Privacy Policy for AGI Digital Apps


PT. Bank Artha Graha Internasional (referred to as "we" or "the Bank") is committed to protecting your privacy. "You" refers to all customers, visitors, and users of the website and electronic services of PT. Bank Artha Graha Internasional, to whom this policy applies. Protecting your information is our top priority in building trust with all our customers and visitors to the Bank’s website.  

This policy outlines how we collect, use, disclose, process, and manage your personal data to enhance banking services, facilitate transactions, meet regulatory requirements, and address other urgent situations.


I. Personal Data

Personal data refers to any data, information, and/or details in any form that can identify a customer, which is provided by the customer from time to time or that the customer includes or submits in, on, and/or through the Application regarding the customer’s personal information. Some examples of personal data that we collect include, but are not limited to:

  1. Personal Information : Name, birthdate, phone number, home address, occupation, and/or education.
  2. Identification Documents: KTP/Passport/KITAS, NPWP.
  3. Financial Information : Income, assets, liabilities, bank statement copies, credit card bills, and information from third parties regarding your credit history.
  4. Biometric Data: Including but not limited to your fingerprints and/or facial images.
  5. Images, video recordings, and/or recordings of conversations you have with us in relation to the opening of banking facilities and/or in the form of complaints and other matters.
  6. **Information from your device** used to access the Bank’s services or applications, such as camera, contact list, list of applications, usage statistics, location, device information, and network attributes.
  7. Use of contacts to facilitate input during purchases and payments to phone numbers on the customer’s device.
  8. Use of the camera for validating selfies or photos by customers during registration to meet KYC (Know Your Customer) requirements for account opening. Additionally, the camera is used to capture images for QRIS payment features.
  9. Use of images for validating the NIK (Identification Number) entered by customers during registration to meet KYC (Know Your Customer) requirements for account opening. Additionally, images may be used for uploading pictures for QRIS payment features.
  10. Publicly available information.


II. Use of Personal Data

We take particular care in using and managing your information. The use of personal data includes providing products and/or services, processing transactions, enhancing your transaction experience, and informing you about products and/or services that may interest you.  

The use of personal data may include the following:

  1. Identifying and registering you as a customer, performing verification as part of the Know Your Customer process, two-step verification with authentication codes, including deactivating or managing customer accounts.
  2. Processing transactions instructed by the customer through the Bank’s services.
  3. Processing and managing customer-owned products.
  4. Preventing, detecting, investigating, and addressing actions that constitute criminal, prohibited, illegal, unauthorized, or fraudulent activities that may occur in the use of the Bank's services (including but not limited to fraud, embezzlement, theft, and money laundering).
  5. Developing, enhancing, and providing products to meet customer needs.
  6. Conducting research on customer demographic data, including but not limited to the use of bank products and/or services.
  7. Developing, improving, and providing services and features within the Bank's services.
  8. Sending information deemed useful to customers, including information about products, services, and promotions from the Bank after the customer has given consent to be contacted regarding bank products and/or services.
  9. Internal administrative purposes, such as audits, data analysis, and database records.
  10. Communication with customers regarding all matters related to services and/or features.
  11. Ensuring the safety, security, and continuity of the Bank's services and/or features.
  12. Providing image and camera services. When customers use image and camera services, we use images, videos, and other personal data to respond to customer requests, provide the requested services, and improve our services.
  13. Complying with legal obligations. In certain cases, we collect and use customers' personal data in compliance with the law. For example, we collect information from customers regarding bank accounts for identity verification and other purposes.
  14. Communication with customers. We use customers' personal data to communicate with them regarding services through various channels (e.g., telephone, email, chat).
  15. Advertising and Personalization. We use customers' personal data to display interest-based ads for features, products, and services that may be of interest to them.
  16. Fraud Prevention, Money Laundering, and Credit Risk. We use customers' personal data to prevent and detect fraud and money laundering and misuse to protect the security of customers, the Bank, and others. We may also use assessment methods to evaluate and manage credit risk.



III. Use of Personal Data for Marketing Purposes

We may use your personal data to offer products or services, including special offers, promotions, contests, or information that may be of interest to you or meet your needs. Marketing messages may be sent to you through various channels, including but not limited to email, direct mail, SMS, phone calls, facsimile, and other mobile messaging services. We will comply with regulations from Bank Indonesia/Otoritas Jasa Keuangan and other applicable data protection and privacy laws.  

In the case of sending telemarketing messages to your Indonesian phone number via SMS, phone, facsimile, or other mobile messaging services, rest assured that we will only do so if we have your clear and unambiguous written consent or recorded consent to do so, or if you have not registered in the Do Not Call list.  

