Accountability in Personal Data Protection Policy in Indonesia

Learning from South Korea and Singapore

Authors

  • Lailatul Badriah Master of Public Administration, Faculty of Social and Political Sciences, Universitas Jenderal Soedirman, Purwokerto, Indonesia
  • Dwiyanto Indiahono Master of Public Administration, Faculty of Social and Political Sciences, Universitas Jenderal Soedirman, Purwokerto, Indonesia
  • Sukarso Master of Public Administration, Faculty of Social and Political Sciences, Universitas Jenderal Soedirman, Purwokerto, Indonesia

DOI:

https://doi.org/10.21787/mp.8.2.2024.89-102

Keywords:

innovation, policy, accountability, protection mechanisms, personal data

Abstract

This article examines the value of accountability in personal data protection policies in South Korea, Singapore and Indonesia with the main objective of providing a framework for innovation for Indonesia. This research emphasizes the comparison of innovative strategies in five aspects: defining protected personal data, mechanisms for collecting and transferring personal data, innovative mechanisms for reporting data breaches, and mechanisms for providing sanctions and compensation for data breaches. Using a qualitative method and content analysis approach to South Korea’s Personal Information Protection Act (PIPA), Singapore’s Personal Data Protection Act (PDPA), and Indonesia’s Law No. 27 of 2022 on Personal Data Protection, the findings underscore the importance of accountable policy innovation to ensure the protection of individual rights and empower the institution of personal data protection authorities. The main implications are for Indonesia to immediately implement Law No. 27 of 2022 on Personal Data Protection, establish a centralized data protection authority, and encourage Public-Private Partnerships to improve accountability in personal data protection.

References

Ahn, N. Y., Park, J. E., Lee, D. H., & Hong, P. C. (2020). Balancing Personal Privacy and Public Safety During COVID-19: The Case of South Korea. IEEE Access, 8, 171325–171333. https://doi.org/10.1109/ACCESS.2020.3025971

Al-Shbail, T., & Aman, A. (2018). E-government and Accountability: How to Mitigate The Disorders and Dysfunctions of Accountability Relationships. Transforming Government: People, Process and Policy, 12(2), 155–190. https://doi.org/10.1108/TG-09-2017-0057

Alibeigi, A., & Munir, A. B. (2023). Public Health Data and International Privacy Rules and Practices: A Case Study of Singapore. Lecture Notes in Computer Science (Including Subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 14149 LNCS(November), 51–66. https://doi.org/10.1007/978-3-031-39841-4_4

Arief, V. (2023). E-Government di Asia Tenggara : Perbandingan Pengembangan E- Government di Singapura, Malaysia dan Indonesia. Social Issues Quarterly, 1(2), 345–362.

Arsik, S. F., & Lawelai, H. (2020). Penerapan Akuntabilitas, Efektivitas, Dan Transparansi Dalam Mewujudkan Good Governance: Studi Pemerintah Desa Banabungi. Jurnal Studi Ilmu Pemerintahan, 1(1), 1–7. https://doi.org/10.35326/jsip.v1i1.523

Biro Hukum dan Komunikasi Publik BSSN. (2023). Rapat Dengar Pendapat BSSN Bersama Komisi I DPR. BSSN.Go.Id. https://www.bssn.go.id/rapat-dengar-pendapat-bssn-bersama-komisi-i-dpr/

Blacklaws, C. (2018). Algorithms: Transparency and Accountability. Philosophical Transactions of the Royal Society A: Mathematical, Physical and Engineering Sciences, 376. https://doi.org/10.1098/rsta.2017.0351

Boch, A., Hohma, E., & Trauth, R. (2022). Towards an Accountability Framework for AI: Ethical and Legal Considerations. July. https://doi.org/10.13140/RG.2.2.10231.50086

Boyd, D., & Crawford, K. (2011). Six Provocations for Big Data - A Decade in Internet Time: Symposium on the Dynamics of the Internet and Society (September 21, 2011). SSRN Electronic Journal, 1–17.

Brown, D. C. G. (2013). Accountability in a collectivized environment: From Glassco to digital public administration. Canadian Public Administration, 56(1), 47–69. https://doi.org/10.1111/capa.12003

European Union Agency for Fundamental Rights & Council of Europe. (2018). Handbook on European Data Protection Law. In Publications Office of the European Union. https://doi.org/10.2811/58814

Gatra, S. (2024). Pusat Data Nasional Jebol: Menkominfo Mundur atau Dimaklumi? Kompas.Com. https://nasional.kompas.com/read/2024/06/28/08212831/pusat-data-nasional-jebol-menkominfo-munduratau-dimaklumi?page=all

GovTech Singapore. (2024). Instruction Manual for Infocomm Technology and Smart Systems (ICT&SS) Management. Singapore Government Developer Portal. https://www.developer.tech.gov.sg/guidelines/standards-and-best-practices/instruction-manual-for-ict-ss-management.html

Han, K. (2021). Broken Promises: How Singapore Lost Trust On Contact Tracing Privacy. MIT Technology Review. https://www.technologyreview.com/2021/01/11/1016004/singapore-tracetogether-contacttracing-police/

Henry, N. (2015). Public Administration and Public Affairs (Twelfth Ed). Routledge. https://doi.org/10.4324/9781315663067

Hisbulloh, M. H. (2021). Urgensi Rancangan Undang-Undang (RUU) Perlindungan Data Pribadi. Jurnal Hukum, 37(2), 119. https://doi.org/10.26532/jh.v37i2.16272

