Data Leakage of the Indonesian Elections Commission in Legal Aspects of Personal Data Protection
Downloads
Hackers illegally accessed the Indonesian General Elections Commission’s (KPU) voter data system to collect voter data to sell to third parties. The regulation requires accountability for voter data leakage to protect people’s privacy rights in Indonesia’s personal data protection concept. Legal analysis of the modus operandi of personal data sales cases results in patterns of information system vulnerabilities, which can then be used to prevent personal data leakage and improve voter data protection in Indonesian elections. One of the reasons for passing the personal data protection law is the rampant cases of confidential data leakage that occur in government and private institutions in Indonesia. Hackers of voter data systems aim to profit from personal data sold to third parties. The role of the cybersecurity task force team needs to be improved with more concrete arrangements in law enforcement, and mitigating voter data leakage can provide legitimacy for the implementation of credible, reliable, and professional elections in Indonesia. Establishing the task force will optimize the application of voter data systems in conducting general elections in Indonesia and improve personal data protection.
Aptika D, ‘Pentingnya Perlindungan Data Pribadi di Era Digital’ (Ministry of Communication & Information Technology, 2021) <https://aptika.kominfo.go.id/ 2021/10/pentingnya-pelindungan-data-pribadi-di-era-digital/> accessed 10 March 2024.
Baik J (Sophia), ‘Data Privacy against Innovation or against Discrimination?: The Case of the California Consumer Privacy Act (CCPA)’ (2020) 52 Telematics and Informatics.
Budianto DM, ‘Keamanan Informasi Tanggung Jawab Kita Bersama’ (Ministry of Finance, 2021) <https://www.djkn.kemenkeu.go.id/kpknl-singkawang/baca-artikel/13136/Keamanan-Informasi-Tanggung-Jawab-Kita-Bersama.html > accessed 12 August 2024.
Cha SC and others, ‘Privacy Enhancing Technologies in the Internet of Things: Perspectives and Challenges’ (2019) 6 IEEE Internet of Things Journal 2159.
Choi JP, Jeon DS and Kim BC, ‘Privacy and Personal Data Collection with Information Externalities’ (2019) 173 Journal of Public Economics 113.
Crutzen R, Ygram Peters GJ and Mondschein C, ‘Why and How We Should Care about the General Data Protection Regulation’ (2019) 34 Psychology and Health 1347.
Decision Number 2575/Pid.Sus/2022/PN. Sby dated February 21, 2023.
Decision Number 270/Pid.Sus/2023/PN.Btl dated October 23, 2023.
Decision Number 4-PKE-DKPP/I/2024 dated April 17, 2024.
DKPP, ‘DKPP Periksa KPU RI Terkait Kebocoran Data DPT Pemilu 2024’ (Honorary Council for the Implementation of Indonesian Elections, 2024) accessed 10 March 2024.
Fidhayanti D, ‘Pengawasan Bank Indonesia Atas Kerahasiaan Dan Keamanan Data/Informasi Konsumen Financial Technology Pada Sektor Mobile Payment’ (2020) 11 Jurisdictie: Jurnal Hukum dan Syariah 16.
Government Regulation Number 71 of 2019 concerning the Implementation of Electronic Systems and Transactions.
Handayani A, ‘Perlindungan Hukum Atas Tindakan Pencurian Data Pribadi Pada Layanan Fintech Lending Terhadap Ancaman Cyber Security Di Indonesia’, vol 6 (2023) <https://e-journal.unair.ac.id/JD>.
Hisbulloh MH, ‘Urgensi Rancangan Undang-Undang (RUU) Perlindungan Data Pribadi’ (2021) 37 Jurnal Hukum Unissula 119.
Humayun M and others, ‘Internet of Things and Ransomware: Evolution, Mitigation and Prevention’ (Elsevier BV, 1 March 2021) 105.
Kominfo, ‘Pemerintahan Digital Ditopang Keamanan Siber’ (Ministry of Communication & Information Technology, 2023) <https://www.kominfo.go.id/content/detail/ 49533/pemerintahan-digital-ditopangkeamanan-siber/0/berita> accessed 12 August 2024.
