quora
Read More about fast-id page

Shufti globally launches webinr-icon - a new kind of identity solution!

Shufti globally launches - a new kind of identity solution!

Read more

Indonesia’s First-ever Comprehensive Law on Data Privacy – the PDP Bill

sp infographic 26th july 2021-02

Being the largest economy in Southeast Asia, Indonesia is experiencing enormous growth in the digital ecosystem. By 2020, the country had 338.2 million mobile connections, 175.4 million internet users, and 160.0 million social media users. However, this growth has introduced challenges for ensuring personal data protection (PDP). 

With personal data leaks, data thefts, and ID fraud becoming a recurring problem, the Indonesian government submitted the PDP Draft Bill to the Chairperson of the Indonesian House of Representatives in 2020. The bill is set to become law later this year, introducing key updates such as data transfer rules, ownership rights, data processing guidance and much more. This blog will shed a light on the highlights of the PDP bill. 

Why is the Indonesian PDP Law Important? 

While there are several personal data protection laws existing in the country, they remain scattered under various regulations. The main point of reference for data protection is the Law on Electronic Information and Transactions in Indonesia. The PDP law will become the first Indonesian law that includes specific, comprehensive guidance regarding the protection of personal data via both, electronic and non-electronic systems. 

Secondly, it should be noted that the legislation is based on the EU’s General Data Protection Regulation (GDPR). This means that businesses and consumers within Indonesia will be subject to the same data rights and processing procedures as the EU.  

Who Does it Apply to?

The Personal Data Protection law will be applicable to all business entities that deal with the personal data of Indonesian citizens, regardless of their geographical location. These business entities can fall in either category, private or public sector, whether located aboard or within Indonesia. The primary aim of the law is to protect all sensitive information being processed manually or digitally by individuals or corporations. 

Key Takeaways of the PDP Law

Indonesia’s updated data protection bill will soon be introducing changes to revamp the country’s data privacy rules. Here is a brief summary of the PDP law.

sp infographic 26th july 2021-01-01-01

1- Personal Data Definition and Categories

The definition of personal data mirrors the definition provided by the EU’s General Data Protection Regulation. Additionally, the type of data has been subdivided into two main categories; general and specific.

  • General Personal Data: This includes data such as an individual’s full name, age, religion, and citizenship ​which is collected for the purpose of identity verification.
  • Specific Personal Data: This type of data includes financial information, healthcare data, biometric information, genetic data, life/sexual orientation, political stance, criminal records, child data, and so on. 

2- Rights of Personal Data Owners

While the rights of personal data owners were not explicitly explained previously, the updated draft outlines eleven rights, similar to the ones mentioned under the GDPR. This includes the right to terminate the processing of personal data, deletion of personal data, the right to sue and receive compensation over data privacy violations, and much more. 

3- Identification of Key Roles

The PDP law separates the roles of “data controller” and “data processor”. 

  • Personal Data Controller (PDC): This is the party responsible for determining the purpose of collecting data, processing the personal data, and defining its retention period. Before data processing begins, the PDC is required to obtain consent from the Personal Data Owner, either in written or recorded form. 
  • Personal Data Processor (PDPr): This party processes the information collected on the behalf of the data controller. 

4- Appointment of a Data Protection Officer

To ensure that the data collected is being used for public service, both the PDC and PDPr are required to appoint a data protection officer. In addition to this, the data protection officer will also be responsible for ensuring the PDC implements activities for regular monitoring of personal data and the processing of large-scale personal data related to criminal offences.

5- Transfer of Personal Data 

The transfer of personal data between two PDCs have been permitted, provided that the consent has been obtained from the personal data owner and the transfer is done in accordance with the PDP Bill. For transferring data outside Indonesia, two requirements need to be met. Firstly, the receiving country must have a law equivalent to, or higher than the PDP bill. Secondly, there must be a treaty between the receiving country and Indonesia. 

