Skip to main content
Fachgebiete
Automobil + Motoren Bauwesen + Immobilien Business IT + Informatik Elektrotechnik + Elektronik Energie + Nachhaltigkeit Finance + Banking Management + Führung Marketing + Vertrieb Maschinenbau + Werkstoffe Versicherung + Risiko
DE
EN
Bücher
Zeitschriften
Themenseiten
Organisationspsychologie Projektmanagement Marketing Smart Manufacturing
Weitere Formate
Podcasts Webinare Technik Webinare Wirtschaft Kongresse Veranstaltungskalender Awards
Jetzt Einzelzugang starten
Zugang für Unternehmen
Referenzkunden
SLX-Digitalkonferenz: Zukunftswerkstatt 2024

Mehr Umsatz mit Top-Kontakten

Am 7. Mai erfahren Sie, wie Vertriebsteams Leadgenerierung, Leadnurturing und Leadstrategien effizient steuern können.
Erweiterte Suche
Anmelden
nach oben
Erschienen in:
Data Protection Around the World: An Introduction Kapitel lesen Erstes Kapitel lesen

2021 | OriginalPaper | Buchkapitel

6. Privacy and Personal Data Protection in Indonesia: The Hybrid Paradigm of the Subjective and Objective Approach

verfasst von : Edmon Makarim

Erschienen in: Data Protection Around the World

Verlag: T.M.C. Asser Press

Einloggen

Aktivieren Sie unsere intelligente Suche, um passende Fachinhalte oder Patente zu finden.

search-config
loading …

Abstract

Recently, the Indonesian media has raised certain issues related to privacy and personal data in the country; in particular, there are concerns about the implications of European Regulation 679/2016 on General Personal Data Protection for Indonesians. Coupled with the case of Facebook and Cambridge Analytica, the news has seized public attention in Indonesia. Since 2008, Indonesia has regulated personal data protection in Article 26 of the Law No. 11 on 2008 concerning electronic information and transaction. This, in turn, was derived from Article 15 of the Government Regulation on e-System Operating and Transaction and then implemented by the Communication and Informatics Ministry Regulation No. 20 on 2016 about Personal Data Protection in e-System. In the meantime, the Government had also drafted the Bill for Personal Data Protection, a single omnibus law designed to more comprehensively regulate and consolidate those issues; the objective was to prevent the complexity and potential disharmony of various levels of laws in the Indonesian national legal system from being a legal barrier to implementation. To bring clarity to the understanding and protection mechanisms, the authors were called upon to straighten out any existing confusion relating to Indonesian telematics laws or the legal convergence of the country’s information and communication law.

Sie haben noch keine Lizenz? Dann Informieren Sie sich jetzt über unsere Produkte:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

  • über 102.000 Bücher
  • über 537 Zeitschriften

aus folgenden Fachgebieten:

  • Automobil + Motoren
  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Elektrotechnik + Elektronik
  • Energie + Nachhaltigkeit
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Maschinenbau + Werkstoffe
  • Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

Jetzt informieren

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

  • über 67.000 Bücher
  • über 340 Zeitschriften

aus folgenden Fachgebieten:

  • Bauwesen + Immobilien
  • Business IT + Informatik
  • Finance + Banking
  • Management + Führung
  • Marketing + Vertrieb
  • Versicherung + Risiko




Jetzt Wissensvorsprung sichern!

Jetzt informieren
Vorheriges Kapitel Current Data Protection Regulations and Case Law in Greece: Cash as Personal Data, Lengthy Procedures, and Technologies Subjected to Courts’ Interpretations
Nächstes Kapitel Data Protection Regulation in the Netherlands
Fußnoten
1
In 2019, the government introduced two implementing regulations that also govern the personal data protection, namely Government Regulation No. 71 of 2019 on the Implementation of e-System and Transactions (GR 71/2019) and Government Regulation No. 80 of 2019 on E-Commerce (GR 80/2019).
 
2
The government introduced government regulations on e-commerce (GR 80/2019) as an implementing regulation of Law No. 7/2014 on Trade governing the e-commerce sector both domestic and overseas businesses. It regulates personal data protection under Chapter XI (arts. 58–59).
 
3
PP-PSTE was then amended by GR 71/2019 in 2019. It regulates personal data under arts. 14–18.
 
4
The amendment of PP-PSTE by GR 71/2019 incorporates core principles of personal data protection laid down by Infocom Ministry Regulation No. 20/2016. The amendment also provides the right to erasure to personal data owners.
 
5
Owners of Personal Data are individuals who are attached to Certain Individual Data.
 
6
Definition of the Electronic System is a series of electronic devices and procedures that function to prepare, collect, process, analyze, store, display, announce, transmit, and/or disseminate electronic information. Meanwhile the definition of Electronic System Operator is any Person, state operator, Business Entity, and community that provides, manages, and/or operates Electronic Systems individually or jointly to Electronic System Users for the needs of themselves and/or other parties.
 
7
Article 1(7): Users of Electronic Systems, hereinafter referred to as Users, are every Person, state organizer, Business Entity, and community that utilizes goods, services, facilities, or information provided by the Electronic System Operator.
 
