Understand the laws that regulate personal data processing in the financial service industry which are adhered to by Jack.
Table of Contents
As a PSP and controller or processor of personal data, Jack complies with personal data protection regulations in the Personal Data Protection Act and Bank Indonesia Regulations. Personal data protection in Indonesia is regulated at the national level, namely through Act no. 27 of 2022 concerning Personal Data Protection. Bank Indonesia specifically regulates the processing of data and/or information processing to be complied with PSP, like Jack, in Bank Indonesia Regulation (BIR) No. 22/23/PBI/2020 concerning Payment Systems and BIR No. 23/6/PBI/2021 concerning Payment Service Providers. The scope of those regulations include:
Types of personal data;
Personal data subject rights (Jack users);
Processing of personal data;
Obligations of personal data controllers and processors in processing personal data; and
Transfer of personal data.
Those regulations are Jack's guidelines for processing and protecting Jack's user personal data. In general, Jack's obligations in implementing the principles of personal data protection include the following:
Has a basis for processing personal data;
Has consent from the subject of personal data processing;
Carry out limited and specific, lawfully, and transparently processing of personal data;
Carry out the processing of personal data in accordance with the purpose of processing personal data;
Record all personal data processing activities;
Protect and ensure the security of personal data; and
Delete and destroy personal data.
Please click here to visit our website, or click here to join Jack!
Related Articles
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article