Criminal Law Policy on Carding in Indonesia: Addressing Legal Certainty and Regulatory Fragmentation

Authors

  • Wenggedes Frensh Universitas Medan Area, Indonesia
  • Rizkan Zulyadi Universitas Medan Area, Indonesia
  • Nindya Dhaneswara Pukyong National University, South Korea

DOI:

https://doi.org/10.58829/lp.12.2.2025.316

Keywords:

Carding, Cybercrime, Criminal Law Policy, Personal Data Protection, Electronic Transactions Law

Abstract

This study examines the adequacy of legal regulations governing credit card misuse (carding) in cyberspace in Indonesia and their implications for legal certainty and law enforcement effectiveness. Using a normative juridical method, it analyzes key statutes, including Law No. 1 of 2024 (EIT Law amendment), Law No. 27 of 2022 on Personal Data Protection, and Law No. 1 of 2023 on the Criminal Code, supported by conceptual and doctrinal approaches. The findings show that, although these regulations provide a general framework for addressing cybercrime, they remain fragmented and do not explicitly regulate carding as a distinct offense. This gap weakens legal certainty and limits effective enforcement. Two main issues are identified: the absence of specific criminal norms on carding and the lack of harmonization across criminal, cyber, and data protection laws. Current legal policy is also predominantly repressive, with limited preventive and victim-oriented measures.

References

Adhi, Muhammad Isnaeni Puspito, and Eko Soponyono. “Crime Combating Policy of Carding in Indonesia in the Political Perspective of Criminal Law.” Law Reform 17, no. 2 (2021): 135-144.

Ali, Zainuddin. Metode Penelitian Hukum. Jakarta: Sinar Grafika, 2021.

Amin, M. Erham, and Mokhamad Khoirul Huda. “Harmonization of Cyber Crime laws with the Constitutional Law in Indonesia.” International Journal of Cyber Criminology 15, no. 1 (2021): 79-94.

Anwary, Ichsan. “Evaluating Legal Frameworks for Cybercrime in Indonesian Public Administration: An Interdisciplinary Approach.” International Journal of Cyber Criminology 17, no. 1 (2023): 12-22.

Arifin, Ridwan, Hartini Atikasari, and Waspiah Waspiah. “The Intersection of Criminal Law, Technology and Business Commercial Law on Carding as Cyber Fraud.” Jurnal Hukum Novelty 11, no. 2 (2020): 229-246.

Asmadi, Erwin, Adi Mansar, Triono Eddy, Mukti Fajar Nur Dewata, Farid Wajdi, and Norhasliza Binti Ghapa. “Data theft and the law on protection of personal data: A thematic analysis.” Jurnal Hukum Novelty (1412-6834) 15, no. 2 (2024): 122-171.

Axpe, Miguel Ramón Viguri. “Ethical challenges from artificial intelligence to legal practice.” In International Conference on Hybrid Artificial Intelligence Systems, pp. 196-206. Cham: Springer International Publishing, 2021.

Ayyagari, Ramakrishna. “Data breaches and carding.” In The Palgrave Handbook of International Cybercrime and Cyberdeviance, pp. 939-959. Cham: Springer International Publishing, 2020.

Bank Indonesia. “Tinjauan Kebijakan Moneter Desember 2024”. Bank Indonesia, December 19, 2024a. https://www.bi.go.id/id/publikasi/laporan/Pages/TKM-Desember-2024.aspx.

Bank Indonesia. “Tinjauan Kebijakan Moneter Juni 2024”. Bank Indonesia, June 21, 2024b. https://www.bi.go.id/id/publikasi/laporan/Pages/TKM-Juni-2024.aspx.

Bank Indonesia. “Tinjauan Kebijakan Moneter September 2024”. Bank Indonesia, September 19, 2024c. https://www.bi.go.id/id/publikasi/laporan/Pages/TKM-September-2024.aspx.

Bank Indonesia. “Tips dan Transaksi Aman”. Bank Indonesia, December 1, 2018. https://www.bi.go.id/id/edukasi/Pages/Tips-dan-Transaksi-Aman.aspx.

Btoush, Eyad Abdel Latif Marazqah, Xujuan Zhou, Raj Gururajan, Ka Ching Chan, Rohan Genrich, and Prema Sankaran. “A systematic review of literature on credit card cyber fraud detection using machine and deep learning.” PeerJ Computer Science 9, no. 3 (2023): 1169-1264.

Chandra, Tofik, and Ji Hyun Park. “Enforcing legal measures against illegal fishing by foreign fishermen in territorial waters: Challenges and solutions.” Lex Publica 10, no. 2 (2023): 64-78.

