Government Must Involve Stakeholders in Making Regulations on Personal Data Protection


Currently, information about the leakage of state data and personal data of the Indonesian people is increasingly widespread. Even now, information regarding the correspondence of the state secretariat of the Republic of Indonesia as well as personal data of officials is spread in cyberspace.

The chairman of the Indonesian Internet Service Providers Association (APJII), Muhammad Arif, expressed his concern about the increasing number of attacks from “bad actors” to state institutions, government, community data, and doxing (disseminating personal data information) to government officials currently circulating in cyberspace.

In response to this situation, Muhammad Arif, said, “We are no It’s okay to rush to conclusions, let alone to blame certain parties, both public and private institutions.”

“People also don’t believe one hundred percent of the information spread by bad actor is being discussed. Because the data that is traded is the result of fabrication for certain interests or purposes. Not really a data leak from single resource,” he said in a press release, Tuesday (13/9).

Arif continued, currently, many internet service businesses in Indonesia who are members of APJII have implemented security standards according to SNI and ISO 27001 (Information Security Management System.

Read also: Minister of Communication and Information: Government to Form Emergency Response Team to Prevent Data Theft

In order to avoid accusing each other and throwing responsibilities, APJII proposes to the government to immediately divide the roles among the ministries of institutions in terms of cyber defense and security as well as the protection of personal data.

“APJII as an internet business actor is ready to comply with all existing regulations as long as there is no overlap and has standards that are parented by the government,” explained Arif.

By complying with applicable regulations and standards, according to Arif, it is hoped that business actors will be protected from legal entanglements. APJII also hopes that the government can continue to improve the security standards of public data protection.

‚ÄúDefense and security in cyberspace is the responsibility of all components of the Indonesian nation. Without exception. So don’t blame each other,” he said.

“In order to improve defense and security in cyberspace, APJII is also ready to support and be actively involved in helping the state and society,” he said.

“Currently, all APJII members have reliable human resources and can be involved in preventing the leakage of state data and personal data,” said Arif.

Currently the PDP Bill is ready to be submitted to the Plenary Session of the DPR RI. APJII urges that the bill also anticipates the national cybersecurity situation, including stipulating that the personal data of the Indonesian people must be stored in Indonesia in order to protect the ownership of the Indonesian people’s personal data and national security.

“The obligation to place personal data in Indonesia will have strategic value for the country and the digital economy ecosystem for the long term,” he said.

“We appreciate the work of the DPR and the Government in drafting the PDP Bill. APJII hopes that the PDP Bill that will be brought to the DPR Plenary Session has anticipated the long-term interests of the national and Indonesian people,” he said.

The final draft should be reviewed from the aspect of anticipating the national cybersecurity situation. This includes regulating that the personal data of the Indonesian people is guaranteed legal protection.

“Especially regarding the obligation to store personal data in Indonesian territory. The goal is to keep data in Indonesia in order to protect the personal data of the Indonesian people,” Arif asked.

APJII hopes that derivative regulations from the PDP Law which will later be ratified can involve business actors who are directly related to cyberspace security management. “Both government regulations and ministerial regulations.

For cyber security management, APJII asked President Joko Widodo to involve all stakeholders in the telematics and cyber security industry.

“Embracing all stakeholders is important because they understand the technical needs for data protection for the State and the public. We hope that in making PP and PM, President Jokowi can involve APJII which is involved in the telematics and cyber security industry,” concluded Arif. (RO/OL-09)


Gallery for Government Must Involve Stakeholders in Making Regulations on Personal Data Protection