Establishing Indonesia’s Personal Data Protection Agency: Comparative Administration Sanctions Enforcement from Ireland, Australia, and Singapore

Authors

DOI:

https://doi.org/10.15294/jils.v10i1.13755

Keywords:

Personal Data Protection, Administrative Sanctions, Data Breach, Law Enforcement, Personal Data Protection Agency

Abstract

In the digital era, technological advancements have enabled governments and corporations to streamline services and expand market reach, often leading to the collection and transfer of personal data without the knowledge of data subjects. This poses significant risks to constitutional rights. Indonesia’s Law Number 27 of 2022 concerning Personal Data Protection (PDP Law) aims to address these risks, yet frequent data breaches indicate ineffective enforcement of administrative sanctions due to the absence of an independent authority. This study analyzes the urgency of establishing a Personal Data Protection Agency in Indonesia, evaluates current sanctions under the PDP Law, and compares the enforcement mechanisms of data protection agencies in Ireland, Australia, and Singapore. Using a normative legal approach with qualitative methods, the research finds that these countries’ independent agencies effectively enforce data protection laws and administrative sanctions. The study reveals significant enforcement shortcomings in Indonesia, underscoring the need for a dedicated authority to prevent violations and protect personal data rights. By adopting best practices from Ireland, Australia, and Singapore, Indonesia can enhance its data protection framework. Immediate action by the President to establish this authority through a Presidential Regulation is crucial for safeguarding personal data in the digital age.

Downloads

Download data is not yet available.

Author Biographies

  • Firsta Rahadatul 'Aisy, Faculty of Law, The University of Melbourne

    Firsta Rahadatul 'Aisy, S.H., LL.M. is a Master of Laws graduate from the University of Melbourne, specializing in Information, Communication, Technology, and Intellectual Property Law. She holds a bachelor's degree in law from Padjadjaran University, with a thesis on legal protection of personal data in smart city technologies. Her research interests include data privacy, cybersecurity law, and digital governance. Firsta has worked as an IT Architecture Advisory Analyst and Cybersecurity Intern at Pertamina, where she contributed to data protection policy development. She is also active in academic research and international conferences, including publications in the International Review of Law, Computers & Technology. Her passion lies in bridging legal frameworks with technological advancement to support regulatory compliance and innovation. She was a recipient of prestigious scholarships, including LPDP and IISMA, and has international study experience in Spain and Australia. Firsta currently focuses on implementation of Indonesia’s Personal Data Protection Agency.

  • Muhammad Azil Maskur, Faculty of Law, Universitas Negeri Semarang

    Muhammad Azil Maskur, S.H., M.H., is a Criminal Law lecturer and serves as the Vice Dean for Research, Business, and Cooperation at the Faculty of Law, Universitas Negeri Semarang (UNNES). He teaches courses in Criminal Law, Special Criminal Law, Criminal Law Politics, and Comparative Criminal Law. With extensive experience as an expert witness in both police investigations and court proceedings, he has contributed significantly to legal practice and academia. His research interests include criminal law policy, terrorism, and retroactivity in criminal law, with his work published in indexed journals. He is actively involved in various academic and professional organizations, such as the Indonesian Association of Legal Researchers and Educators (APPIHI). In addition to his academic pursuits, he has engaged in collaborative initiatives, including exploring partnerships with legal information providers to enhance research and educational resources at UNNES.

  • A.M Adzkiya' Amiruddin, Faculty of Law, Universitas Indonesia

    A.M. Adzkiya' Amiruddin, S.H., is a legal practitioner and scholar specializing in administrative law, electoral law, and regulatory enforcement. He earned his Bachelor's degree of Law from Universitas Negeri Semarang (UNNES) and is currently pursuing a Master of Laws in Constitutional Law at the University of Indonesia. Adzkiya' has substantial experience in legal practice, particularly in election disputes and public procurement cases in state administrative courts. He previously worked as a Procurement and Compliance Specialist at the Ministry of Health, where he contributed to procurement planning and ensured compliance with government regulations. Adzkiya' is a certified advocate under PERADI and holds a certification in public procurement. His current research focuses on administrative accountability and regulatory enforcement, especially in relation to public administration and electoral integrity, aiming to improve transparency and efficiency in administrative law practices.

