This service is intended for work units / institutions / faculties / departments within the UIN Maulana Malik Ibrahim Malang environment that require an official subdomain address (for example: namaunit.uin-malang.ac.id) and web storage facilities (hosting).

The following are the steps in the application procedure:

1. Filling out the online form

The first step is to complete the data using the provided digital form. Ensure the entered data is valid, as it will be used to generate the automated application letter. Required data includes:

Subdomain Administration Data:

• Desired subdomain name.
• Category and name of work unit.
• Official work unit email.
• Purpose of application (brief description of web usage).

Person in Charge of Administration: Full name, email, address, and WhatsApp number (required by Head of Unit/Dean/Head of Institution).

Technical Responsible Person: Full name, email, address, and WhatsApp number (of the person who will technically manage the website).

Service Specifications:

• Service Nature Category: WordPress CMS or Custom Application.
• Subdomain Status: Temporary (for events/activities) or Permanent.

2. Email Verification and Letter Signing

After successfully filling out the form, the system will send Application Letter Template (PDF) automatically to the applicant's email.

• Please download the letter template
• Add electronic signature
• send it back to the official PTIPD email with the title "Webhosting & Subdomain Application"“

3. Review by the PTIPD Team

After the digital documents are received, the PTIPD Team will carry out a verification and technical review process.

• If Approved: You will receive a confirmation email containing your account (login) information and other technical details.
• If Rejected: You will receive a notification email with the reason for the rejection (e.g.: the subdomain name does not comply with regulations or the data is incomplete).

---

Service Policy and Compliance Commitment

As part of good IT governance, each applicant is required to agree to the following Integrity Pact and Service Policy:

1. Special Policies Based on Service Type

Categories that suit your application:

1. WordPress CMS Category (Profile Web)
   • Plugin Permissions: Installing/activating new plugins without written permission from PTIPD is prohibited.
   • Theme Integrity: It is prohibited to change or modify the approved base theme.
   • Branding Standards: It is prohibited to change the established branding structure (Logo, Footer Copyright, Color Scheme).
2. Custom Application Category (Development)
   • Security Audit: Source code must be free from Backdoors, Malware, and security holes (OWASP Top Ten).
   • Incident Response: Must do patching maximum security 2×24 hours after the discovery of the gap is reported.
   • Maintenance: Regular updates to the Framework and Dependencies (npm, composer, etc.) are mandatory.
   • Runtime Standards: Supports the minimum specified versions (PHP > 8.2, Node.js > 18).
   • Privacy: Ensures the security of sensitive data and prevents data leaks due to code errors.

2. Legal, Ethics and PDP Commitment

As the Head of the Work Unit, by submitting this application, you declare your commitment to:

• Legal Compliance (ITE Law): Subject to Law No. 11 of 2008 and its amendments, content containing SARA (ethnicity, religion, race, and intergroup relations), pornography, gambling, hoaxes, or political action is prohibited.
• Personal Data Protection (PDP Law): Comply with Law No. 27 of 2022. Required to provide a transparent Privacy Policy if collecting user data.
• Institutional Branding: Maintain the institution's image by using the official visual standards (Logo & Colors) of UIN Malang.
• Non-Commercial Purposes: Services are only for the benefit of the Tri Dharma of Higher Education, not for personal or commercial interests.

3. Authorization and Technical Risks

1. Right of Suspension: PTIPD has the right to do suspension or server maintenance from time to time for system stability.
2. Violation Penalties: Violation of the above commitments may result in a warning or even unilateral deactivation.
3. Repair Deadline: If a violation is found, the applicant is given 7 calendar days to make corrections before permanent deactivation.
4. Data Update: Applicants are required to update management data every month. December. Failure to update data may result in service deactivation.
5. Responsibility: The applicant is fully responsible for any legal/financial consequences resulting from misuse of content or application vulnerabilities on the unit's side. PTIPD is responsible for the server infrastructure.

Ready to Submit?

Make sure you have prepared the Administrative and Technical Person in Charge data before filling out the form below.