Privacy policy

Gofer.support is operated by CV Nusa Dewata Digital, trading as Nusa Digital (“we”, “us”, “our”). Nusa Digital is a digital problem-solving practice; GoFER is our product for customer conversations across web chat, WhatsApp, voice, and CRM-aware workflows.

If you have questions about this policy or your data, contact us at hello@gofer.support.

This policy applies to:

• The public marketing website at gofer.support (including contact forms, blog, FAQ, and the marketing chat widget).
• The GoFER workspace application (typically app.gofer.support) when you are a customer, invitee, or end user interacting with a customer’s assistant.
• Pre-sales and support communications you send us by email or chat.

When you use GoFER on behalf of a business customer, that customer is usually the data controller for conversation content and contact records. We act as a processor according to our agreement with them. This policy explains our practices in both roles where relevant.

Depending on how you interact with us, we may collect:

• Identity and contact data — name, email, phone number, company name, and messages you submit through forms or support channels.
• Account and workspace data — login identifiers, role, tenant membership, and settings you configure in the product.
• Conversation data — messages, attachments metadata, channel identifiers (e.g. WhatsApp), session tokens, and handoff history between automation and human agents.
• Knowledge and content you provide — FAQs, uploaded documents, crawled public URLs, and campaign or chatbot configuration.
• Usage and technical data — IP address, browser type, device signals, request logs, error reports, and product analytics needed to operate and secure the service.
• Billing-related data — subscription plan, usage meters (e.g. AI tokens, crawl jobs), and payment references processed by our payment provider (we do not store full card numbers).
• Marketing preferences — cookie choices and, if you opt in, analytics or advertising identifiers as described in our Cookie policy.

We use personal data to:

• Provide, maintain, and improve GoFER and the marketing site.
• Authenticate users, enforce tenant isolation, and prevent abuse.
• Run AI-assisted replies, retrieval over your knowledge base, escalations, and CRM sync you configure.
• Respond to sales, support, and careers inquiries.
• Measure product performance, debug incidents, and plan capacity.
• Comply with law, enforce terms, and protect rights and safety.
• Send service-related notices; marketing only where permitted and with appropriate consent.

GoFER uses automated systems—including large language models and retrieval over your approved content—to suggest replies, classify intent, and surface knowledge. Outputs are not guaranteed to be accurate; customers configure escalation rules so humans can take over.

• We process conversation and knowledge data to generate responses within the boundaries set by each workspace.
• We may log prompts, responses, and quality signals for safety, billing, and improvement, subject to retention limits in your plan and agreement.
• We do not use your private workspace content to train public foundation models unless you explicitly agree to a separate program.

We use essential cookies for security and session management. With your consent, we may use analytics or advertising cookies on the marketing site. Details and controls are in our Cookie policy at gofer.support/cookies-policy.

We do not sell personal data. We may share data with:

• Infrastructure and hosting providers (cloud, database, cache, email delivery).
• AI and speech providers when you enable those features.
• Messaging channels you connect (e.g. WhatsApp Business API providers).
• CRM and integrations you authorize.
• Payment processors for subscriptions.
• Professional advisers or authorities when required by law or to protect rights.

Subprocessors are bound by contractual confidentiality and security obligations appropriate to the data they handle. Enterprise customers may request a subprocessor list during procurement.

We may process data in Indonesia and other countries where our providers operate. Where required, we use appropriate safeguards (such as standard contractual clauses or equivalent mechanisms) for cross-border transfers.

We keep data only as long as needed for the purposes above, including legal, accounting, and dispute requirements. Conversation and knowledge retention may be configurable by the workspace owner. After account closure, we delete or anonymize data within a defined period unless law requires longer storage.

We apply technical and organizational measures such as encryption in transit, access controls, tenant-scoped data paths, and monitoring. No method of transmission or storage is 100% secure; report concerns to security@gofer.support. See gofer.support/security-policy for an overview.

Depending on your location, you may have rights to access, correct, delete, restrict, or object to certain processing, and to data portability or withdrawal of consent. You may also lodge a complaint with a supervisory authority.

If GoFER processes your data on behalf of a customer, contact that customer first; we will assist them as processor. For requests directed to us as controller (e.g. marketing site data), email hello@gofer.support with enough detail to verify your identity.

GoFER is a business service not directed at children under 16. We do not knowingly collect children’s personal data. If you believe we have, contact us and we will delete it promptly.

We may update this policy from time to time. We will post the new date at the top and, for material changes, provide notice on the site or by email where appropriate. Continued use after the effective date constitutes acceptance where permitted by law.