Compliance & Security

DOKU positions data security and regulatory compliance as the core foundation of DOKU Payouts operations. We ensure that every merchant interaction and transaction is protected by the highest security standards and adheres to the applicable legal framework.

1. Data Privacy We are fully committed to maintaining the confidentiality and integrity of both merchant and beneficiary data:

   1. Data encryption, all sensitive data exchanged between the merchant’s system and DOKU is encrypted using advanced security protocols (such as TLS/SSL) during transmission.

   2. Regulatory adherence, DOKU fully complies with the personal data protection law (PDP) and relevant regulations set forth by Bank Indonesia (BI) and the Financial Services Authority (OJK).

   3. Non-disclosure, end-user data is strictly used for the purpose of legitimate transactions processing and will not be shared with any third party without explicit consent.

2. Prohibited Activities To guarantee the integrity of the service and adhere to Anti-Money Laundering and Countering the Financial of Terrorism (AML-CFT) regulations, merchants are prohibited from using DOKU Payouts to facilitate illegal or forbidden activities, including but not limited to:

   1. Illegal transaction, any form of transaction that violates the Indonesian law, including the sale of illegal drugs, unauthorized products, or counterfeit goods.

   2. Money laundering and terrorism financing, transactions that are suspicious or intended to conceal the illegal origin of funds (money laundering) or finance terrorist activities.

   3. High-risk activities, transactions related to online gambling, ponzi schemes, pyramid schemes or investments lacking official regulatory permits.

   4. Legal violations, any activity that violates the legal provisions and applicable regulations within the jurisdiction or both the merchant and DOKU.

3. KYB Requirements As part of our commitment to compliance, merchants must fulfill Know Your Business (KYB) requirements before the DOKU Payouts service can be activated. The purpose of KYB is to verify the legality and validity of the merchant’s business operations:

   1. Legal verification, merchants are required to submit complete corporate legality documents, such as the Deed of Establishment, Business Identification Number / NIB, Business Operating License / SIUP, Taxpayer Identification Number / NPWP and Fund Transfer Operator / Money Service Business License from local authorities (for Cross-Border Payout merchant).

   2. Ownership verification, DOKU will verify the identity and authority of the Director or the party authorized to sign the cooperation agreement (PKS).

   3. Business purposes, merchants must provide transparent information regarding their business model and the source of funds intended for the deposit top-up.