6- Administrative and Criminal Sanctions

Two types of sanctions have been introduced for parties that fail to comply with the PDP Bill. These include the following:

  • Administrative Sanctions:  forms: a written warning, temporary halt of processing personal data, deletion or destruction of personal data, compensation, and administrative fines. 
  • Criminal Sanctions: Misconduct of personal data privacy can lead to imprisonment for up to seven years and confiscation of assets, on top of fines up to 70 Billion IDR (US$4.8 million). 

How To Maintain Compliance with the Personal Data Protection Bill 

To stay compliant with the PDP bill, entities will be given two years to implement necessary policies and procedures. The following action plans can be implemented to stay compliant.

  • Review the current data protection procedures to ensure end-to-end data protection
  • Review current contracts/consent with customers to include all the necessary clauses, such as the data owner’s rights, data transfer regulations, obligations when processing personal data, etc. 
  • Assess the business processes to ascertain the implementation of adequate procedures
  • Ascertain proper implementation of PDP law by third parties to secure the collection and processing of personal data
  • Invest in RegTech technologies and software to streamline compliance with regulatory requirements by automating compliance procedures 

Summing it up

The GDPR-influenced Personal Data Protection Bill is soon to be introduced this year and is set to become Indonesia’s first comprehensive law on data privacy. This is a step in the right direction, given the vast crimes committed through breach of confidential data. By acknowledging the rights of the stakeholders involved, introducing precise sets of definitions, and presenting non-compliance penalties, the PDP bill is on its way to becoming one of the strongest data privacy laws among the fourteen Asian countries which currently have such laws in place. 

Need more information? Talk to our experts!

Related Posts

Blog

NFC Verification – Securing Large-scale Events from Frauds

Large-scale events are a great way for imposters to execute their illicit plans. Data breaches, m...

NFC Verification – Securing Large-scale Events from Frauds Explore More

Blog, Online Marketplace

Fraud Prevention in Real Estate Industry

Fraud prevention tools that include3rd-party KYC service providers are essential in the real esta...

Fraud Prevention in Real Estate Industry Explore More

Biometric Technology, Blog

Online Facial Recognition Could Drive a New Wave of Digital Transparency

Online facial recognition is a much less explored territory when it comes to online identity veri...

Online Facial Recognition Could Drive a New Wave of Digital Transparency Explore More

Blog

Evaluating the Potential of Digital ID Verification Systems in 2022

Identity fraud and synthetic identities are skyrocketing and collectively account for a loss of ​...

Evaluating the Potential of Digital ID Verification Systems in 2022 Explore More

Blog

Top 5 Technologies Disrupting the Healthcare Sector

Within the next five years, experts are anticipating major technological disruption in the 808 bi...

Top 5 Technologies Disrupting the Healthcare Sector Explore More

Blog, Financial Crime / AML

FSA demands greater AML Compliance from Japanese Crypto Exchanges

In a recent move, Financial Services Agency (FSA), the Japanese Financial regulator, has demanded...

FSA demands greater AML Compliance from Japanese Crypto Exchanges Explore More

Blog

Key Takeaways From Shufti’s ID Fraud Report 2021

The year 2021 was all about determining and reducing the growing number of biometric identity fra...

Key Takeaways From Shufti’s ID Fraud Report 2021 Explore More

Blog

OCR Vs. ICR: The Key Differences that Businesses Need to Know

Financial institutions need to have reliable and efficient data management. With such a system, t...

OCR Vs. ICR: The Key Differences that Businesses Need to Know Explore More

Blog

COVID-19 Pandemic – What it holds for businesses?

The year of the Rat, 2020, didn’t get a propitious start because of the deadly coronavirus outbre...

COVID-19 Pandemic – What it holds for businesses? Explore More

Blog

Liveness Detection | An Extra Layer of Protection Against Spoofing and Fraud

The consumer demand for biometric and facial authentication technologies is rising, with the mark...