References

Admiral, Admiral, and Mega Ardina Pauck. "Unveiling the Dark Side of Fintech: Challenges and Breaches in Protecting User Data in Indonesia’s Online Loan Services." Lex Scientia Law Review 7, no. 2 (2023): 995-1048.

Ahmad, Rumadi. “Lembaga Perlindungan Data Pribadi,” kompas.id, July 21, 2024, https://www.kompas.id/baca/opini/2024/07/19/lembaga-perlindungan-data-pribadi.

Aktipis, Michael S., and Ron B. Katwan. "Data Protection Commissioner v. Facebook Ireland Ltd. and Maximillian Schrems (CJEU)." International Legal Materials 60, no. 1 (2021): 53-98.

Ali, Salim Ibrahim, Zuryati Mohamed Yusoff, and Zainal Amin Ayub. "Legal research of doctrinal and non-doctrinal." International Journal of Trend in Research and Development 4, no. 1 (2017): 493-495.

Allen, Margarett Hope, Ming Yuet Tham, and Faraaz Amzar, “Singapore,” in The Privacy, Data Protection and Cybersecurity Law Review, ed. Alan Charles Raul, 9th ed. London: Law Business Research Ltd, 2022., pp. 204-218.

Arifin, Ridwan, et al. "Improving Law Student Ability on Legal Writing through Critical and Logical Thinking by IRAC Method." Indonesian Journal of Advocacy and Legal Services 1, no. 1 (2019): 107-128.

ASEAN Member States, “Framework on Personal Data Protection,” Asean Telecommunications and Information Technology Ministers Meeting (TELMIN) (Bandar Seri Begawan: ASEAN, November 25, 2016), https://asean.org/wp-content/uploads/2012/05/10-ASEAN-Framework-on-PDP.pdf.

Australia, “Privacy Act 1988 (Cth)” (2024), https://www.legislation.gov.au/C2004A03712/latest/text

Ayiliani, Fanisa Mayda, and Elfia Farida. "Urgensi Pembentukan Lembaga Pengawas Data Pribadi sebagai Upaya Pelindungan Hukum terhadap Transfer Data Pribadi Lintas Negara." Jurnal Pembangunan Hukum Indonesia 6, no. 3 (2024): 431-455.

Badan Siber dan Sandi Negara, “Tentang Kami - Badan Siber dan Sandi Negara,” Badan Siber dan Sandi Negara, accessed April 7, 2025, https://bssn.acaraseru.id/bssn.acaraseru.id.

Bagiarto, Widodo. “Pakar Kritik Menkominfo Anggap Tak Penting Pengamanan Siber,” Rmol.id, accessed April 7, 2025, https://rmol.id/politik/read/2023/12/03/599796/pakar-kritik-menkominfo-anggap-tak-penting-pengamanan-siber.

Banisar, David, and Simon G. Davies. "Global Trends in Privacy Protection: An International Survey of Privacy, Data Protection, and Surveillance Laws and Developments." John Marshall Journal of Computer & Information Law 18, no. 1 (1999): 1-15.

Basarah, Ahmad. "Kajian Teoritis Terhadap Auxiliary States Organ dalam Struktur Ketatanegaraan Indonesia." Masalah-Masalah Hukum 43, no. 1 (2014): 1-8.

Budiman, Ahmad. “Otoritas Pengawas Pelindungan Data Pribadi,” Info Singkat: Kajian Singkat Terhadap Isu Aktual dan Strategis XIII, no. 5 (February 2021): 26, https://berkas.dpr.go.id/pusaka/files/info_singkat/Info%20Singkat-XIII-5-I-P3DI-Maret-2021-181.pdf.

Burgess, Matt. “How GDPR Is Failing,” Wired, accessed March 20, 2025, https://www.wired.com/story/gdpr-2022/.

Changshan, Ma. "The Fourth Generation of Human Rights’ Under the Background of Smart Society and Its Protection." China Legal Science 5, no. 1 (2019): 5-24.

