Privacy Policy — Nusantara Mototour

Overview

PT Nusantara Mototours ("NMT", "we", "us", or "our") operates the website nusantaramototour.com and provides motorcycle touring services throughout Indonesia. This Privacy Policy applies to all personal data collected through our website, booking forms, email correspondence, and any other service we operate.

By using our website or booking a tour, you acknowledge that you have read and understood this policy. If you do not agree with any part of this policy, please refrain from using our services.

Effective Date 1 January 2026

Jurisdiction Republic of Indonesia

Governing Law UU No. 27 Tahun 2022 (PDP Law)

Data We Collect

Information You Provide Directly

We collect personal data that you voluntarily submit through our website and booking processes, including:

Identity data: full name, date of birth, nationality, passport or ID number.
Contact data: email address, phone number, and mailing address.
Booking data: selected tour, motorcycle preference, travel dates, dietary requirements, and medical information relevant to tour participation.
Payment data: billing address and payment method details. Card numbers are processed by our payment gateway and are not stored on our servers.
Licence data: copies of your motorcycle licence and International Driving Permit for verification purposes.
Communications: records of enquiries, support messages, and feedback submitted to NMT.

Information Collected Automatically

When you visit our website, certain information is collected automatically, including:

IP address and approximate geographic location
Browser type, device type, and operating system
Pages visited, time spent on each page, and referring URLs
Click behaviour and interaction patterns

This data is aggregated and used to improve our website's performance and user experience.

How We Use Your Data

We use your personal data only for legitimate purposes related to the provision of our services:

Tour administration: processing bookings, confirming reservations, and coordinating logistics.
Communication: sending booking confirmations, tour updates, itinerary documents, and important safety information.
Legal compliance: verifying rider licences and satisfying reporting obligations under Indonesian tourism and tax law.
Safety: maintaining emergency contact information and medical details relevant to tour participation.
Marketing (with consent): sending newsletters, promotional offers, and tour announcements. You may opt out at any time.
Website improvement: analysing usage patterns to optimise content, performance, and navigation.

We Do Not Sell Your Data NMT does not sell, rent, or trade your personal information to third parties for their own marketing purposes under any circumstances.

Cookies & Tracking Technologies

Our website uses cookies — small text files placed on your device — to enhance your browsing experience and help us understand how the site is used.

Types of Cookies We Use

Essential cookies: required for core website functions such as session management, security, and form submission. Cannot be disabled.
Analytics cookies: used to measure website traffic and user behaviour (e.g., Google Analytics). These are anonymised and help us improve our content.
Preference cookies: remember your language and display preferences for a better return visit experience.
Marketing cookies: used only with your consent to deliver relevant advertising on third-party platforms.

You can manage or disable non-essential cookies through your browser settings. Note that disabling cookies may affect the functionality of certain website features.

Third-Party Services

We work with trusted third-party service providers to deliver our services. These parties may process your data on our behalf, subject to strict confidentiality agreements:

Payment processors: to handle online transactions securely (e.g., Midtrans, Stripe). Payment data is governed by their own privacy policies.
Email service providers: to send transactional and marketing emails on our behalf.
Cloud hosting providers: to securely store and serve website data and customer records.
Analytics platforms: to aggregate and analyse website usage data (e.g., Google Analytics).
Accommodation and logistics partners: hotels and transport operators may receive your name and booking details to facilitate the tour.

We do not share your data with any third parties beyond what is necessary to provide the services you have requested. We do not permit third-party service providers to use your data for their own purposes.

Data Retention

We retain your personal data for as long as is necessary to fulfil the purposes described in this policy, or as required by law:

Booking records: retained for a minimum of 5 years after the tour date for tax, legal, and insurance purposes.
Licence and identity copies: deleted within 12 months after the tour unless legal proceedings require longer retention.
Marketing preferences: retained until you withdraw consent or request deletion.
Website analytics: aggregated data is retained indefinitely; identifiable IP logs are purged after 26 months.

Your Rights

Under Indonesian Personal Data Protection Law (UU PDP) and applicable international data protection frameworks, you have the following rights regarding your personal data:

Right of access: request a copy of the personal data we hold about you.
Right to rectification: request correction of inaccurate or incomplete data.
Right to erasure: request deletion of your data where it is no longer necessary or where you withdraw consent (subject to legal retention obligations).
Right to restriction: request that we limit how we process your data while a dispute is resolved.
Right to data portability: receive your data in a structured, machine-readable format.
Right to object: object to processing for direct marketing purposes at any time.
Right to withdraw consent: where processing is based on consent, withdraw it at any time without affecting prior processing.

To exercise any of these rights, contact us at contactme@nusantaramototour.com. We will respond within 30 days.

Data Security

We implement industry-standard technical and organisational measures to protect your personal data against unauthorised access, loss, or misuse:

All data transmission is encrypted using TLS (HTTPS).
Sensitive data at rest is encrypted in our database.
Access to personal data is restricted to authorised NMT staff on a need-to-know basis.
We conduct regular security reviews of our systems and third-party integrations.

Despite these measures, no internet transmission or electronic storage is 100% secure. In the event of a data breach that affects your rights, we will notify you promptly in accordance with applicable law.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or services. When we make significant changes, we will:

Update the "Effective Date" at the top of this page.
Post a notice on our website homepage for at least 30 days.
Send an email notification to registered users where changes materially affect how we handle their data.

We encourage you to review this policy periodically. Continued use of our services after changes take effect constitutes acceptance of the updated policy.

Contact Us About Privacy

If you have questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please reach out to our team:

Email: contactme@nusantaramototour.com
Address: Jl. Pengadegan Timur Raya Nomor 26, Pengadegan, Pancoran, Jakarta 12770, Indonesia
WhatsApp: +62 812 940 2205

Have a privacy concern? We take all privacy matters seriously. Reach out to us directly and we'll respond within 30 days.

Contact Us Terms & Conditions