Liveness Detection | An Extra Layer of Protection Against Spoofing and Fraud Explore More

Blog

KYC | How to perform KYC verification in three simple steps

Know Your Customer, commonly referred to as ‘KYC’, is an identity verification process that plays...

KYC | How to perform KYC verification in three simple steps Explore More

Blog, Financial Crime / AML

AMLD5 Amendments in Prepaid Cards Transaction Threshold

In July 2018, the European Commission came into effect the 5th Anti-Money Laundering Directive (A...

AMLD5 Amendments in Prepaid Cards Transaction Threshold Explore More

Blog

Why Digital Identity Verification is Booming – A Detailed Insight

According to the report “Digital Identity & Document Verification Market & Technology Ana...

Why Digital Identity Verification is Booming – A Detailed Insight Explore More

Blog

GDPR Compliance vs BlockChain Debate – Things you must know

GDPR Compliance is here to stay and it is going to be binding on every business and online enterp...

GDPR Compliance vs BlockChain Debate – Things you must know Explore More

Blog

Biometric Authentication – How Do Fraudsters Try to Bypass These Checks?

Biometric authentication is one of the ideal ways of dealing with fraudsters. Unfortunately, crim...

Biometric Authentication – How Do Fraudsters Try to Bypass These Checks? Explore More

Blog

A Detailed Insight Into Canadian Gambling Industry [2022 Update]

Even though Canada is not among the world’s gambling capitals, this business thrives there. The c...

A Detailed Insight Into Canadian Gambling Industry [2022 Update] Explore More

Blog

Blockchain and Identity Theft: Potential Challenges and how to Tackle Them

Blockchain has become increasingly popular because of its potential to provide secure transaction...

Blockchain and Identity Theft: Potential Challenges and how to Tackle Them Explore More

Blog

Need for Identity Verification in Real Estate and Its Real-World Use Cases

The real estate industry is in dire need of identity verification processes. The reason being, th...

Need for Identity Verification in Real Estate and Its Real-World Use Cases Explore More

Blog

Fraud Prevention – Challenges, Strategies, Best Practices, and Technologies

The twenty-first century is by far the most revolutionary time in the history of humans in terms ...

Fraud Prevention – Challenges, Strategies, Best Practices, and Technologies Explore More

Blog

KYC | Complete Guide to KYC Compliance & KYC Regulations 2021

Introduction to KYC or Know your customer Know your customer or KYC history dates back to 2001 in...

KYC | Complete Guide to KYC Compliance & KYC Regulations 2021 Explore More

Blog

Online Document Verification – The Role of Shufti’s Optical Character Recognition (OCR) in Eliminating Fraud

Document verification is the most important stage when it comes to doing online business, getting...

Online Document Verification – The Role of Shufti’s Optical Character Recognition (OCR) in Eliminating Fraud Explore More

Blog

5 Ways AI Takes Document Verification to the Next Level

Data digitisation has made it accessible not only to legitimate users but also to cyber criminals...

5 Ways AI Takes Document Verification to the Next Level Explore More

Blog, Identity & KYC, Online Marketplace

Why 2 Factor Authentication is vital for Online Identity Risk Management?

Online identity risk management is becoming harder and harder on cyberspace. It is a headache for...

Why 2 Factor Authentication is vital for Online Identity Risk Management? Explore More

Blog

Singapore’s Digital Payment Token and AML Regulations [2022 Updates]

Financial crimes are an ever-increasing threat to the global economic climate. As a financial hub...

Singapore’s Digital Payment Token and AML Regulations [2022 Updates] Explore More

Blog

Biometric Facial Recognition – Combating Identity Fraud with Shufti’s IDV Solution

Since knowledge-based authentication and passwords were first introduced, security systems in ban...