Dahlan, Muhammad, and Husni Jalil. “Electronic Traffic Law Enforcement Policy Within The Framework of Legal Certainty.” PETITA 8, no. 2 (2023): 245-305.

Deora, Raj Singh, and Dhaval Chudasama. “Brief study of cybercrime on an internet.” Journal of communication engineering & Systems 11, no. 1 (2021): 1-6.

Dewi, Yuli, Harry Suharman, Poppy Sofia Koeswayo, and Nanny Dewi Tanzil. “Factors influencing the effectiveness of credit card fraud prevention in Indonesian issuing banks.” Banks and Bank Systems 18, no. 4 (2023a): 33-48.

Dewi, Yuli, Harry Suharman, Poppy Sofia Koeswayo, and Nanny Dewi Tanzil. “What is the key determinant of the credit card fraud risk assessment in Indonesia? An idea for brainstorming.” Banks and Bank Systems 18, no. 1 (2023b): 19-28.

Dikarev, Ilia S., and Vitalii F. Vasyukov. “Perspectives of implementing “smart” digital technologies in criminal justice.” In Institute of Scientific Communications Conference, pp. 1306-1312. Cham: Springer International Publishing, 2020.

Durnescu, Ioan, and Kristel Beyens. “The avalanche of technology: Critical perspectives on digital penality in Europe.” In The Routledge Handbook of European Penology, pp. 279-293. London: Routledge, 2025.

Endol’tseva, A. V., Yu V. Endoltseva, and N. I. Platonova. “Bazovye nachala ugolovnoi politiki: ot teoreticheskikh rassuzhdenii k de lege ferenda [Basic Principles of Criminal Policy: From Theoretical Reasoning to de Lege Ferenda].” Vserossiiskii kriminologicheskii zhurnal 13, no. 4 (2019): 641-650.

Eriksen, Erik O. “Three modes of administrative behaviour: Differentiated policy implementation and the problem of legal certainty.” Journal of European Public Policy 30, no. 12 (2023): 2623-2642.

Erwiningsih, Winahyu. “Enhancing legal certainty in land collateral: Bridging regulatory gaps, mitigating vulnerabilities, and promoting credit access in Indonesia.” Croatian International Relations Review 29, no. 93 (2023): 26-49.

Fahamsyah, Ermanto, Vicko Taniady, Kania Venisa Rachim, and Novi Wahyu Riwayanti. “Penerapan prinsip aut dedere aut judicare terhadap pelaku cybercrime lintas negara melalui ratifikasi Budapest Convention.” Jurnal Hukum dan Syariah De Jure 14, no. 1 (2022): 1-18.

Faisal, Andri Yanto, Derita Prapti Rahayu, Dwi Haryadi, Anri Darmawan, and Jeanne Darc Noviayanti Manik. “Genuine paradigm of criminal justice: rethinking penal reform within Indonesia New Criminal Code.” Cogent Social Sciences 10, no. 1 (2024): 2301626-2301639.

Fauzy, Elfian, and Nabila Alif Radika Shandy. “Hak Atas Privasi dan Politik Hukum Undang-Undang Nomor 27 Tahun 2022 Tentang Pelindungan Data Pribadi.” Lex Renaissance 7, no. 3 (2022): 445-461.

Febriansyah, Ferry Irawan, Afiful Ikhwan, Ulya Shafa Firdausi, and Ayub Dwi Anggoro. “Digital Legal Transformation: Legal Strategies for Strengthening National Cybersecurity.” International Journal of Law and Society 5, no. 1 (2026): 26-44.

Friesendorf, Cornelius, and Philipp Neubauer. “Best Practices in Security Sector Reform: EU Efforts to Change Ukraine's Public Order Policing.” Journal of Intervention and Statebuilding 19, no. 3 (2025): 370-391.

Gojali, Djoni Sumardi. “Identifying the Prevalence of Cybercrime in Indonesian Corporations: A Corporate Legislation Perspective.” International Journal of Cyber Criminology 17, no. 1 (2023): 1-11.

Hamdhani, Ali Fikri, and Fajrianto Fajrianto. “Relevansi Penerapan Metode Omnibus Law dalam Sistem Peraturan Perundang-Undangan di Indonesia.” Jurnal Al Azhar Indonesia Seri Ilmu Sosial 5, no. 1 (2024): 31-40.

Hammar, Roberth Kurniawan Ruslak. “Common law approaches to addressing cybercrime and adolescent bullying in Indonesia: Focusing on accountability and protection in the digital age.” International Journal of Cyber Criminology 16, no. 2 (2022): 162-174.

Hutchinson, Terry, and Nigel Duncan. “Defining and describing what we do: doctrinal legal research.” Deakin law review 17, no. 1 (2012): 83-119.