Chik, Warren B. "The Singapore Personal Data Protection Act and an assessment of future trends in data privacy reform." Computer Law & Security Review 29, no. 5 (2013): 554-575.

CNN Indonesia, “Ribuan Data Pemerintah Diduga Bocor, Termasuk Prakerja Hingga CPNS,” CNN Indonesia, April 9, 2022, https://www.cnnindonesia.com/teknologi/20220408160348-192-782309/ribuan-data-pemerintah-diduga-bocor-termasuk-prakerja-hingga-cpns.

Daigle, Brian, and Mahnaz Khan. "The EU General Data Protection Regulation: An Analysis of Enforcement Trends by EU Data Protection Authorities." Journal of International Commerce and Economics (June 2020): 1-38.

Data Protection Commission Ireland, The Data Protection Commission, https://www.dataprotection.ie/en.

Data Protection Commission, “Data Protection Commission Announces Conclusion of Inquiry into WhatsApp,” News & Media, January 19, 2023, https://www.dataprotection.ie/news-media/data-protection-commission-announces-conclusion-inquiry-whatsapp.

Data Protection Commission, “Data Protection Commission Announces Decision in Facebook ‘Data Scraping’ Inquiry,” News & Media, November 28, 2022, https://www.dataprotection.ie/en/news-media/press-releases/data-protection-commission-announces-decision-in-facebook-data-scraping-inquiry.

Data Protection Commission, “One Stop Shop (OSS),” International Transfers, accessed March 20, 2025, https://www.dataprotection.ie/organisations/international-transfers/one-stop-shop-oss.

Dirgantara, Adhyasta, and Dani Prabowo, “Data PeduliLindungi Bocor, Pemerintah Diminta Tak Saling Lempar Tanggung Jawab,” KOMPAS, November 18, 2022, https://nasional.kompas.com/read/2022/11/18/05230361/data-pedulilindungi-bocor-pemerintah-diminta-tak-saling-lempar-tanggung?page=all

Djafar, Wahyudi, and M. Jodi Santoso. Perlindungan Data Pribadi: Pentingnya Otoritas Pengawasan Indonesia: Seri HAM dan Internet. Jakarta: Lembaga Studi dan Advokasi Masyarakat (eLSAM) & Australian Government- Department of Foreign Affairs and Trade (DFAT), 2019.

Doly, Denico. "Pembentukan Lembaga Pengawas Pelindungan Data Pribadi dalam Perspektif Pembentukan Lembaga Negara Baru (Establishment of a Personal Data Protection Supervisory Agency in the Perspective of the Establishment of a New State Institution)." Negara Hukum: Membangun Hukum untuk Keadilan Dan Kesejahteraan 12, no. 2 (2021): 223-244.

European Union, Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the Protection of Natural Persons with Regard to the Processing of Personal Data and on the Free Movement of Such Data, and Repealing Directive 95/46/EC (General Data Protection Regulation), Pub. L. No. 679 (2016). https://data.europa.eu/eli/reg/2016/679/oj.

Fernando, Zico Junius, Anis Widyawati, and Kasmanto Rinaldi. "Cyber Victimology and Legal Gaps in Southeast Asia." International Law Discourse in Southeast Asia 4, no. 1 (2025): 1-39.

Finck, Michèle, and Frank Pallas. "They who must not be identified—distinguishing personal from non-personal data under the GDPR." International Data Privacy Law 10, no. 1 (2020): 11-36.

Flaherty, David H. Protecting privacy in surveillance societies: The federal republic of Germany, Sweden, France, Canada, and the United States. North Carolina: UNC Press Books, 2014.

Greenleaf, Graham. "Independence of data privacy authorities (Part I): International standards." Computer Law & Security Review 28, no. 1 (2012): 3-13.

Haniver, Rob. “Ireland - Data Protection Overview: Guidance Note”. DataGuidance, (2024), https://www.dataguidance.com/notes/ireland-data-protection-overview.

Howie, Emily. "Protecting the human right to freedom of expression in international law." International Journal of Speech-Language Pathology 20, no. 1 (2018): 12-15.

