential storage.
- Access controls and authentication mechanisms for all data access.
- Automatic token refresh and session management.
While we strive to use commercially acceptable means to protect your personal information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.
5. Third-Party Services
We use the following third-party services that may collect information as part of their operation:
- Firebase Cloud Messaging (Google): For delivering push notifications. Subject to Google’s Privacy Policy (https://policies.google.com/privacy).
- Firebase Installations (Google): For anonymous app installation tracking and service reliability. Subject to Google’s Privacy Policy (https://policies.google.com/privacy).
We do not sell, rent, or share your personal information with third parties for their marketing purposes.
6. Data Sharing
We may share your information only in the following circumstances:
- Service Providers: With trusted partners who assist in operating our services, subject to confidentiality obligations.
- Educational Institutions: With partner institutions in Germany when necessary for your program application and enrollment.
- Legal Requirements: When required by law, regulation, legal process, or governmental request.
- Protection of Rights: To protect the rights, property, or safety of Diagma, our users, or the public.
- With Your Consent: In any other case, we will share your data only with your explicit consent.
7. Your Rights
You have the following rights regarding your personal information:
- Access: You may request access to the personal information we hold about you.
- Correction: You may request that we correct inaccurate or incomplete information.
- Deletion: You may request deletion of your account and associated data through the app’s profile settings (Danger Zone) or by contacting us.
- Withdrawal of Consent: You may withdraw your consent for data processing at any time by contacting us.
- Data Portability: You may request a copy of your data in a structured, commonly used format.
- Notification Preferences: You may manage your push notification preferences through your device settings or within the App.
To exercise any of these rights, please contact us at support@diagma.co.id.
8. Permissions
The App requests the following device permissions:
- Camera: To take profile photos. You can deny or revoke this permission at any time through your device settings.
- Photo Library / Storage: To select profile photos from your device gallery. You can deny or revoke this permission at any time.
- Notifications: To receive push notifications about schedule updates, document statuses, and other important information. You can disable notifications in your device settings.
- Internet Access: Required for the App to function and communicate with our servers.
All permissions are optional except Internet access. The App will function with limited features if permissions are denied.
9. Data Retention
We retain your personal information for as long as your account is active or as necessary to provide our services. Upon account deletion:
- Your authentication tokens and locally stored data are immediately removed from your device.
- Your device is unregistered from push notification services.
- Server-side data associated with your account will be deleted within 30 days, except where retention is required by law.
10. Children’s Privacy
Our services are intended for users aged 18 and above. We do not knowingly collect personal information from individuals under 18 years of age. If we become aware that we have collected personal information from a person under 18, we will take steps to delete that information promptly. If you believe we have inadvertently collected information from a minor, please contact us immediately.
11. International Data Transfers
Our servers are located in Indonesia. If you access our services from outside Indonesia, please be aware that your information may be transferred to, stored, and processed in Indonesia. By using our services, you consent to the transfer of your information to Indonesia.
When we share data with educational partner institutions in Germany or other countries, we ensure appropriate safeguards are in place to protect your information in accordance with applicable data protection laws.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on our Website and within the App. The “Last Updated” date at the top of this policy indicates when the latest revisions were made. Your continued use of our services after any changes constitutes acceptance of the updated policy.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
PT Diagma Visi Solusi
Jl. Pakel No.1C, Kerten, Kec. Laweyan
Kota Surakarta, Jawa Tengah 57143
Indonesia
Email: support@diagma.co.id
Website: https://diagma.co.id