Biometric Facial Recognition – Combating Identity Fraud with Shufti’s IDV Solution Explore More

Blog

Harnessing the power of AML Screenings to Uncover Politically Exposed Persons [PEPs]

Since the last decade, governments and financial institutions have been trying to limit corruptio...

Harnessing the power of AML Screenings to Uncover Politically Exposed Persons [PEPs] Explore More

Blog

Top 5 Frequently Asked Questions about Biometric Verification

Identity theft, data breaches, and other crimes are rising in this age of digitisation. A quick r...

Top 5 Frequently Asked Questions about Biometric Verification Explore More

Blog

UK’s Digital Identity Framework – Cornerstone of Reliable ID

In today’s technology-driven era, digital identity is becoming inevitable. Physical interactions ...

UK’s Digital Identity Framework – Cornerstone of Reliable ID Explore More

Blog

Japan’s AML/CFT Assessment – August 2021 Report

Financial crime is soaring sky high with digitisation becoming a part of our daily lives. Cyber a...

Japan’s AML/CFT Assessment – August 2021 Report Explore More

Blog

Video KYC – Ultimate Solution for Financial Institutions

With social distancing becoming the necessity during the pandemic, more and more companies began ...

Video KYC – Ultimate Solution for Financial Institutions Explore More

Blog

Forensic Document Forgery Analysis – A Landmark Approach to Curb Identity Fraud

With online services picking up pace, cybercriminals are ramping up their  digital attacks and us...

Forensic Document Forgery Analysis – A Landmark Approach to Curb Identity Fraud Explore More

Blog, Online Marketplace

Why age verification matters to online businesses?

Identity verification services are fast becoming a business norm for companies that are enthusias...

Blog

COVID Verification of Tourists: Is the Hospitality Sector Doing Much?

COVID-19 has been a big hassle for everyone except for those who adopted the new normal quickly. ...

COVID Verification of Tourists: Is the Hospitality Sector Doing Much? Explore More

Blog

Transforming the KYC Experience Using Automated Document Verification Checks

In 2021, reported fraud losses were $5.8 billion, a more than 70% rise in a single year. As ident...

Transforming the KYC Experience Using Automated Document Verification Checks Explore More

Blog

10 Fraud Signals Every Industry Must Monitor

Gone are the days when businesses paid attention to customer verification only. Today, organizati...

10 Fraud Signals Every Industry Must Monitor Explore More

Blog

Shufti’s ID Fraud Report: Reviewing 2022 and a Preview of 2023

Twenty years back, “identity theft” was imagined as pictures of shady figures rifling through gar...

Shufti’s ID Fraud Report: Reviewing 2022 and a Preview of 2023 Explore More

Blog

How Businesses Can Avoid Identity Verification Fraud in 2019?

With a bulk of customers using online services, businesses wish to digitise their operations and ...

How Businesses Can Avoid Identity Verification Fraud in 2019? Explore More

Blog

A Detailed Insight into the Best Practices for Digital Currency Providers

The world has seen an overwhelming rate of development in the cryptocurrency sector with Centrali...

A Detailed Insight into the Best Practices for Digital Currency Providers Explore More

Blog

5-Steps to Improve Customer Due Diligence Process

The digital age has witnessed a new wave of financial fraud. It is estimated that $4.7 trillion o...

5-Steps to Improve Customer Due Diligence Process Explore More

Blog

KYC/AML Compliance – A Roadblock for Money Mules and Illicit Fund Transfers

Cybercrimes are becoming increasingly complex and diverse in the era of digitization, with frauds...

KYC/AML Compliance – A Roadblock for Money Mules and Illicit Fund Transfers Explore More

Blog

Age Verification Service – How Businesses can Identify Underage Visitors in Real Time?

When it comes online retail, one has to know that in such an age of fast-moving technology and in...

Age Verification Service – How Businesses can Identify Underage Visitors in Real Time? Explore More

Blog

KYC Verification – Fraud Prevention in FinTech & the Payments Industry

The growth of the online payment industry and FinTech companies comes with a simultaneous increas...