Hunt, Jon, Robert Neely, and Melissa Tan, “Uber Decision a Stark Reminder of the Extraterritorial Reach of the Privacy Act 1988 (Cth),” Lander & Rogers, August 2021, https://www.landers.com.au/legal-insights-news/uber-decision-reminder-of-extraterritorial-reach-of-privacy-act.

Imaduddin, Achmad Hanif. “Dari Jaga NIK Hingga Ganti Password, Berikut Deretan Pernyataan Kontroversial Menkominfo,” tempo.co, September 8, 2022, https://www.tempo.co/politik/dari-jaga-nik-hingga-ganti-password-berikut-deretan-pernyataan-kontroversial-menkominfo-293535.

Karina, Dina. “44 Juta Data MyPertamina Diduga Bocor, Pertamina dan Telkom Bakal Investigasi,” Kompas TV, November 11, 2022, https://www.kompas.tv/bisnis/347339/44-juta-data-mypertamina-diduga-bocor-pertamina-dan-telkom-bakal-investigasi#google_vignette

Kementerian Komunikasi dan Digital, “Ruang Lingkup, Tugas, Dan Fungsi,” Komdigi, accessed April 7, 2025, https://www.komdigi.go.id/profil/tugas-fungsi.

Lamdayoung, Cindy Thia. "Loss Due to Data Leaks: How is the Legal Protection for Account Owners on Marketplace?." Journal of Creativity Student 5, no. 1 (2020): 25-42.

Lembaga Studi dan Advokasi Masyarakat (eLSAM). Skenario Pembuatan Otoritas Pelindungan Data Pribadi Di Indonesia: Opsi dan Implikasi: Seri HAM dan Internet. Jakarta: ELSAM, 2022. https://www.elsam.or.id/policy-paper/skenario-pembentukan-otoritas-pelindungan-data-pribadi-di-indonesia--opsi-dan-implikasi.

Macpherson, John, Tim Brookes, Amanda Ludlow, Geoff McGrath, and Andrew Hilton. “Australia’s Massive New Privacy Penalties Become Law but Will Be Clarified,” Ashurst Business Insight, December 2, 2022, https://www.ashurst.com/en/insights/australias-massive-new-privacy-penalties-become-law-but-will-be-clarified/.

Mahardika, Ahmad Mahardika. "Desain Ideal Pembentukan Otoritas Independen Perlindungan Data Pribadi dalam Sistem Ketatanegaraan Indonesia." Jurnal Hukum 37, no. 2 (2021): 101-118.

Mangar, Irma, and Muhammad Rosyid Ridho. "Lembaga Independen Negara dalam Ketatanegaraan Indonesia." Definisi: Jurnal Agama Dan Sosial Humaniora 1, no. 2 (2022): 75-84.

Marischa, Diva, and Reni Budi Setianingrum. "Transfer of Personal Data by E-Commerce Companies: A Study from the Perspective of Indonesian Personal Data Protection Laws." Ikatan Penulis Mahasiswa Hukum Indonesia Law Journal 4, no. 1 (2024): 48-64.

Martin, Nicholas, et al. "How data protection regulation affects startup innovation." Information Systems Frontiers 21, no. 6 (2019): 1307-1324.

Matheus, Juan, and Ariawan Gunadi. "Pembentukan Lembaga Pengawas Perlindungan Data Pribadi di Era Ekonomi Digital: Kajian Perbandingan Dengan KPPU." Justisi 10, no. 1 (2024): 20-35.

McMillan, John. "Privacy-a regulator's perspective." AIAL Forum, no. 83 (2016): 78-82.

Mertokusumo, Sudikno. Penemuan Hukum: Sebuah Pengantar. Yogyakarta: Universitas Atma Jaya Yogyakarta, 2010.

Mishova, Ana. “Data Protection Laws Around the World: A Global Perspective,” GDPR Local, August 16, 2024, https://gdprlocal.com/data-protection-laws-around-the-world-a-global-perspective/.

Natamiharja, Rudi, and Ikhsan Setiawan. "Guarding privacy in the digital age: A comparative analysis of data protection strategies in Indonesia and France." Jambe Law Journal 7, no. 1 (2024): 233-251.