KPU, ‘Siaran Pers Terkait Informasi Dugaan Kebocoran Data Milik KPU’ (Indonesian Elections Commission, 2024) <https://www.kpu.go.id/berita/baca/12118/ siaran-pers-terkait-informasi-dugaan-kebocoran-data-milik-kpu> accessed 10 March 2024.
Law Number 11 of 2008 concerning Electronic Information and Transactions.
Law Number 27 of 2022 concerning Personal Data Protection.
Lessig L., Code and Other Laws of Cyberspace (Basic Books 1999).
Lie G, Ramadhan DA and Redi A, ‘Komisi Independen Perlindungan Data Pribadi: Quasi Peradilan Dan Upaya Terciptanya Right To Be Forgotten Di Indonesia’ (2023) 15 Jurnal Yudisial 227.
Lois P and others, ‘Internal Audits in the Digital Era: Opportunities Risks and Challenges’ (2020) 15 EuroMed Journal of Business 205.
Marzuki PM, Penelitian Hukum (Kencana Prenanda Media Group 2021).
Nguyen VL and others, ‘Security and Privacy for 6G: A Survey on Prospective Technologies and Challenges’ (2021) 23 IEEE Communications Surveys and Tutorials 2384.
Pandey P and Mishra N, ‘Phish-Sight: A New Approach for Phishing Detection Using Dominant Colors on Web Pages and Machine Learning’ [2023] International Journal of Information Security.
Permatasari D, ‘Tantangan Cyber Security di Era Revolusi Industri 4.0’ (Ministry of Finance, 2021) <https://www.djkn.kemenkeu.go.id/kanwil-sulseltrabar/baca-artikel/14190/Tantangan-Cyber-Security-di-Era-Reavolusi-Industri-40.html> accessed 10 March 2024.
Purwoleksono Didik Endro, Perkembangan 3 Pilar Hukum Pidana Di Indonesia (Literasi Nusantara Abadi Group 2023).
Rizqi LAM, Fahrezi SR and Permatasari TIDC, ‘Pengejawantahan EU GDPR Dalam RUU Perlindungan Data Pribadi: Penguatan Perlindungan Data Pemilih Oleh KPU’ (2022) 5 Jurist-Diction 2022 <https://rumahpemilu.org/lindungi-data-pribadi-pemilih-kpu-larang-hal-ini/>.
Rizkinaswara L, ‘Menkominfo Instruksikan Usut Tuntas Dugaan Kebocoran Data DPT’ (Ministry of Communication & Information Technology, 2021) <https://aptika.kominfo.go.id/2023/11/ menkominfo-instruksikan-usut-tuntas-dugaan-kebocoran-data-dpt/> accessed 10 March 2024.
Ramli AM and Ramli TS, Hukum sebagai Infrastruktur Transformasi Indonesia Regulasi dan Kebijakan Digital (PT. Refika Aditama 2022).
Romansky RP and Noninska IS, ‘Challenges of the Digital Age for Privacy and Personal Data Protection’ (2020) 17 Mathematical Biosciences and Engineering 5288.
Sasmita HT and others, ‘Analisis Faktor Perlindungan Konsumen Dalam Urgensi Pembentukan Undang-Undang Pinjaman Online (Peer To Peer Lending)’ (2022) 5 Media Iuris 39.
Tsohou A and others, ‘Privacy, Security, Legal and Technology Acceptance Elicited and Consolidated Requirements for a GDPR Compliance Platform’ (2020) 28 Information and Computer Security 531.
Yevseiev S and others, ‘Modeling the Protection of Personal Data from Trust and the Amount of Information on Social Networks’ (2021) 2021 EUREKA, Physics and Engineering 24.
Copyright (c) 2024 Frendika suda utama, Didik Endro Purwoleksono, Taufik Rachman
This work is licensed under a Creative Commons Attribution 4.0 International License.