Infocomm Media Development Authority. (2023). About the Data Protection Trustmark (DPTM). Infocomm Media Development Authority. https://www.imda.gov.sg/how-we-can-help/data-protection-trustmarkcertification

Jarmen, S. (2024). From Inception to Impact: Singapore’s PDPA After Ten Years. Straits Interactive. https://www.linkedin.com/pulse/from-inception-impact-singapores-pdpa-after-ten-years-djgdc

Kim, H. J., Pan, G., & Pan, S. L. (2007). Managing IT-Enabled Transformation in The Public Sector: A Case Study on E-Government in South Korea. 24, 338–352. https://doi.org/10.1016/j.giq.2006.09.007

Mustajab, R. (2023). BSSN: Ada 311 Kasus Kebocoran Data di Indonesia pada 2022. Dataindonesia.Id. https://dataindonesia.id/internet/detail/bssn-ada-311-kasus-kebocoran-data-di-indonesiapada-2022

Nuyen, A. T. (1994). Interpretation and Understanding in Hermeneutics and Deconstruction. Philosophy of the Social Sciences, 24(4), 426–438.

Personal Data Protection Commission Singapore. (2019). Advisory Guidelines on Key Concepts in the Personal Data Protection Act. June, 1–164.

Personal Data Protection Commission Singapore. (2021a). Advisories on Collection of Personal Data for COVID-19 Contact Tracing and Use of SafeEntry. Personal Data Protection Commission, Singapore. https://www.pdpc.gov.sg/help-and-resources/2021/05/advisory-on-collection-of-personal-data-forcovid-19-contact-tracing

Personal Data Protection Commission Singapore. (2021b). Guide on Managing and Notifying Data Breaches under the Personal Data Protection Act (Issue March).

Personal Data Protection Commission Singapore. (2022). Guide on Active Enforcement (Issue October).

Personal Data Protection Commission Singapore. (2024). Share Your Personal Data with Care. Personal Data Protection Commission, Singapore. https://www.pdpc.gov.sg/overview-of-pdpa/data-protection/individual/protecting-your-personal-data

Personal Information Protection Commission South Korea. (n.d.). Reporting on Divulgence of Personal Information. Pipa.Go.Kr. Retrieved April 3, 2024, from https://www.pipc.go.kr/eng/user/lgp/ntp/reportingDivulgence.do

Rahman, F. (2021). Kerangka Hukum Perlindungan Data Pribadi Dalam Penerapan Sistem Pemerintahan Berbasis Elektronik Di Indonesia. Jurnal Legislasi Indonesia, 18(1), 81. https://doi.org/10.54629/jli.v18i1.736

Sautunnida, L. (2018). Urgensi Undang-Undang Perlindungan Data Pribadi di Indonesia: Studi Perbandingan Hukum Inggris dan Malaysia. Kanun Jurnal Ilmu Hukum, 20(2), 369–384. https://doi.org/10.24815/kanun.v20i2.11159

Schreier, M. (2012). Qualitative Content Analysis in Practice (1st ed.). SAGE Publications Ltd.

Sharma, S., Kar, A. K., & Gupta, M. P. (2021). Unpacking Digital Accountability: Ensuring efficient and answerable e-governance service delivery. ACM International Conference Proceeding Series, October 2021, 260–269. https://doi.org/10.1145/3494193.3494229

Sinaga, E. M. C. (2020). Formulasi Legislasi Perlindungan Data Pribadi. Jurnal RechtVinding, 9(2), 237–256.

Sloot, B. van der. (2017). Privacy as Virtue : Moving Beyond the Individual in the Age of Big Data. Intersentia.

Smith, M., Szongott, C., Henne, B., & Von Voigt, G. (2012). Big data privacy issues in public social media. IEEE International Conference on Digital Ecosystems and Technologies. https://doi.org/10.1109/DEST.2012.6227909

The Law Revision Commission. (2020). Public Sector (Governance) Act 2018. Singapore Statutes Online. https://sso.agc.gov.sg/Act/PSGA2018

Walters, R., & Coghlan, M. (2019). Data Protection and Artificial Intelligence Law: Europe Australia Singapore - An Actual or Perceived Dichotomy. American Journal of Science, Engineering and Technology, 4(4), 55. https://doi.org/10.11648/j.ajset.20190404.11

Young, M., Rodriguez, L., Keller, E., Sun, F., Sa, B., Whittington, J., & Howe, B. (2019). Beyond open vs. Closed: Balancing individual privacy and public accountability in data sharing. FAT* 2019 – Proceedings of the 2019 Conference on Fairness, Accountability, and Transparency, i, 191–200. https://doi.org/10.1145/3287560.3287577

Yuniarti, S. (2019). Perlindungan Hukum Data Pribadi Di Indonesia. Business Economic, Communication, and Social Sciences (BECOSS) Journal, 1(1), 147–154. https://doi.org/10.21512/becossjournal.v1i1.6030

Published

2024-12-28

How to Cite

Badriah, L., Indiahono, D., & Sukarso. (2024). Accountability in Personal Data Protection Policy in Indonesia: Learning from South Korea and Singapore. Matra Pembaruan: Jurnal Inovasi Kebijakan, 8(2), 89–102. https://doi.org/10.21787/mp.8.2.2024.89-102

Issue

Section

Articles