The Urgency Of The PDP Bill Amid The Rise Of Data Leakage Cases

JAKARTA - User data leakage cases are increasingly happening, not only foreign sites or platforms but also Indonesian startup pages. This incident also shows how much needed the Personal Data Protection Act is.

This was revealed by the Chairman of the Indonesian Cyber Research Institute CISSReC (Communication and Information System Security Research Center), Pratama Persadha to force PSTE (Electronic System and Transaction Operator) to build a strong and responsible system in the event of a data breach.

"This incident also shows how much needed the Personal Data Protection Law is, because we understand that no system is perfect and 100 percent safe," Pratama said in a statement received by VOI, Tuesday, November 3.

The PDP Law, according to Pratama, should be able to encourage each PSTE to meet the minimum standards so as to minimize the possibility of data leakage. Whether the system meets security standards or will the PDP Law and its derivative regulations be determined later.

"Whether there is a PDP Law or not, all institutions, both private and state owned, must improve cybersecurity in their systems, both in terms of human resources, infrastructure and other supporting tools," he added.

It is known that the Cermati.com data leak was first discovered through Raidforums, where the startup user data was traded by the Expertdata username of 2.9 million users. Some of the user data taken is such as KTA, insurance to credit cards.

Apart from Cremati.com, there were also 1.1 million user data leaks that occurred on the Singapore Redmart system under Lazada. The system has been integrated since 2019, Redmart itself was acquired by Lazada in 2016.