Ibrahim, Dicky Malik, Yusuf Hidayat, and Fokky Fuad Wasitaatmadja. “Legal Protection of Banking Customers Who Are Victims of Information and Electronic Transaction Crimes.” Jurnal Ilmiah Penegakan Hukum 11, no. 1 (2024): 102-120.

Imran, Mohammad Fadil. “Cyber criminology: An analysis of the Indonesian and the United States police perception.” International Journal of Cyber Criminology 17, no. 2 (2023): 250-261.

Kraemer-Mbula, Erika, Puay Tang, and Howard Rush. “The cybercrime ecosystem: Online innovation in the shadows?.” Technological Forecasting and Social Change 80, no. 3 (2013): 541-555.

Leukfeldt, Eric Rutger, and Thomas J. Holt. “Cybercrime on the menu? Examining cafeteria-style offending among financially motivated cybercriminals.” Computers in Human Behavior 126, no. 8 (2022): 106961-106984.

Malina, Maxim. “The use of artificial intelligence in the administration of criminal justice: problems and prospects.” Gosudarstvo i pravo 1, no. 4 (2022): 91-97.

Manthovani, Reda. “Indonesian Cybercrime Assessment and Prosecution: Implications for Criminal Law.” International Journal of Criminal Justice Sciences 18, no. 1 (2023): 439-452.

Manullang, Sardjana Orba. “The Legality of Devious Cyber Practices: Readiness of Indonesia's Cyber Laws.” Society 10, no. 2 (2022): 489-502.

Mauladi, Kemal Farouq, I. Made Laut Mertha Jaya, and Miguel Angel Esquivias. “Exploring the link between cashless society and cybercrime in Indonesia.” Journal of Telecommunications and the Digital Economy 10, no. 3 (2022): 58-76.

Muryanto, Yudho Taruno. “The urgency of sharia compliance regulations for Islamic Fintechs: a comparative study of Indonesia, Malaysia and the United Kingdom.” Journal of Financial Crime 30, no. 5 (2023): 1264-1278.

Nadriana, Lenny, and Pandji Sukmana. “Exploring the Applicability of Common Law Principles in Combating Cybercrime in Indonesia: An Analysis of Current Legal Framework and Challenges.” International Journal of Cyber Criminology 16, no. 2 (2022): 192-204.

Newman, Graeme R. “Cybercrime.” In Handbook on crime and deviance, pp. 551-584. New York: Springer New York, 2009.

Nicholls, Jack, Aditya Kuppa, and Nhien-An Le-Khac. “Financial cybercrime: A comprehensive survey of deep learning approaches to tackle the evolving financial crime landscape.” Ieee Access 9, no. 3 (2021): 163965-163986.

Octora, Rahel, Demson Tiopan, Shelly Kurniawan, Hassanain Haykal, P. Lindawaty S. Sewu, Christian Andersen, and Yohanes Hermanto Sirait. “The Urgency of the Indonesian Non-Penal Policy in Regulating Misuse of Bank Accounts as a Means of Online Frauds.” Croatian International Relations Review 28, no. 90 (2022): 135-153.

Otoritas Jasa Keuangan. “Bijak Ber-eBanking”. OJK, October 22, 2015. https://www.ojk.go.id/id/kanal/perbankan/berita-dan-kegiatan/info-terkini/Documents/Pages/Buku-eBanking/.

Pemerintah Pusat Indonesia. “Undang-undang (UU) Nomor 1 Tahun 2024 tentang Perubahan Kedua atas Undang-Undang Nomor 11 Tahun 2008 tentang Informasi dan Transaksi Elektronik”. Database Peraturan, January 2, 2024. https://peraturan.bpk.go.id/Details/274494/uu-no-1-tahun-2024.

Pemerintah Pusat Indonesia. “Undang-undang (UU) Nomor 27 Tahun 2022 tentang Pelindungan Data Pribadi”. Database Peraturan, October 17, 2022. https://peraturan.bpk.go.id/Details/229798/uu-no-27-tahun-2022.

Peter, M.M. Penelitian Hukum. Jakarta: Kencana, 2009.

Prasetyo, Dossy Iskandar, and M. Sholehuddin. “Ratio Legis of Cybercrime Legislation Policy in Indonesia.” International Journal of Cyber Criminology 18, no. 2 (2024): 57-70.

Pusiknas Bareskrim Polri. “Kasus Kejahatan Manipulasi Data secara ITE Meningkat”. Pusiknas Bareskrim Polri, June 16, 2025. https://pusiknas.polri.go.id/detail_artikel/kasus_kejahatan_manipulasi_data_secara_ite_meningkat.