Office of the Australian Information Commissioner (OAIC), “Australian Privacy Principles Guidelines: Privacy Act 1988” (Sydney: Office of the Australian Information Commissioner (OAIC), December 2022), https://www.oaic.gov.au/privacy/australian-privacy-principles/australian-privacy-principles-guidelines.

Office of the Australian Information Commissioner (OAIC), “Australian Privacy Principles Guidelines,” OAIC, March 10, 2023, https://www.oaic.gov.au/privacy/australian-privacy-principles/australian-privacy-principles-guidelines.

Office of the Australian Information Commissioner (OAIC), “Guide to Securing Personal Information,” OAIC, March 10, 2023, https://www.oaic.gov.au/privacy/privacy-guidance-for-organisations-and-government-agencies/handling-personal-information/guide-to-securing-personal-information

Office of the Australian Information Commissioner (OAIC), “OAIC Corporate Plan 2024–25,” OAIC Corporate Plan (Sydney: Office of the Australian Information Commissioner (OAIC), August 29, 2024), 5, https://www.oaic.gov.au/about-the-OAIC/our-corporate-information/corporate-plans/corporate-plan-2024-25.

Office of the Australian Information Commissioner (OAIC), “Part 1: Introduction to the Freedom of Information Act 1982,” OAIC, March 10, 2023, https://www.oaic.gov.au/freedom-of-information/freedom-of-information-guidance-for-government-agencies/foi-guidelines/part-1-introduction-to-the-freedom-of-information-act-1982.

Office of the Australian Information Commissioner (OAIC), “Privacy Regulatory Action Policy,” OAIC, February 17, 2025, https://www.oaic.gov.au/about-the-OAIC/our-regulatory-approach/privacy-regulatory-action-policy.

Office of the Australian Information Commissioner (OAIC), “Uber Found to Have Interfered with Privacy,” OAIC, March 10, 2023, https://www.oaic.gov.au/news/media-centre/uber-found-to-have-interfered-with-privacy.

Office of the Australian Information Commissioner (OAIC), “What We Do,” OAIC, February 20, 2025, https://www.oaic.gov.au/about-the-OAIC/what-we-do.

Ombudsman Republik Indonesia, “Tugas Dan Fungsi,” Profil Tugas dan Fungsi, accessed April 8, 2025, https://ombudsman.go.id/profiles/index/pfft.

Otoritas Jasa Keuangan, “Tugas Dan Fungsi,” Tentang OJK, accessed April 8, 2025, https://ojk.go.id/id/tentang-ojk/pages/tugas-dan-fungsi.aspx.

Palupy, Heppy Endah. "Privacy and data protection: Indonesia legal framework." Thesis of Master Program in Law and Technology, Tilburg: Tilburg University, 2011.

Prima, Erwin. “LockBit Klaim Bobol 1,5 TB Data Pribadi, Pengamat Minta BSI Siapkan Mitigasi,” TEMPO, May2023, https://www.tempo.co/digital/lockbit-klaim-bobol-1-5-tb-data-pribadi-pengamat-minta-bsi-siapkan-mitigasi-188407.

Puluhulawa, Fenty Usman, Jufryanto Puluhulawa, and Moh Gufran Katili. "Legal Weak Protection of Personal Data in the 4.0 Industrial Revolution Era." Jambura Law Review 2, no. 2 (2020): 182-200.

Putra, Tegar Islami, et al. "Critically Reveal the Dimensions of Damage from Unauthorized Use of Personal Data (Study of Decision Number 78/Pid. Sus/2024/PN Tng)." The Digest: Journal of Jurisprudence and Legisprudence 5, no. 2 (2024): 231-262.

Putra, Tegar Islami, et al. "Risks of Consumer Personal Data Protection at the Personal Data Processing Stage of E-Commerce Websites." Journal of Private and Commercial Law 8, no. 2 (2024): 110-128.

Putra, Tegar Islami, Nurul Fibrianti, and Adinda Zeranica Putri Fakhis. "Implementation of CNIL’s Basic Logging Measures in Indonesia: A Juridical Study on Personal Data Protection." The Indonesian Journal of International Clinical Legal Education 7, no. 2 (2025): 203-234.