KYC Verification – Fraud Prevention in FinTech & the Payments Industry Explore More

Blog

AML Compliance – Eliminating Financial Crimes in FinTech Firms

The FinTech industry is growing rapidly across various sectors with investments and large-scale a...

AML Compliance – Eliminating Financial Crimes in FinTech Firms Explore More

Blog

NFC Verification – Securing Large-scale Events from Frauds

Large-scale events are a great way for imposters to execute their illicit plans. Data breaches, m...

NFC Verification – Securing Large-scale Events from Frauds Explore More

Blog

10 High-Risk Jurisdictions for Money Laundering According to FATF

Innovations like stablecoins and non-fungible tokens (NFTs) created quite the hype in the past ye...

10 High-Risk Jurisdictions for Money Laundering According to FATF Explore More

Blog

Combating Money Laundering Threats in the Art and Antiquities Sector Through AML Screening Solutions

With transforming technologies and growing digitization, the global art industry has also embrace...

Combating Money Laundering Threats in the Art and Antiquities Sector Through AML Screening Solutions Explore More

Blog

Anti-Money Laundering Challenges Faced by the Fintech Industry

Since the implementation of the bank Secrecy Act (BSA) in 1970, the United States government has ...

Anti-Money Laundering Challenges Faced by the Fintech Industry Explore More

Blog

Facial recognition technology grooving into cruise ships for ID verification

No more boarding frustration, no more standing in the queues for hours… The travel industry is re...

Facial recognition technology grooving into cruise ships for ID verification Explore More

Blog

How Will Simplified Due Diligence SDD Help Industries in 2024?

For businesses, the due diligence process is an integral part of the Know Your Customer programme...

How Will Simplified Due Diligence SDD Help Industries in 2024? Explore More

Blog

Mobile Payments – Way of the Future or a Fad of the Digital Age?

Are we moving towards a world where retailers may one day say “We don’t take cash”? As mobile pay...

Mobile Payments –  Way of the Future or a Fad of the Digital Age? Explore More

Blog

A Basic Guide to Smurfing and the Role of AML in Combating It

Scammers employ various strategies to conceal illegally acquired funds, and one increasingly prev...

A Basic Guide to Smurfing and the Role of AML in Combating It Explore More

Blog

The Top 10 Benefits of the Know Your Customer Lifecycle

In this digital age, where transactions occur remotely and identity theft is rising, establishing...

The Top 10 Benefits of the Know Your Customer Lifecycle Explore More

Blog

AML Compliance for the Crypto Sector – How VASPs Can Adhere to the Regulations

With cryptocurrencies gaining traction and entering the mainstream, financial regulators are asse...

AML Compliance for the Crypto Sector – How VASPs Can Adhere to the Regulations Explore More

Blog

Money Laundering in the Metaverse – NFTs, DeFi, and the Role of Shufti’s AML Solutions

For more than a decade, the metaverse concept has been picking up pace, and the world is preparin...

Money Laundering in the Metaverse – NFTs, DeFi,  and the Role of Shufti’s AML Solutions Explore More

Blog

Fintech Compliance – Boogeyman for Trillion Dollar Industry?

Fintech industry is flexing its muscle by bringing onboard more and more customers and innovating...

Fintech Compliance – Boogeyman for Trillion Dollar Industry? Explore More

Blog

7 Best KYC and Fraud Prevention Tips for Online Businesses

With the explosion of internet and web applications, the online interaction between consumers and...

7 Best KYC and Fraud Prevention Tips for Online Businesses Explore More

Blog

AML Compliance – Sharpening Focus on FinCrime in the Payments Industry

Conventional payment services are embracing technological transformation, which is significantly ...

AML Compliance – Sharpening Focus on FinCrime in the Payments Industry Explore More

Blog

Hazards of Ransomware are real for Cryptocurrency Miners

Cryptocurrency may well be the future of economic landscape and it has the potential of taking th...

