Perlindungan Hukum Atas Data Pribadi dalam Kasus Kebocoran Data Pusat Data Nasional Sementara (PDNS) dalam Perspektif Hukum Pidana

Abstract

The data breach at the Temporary National Data Centre (PDNS) in Indonesia highlights significant weaknesses in the national data security system and raises concerns about the legal protection of personal data. Millions of personal records, including sensitive information, were leaked, underscoring the need to review and enhance Indonesia’s legal framework for data protection. Although Law No. 27 of 2022 on Personal Data Protection (UU PDP) outlines data management and protection, its implementation is challenged by gaps in the current regulations, insufficient technological infrastructure, and inadequate public and institutional awareness about data protection. The PDNS breach demonstrates that personal data protection in Indonesia is still not fully guaranteed. The law's effectiveness is hindered by a lack of socialization and understanding among law enforcement and the general public. Insufficient investment in advanced technology and the lack of expertise in digital forensics and cybersecurity among law enforcement officers exacerbate the problem. Moreover, stronger collaboration among national and international institutions is essential to address complex and cross-border cyber threats. Enhanced cooperation between the government, private sector, and international organizations is crucial to improve the enforcement of criminal law and effectively protect personal data.