Personal Data Protection Law; Faking Personal Data May Face Fine up to Rp6bn

TEMPO.CO, Jakarta - President Joko "Jokowi" Widodo ratified Law No. 27 of 2022 on personal data protection (UU PDP) on October 17, 2022. This policy aims at protecting people's personal data managed by electronic system organizers or PSE and preventing data misuse.

In Article 68, anyone who is proven to have made fake personal data for their own benefit or others, which can cause harm to other people as referred to Article 66, is sentenced to a maximum imprisonment of 6 years and/or a maximum fine of Rp6 billion.

In Article 67 (1), anyone who collects the personal data of others for their benefit or others and that can harm the subject is sentenced to five years in prison and/or a fine of up to Rp5 billion. In its second paragraph, people who intentionally disclose personal data that does not belong to them to the public can also be sentenced to 4 years in prison and a maximum fine of Rp4 billion.

In Article 67 (3), anyone who uses personal data that is not theirs to violate the law can be sentenced to five years in prison and/or a fine of Rp5 billion.

The description of general personal data and specific personal data is noted in Article 4. General data that may be disclosed publicly includes full name, gender, nationality, religion, and marital status. 

Meanwhile, specific personal data that are protected by the law include health information, biometric and genetic data, criminal records, child data, financial data, and other data in accordance with statutory regulations.

The House of Representatives (DPR) initiated the personal data protection law in 2016. Minister of Communications and Information Johnny G. Plate said the law ratification is a sign of the new era of personal data management, especially in digital spaces.

M JULNIS FIRMANSYAH

Click here to get the latest news updates from Tempo on Google News