Studio / Industries
Indonesian banking is in the most compressed transformation in its history. Digital-pure banks (Jago, BCA Digital, Allo, SeaBank) have rewritten customer expectations for onboarding and daily banking. OJK POJK 21/2023 made digital maturity a supervised obligation. BI SNAP Phase 3 is pushing the sector toward Open Finance. BI-FAST has made real-time payments the default. UU PDP has made access control a legal requirement. We build digital products for traditional banks modernizing, digital-first banks scaling, and fintechs building new categories, into the regulated scrutiny all three share.
Banking is the sector where 'move fast, regulated' actually has to be a practice, not a slogan. A new onboarding journey has to clear OJK digital-services expectations. A new lending product has to respect POJK and AML/APU-PPT. A new payment surface has to hit BI SNAP and BI-FAST standards. A new data flow has to respect UU PDP cross-border rules. We design and build digital products for this reality (regulated speed, not reckless speed), alongside fraud and KYC AI that turn compliance obligation into operating capability.
Four phases shaped by the industry where every shipped artifact is a regulatory artifact.
We map the product and the regulator surface together. What's the product (onboarding, core banking surface, open-finance API, lending origination, wealth)? Which regulators apply: OJK (POJK + SEOJK + AI Governance), BI (SNAP + BI-FAST + payment rails), PPATK (AML), UU PDP (data), BSSN (cyber)? Existing core / channels / data are inventoried.
Product, architecture, and compliance designed together. Regulator requirements treated as product constraints, not post-launch tickets. Access controls, audit trails, data-minimization, consent management baked into the design-review step.
Senior product engineers with banking-sector exposure. CI-enforced compliance gates (e.g., no PII in logs; ABAC policy tests in test pyramid). SLOs on critical paths. Observability and monitoring from the first deploy.
Handover to your bank's IT, risk, and compliance teams. SEOJK DMAB documentation packages, BSSN incident runbooks, OJK audit-ready exports. Quarterly revalidation as OJK and BI guidance evolves.
Four disciplines that together let regulated institutions ship digital products at the pace customers expect.
Mobile-first and web onboarding flows that meet OJK digital-services expectations: identity capture, KYC verification, risk scoring, product eligibility. Bahasa-first, WhatsApp-aware for status + support, and integrated with the sanctions / PEP / AML checks your bank already uses.
Digital product surfaces over core banking: transfers, payments, cards, account management, statements, BI-FAST integration. Open Finance APIs aligned to BI SNAP Phase 3. Designed to scale as your core modernization catches up.
Product surfaces for your fraud and compliance teams: case management, alert-to-investigation workflow, SAR preparation, analyst queues. Paired with the AI signal layer we build in /ai/fraud-detection-aml.
Audit export generation, SEOJK DMAB maturity documentation, BSSN CIRT integration, UU PDP data-subject endpoints, OJK AI Governance artifacts. Built as product capabilities, not Word documents.
A cross-section of Sprout's financial-services work and the market shape of a sector in active transformation.
We designed and built a financial-tools mobile application for Indonesian micro-businesses (transaction capture, bookkeeping, receipts, WhatsApp-friendly exports), scaled for mid-tier Android and low-network operating conditions.
One of Indonesia's flagship banks reported a 168% increase in transaction frequency on its digital app and a 95% user retention rate, setting a sector benchmark for what 'best-in-class digital banking' looks like in the Indonesian market. Peer banks are now building against that bar.
OJK POJK 21/2023 + OJK April 2025 AI Governance + BI SNAP Phase 3 + PPATK AML oversight combined with $2.1B in 2024 fraud losses have made 'regulated speed' the baseline. Banks that ship fast without compliance fail audit; banks that ship compliant without speed lose customers to digital-pure peers.
BI's Open Finance trajectory and what it changes for traditional banks, digital-pure banks, and fintechs. API contracts, partner onboarding, cross-institution data flows, and the 2026-27 window to position.
The onboarding architecture that meets OJK digital-services expectations, AML/APU-PPT checks, and UU PDP consent, while still converting. Where most Indonesian onboarding flows lose customers, and the fixes.
The April 2025 OJK AI Governance Guidance as an architecture input. Model validation, bias testing, drift monitoring, human oversight, and how to build compliance as a system property instead of documentation.
Tell us the state: a new onboarding journey, a core modernization, an Open Finance API, a fraud + AML upgrade, a wealth / lending surface. We'll scope a starting engagement with OJK, BI, UU PDP, and PPATK in scope. Worst case, you get a clear no and a short memo on what to fix first. Best case, you get a banking product partner whose work your regulator will read favorably and your customers will actually use.
Start a project
