Analysis of Consumer Rights Protection Against the Misuse of Personal Data in Fintech Services
Keywords:
Personal Data Protection, Fintech, Data Breach, Consumer RightsAbstract
The implementation of personal data protection regulations in the Indonesian fintech sector, specifically Law Number 27 of 2022 concerning Personal Data Protection and Financial Services Authority Regulation Number 77 of 2016, shows significant progress in implementing a comprehensive legal framework. This framework adopts international standards such as the General Data Protection Regulation, is supported by the establishment of a Personal Data Protection Agency, and mandates reporting of data breach incidents. However, covering personal data remains a serious threat, resulting in financial losses, psychological distress, and reputational damage for consumers. This highlights the challenges in consistent law enforcement, low digital literacy among the public, and the need for wider implementation of advanced security technologies. To improve legal protection, it is important to strengthen oversight and law enforcement mechanisms, improve digital literacy among the public through continuing education, mandate the implementation of advanced security technologies by fintech providers, and regulate reporting and complaint mechanisms.
References
Aldboush, Hassan HH, and Marah Ferdous. "Building trust in fintech: an analysis of ethical and privacy considerations in the intersection of big data, AI, and customer trust." International Journal of Financial Studies 11, no. 3 (2023): 90.
Anggraini, Naswa Fiolla, and Sidi Ahyar Wiraguna. "Tanggung jawab hukum platform pinjaman online terhadap penyalahgunaan dan penyebaran data pribadi konsumen secara ilegal." RISOMA: Jurnal Riset Sosial Humaniora dan Pendidikan 3, no. 3 (2025): 151.
Apriani, Rani. "Consumer Personal Data Legal Protection on Illegal Fintech Loans." Jurnal Meta-Yuridis 6, no. 1 (2023): 50-62.
Aulia, Elza. "Analisis Pasal 56 dalam Undang-Undang Nomor 27 Tahun 2022 Tentang Pelindungan Data Pribadi dari Perspektif Kepastian Hukum." UNES Law Review 7, no. 1 (2024): 220-227.
Baraja, M. Usman, Rio Saputra, Pratolo Saktiawan, Febrian Dirgantara, and Sarwo Waskito. "Implementation and Supervision of Personal Data Protection Law on Online Platforms." Journal of Social Science Studies 3, no. 1 (2023): 101-108.
Dasep, and Slamet Riyanto, Suryanto, "Implementasi Undang-Undang Nomor 27 Tahun 2022 tentang Perlindungan Data Pribadi dalam Industri Ritel Tinjauan terhadap Kepatuhan dan Dampaknya pada Konsumen," VERITAS 10, no. 1 (2024): 125.
Didik Irawansah, Wardah Yuspin, Ridwan Ridwan, and Nasrullah Nasrullah, "Urgensi Pembentukan Undang-Undang Fintech Di Indonesia: Harapan Dan Realita Di Era Pandemic Covid-19," Sasi 27, no. 4 (2021): 536.
Farhad, Mohsin Ali. "Consumer data protection laws and their impact on business models in the tech industry." Telecommunications Policy 48, no. 9 (2024): 102836.
Fauzie, Muhamad Alfat. "Securing The Future: Indonesia Personal Data Protection Law and It’s Implication for Internet of Things (IOT) Data Privacy." Sriwijaya Crimen and Legal Studies 2, no. 1 (2024): 12-25.
Ferretti, Federico. "Consumer access to capital in the age of FinTech and big data: The limits of EU law." Maastricht Journal of European and Comparative Law 25, no. 4 (2018): 476-499.
Fuad, Fuad, Rio Rama Baskara, and Anas Urbaningrum. "Desain perlindungan hukum bagi konsumen dan data pribadi untuk kegiatan usaha menggunakan fintech di Indonesia." Jurnal Rectum: Tinjauan Yuridis Penanganan Tindak Pidana 7, no. 1 (2025): 180.
Isnugraheny, Rizqika Farah, Zahra Ekasiwi Megawati, and Siti Susilawati. "Optimalisasi Prinsip Kerahasiaan Data Nasabah dan Peranan Otoritas Jasa Keuangan Dalam Mencegah Kebocoran Informasi." Media Hukum Indonesia (Mhi) 2, no. 4 (2024).
Jannah, Miftahul, F. Yudhi Priyo Amboro, and Rina Shahrullah. "Personal Data Protection in Telemedicine: Comparison of Indonesian and European Union Law." Journal of Law and Policy Transformation 8, no. 2 (2023).
Kadek Rima Anggen, Suari, and I. Made Sarjana, "Menjaga privasi di era digital: Perlindungan data pribadi di Indonesia," Jurnal Analisis Hukum 6, no. 1 (2023): 140.
Khair, Filal, and Sidi Ahyar Wiraguna. "Data Protection Impact Assessment (DPIA) sebagai Instrumen Kunci Menjamin Kepatuhan UU PDP 2022 di Indonesia." Politika Progresif: Jurnal Hukum, Politik dan Humaniora 2, no. 2 (2025): 246-254.
