All Countries
Data Privacy
Data Collection Notice

Data Collection Notice Template for Indonesia

Create a bespoke document in minutes,  or upload and review your own.

4.6 / 5
4.8 / 5

Let's create your Data Collection Notice

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Get your first 2 documents free

Your data doesn't train Genie's AI

You keep IP ownership of your information

Key Requirements PROMPT example:

Data Collection Notice

"I need a Data Collection Notice for my Indonesian e-commerce platform launching in March 2025, which will collect customer shopping behavior data and process payment information for online transactions."

Celebrated by
Collaborations with
Investors
Document background
The Data Collection Notice is a mandatory document required under Indonesia's Personal Data Protection Law (PDP Law) No. 27 of 2022 for organizations collecting and processing personal data. This document must be provided to individuals before or at the time of data collection, explaining how their personal data will be handled. It serves multiple purposes: ensuring legal compliance, building trust with data subjects, and providing transparency about data processing activities. The notice must be clear, accessible, and contain specific information required by Indonesian law, including the purpose of data collection, types of data collected, processing methods, retention periods, and data subject rights. Organizations operating in Indonesia must maintain an up-to-date Data Collection Notice that reflects their current data handling practices and complies with evolving regulatory requirements.
Suggested Sections

1. Identity of Data Controller: Information about the organization collecting the data, including legal name, registration number, and contact details

2. Purpose of Data Collection: Clear explanation of why personal data is being collected and how it will be used

3. Types of Personal Data: Detailed list of personal data categories being collected

4. Legal Basis: Explanation of the legal grounds for collecting and processing personal data

5. Data Processing Activities: Description of how the personal data will be processed, stored, and protected

6. Data Retention Period: Information about how long the personal data will be kept

7. Data Subject Rights: Explanation of individual rights under the PDP Law, including access, correction, and deletion rights

8. Data Sharing and Transfer: Information about third parties who may receive the data and any international transfers

9. Security Measures: Overview of measures taken to protect personal data

10. Contact Information: Details for data protection queries and complaints

Optional Sections

1. Cookies and Tracking: Required if the organization uses cookies or similar tracking technologies on websites or apps

2. Special Categories of Data: Required if collecting sensitive personal data such as health information, religious beliefs, or biometric data

3. Automated Decision Making: Required if using automated processing to make decisions about individuals

4. Children's Privacy: Required if services may be used by or data collected from children

5. Financial Data Processing: Required if collecting financial information, including specific requirements under BI and OJK regulations

6. Marketing Communications: Required if personal data will be used for marketing purposes

Suggested Schedules

1. Detailed Data Categories: Comprehensive list of all personal data fields collected, categorized by type and purpose

2. Third Party Recipients: List of third parties who may receive personal data, including their roles and locations

3. Technical Security Measures: Detailed description of security protocols and measures implemented to protect personal data

4. Data Subject Request Procedures: Detailed procedures for handling data subject access requests and other rights

5. Consent Forms: Template forms for obtaining specific consent where required

Authors

Alex Denne

Head of Growth (Open Source Law) @ Genie AI | 3 x UCL-Certified in Contract Law & Drafting | 4+ Years Managing 1M+ Legal Documents | Serial Founder & Legal AI Author

Linkedin in social icon imageX social icon image
alex.den.21@genieai.co
Relevant legal definitions
Personal Data
Special Categories of Personal Data
Data Subject
Data Controller
Data Processor
Data Processing
Consent
Data Protection Officer
Data Breach
Third Party
Data Transfer
Data Retention
Anonymization
Pseudonymization
Automated Decision Making
Electronic System
Data Protection Law
Regulatory Authority
Privacy Notice
Data Subject Rights
Cross-border Transfer
Data Storage
Data Security Measures
Cookies
Log Files
Marketing Communications
Service Provider
Authorized Access
Data Minimization
Purpose Limitation
Relevant Industries

Financial Services

Healthcare

E-commerce

Technology

Education

Telecommunications

Retail

Insurance

Banking

Transportation

Hospitality

Manufacturing

Professional Services

Real Estate

Government Services

Relevant Teams

Legal

Compliance

Information Technology

Information Security

Risk Management

Human Resources

Customer Service

Marketing

Operations

Data Protection

Privacy

Internal Audit

Corporate Communications

Relevant Roles

Data Protection Officer

Chief Privacy Officer

Compliance Manager

Legal Counsel

Information Security Manager

Risk Manager

IT Director

Chief Information Officer

Operations Manager

Customer Service Manager

HR Manager

Marketing Director

Systems Administrator

Privacy Analyst

Compliance Officer

Industries
Personal Data Protection Law (PDP Law) No. 27 of 2022: Indonesia's main data protection law that regulates the collection, processing, and storage of personal data. It includes requirements for consent, data subject rights, and data controller obligations.
Government Regulation No. 71 of 2019: Regulation concerning the Implementation of Electronic Systems and Transactions, which includes provisions on data protection and security measures for electronic system operators.
MOCI Regulation 20 of 2016: Ministry of Communication and Informatics Regulation on Personal Data Protection in Electronic Systems, which provides specific requirements for protecting personal data in electronic systems.
Bank Indonesia Regulation No. 18/40/PBI/2016: If the data collection involves financial services or payment systems, this regulation provides additional requirements for data protection in financial transactions.
OJK Regulation No. 13/POJK.02/2018: Financial Services Authority regulation relevant if the data collection involves financial services, including requirements for data protection in digital financial innovation.
Teams

