Аннотация:The aim of this study is to determine the legal protection of consumer data security in Indonesia Fintech business based on the Financial Service Authority (Otoritas Jasa Keuangan-OJK) Regulation and other related ordinance. The approach method used in this study is normative juridical. The study result explains that the parties of Fintech business consist of Fintech organizer (producer) and Fintech user (consumer). The relation among the parties is created due to an electronic contract. Basically, the protection of Fintech consumer personal data is regulated in Communication and Information Minister Regulation, Bank Indonesia Regulation, and Financial Service Authority Regulation. In addition, the protection of data was regulated in the Financial Service Authority Circular Letter.