Kholis, Ilman Maulana. "Perlindungan Data Pribadi dan Keamanan Siber di Sektor Perbankan: Studi Kritis atas Penerapan UU PDP dan UU ITE di Indonesia." Staatsrecht: Jurnal Hukum Kenegaraan dan Politik Islam 4, no. 2 (2024): 275-299.
Kumar, Suresh. "Assessing the Impact of Indonesia's Personal Data Protection Law on E-commerce Consumer Rights." Problematika Hukum 10, no. 2 (2024): 117-131.
Kurniawan, Kukuh Dwi, Deassy JA Hehanussa, Rahmat Setiawan, Indah Susilowati, and Desmarani Helfisar. "Criminal Sanctions and Personal Data Protection in Indonesia." Lex Publica 11, no. 2 (2024): 221-247.
Lutrianto, Indra, and Riswaldi Riswaldi. "Legal Problems of Personal Data Protection in The Digital Era in Personal Data Protection Law in Indonesia." Greenation International Journal of Law and Social Sciences 3, no. 2 (2025): 345-350.
Mahameru, Danil Erlangga, Aisyah Nurhalizah, Haikal Badjeber, Ahmad Wildan, and Haikal Rahmadia. "Implementasi UU perlindungan data pribadi terhadap keamanan informasi identitas di Indonesia." Jurnal Esensi Hukum 5, no. 2 (2023): 123.
Maharani, Rista, and Andria Luhur Prakoso. "Perlindungan Data Pribadi Konsumen Oleh Penyelenggara Sistem Elektronik Dalam Transaksi Digital." Jurnal USM Law Review 7, no. 1 (2024): 333-347.
Maleno, Muhammad, and Andriana Kusumawati. "Comparative Analysis of Indonesia's Personal Data Protection Law with the European Union and California Regulations to Identify Best Practices in Protecting Public Privacy Rights." Indonesia Law College Association Law Journal 3, no. 2 (2024): 91-98.
Muhammad Akbar Eka, Pradana, and Horadin Saragih, "Prinsip Akuntabilitas dalam Undang-Undang Perlindungan Data Pribadi Terhadap GDPR dan Akibat Hukumnya," Innovative: Journal of Social Science Research 4, no. 4 (2024): 3420.
Novinna, Veronica. "Consumer Protection from the Dissemination of Personal Data by Third Parties: The Case of Fintech “Peer to Peer Lending.”." Udayana Master of Law Journal 9, no. 1 (2020): 92-110.
Oyewole, Adedoyin Tolulope, Bisola Beatrice Oguejiofor, Nkechi Emmanuella Eneh, Chidiogo Uzoamaka Akpuokwe, and Seun Solomon Bakare. "Data privacy laws and their impact on financial technology companies: a review." Computer Science & IT Research Journal 5, no. 3 (2024): 628-650.
Pakpahan, Elvira Fitriyani, Lionel Ricky Chandra, and Ananta Aria Dewa. "Perlindungan Hukum Terhadap Data Pribadi Dalam Industri Financial Technology." Veritas et Justitia 6, no. 2 (2020): 311.
Poernomo, Sri Lestari. "Transformative Justice, Protection Of Consumer Personal Data In Online Loan Business In Indonesia." Russian Law Journal 11, no. 3 (2023): 559-570.
Prasetyoningsih, Nanik, Nazli Ismail Nawang, Windy Virdinia Putri, and Muhammad Nur Rifqi Amirullah. "Legal Protection for the Personal Data in Indonesia and Malaysia." In International Conference on Human-Computer Interaction, pp. 161-169. Cham: Springer Nature Switzerland, 2024.
Prayuti, Yuyut. "Evaluation of Legal and Policy Issues in Consumer Protection in Indonesian Fintech Transactions." LEGAL BRIEF 13, no. 2 (2024): 347-357.
Priskarini, Intan Audia, and Kukuh Tejomurti. "The Role of The Financial Services Authority in The Legal Protection of Privacy Rights in Connection with Personal Data of Fintech Lending Debtor in Indonesia." PADJADJARAN Jurnal Ilmu Hukum (Journal of Law) 6, no. 3 (2019): 556-575.
Rahman, Faiz. "Safeguarding Personal Data In The Public Sector: Unveiling The Impact Of The New Personal Data Protection Act In Indonesia." UUM Journal of Legal Studies 16, no. 1 (2025): 1-18.
Rahmawati, Dian, Muhammad Darriel Aqmal Aksana, and Siti Mukaromah. "Privasi dan keamanan data di media sosial: dampak negatif dan strategi pencegahan." In Prosiding Seminar Nasional Teknologi Dan Sistem Informasi, 3, no. 1 (2023): 576.
Rohendi, A., and D. B. Kharisma. "Personal data protection in fintech: A case study from Indonesia." Journal of Infrastructure, Policy and Development 8, no. 7 (2024): 4158.