Employer, Employee, Start Date, Job Title, Department, Location, Probationary Period, Notice Period, Salary, Overtime, Vacation Pay, Statutory Holidays, Benefits, Bonus, Expenses, Working Hours, Rest Breaks,  Leaves of Absence, Confidentiality, Intellectual Property, Non-Solicitation, Non-Competition, Code of Conduct, Termination,  Severance Pay, Governing Law, Entire Agreemen

Find the exact document you need

Personal Data Privacy Notice

An Indonesian law-compliant privacy notice detailing how personal data is collected, processed, and protected under Law No. 27 of 2022.

find out more

Privacy Information Notice

An Indonesian law-compliant Privacy Information Notice detailing personal data handling practices under the PDP Law.

find out more

Layered Privacy Notice

A multi-layered privacy notice compliant with Indonesian data protection law, providing structured information about personal data processing activities.

find out more

Data Privacy Notice

A mandatory legal document under Indonesian law that outlines an organization's personal data handling practices and data subject rights in compliance with the PDP Law.

find out more

Website Cookies Notice

A legal notice for Indonesian websites explaining cookie usage and data collection practices in compliance with UU PDP law.

find out more

Personal Data Protection Notice

An Indonesian law-compliant notice detailing how an organization collects, processes, and protects personal data under the PDP Law 2022.

find out more

Data Protection Policy And Privacy Notice

A dual-purpose document outlining personal data handling practices and policies in compliance with Indonesian PDP Law and related regulations.

find out more

Personal Data Notice

An Indonesian law-compliant privacy notice detailing personal data processing activities and data subject rights under UU PDP 2022.

find out more

Data Protection Privacy Notice

An Indonesian law-compliant privacy notice outlining personal data handling practices and data subject rights under UU PDP 2022.

find out more

Privacy Notice Statement

A mandatory legal document under Indonesian PDP Law that explains how an organization handles personal data and protects individual privacy rights.

find out more

Online Privacy Notice

An Indonesian law-compliant Online Privacy Notice outlining how organizations handle personal data collected through online channels, meeting UU PDP requirements.

find out more

External Privacy Notice

An External Privacy Notice that outlines personal data handling practices in compliance with Indonesian data protection laws, particularly the PDP Law 2022.

find out more

Data Collection Notice

A legal notice compliant with Indonesia's PDP Law that informs individuals about how their personal data is collected, used, and protected.

find out more

Data Privacy Notice And Consent Form

An Indonesian law-compliant privacy notice and consent form for personal data processing, meeting UU PDP requirements.

find out more

Company Privacy Notice

A mandatory privacy notice for organizations operating in Indonesia that details how personal data is handled in compliance with the Indonesian PDP Law.

find out more

Website Privacy Notice

An Indonesian law-compliant privacy notice outlining how an organization handles personal data collected through its website, adhering to the PDP Law requirements.

find out more

Data Processing Notice

A mandatory notice under Indonesian PDP Law that details how an organization collects, processes, and protects personal data.

find out more

Privacy Policy Notice

A legal document outlining personal data handling practices in compliance with Indonesian data protection laws, including the 2022 PDP Law.

find out more

Download our whitepaper on the future of AI in Legal

By providing your email address you are consenting to our Privacy Notice.
Thank you for downloading our whitepaper. This should arrive in your inbox shortly. In the meantime, why not jump straight to a section that interests you here: https://www.genieai.co/our-research
Oops! Something went wrong while submitting the form.

Genie’s Security Promise

Genie is the safest place to draft. Here’s how we prioritise your privacy and security.

Your documents are private:

We do not train on your data; Genie’s AI improves independently

All data stored on Genie is private to your organisation

Your documents are protected:

Your documents are protected by ultra-secure 256-bit encryption

Our bank-grade security infrastructure undergoes regular external audits

We are ISO27001 certified, so your data is secure

Organizational security

You retain IP ownership of your documents

You have full control over your data and who gets to see it

Innovation in privacy:

Genie partnered with the Computational Privacy Department at Imperial College London

Together, we ran a £1 million research project on privacy and anonymity in legal contracts

Want to know more?

Visit our Trust Centre for more details and real-time security updates.

Read our Privacy Policy.