Putri, Riani Sanusi. “Saling Lempar Tanggung Jawab Atasi Kebocoran Data Pribadi,” TEMPO, accessed March 29, 2025, https://www.tempo.co/arsip/saling-lempar-tanggung-jawab-atasi-kebocoran-data-pribadi-290025.

Rahim, Erman I., et al. "Personal Data Protection in Political Party Information Systems in the Organization of General Elections: Concept and Law Reform Recommendations." Journal of Law and Legal Reform 6, no. 3 (2025): 1305-1348.

Rahman, Yogi Muhammad, Aflah Haora, and Elsa Nurfitriani Sutansi. "Personal Data Protection in the Era of Globalization (Indonesia Perspective)." Tirtayasa Journal of International Law 2, no. 1 (2023): 15-30.

Republic of Indonesia, “Law of the Republic of Indonesia No. 39 Year 1999 Concerning Human Rights,” Pub. L. No. 39, § preamble (1999).

Republic of Indonesia, Law of the Republic of Indonesia No. 27 Year 2022 on Personal Data Protection (UU PDP),” Pub. L. No. 27 (2022). https://jdih.setkab.go.id/PUUdoc/176837/Salinan_UU_Nomor_27_Tahun_2022.pdf.

Rettob, Krisna. “Perlindungan HAM Di Era Digital Dalam Perspektif Pelayanan Publik,” Online Article, Ombudsman RI, December 2024, https://ombudsman.go.id:443/artikel/r/artikel--perlindungan-ham-di-era-digital-dalam-perspektif-pelayanan-publik.

Rizkinaswara, Leski. Data pelanggan PLN bocor, kominfo: Sudah dipanggil dan terus dipantau, Ditjen Aptika Kominfo (Aug. 22, 2022), https://aptika.kominfo.go.id/2022/08/data-pelanggan-pln-bocor-kominfo-sudah-dipanggil-dan-terus-dipantau/

Rosadi, Sinta Dewi, et al. "Indonesia’s personal data protection bill, 2020: does it meet the needs of the new digital economy?." International Review of Law, Computers & Technology 37, no. 1 (2023): 78-90.

Rosadi, Sinta Dewi. "Data Privacy Law in the Application of Smart City in Indonesia." Journal of Legal, Ethical and Regulatory Issues 24, no. 4S (2021): 1-9.

Salwa, Nikita Dewi Kurnia. “Tantangan & Hambatan Besar Yang Dihadapi CSIRT-BSSN Indonesia,” Computer Security Incident Respond Team Indonesia, November 18, 2024, https://csirt.or.id/pengetahuan-dasar/tantangan-csirt-bssn.

Saraswati, Retno, Zainal Arifin Hoesein, and Susi Dian Rahayu. "Implementation of Administrative Sanctions in Abuse Law Enforcement Utilization of Green Open Space in Bekasi City." IOP Conference Series: Earth and Environmental Science. Vol. 1270. No. 1. IOP Publishing, 2023.

Schwartz, Paul M. "Global Data Privacy: The EU Way." New York University Law Review 94, no. 4 (2019): 771-818.

Sinaga, Guna Gerhat, et al. "Analisis Peran Otoritas Jasa Keuangan Terhadap Perbankan Sebagai Upaya Perlindungan Data Pribadi Nasabah Bank (Studi Kasus Kebocoran Data Nasabah Bank Syariah Indonesia)." Jurnal Pendidikan Tambusai 7, no. 3 (2023): 28374-28383.

Singapore Government Agency, “Personal Data Protection: Encouraging Data-Driven Innovation While Protecting Personal Data Use,” Infocomm Media Development Authority, October 10, 2024, https://www.imda.gov.sg/about-imda/data-protection/personal-data-protection.

Singapore Info-communications Media Development Authority (IMDA) and Personal Data Protection Commission. Model Artificial Intelligence Governance Framework, Second Edition. Singapore: Personal Data Protection Commission, 2020.