Hazards of Ransomware are real for Cryptocurrency Miners Explore More

Blog

KYC Compliance for DeFi Platforms – Finding the Balance for a Secure Future

The rise of decentralized services in the form of digital asset trading platforms and DeFi consta...

KYC Compliance for DeFi Platforms – Finding the Balance for a Secure Future Explore More

Blog

Video KYC Verification – Reimaging Customer Onboarding in 2023

As technology is advancing so do fraudsters, ringing security alarms for financial businesses and...

Video KYC Verification – Reimaging Customer Onboarding in 2023 Explore More

Blog, Identity & KYC

Age Verification – Ultimate Online Protection for Minors

The rapid increase in the use of the internet is raising some major concerns for parents regardin...

Age Verification – Ultimate Online Protection for Minors Explore More

Blog

COVID Passports – Bringing Convenience to the Travel & Tourism Sector

“Sorry, the earth is closed today.”  Tony Stark’s sarcastic dialogue became the worst possible re...

COVID Passports – Bringing Convenience to the Travel & Tourism Sector Explore More

Blog

Red Flags to Detect Money Laundering in the Finance Sector

As the digital landscape continues to evolve at an exponential rate, so do our tools for fraud- d...

Red Flags to Detect Money Laundering in the Finance Sector Explore More

Blog

Know Your Business (KYB) | Ensuring Financial Security

The Know Your Business solution standard verifies a company’s legal standing and confirms i...

Know Your Business (KYB) | Ensuring Financial Security Explore More

Anti Money Laundering, Blog

Danske Bank Scandal: Banks Under Strict AML Scrutiny of FSA

Money laundering is becoming a global phenomenon. As per the United Nations Office on Drug and cr...

Danske Bank Scandal: Banks Under Strict AML Scrutiny of FSA Explore More

Blog

Affiliate Fraud Detection | How to Prevent it in 2024

Affiliate marketing is growing at an exceptional rate, worth $17 billion by the end of 2023, and ...

Affiliate Fraud Detection | How to Prevent it in 2024 Explore More

Blog

Global Expansion, Digitization, and Crimes – How Shufti Can Help Financial Industry

The financial industry has seen significant technological changes over the past recent years. Man...

Global Expansion, Digitization, and Crimes – How Shufti Can Help Financial Industry Explore More

Blog, Identity & KYC

4 Ways KYC Banking Regulations are Shaping the Future

Know Your Customer (KYC) regulations are vital for the banking system. Money laundering, depositi...

4 Ways KYC Banking Regulations are Shaping the Future Explore More

Blog

Safeguarding Telecommunication Industry with Robust ID Verification Solutions – What Shufti Offers

Technology transformation, growing transactions and global digitisation are increasing the potent...

Safeguarding  Telecommunication Industry with Robust ID Verification Solutions – What Shufti Offers Explore More

Blog

The Case Against Cryptocurrencies: Where is it Banned & What’s Causing the Crackdown?

Cryptocurrencies have long been viewed as the core of illicit activities by numerous governments ...

The Case Against Cryptocurrencies: Where is it Banned & What’s Causing the Crackdown? Explore More

Blog

Digital Age Verification replacing Age Gates for better compliance

Age verification is one of the trending snd sensitive topics these days, especially in the busine...

Digital Age Verification replacing Age Gates for better compliance Explore More

Blog

OCR in Banking | Automating Data Extraction, Customer Onboarding, and ID Verification

The global Banking and Financial Services Industry (BFSI) is one of the most heavily regulated an...

OCR in Banking | Automating Data Extraction, Customer Onboarding, and ID Verification Explore More

Take the next steps to better security.

Contact us

Get in touch with our experts. We'll help you find the perfect solution for your compliance and security needs.

Contact us

Request demo

Get free access to our platform and try our products today.

Get started