You can request at any time that we stop contacting you for marketing purposes via the selected mode or all modes.  

To learn more about how you can change how we use your personal data for marketing purposes, please contact us (see "How to Contact Us" below).  

Nothing in this section should vary or alter the terms and conditions governing our relationship with you.



IV. Disclosure and Sharing of Personal Data

We may, from time to time and in accordance with all applicable data privacy laws, disclose your personal data to each personnel of the Artha Graha Group or third parties, whether located in Indonesia or elsewhere, for the purposes stated above. Rest assured that when we disclose your personal data to such parties, we require them to ensure that the data remains confidential and secure.  

For more information about the third parties with whom we share your personal data, you may, if applicable, refer to agreements and/or terms and conditions governing our relationship with you or our customers. You can also contact us for further information (see "How to Contact Us" below).  

We want to emphasize that PT. Bank Artha Graha Internasional Tbk does not sell personal data to third parties and will remain fully compliant with any obligations to maintain confidentiality under applicable agreements and/or terms and conditions governing our relationship with you or our customers, or applicable laws.  

We may transfer, store, process, and/or deal with your personal data outside of Indonesia. In doing so, we will comply with regulations from Bank Indonesia/Otoritas Jasa Keuangan and other applicable data protection and privacy laws.


V. Cookies and Related Technologies

Our website and mobile applications ("apps") use cookies. Cookies are small text files placed on your computer or mobile device when you visit a website or use an app. Cookies collect information about users and their visits to websites or use of apps, such as their Internet Protocol (IP) address, how they arrived at the website (e.g., through a search engine or link from another site), and how they navigate through the website or app. We use cookies and other technologies to facilitate your internet session and use of our apps, offer products and/or services according to your preferences, track our website and app activities, and compile statistics about activities performed on our website and/or through our apps.  

A pixel tag, also known as a web beacon, is a visible tag placed on specific pages of our website but not on your computer. Pixel tags are typically used in conjunction with cookies and are used to monitor user behavior when visiting the website.  

You can configure your web browser to block cookies and disable pixel tags from monitoring your website visits. You can also delete cookies stored on your computer or mobile device. However, if you block cookies and pixel tags, you may not be able to use certain features and functions of our website.


VI. Links to Third-Party Sites

Our applications and services may contain links to third-party websites. The Bank is not responsible for the acquisition, collection, processing, analysis, use, storage, appearance, announcement, transmission, dissemination, deletion, or destruction of personal data by these third parties. If you provide information directly to these sites, the privacy policies and terms of service of those sites will apply, and any consequences arising from such actions are entirely your responsibility.


VII. Data Storage and Security

The Bank ensures that the data collected and/or gathered by the Bank will be stored securely in accordance with the applicable laws and regulations in Indonesia. The Bank will retain the data for as long as necessary to fulfill the purposes outlined in this Privacy Policy.


VIII. How to Contact Us

To contact us regarding any aspect of this policy or your personal data, or to provide any feedback you may have, please visit our branch or reach out to our customer service representatives through the Graha Call 24-hour hotline at 0800-191-8880 or via Graha Chat (WhatsApp) at 0811-191-88880.


IX. Customer Statement and Consent

Based on the Privacy Policy outlined above, the Customer hereby declares:

  1. That the Personal Data provided by the Customer is accurate and valid, and thus the Customer gives consent to the Bank to collect, process, analyze, store, display, disclose, transmit, disseminate, delete, and destroy the data in accordance with this Privacy Policy and applicable laws and regulations.
  2. That the Customer has read, understood, and agreed to all terms and conditions set forth in this Privacy Policy, which forms an integral part of the Terms and Conditions for the Bank's e-channel services.
  3. That the Customer releases the Bank from any claims, demands, damages, and/or liabilities related to the failure to process transactions on the Bank's e-channel services due to inaccuracies or incorrectness in the Personal Data provided to the Bank.
  4. That the Customer has granted consent, permission, and authority to the Bank to collect, use, disclose, process, manage, and provide access to Personal Data to third parties for the purposes described in point II above.


X. Changes and Updates to PT. Bank Artha Graha Internasional Tbk Privacy Policy

We may update this policy from time to time to ensure it remains consistent with how PT. Bank Artha Graha Internasional Tbk uses your personal data or changes to applicable laws and regulations. We will provide the updated policy on our website. All communications, transactions, and dealings with us are subject to the most recent version of this policy in effect at that time.