Rosadi, Sinta Dewi. Pembahasan UU Pelindungan Data Pribadi (UU RI No. 27 Tahun 2022). Sinar Grafika, 2023.
Rosihan, Luthfi,, "Perlindungan Data Pribadi sebagai Perwujudan Perlindungan Hak Asasi Manusia," Jurnal Sosial Teknologi 2, no. 5 (2022): 435.
Saragih, Hoga, Horaman Saragih, Hohen Saragih, Hondor Saragih, Hendra Saragih, Raja Raya Saragih, and Siska Buniaty Manik Sihotang. Rahasia dan Strategi Cerdas Mengelola Keuangan Digital Melalui Pinjaman Online (PINJOL). Universitas Bakrie Press, 2025.
Shohiban Azkaa, Muzakkie, and Eka Juarsa. "Perlindungan Hukum Terhadap Penyalahgunaan Data Pribadi Pada Aplikasi Pinjaman Online Ilegal Menurut Undang-Undang No 27 Tahun 2022 Tentang Perlindungan Data Pribadi." In Bandung Conference Series: Law Studies 3, no. 2, (2023): 986.
Silviani, Ninne Zahara, and Jeslyn Teo. "Enhancing Consumer Protection In Indonesia’s Fintech Industry: Safeguarding The Rights of Fintech Service Users." Ganesha Law Review 5, no. 1 (2023): 58-68.
Sinaga, Sereni M., Diandra Annisa Abdika Pane, Farah Diba Awira, Nurul Athifah Br Siregar, and Ariel Ibrena Pinem. "Legal Analysis of Consumer Protection in E-Commerce Transactions in Indonesia Post Personal Data Protection Law." Paralegal International of Journal 1, no. 1 (2025): 1-12.
Situmeang, Ampuan, Hari Sutra Disemadi, and Irvan Ricardo Marsudi. "Contextualizing Consumer Data Protection within the Operational Principles of Banking: A Legal Inquiry." Legal Spirit 8 (2024): 365-78.
Solikhah, Mar'atus. "Personal Data Protection in the Era of Digital Transformation: Challenges and Solutions in the Indonesian Cyber Law Framework." Indonesian Cyber Law Review 2, no. 1 (2025): 1-11.
Sudarwanto, Al Sentot, and Dona Budi Budi Kharisma. "Comparative study of personal data protection regulations in Indonesia, Hong Kong and Malaysia." Journal of Financial Crime 29, no. 4 (2022): 1443-1457.
Sutarli, Ananta Fadli, and Shelly Kurniawan. "Peranan Pemerintah Melalui Undang-Undang Perlindungan Data Pribadi dalam Menanggulangi Phising di Indonesia." Innovative: Journal Of Social Science Research 3, no. 2 (2023): 4216.
Suzette Hattingh, Akobiarek, Kristantika Renata Pungus, Rico Arden Kusuma, Christopher Alexius Alfa Mulya, and Ivana Aprilia, "Sanksi bagi Penyelenggara Pinjaman Daring Legal yang Tidak Mematuhi Peraturan Otoritas Jasa Keuangan," Jaksa: Jurnal Kajian Ilmu Hukum dan Politik 3, no. 2 (2025): 10.
Syaiful, Rivasya Dinda, and Heru Sugiyono. "Misuse of Consumer Personal Data Through Illegal Fintech Peer To Peer Lending." Justisi 10, no. 1 (2024): 189-201.
Syailendra, Moody Rizqy, Gunardi Lie, and Amad Sudiro. "Personal Data Protection Law in Indonesia: Challenges and Opportunities." Indon. L. Rev. 14 (2024): 175.
Taufiq, Muhammad. "Dispute Resolution in Consumer Protection in the Financial Services Sector Perspective Sadd al-Zari’ah." Al-Mustashfa: Jurnal Penelitian Hukum Ekonomi Syariah 10, no. 1 (2025): 87.
Wiraguna, Sidi Ahyar, Abdullah Sulaiman, and Megawati Barthos. "Implementation of Consumer Personal Data Protection in Ecommerce from the Perspective of Law No. 27 of 2022." Journal of World Science 3, no. 3 (2024): 410-418.
Yusliwidaka, Arnanda, Muhammad Ardhi Razaq Abqa, and Khansadhia Afifah Wardana. "A Discourse of Personal Data Protection: How Indonesia Responsible under Domestic and International Law?." Pandecta Research Law Journal 19, no. 2 (2024): 173-202.
Yusuf Daeng, Nasri Linra, Atan Darham, Derry Handrianto, Risky Risandy Sianturi, Denny Martin, Rendy Pratama Putra, and Hendi Saputra, "Perlindungan Data Pribadi dalam Era Digital: Tinjauan Terhadap Kerangka Hukum Perlindungan Privasi," Innovative: Journal of Social Science Research 3, no. 6 (2023): 2900.
