Article Sidebar

Download
Download Article

Main Article Content

Abstract

The rapid digitalization of the financial services sector has improved efficiency, but it has also increased the risk of personal data breaches, which may result in financial losses, including the emergence of fake debtors. This study aims to analyze the scope of corporate legal liability as a Personal Data Controller in cases of personal data breaches and to identify obstacles in supervising personal data protection. This research employs a normative juridical method using secondary legal materials, supported by empirical data obtained through interviews. Data were analyzed using qualitative normative analysis. The findings indicate that corporate entities remain legally liable under Articles 67 and 70 of Law Number 27 of 2022 concerning Personal Data Protection, even when violations are committed by internal personnel. Such liability is based on the principles of vicarious liability and strict liability, requiring corporations to ensure data security through effective supervision and risk management systems. However, the implementation of personal data protection faces significant challenges, including weak compliance culture, low employee awareness, limited technological monitoring, and inconsistent internal policies. Therefore, strengthening data governance through technological enhancement, mandatory employee training, and consistent regulatory supervision is essential to ensure legal certainty and the protection of consumer privacy rights in the financial services sector.

Keywords

Legal Responsibility Personal Data Breach Personal Data Protection Act Personal Data Protection

Article Details

Creative Commons License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

How to Cite
Kristanto, A. R., & Slamet , S. R. (2026). Legal Liability of Financial Services Institutions for Personal Data Leakage Under the Personal Data Protection Act. Golden Ratio of Data in Summary, 6(1), 83–90. https://doi.org/10.52970/grdis.v6i1.1981
Download Citation
Endnote/Zotero/Mendeley (RIS)
BibTeX

References

  1. Aka Akbar, R., Mulyana, A., & Amalia, M. (2023). Legal Challenges in The Age Of Social Media: Protecting Citizens From Misuse Of Information. Golden Ratio of Law and Social Policy Review, 3(1), 14–25. https://doi.org/10.52970/grlspr.v3i1.328
  2. Aulia Alayna Suvil, Firdaus, Ramadhan, M. A., Putra, W. D., & Lestarika, D. P. (2024). Implementasi perlindungan data pribadi berdasarkan Undang-Undang Nomor 11 Tahun 2020. Jurnal Hukum, Politik dan Ilmu Sosial, 3(4), 70–80. https://doi.org/10.55606/jhpis.v3i4.4235
  3. Keadilan, T., & Kepastian, D. A. N. (2022). Implementasi aturan perlindungan data pribadi oleh penyelenggara sistem elektronik dikaitkan dengan teori keadilan dan kepastian hukum. Jurnal Hukum, 7(2), 86–103.
  4. Kewarganegaraan, J., Setiawan, H. B., Najicha, F. U., Fakultas Hukum, & Universitas Sebelas Maret. (2022). Perlindungan data pribadi warga negara Indonesia. Jurnal Kewarganegaraan, 6(1), 976–982.
  5. Kurniawan, K. D., & Hapsari, D. R. I. (2022). Pertanggungjawaban pidana korporasi menurut vicarious liability theory. Ius Quia Iustum Law Journal, 29(2), 328–347. https://doi.org/10.20885/iustum.vol29.iss2.art5
  6. Lestari, D. P. (2022). Analisis yuridis normatif pemberian kompensasi perjanjian kerja waktu tertentu (PKWT) berdasarkan Undang-Undang Cipta Kerja. Jurnal Hukum Lex Generalis, 3(5), 339–349. https://doi.org/10.56370/jhlg.v3i5.160
  7. Mahameru, D. E., Nurhalizah, A., Wildan, A., Haikal, M., & Rahmadia, M. H. (2023). Implementasi Undang-Undang perlindungan data pribadi. Jurnal Hukum, 5(2), 115–131.
  8. Marzuki, P. M. (2005). Penelitian hukum. Jakarta: Prenadamedia Group.
  9. OECD. (2023). G20/OECD principles of corporate governance. OECD Publishing.
  10. Pribadi, D. (2021). Pentingnya Undang-Undang perlindungan data pribadi sebagai perlindungan hukum terhadap privasi di Indonesia. E-Journal Komunitas Yustisia Universitas Pendidikan Ganesha, 4(3), 1056–1064.
  11. Putra, R. K., Idris, M. F., & Widhiati, G. (2024). Perlindungan data pribadi dalam era big data: Implikasi hukum di Indonesia. Jurnal Kajian Ilmu Hukum dan Politik, 2(4), 31–44. https://journal.stekom.ac.id/index.php/jaksa
  12. Radbruch, G. (2006). Legal philosophy. Oxford University Press.
  13. Rima, K., Suari, A., & Sarjana, I. M. (2023). Menjaga privasi di era digital: Perlindungan data pribadi di Indonesia. Jurnal Analisis Hukum, 6(1), 132–146. https://doi.org/10.38043/jah.v6i1.4484
  14. Sulistianingsih, D., Ihwan, M., & Setiawan, A. (2023). Tata kelola perlindungan data pribadi di era metaverse (Telaah yuridis Undang-Undang Perlindungan Data Pribadi). Jurnal Hukum, 1(52), 97–106.
  15. Thalib, E. F., & Maswari, K. L. (2021). Perlindungan Hukum Terhadap Data Pribadi Perusahaan Akibat Penyalahgunaan Data Digital Oleh Karyawan Perusahaan. Prosiding Seminar Nasional Fakultas Hukum Universitas Mahasaraswati Denpasar 2020, Vol 1(No 1), 55–66. https://money.kompas.com/read/2020/11/09/2135
  16. Unggul, U. E. (2023). Perlindungan data pribadi dalam perspektif hukum. Jurnal Multidisiplin Indonesia, 2(3), 654–666. https://doi.org/10.58344/jmi.v2i3.157
  17. Watkat, F. X., Ingratubun, M. T., Apriyanti, A., & Pribadi, D. (2024). PERLINDUNGAN DATA PRIBADI MELALUI PENERAPAN. 5(1).
  18. Widi, F., Qahar, A., & Aswari, A. (2021). Legal Protection Against Personal Data In Online Loan Transactions. Golden Ratio of Law and Social Policy Review, 1(1), 17–25. https://doi.org/10.52970/grlspr.v1i1.152

Similar Articles

<< < 5 6 7 8 9 10 11 12 13 14 > >> 

You may also start an advanced similarity search for this article.