Singapore Personal Data Protection Commission, Case No. DP-2209-C0166; DP-2210-C0312 In the matter of an investigation under section 50(1) of the Personal Data Protection Act 2012 and Carousell Pte. Ltd. (December 28, 2023)

Singapore, Personal Data Protection Act (2012), https://sso.agc.gov.sg/Act/PDPA2012.

Singapore, Personal Data Protection Commission Singapore, “Enforcement of the Act,” PDPC Singapore, March 22, 2025, https://www.pdpc.gov.sg/overview-of-pdpa/the-legislation/enforcement-of-the-act.

Surfshark, “Data Breach Statistics Globally,” Global data breach statistics, Surfshark, January 28, 2025, https://surfshark.com/research/data-breach-monitoring.

Suwondo, Denny. "The Legal Protection of Personal Data in the Perspective of Human Rights." Law Development Journal 5, no. 4 (2021): 419-429.

Tan, Steve and Victoria Tan, “Understanding How the PDPA Permits Organisations to Leverage on Personal Data in Achieving Innovation,” in Personal Data Protection Digest, ed. Yeong Zee Kin. Singapore: Academy Publishing, 2023.

Voss, W. Gregory. "Airline Commercial Use of EU Personal Data in the Context of the GDPR, British Airways and Schrems II." Colorado Technology Law Journal 19, no. 2 (2021): 377-427.

Voss, W. Gregory. "The CCPA and the GDPR are not the same: why you should understand both." CPI Antitrust Chronicle 1, no. 1 (2021): 7-12.

Wibowo, Ari, Widya Alawiyah, and Azriadi. "The importance of personal data protection in Indonesia’s economic development." Cogent Social Sciences 10, no. 1 (2024): 2306751.

Widiatedja, I. Gusti Ngurah Parikesit, and Neha Mishra. "Establishing an independent data protection authority in Indonesia: a future–forward perspective." International Review of Law, Computers & Technology 37, no. 3 (2023): 252-273.

Wolff, Josephine, and Nicole Atallah. "Early GDPR penalties: Analysis of implementation and fines through May 2020." Journal of Information Policy 11 (2021): 63-103.

Wong YongQuan, Benjamin. "Data Privacy Law in Singapore: the Personal Data Protection Act 2012." International Data Privacy Law 7, no. 4 (2017): 287-302.

Yamin, Ahmad Fachri, et al. "Perlindungan data pribadi dalam era digital: Tantangan dan solusi." Meraja Journal 7, no. 2 (2024): 138-155.

Yolanda, Erlyns, and Rugun Romaida Hutabarat. "Urgensi Lembaga Pelindungan Data Pribadi di Indonesia Berdasarkan Asas Hukum Responsif." Journal of Syntax Literate 8, no. 6 (2023): 4166-4182.

Yusliwidaka, Arnanda, Muhammad Ardhi Razaq Abqa, and Khansadhia Afifah Wardana. "A Discourse of Personal Data Protection: How Indonesia Responsible under Domestic and International Law?." Pandecta Research Law Journal 19, no. 2 (2024): 173-202.

Zhang, Yueming. "Processing of personal data by public authorities in China: assessing equivalence for cross-border transfers from the EU to China." European Journal of Law and Technology 14, no. 1 (2023).

Downloads

Published

2025-08-30

Article ID

13755

Issue

Vol. 10 No. 1 (2025): Legal Transformation and Policy Challenges in Indonesia: Navigating Technology, Democracy, and Social Change

Section

Research Article

License

Copyright (c) 2025 Firsta Rahadatul 'Aisy, Muhammad Azil Maskur, A.M Adzkiya' Amiruddin (Author)

Creative Commons License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

All writings published in this journal are the personal views of the authors and do not represent the views of this journal and the author's affiliated institutions. Author(s) retain copyrights under the license of  Creative Commons Attribution-ShareAlike 4.0 International (CC BY-SA 4.0). 

How to Cite

Establishing Indonesia’s Personal Data Protection Agency: Comparative Administration Sanctions Enforcement from Ireland, Australia, and Singapore. (2025). Journal of Indonesian Legal Studies, 10(1), 431-482. https://doi.org/10.15294/jils.v10i1.13755