At Boiva, security is our top priority. Every Personal Identifiable Information (PII) and sensitive data are encrypted and only be able to decrypt using personal Public & Private keypairs.
Every Client Application is required to define a scope on which information they want to get from the User, is it read:nik:verification (only the verification status provided from our direct data provider) or read:nik:ext:first-4 (only the first 4 number of user's NIK) or read:nik:* (all information related to user's NIK, this include the verification status and the complete user's NIK number, encrypted and can be decrypted ONLY using client's private key)