Your Partner in Cybersecurity Compliance and Governance
SentraGuard helps Indonesian businesses navigate PDPL, achieve ISO 27001 readiness, and build lasting security governance — through structured, fixed-scope, remote engagements.
Our Service Packages
Four structured offerings designed for Indonesian businesses at every stage of their security and compliance journey.
PDPL Self-Assessment Toolkit
Digital product — No engagement required
A self-guided compliance starter kit enabling your team to conduct an initial PDPL review independently. Fully asynchronous — no calls, no scheduling. Purchase, download, and begin the same day.
- ✓ PDPL Article Checklist (all 76 articles of UU No. 27 Tahun 2022)
- ✓ ROPA Template (Register of Processing Activities)
- ✓ DPIA Template (Data Protection Impact Assessment)
- ✓ DPO Applicability Decision-Tree Guide
- ✓ Remediation Priority Planner
Delivered by email within 1 business day of payment.
PDPL Readiness Assessment
Fixed-scope — 3-week engagement
Indonesia's PDPL (UU No. 27 Tahun 2022) became fully enforceable in October 2024. Penalties of up to 2% of annual revenue apply. SentraGuard delivers a precise, actionable compliance gap register in three weeks. Fixed scope. Fixed deliverables. Fixed price.
- ✓ PDPL Gap Register (all 76 articles scored)
- ✓ DPO Applicability Determination
- ✓ Data Processing Activity Inventory
- ✓ Remediation Priority List (Top 10 actions)
- ✓ Executive Summary Report (4–6 pages)
ISO 27001:2022 Gap Assessment
Fixed-scope — 4-week engagement
ISO 27001:2022 is increasingly required by Indonesian enterprises as a condition of doing business. SentraGuard delivers a precise gap register covering all 93 Annex A controls and a prioritised certification roadmap — not a generic checklist.
- ✓ Clause Assessment Report (Clauses 4–10)
- ✓ Annex A Control Gap Register (all 93 controls)
- ✓ ISMS Maturity Score (per domain)
- ✓ Risk Heat Map (Top 15–20 risk areas)
- ✓ Certification Readiness Roadmap (3-phase)
- ✓ Executive Presentation Deck (8–12 slides)
vCISO Retainer
Monthly retainer — 12-month minimum term
Sustained cybersecurity governance without the cost of a full-time CISO. A structured, recurring engagement with defined monthly deliverables and direct advisory access — not a helpdesk or on-call service.
- ✓ Monthly Security Governance Report
- ✓ Risk Register Update (monthly)
- ✓ Remote Governance Meeting (60 min/month)
- ✓ Async Advisory (2-day response SLA)
- ✓ Extended: Quarterly Board Presentation
- ✓ Extended: Vendor Security Assessment (quarterly)
- ✓ Extended: Regulatory Monitoring Digest
Invoiced monthly in IDR. Early termination: 2 months notice or equivalent fee.
Pricing at a Glance
All fees are fixed and transparent. No hidden charges. Tier determined at scoping based on organisation size.
| Package | Type | Duration | SME (≤100) | Mid (101–500) | Enterprise (501+) |
|---|---|---|---|---|---|
| SG-00 PDPL Toolkit |
Digital product | Instant | IDR 3,500,000 (flat) | ||
| SG-01 PDPL Readiness Assessment |
Fixed-scope | 3 weeks | IDR 25,000,000 | IDR 30,000,000 | IDR 35,000,000 |
| SG-02 ISO 27001:2022 Gap Assessment |
Fixed-scope | 4 weeks | IDR 35,000,000 | IDR 42,000,000 | IDR 50,000,000 |
| SG-03 vCISO Retainer |
Monthly retainer | 12 mo min | IDR 20,000,000 / mo (Standard) | IDR 28,000,000 / mo (Extended) | |
Payment terms for SG-01 & SG-02: 50% upon commencement, 50% upon final report delivery. All fees invoiced in IDR.
How to Engage
A simple, structured process. No lengthy sales cycles. Most engagements begin within 5 business days of agreement.
Send a Request
Email sentragrd@gmail.com with your organisation name. For SG-00, include your email for delivery.
Complete Intake Form
A short structured intake form is shared by return email. No long calls before you receive a proposal.
Receive Fixed Proposal
A fixed-price proposal is returned within 2 business days. No range, no negotiation — your tier determines the price.
Sign & Begin
Sign, pay the commencement invoice, and the remote kickoff session is scheduled within 5 business days.
About SentraGuard
Built on a decade of hands-on cybersecurity leadership in the Indonesian market.
PT Sentra Keamanan Data
SentraGuard is a registered Indonesian information security consulting firm (KBLI 62021), founded by a cybersecurity strategist with over a decade of experience in designing and implementing enterprise-grade security programmes across the Indonesian market.
Our practice is built on the conviction that practical, fixed-scope, affordable security consulting should be accessible to every Indonesian business — not just enterprises with large internal security teams and budgets.
- ✓ Deep expertise in PDPL (UU No. 27 Tahun 2022) compliance and Data Protection
- ✓ ISO/IEC 27001:2022 ISMS design and implementation
- ✓ Cloud security architecture and CSPM (GCP, AWS, Azure)
- ✓ Virtual CISO advisory and security governance programmes
- ✓ NIST CSF, CIS Controls, and Enterprise Security Architecture (ESA)
Our mission: To provide practical, affordable, and actionable corporate-level cybersecurity solutions for growing Indonesian businesses.
Ready to Begin Your Compliance Journey?
Start with a digital toolkit today, or reach out to discuss an assessment engagement. All interactions are remote. No commitment required to make the first contact.