Rahardiansah, Trubus. “Sociological Analysis of Fintech Law Enforcement in the Digital Era.” Revista de Gestao Social e Ambiental 18, no. 2 (2024): 591-723.

Rahmat, Romi Fadillah, Sharfina Faza, Silmi Adnan, Dina Tya Erawati Situmorang, Dani Gunawan, and Tifani Zata Lini. “News articles classification for electronic information and transaction law in indonesia using support vector machine.” In 2021 International Conference on Data Science, Artificial Intelligence, and Business Analytics (DATABIA), pp. 106-110. New Jersey: IEEE, 2021.

Rifai, Eddy, and H. S. Tisnanta. “Role of law enforcement to prevent cyber laundering and asset recovery from overseas.” International Journal of Cyber Criminology 16, no. 1 (2022): 110-122.

Sari, Ratih Mega Puspa. “Criminal Responsibility in Cybercrime: An Analysis of Phishing Crimes in Indonesia.” Jurnal Hukum dan Keadilan 2, no. 5 (2025): 49-55.

Shiner, Roger A. “Theorizing criminal law reform.” Criminal Law and Philosophy 3, no. 2 (2009): 167-186.

Sibawaihi, Muhammad, Devika Rosa Guspita, and Badriyah Badriyah. “Islamic Legal Strategies in Indonesian Contexts to Combat Cybercrime and the Spread of Illegal Data Dissemination.” Justicia Islamica 21, no. 2 (2024): 357-376.

Soekanto, S. Pengantar Penelitian Hukum. Depok: Universitas Indonesia, 1981.

Sogenbits, Thea, and Umut Turksen. “Cracking the code: Unveiling carding crime through the darknet-acquired criminal carding manual and the business model canvas.” Journal of Economic Criminology 5, no. 5 (2024): 100069-100083.

Soudijn, Melvin RJ, and Birgit CH T. Zegers. “Cybercrime and virtual offender convergence settings.” Trends in organized crime 15, no. 2 (2012): 111-129.

Suhendi, Dadang, and Erwin Asmadi. “Cyber laws related to prevention of theft of information related to acquisition of land and infrastructure resources in Indonesia.” International Journal of Cyber Criminology 15, no. 2 (2022): 135-143.

Suseno, Sigid, Ahmad M. Ramli, Ranti Fauza Mayana, Tasya Safiranita, and Bernadette Aurellia Nathania Tiarma. “Cybercrime in the new criminal code in Indonesia.” Cogent Social Sciences 11, no. 1 (2025): 2439539-2439552.

Syaufi, Ahmad, Aurora Fatimatuz Zahra, and Fatham Mubina Iksir Gholi. “Employing forensic techniques in proving and prosecuting cross-border cyber-financial crimes.” International Journal of Cyber Criminology 17, no. 1 (2023): 85-101.

Tambunan, Unzur Jefri, Puguh Aji Hari Setiawan, and Dewi Iryani. “Penegakan Hukum Tindak Pidana Carding Berdasarkan Undang-Undang Nomor 11 Tahun 2008 Tentang Informasi Dan Transaksi Elektronik Dalam Pembangunan Hukum Tindak Pidana Siber (Cybernetics).” Jurnal Gagasan Hukum 6, no. 02 (2024): 140-153.

Tuzet, Giovanni. “Certainty Beyond a Reasonable Doubt: A Pragmatist Understanding of the Criminal Standard of Proof.” Contemporary Pragmatism 20, no. 4 (2023): 398-423.

Webber, Craig, and Michael Yip. “Humanizing the cybercriminal: Markets, forums, and the carding subculture.” In The human factor of cybercrime, pp. 258-285. Oxfordshire: Routledge, 2019.

Yip, Michael, Craig Webber, and Nigel Shadbolt. “Trust among cybercriminals? Carding forums, uncertainty and implications for policing.” In Policing cybercrime, pp. 108-131. Oxfordshire: Routledge, 2017.

Yuwono, Finda Pratiwi. “Legal Implications of the Merauke Food Estate: A Critical Analysis of Customary Rights and Environmental Concerns.” Lex Publica 11, no. 2 (2024): 294-316.

Downloads

Published

2025-12-30

How to Cite

Frensh, W., Zulyadi, R., & Dhaneswara, N. (2025). Criminal Law Policy on Carding in Indonesia: Addressing Legal Certainty and Regulatory Fragmentation. Lex Publica, 12(2), 361–382. https://doi.org/10.58829/lp.12.2.2025.316

Issue

Vol. 12 No. 2 (2025)

Section

Articles

License

Copyright (c) 2025 Wenggedes Frensh, Rizkan Zulyadi, Nindya Dhaneswara

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

Most read articles by the same author(s)