Jakarta, INTI – More than 500,000 iris scans collected from Indonesian citizens by the World App are under serious scrutiny from the government. Alexander Sabar, Director General of Digital Space Oversight at the Ministry of Communication and Digital (Komdigi), has firmly ordered Tools For Humanity (TFH) and its local partner, PT Sandina Abadi Nusantara (PT SAN), to permanently delete all collected biometric data.
This directive comes after the government found that the biometric eye-scanning activity conducted by TFH using its "Orb" device did not fully comply with national regulations, particularly regarding personal data protection.
Eye-Scanning Found to Violate National Regulations
A technical assessment from Komdigi indicated several regulatory breaches, including TFH’s failure to meet administrative requirements as a certified Electronic System Operator (ESO) in Indonesia. A key concern was that biometric data collection had targeted vulnerable groups with low digital literacy.
Komdigi emphasized that one of TFH’s main obligations is to permanently delete all iris codes and any encrypted data belonging to Indonesian citizens. This requirement was clearly outlined in the official government statement on Thursday,June 19, 2025.
Company Claims Data Not Stored, Deletion in Users’ Hands
In response to the deletion order, TFH claimed it has no access to or control over the biometric data collected. They stated that iris scan results are encrypted, sent directly to the user’s device, and then automatically deleted. Therefore, deletion requests can only be executed by the users themselves via the World App.
However, this claim has been challenged by Komdigi, which reported findings that suggest the process may not have been fully aligned with what the company declared.
World App’s Presence in Indonesia and Privacy Risks
World App began operating in Indonesia in 2021 through a partnership with PT SAN. As part of the WorldID initiative, users were offered cash rewards of up to IDR 800,000 to scan their iris using the Orb device in exchange for a unique digital identity.
Although TFH claims the data is anonymized and only used to verify proof of personhood, Komdigi has flagged potential risks associated with collecting sensitive biometric data that could be misused if improperly managed.
As of now, TFH has suspended all iris-scanning operations in Indonesia, which were previously active in regions including Bekasi and Depok.
Komdigi Urges Public Caution and Digital Privacy Awareness
Alexander Sabar has urged the public to be cautious when asked to provide personal data, especially sensitive biometric information like iris scans by third parties offering monetary rewards. He reminded the public that such data could pose significant security risks if misused.
Meanwhile, Minister of Communication and Digital Meutya Hafid stated that the government’s action against World App was based on multiple citizen reports. These reports revealed that the company’s business permits and procedures did not fully comply with Indonesian laws.
Conclusion
The Indonesian government has reaffirmed its commitment to safeguarding personal data, particularly sensitive biometric information. Komdigi has issued a firm order for the deletion of more than 500,000 iris scans collected by World App, while urging the public to stay vigilant about who they entrust their data to especially when compliance with local regulations remains unclear.
Read More: Palo Alto Reveals Ransomware Evolution and Its Growing Threat Globally