8
Consumer protection is also governed by GR 80/2019 on E-Commerce. The regulation expressly stated the treatment of personal data as ownership rights (art. 58). It contains the obligation of e-commerce business to store personal data in accordance with the ‘standard of personal data protection’ or ‘developing ordinary business practice’ to the extent these standards and practices conform with the principles laid down under art. 59. The principles of personal data protection under art. 59(2) are as follows: a) legitimate collection; b) purpose limitation; c) data adequacy and relevancy (elaboration of purpose limitation); d) accuracy; e) temporal limitation; f) lawfulness; g) confidentiality, security, and integrity; h) no cross-border personal data transfer shall be made unless the target country declared has an adequate level of protection by the Minister. The relationship between the GR 71/2019 and GR 80/2019 is unique. Although the two regulations are within the same level of the regulatory hierarchy, GR 80/2019 only regulates the e-commerce sector, whereas GR 71/2019 is applicable for all e-system operators. Therefore, GR 80/2019 is only applicable as lex specialis for the e-commerce sector. Consequently, the e-commerce sector shall secure compliance with both regulations. The supervisory authority for GR 80/2019 is the Minister of Trade. Thus enforcement and sanction of personal data violation under this regulation are administered by the Trade Ministry. These non-compliance measures include warning, priority watchlist, blacklist, temporary service blockage, or revocation of permit (art. 80(2)).
 
9
GR 71/2019 specifies two different rights, these are the right to erasure and the right to delisting. The right to erasure is only granted should: a) the data have been obtained without consent; b) the consent have been revoked; c) the data have been unlawfully obtained; d) the data obtained no longer be relevant to the initial purpose; e) the data stored has exceeded the retention period; f) disclosure of data by the e-system operator that injured the personal data owners. In contrast, the exercise of the right to delisting from the search engine requires a court decree.
 
10
Agustinus 2018.
 
11
UH 2018 Facebook Hadapi Penyelidikan di Indonesia terkait Pelanggaran Privasi [Facebook Face Investigation in Indonesia on Privacy Violation]. https://​www.​voaindonesia.​com/​a/​facebook-hadapi-penyelidikan-di-indonesia-terkait-pelanggaran-privasi/​4335493.​html. Accessed 13 July 2019.
 
12
Rahman 2019 Hacker Klaim Curi dan Jual 13 Juta Akun Bukalapak [Hackers Claimed to Steal and Sell 13 Million Bukalapak Accounts]. https://​inet.​detik.​com/​security/​d-4472166/​hacker-klaim-curi--dan-jual-13-juta-akun-bukalapak. Accessed 13 July 2019.
 
13
Khaerudin (Ed.) 2019 Data Pribadi Dijual Bebas [Personal Data for Free]. https://​kompas.​id/​baca/​premium_​promo/​data-pribadi-dijual-bebas/​. Accessed 17 July 2019.
 
Literatur
Djafar W, Fadhli M, Setianti BL (2016) Perlindungan Data Pribadi: Usulan Pelembagaan Kebijakan dari Perspektif Hak Asasi Manusia [Protection of Personal Data: Proposed Institutionalization of Policies from a Human Rights Perspective]. Seri Internet dan Hak Asasi Manusia, pp. 1–66
Djafar W, Fadhli M, Setianti BL, Sumigar BRF (2016) Melembagakan Pengaturan Internet Berbasis Hak Asasi Manusia: Masukan Naskah Akademik RUU Perubahan UU No. 11 Tahun 2008 tentang Informasi dan Transaksi Elektronik [Institutionalizing Human Rights-Based Internet Arrangements: Academic Text Input Bill Amendment to Law No. 11 of 2008 concerning Electronic Information and Transactions]. Policy paper UU ITE, pp. 1–73
ELSAM (2016) Policy Brief Hak Atas Penghapusan Informasi (Right to be Forgotten) dan Kebebasan Berekspresi: Pertarungan Wacana. Rekomendasi bagi Perubahan UU No. 11/2008 tentang Informasi dan Transaksi Elektronik [Policy Brief Right to Be Forgotten and Freedom of Expression: Discourse. Recommendations for Amendment to Law No. 11/2008 concerning Information and Electronic Transactions], May 2016. Seri Internet dan HAM, pp. 1–6
Ferrera GR, Lichtenstein SD, Reder MEK, August R, Schiano WT (2001) Cyberlaw: Text and Cases. South-Western College Publishing, Ohio
Hildebrandt M, Gutwirth S (eds) (2008). Profiling the European citizen: Cross-disciplinary perspectives. Springer Publishing Company, New York
Kozyris PJ (ed) (2007) Regulating Internet abuses: Invasion of privacy. Kluwer Law International, The Netherlands
Luwarso L (ed) (2003) Mengatur Kebebasan Pers [Regulating Press Freedom]. Dewan Pers, Jakarta
Makarim E (2005) Pengantar Hukum Telematika: Suatu Kompilasi Kajian [Introduction to Telematics Law: A Compilation of Studies]. PT. Raja Grafindo Persada, Jakarta
Rannenberg K, Royer D, Deuker A (eds) (2009) The future of identity in the information society: Challenges and opportunities. Springer Publishing Company, New York
Surowidjojo AT (2003) Hukum, Demokrasi, & Etika: Lentera Menuju Perubahan [Law, Democracy & Ethics: Lanterns for Change]. Masyarakat Transparansi Indonesia, Jakarta
Metadaten
Titel
Privacy and Personal Data Protection in Indonesia: The Hybrid Paradigm of the Subjective and Objective Approach
verfasst von
Edmon Makarim
Copyright-Jahr
2021
Buch
Data Protection Around the World

Print ISBN: 978-94-6265-406-8

Electronic ISBN: 978-94-6265-407-5

Copyright-Jahr: 2021

DOI
https://doi.org/10.1007/978-94-6265-407-5_6