Legal Protection for Banking Customers Regarding Personal Data Information in the Perspective of Legal Certainty

Authors

  • M Ridho Universitas Jambi, Indonesia
  • Taufik Yahya Universitas Jambi, Indonesia
  • Indriya Fathni Universitas Jambi, Indonesia

DOI:

https://doi.org/10.57235/jcrd.v3i1.8479

Keywords:

Personal Data Protection, Bank Secrecy, Legal Certainty, Customer, Banking Sector

Abstract

The development of information technology and the digitalization of banking services has increased the utilization of customers' personal data in various financial transactions. On the other hand, this situation also poses risks of misuse of access and leakage of personal data. Therefore, clear legal regulation that provides legal certainty is crucial to ensure the protection of personal data in the banking sector. This study aims to analyze the legal regulation of personal data protection in the banking sector from the perspective of legal certainty and to examine the forms of legal protection provided to customers regarding access to personal data information in Indonesia. This research employs a normative legal research method with a statute approach and a conceptual approach. The legal materials used include legislation, specifically Law Number 10 of 1998 concerning Banking, Law Number 27 of 2022 concerning Personal Data Protection, as well as various financial sector regulations issued by the Financial Services Authority and Bank Indonesia. The analysis is conducted using the theory of legal certainty and the principle of conflict resolution of norms, namely lex specialis derogat legi generali and lex posterior derogat legi priori. The results of the study indicate that the regulation of personal data protection in the banking sector essentially has a sufficient legal foundation through provisions on bank secrecy in the Banking Law and general personal data protection regulations in the Personal Data Protection Law. However, there is a potential overlap of norms between these two legal regimes, particularly regarding state access to data and the obligations of data controllers. Furthermore, the fragmentation of supervisory authority among the Financial Services Authority, Bank Indonesia, and law enforcement agencies may lead to inconsistencies in the procedures for access and protection of customer data. Legal protection for customers can be provided through preventive mechanisms, such as banks’ obligations to maintain data confidentiality and implement electronic system security, as well as repressive mechanisms through complaints, dispute resolution, administrative sanctions, and criminal sanctions based on the applicable legislation. Based on indicators of legal certainty, the existing regulations have provided a normative basis for the protection of customers’ personal data, but regulatory harmonization and strengthening of supervisory mechanisms are still required to ensure effective legal protection of personal data in the digital banking era.

Downloads

Download data is not yet available.

References

(1) Muhaimin. 2020. Metode Penelitian Hukum. Mataram: Mataram University Press.

(2) Sobirin Malian. 2017. Pengantar Hukum Bisnis. Yogyakarta: Kreasi Total Media.

(3) Karmila Sari Sukarno. 2025. Fungsi Bank Sebagai Agen Pembangunan (Agent of Development) Menuju Indonesia Emas 2045. Jurnal Madani Hukum. Vol. 3. No. 1.

(4) Chika Ghassani, Fadhil Pratama Putra, dan Zainudin Firdaus. 2025. Analisis Yuridis Terhadap Tanggung Jawab Perdata Atas Kebocoran Data Pribadi Nasabah Oleh PT. Bank Central Asia Cabang Kupang (Studi Putusan Pengadilan Negeri Kupang Nomor 230/PDT.G/2022/PN KPG, Juris Prudentia: Jurnal Hukum Ekselen. Vol. 7. No. 2.

(5) Agus Bandiyono dan Ayudya Purwani Putri. 2021. Analisis Keterbukaan Akses Informasi Keuangan Dalam Peningkatan Penerimaan Pajak. Jurnal Ilmiah Akuntansi Universitas Pamulang. Vol. 9. No. 2.

(6) Dhoni Martien.2023. Perlindungan Hukum Data Pribadi, Makassar: Mitra Ilmu.

(7) Nayla Azarine, Tesalonika David, dan Valsifa Utami. 2024. Upaya Perlindungan Hukum terhadap Nasabah Perbankan melalui Prinsip Kerahasiaan Bank dalam UU No. 4 Tahun 2023 tentang Pengembangan dan Penguatan Sektor Keuangan. Jurnal Pajak dan Manajemen Keuangan. Vol. 1 No. 5.

Downloads

Published

2026-05-27

How to Cite

M Ridho, Taufik Yahya, & Indriya Fathni. (2026). Legal Protection for Banking Customers Regarding Personal Data Information in the Perspective of Legal Certainty. Journal of Citizen Research and Development, 3(1), 360–366. https://doi.org/10.57235/jcrd.v3i1.8479

Issue

Vol. 3 No. 1 (2026): Mei 2026

Section

Articles

Citation Check

License

Copyright (c) 2026 M Ridho, Taufik Yahya, Indriya Fathni

Creative Commons License

This work is licensed under a Creative Commons Attribution-NonCommercial 4.0 International License.

  1. Authors certify that the work reported here has not been published before and contains no materials the publication of which would violate any copyright or other personal or proprietary right of any person or entity.
  2. Authors dont transfer or license the copyright of publishing to JCRD Journal of Citizen Research and Development Research to publish the article in any media format, to share, to disseminate, to index, and to maximize the impact of the article in any databases.
  3. Authors hereby dont agree to transfer a copyright for publishing to JCRD Journal of Citizen Research and Development a Publisher of the manuscript. 
  4. Authors reserve the following: 
    1. all proprietary rights other than copyright such as patent rights; 
    2. the right to use all or part of this article in future works of our own such as in books and lectures;
    3. use for presentation in a meeting or conference and distributing copies to attendees; 
    4. use for internal training by author's company;
    5. distribution to colleagues for their research use;
    6. use in a subsequent compilation of the author's works;
    7. inclusion in a thesis or dissertation;
    8. reuse of portions or extracts from the article in other works (with full acknowledgement of final article);
    9. preparation of derivative works (other than commercial purposes) (with full acknowledgement of final article); and
    10. voluntary posting on open web sites operated by author or author’s institution for scholarly purposes, but it should follow the open access license of Creative Common CC BY-NC License.