Abstract
Searching and seizing voluminous data is a challenge that Indonesian law enforcement authorities should resolve. Indonesia does not have a comprehensive regime on personal data protection. The absence of a coherent legal framework on personal data protection does not negate the obligation of Indonesian law enforcement authorities to protect personal data of Indonesian subjects. However, the absence of the framework may lead to uncertainties or ambiguities on how the authorities should protect personal data. Against the uncertainties and ambiguities, Indonesian law enforcement authorities should resolve issues of voluminous data in obtaining e-information with the prevailing legislation. This article attempts to answer the question: how may Indonesian law enforcement authorities interpret the current law to establish a coherent legal framework to protect personal data in searching or seizing voluminous data? The interpretation is instrumental in supporting the development of the Indonesian regime on personal data protection. It proposes that the Indonesian criminal procedure law should emphasise the active role of the chief judges of competent district courts and should incorporate specificity and proportionality as conditions and safeguards in the execution of search and seizure of electronic evidence.
Bahasa Abstract
Penggeledahan dan penyitaan terhadap data yang banyak (voluminous data) merupakan satu tantangan yang aparat penegak hukum Indonesia harus selesaikan. Indonesia belum memiliki rezim yang komprehensif mengenai perlindungan data pribadi. Ketiadaan kerangka hukum yang koheren dalam perlindungan data pribadi tidak menghilangkan kewajiban aparat penegak hukum Indonesia untuk melindungi data pribadi dari warga negara Indonesia. Akan tetapi, ketiadaan kerangka hukum tersebut dapat mengakibatkan ketidak pastian dalam melindungi data pribadi. Terhadap ketidakpastian tersebut, aparat penegak hukum Indonesia harus menyelesaikan permasalahan perlindungan terhadap data pribadi dengan menggunakan hukum yang telah ada. Artikel ini berusaha untuk menjawab pertanyaan: bagaimana aparat penegak hukum Indonesia dapat menginterpretasikan hukum yang ada dalam membangun suatu kerangka hukum yang koheren untuk memberikan perlindungan data pribadi dalam penggeledahan dan penyitaan. Interpretasi ini instrumental dalam mendukung pengembangan rezim perlindungan data pribadi di Indonesia. Artikel ini merekomendasikan agar hukum acara pidana Indonesia menekankan pada peran aktif ketua pengadilan negeri dalam memberikan perlindungan data pribadi dan memasukkan spesifisitas dan proporsionalitas sebagai ketentuan dalam penggeledahan dan penyitaan.
References
Legal Documents
Constitutional Court of the Republic of Indonesia. "Decision 006/PUU-I/2003."
---. "Decision 012-016-019/PUU-IV/2006."
---. "Decision 5/PUU-VIII/2010."
---. "Decision 65/PUU-VIII/2010."
---. "Decision 34/PUU-XI/2013."
---." Decision 21/PUU-XII/2014."
---. "Decision 20/PUU-XIV/2016."
District Court of Masohi. "Decision 45/Pid.B/2012/PN.MSH."
District Court of Bogor. "Decision 222/Pid.Sus/2014/PN.Bgr."
District Court of Surabaya. "Decision 847/Pid.B/2014/PN.SBY."
District Court of Banten. "Decision 55/PID/2015/PT.BTN."
District Court of Ciamis. "Decision 267/Pid.Sus/2015/PN Cms."
District Court of Yogyakarta. "Decision 257/Pid.Sus/2015/PN.Yyk."
District Court of Pangkal Pinang. "Decision 267/Pid.B/2015/PN.Pgp."
District Court of Banda Aceh. "Decision 03/Pid.B/2015/PN."
District Court of Buol. "Decision 50/Pid.Sus/2015/PN Bul."
District Court of Gorontalo. "Decision 269/Pid.Sus/2016/PN Gto."
District Court of Amuntai. "Decision 276/Pid.Sus/2017/PN Amt."
District Court of Gorontalo. "Decision 188/Pid.Sus/2017/PN Gto."
District Court of Medan. "Decision 1960/Pid.Sus/2018/PN Mdn."
Indonesia, Undang-Undang tentang Hukum Acara Pidana (Law regarding Criminal Procedure Law), UU No. 8 Tahun 1981, LN No. 76 Tahun 1981 (Law Number 8 Year 1981, SG No. 1981).
---.Undang-Undang tentang Perbankan (Law regarding Banking), UU No. 7 Tahun 1992, LN. No. 31 Tahun 1992 (Law Number 7 Year 1992, SG. No. 31 Year 1992).
---. Undang-Undang tentang Perubahan atas Undang-Undang Nomor 7 Tahun 1992 tentang Perbankan (Law regarding the Amendment of Law regarding Banking), UU No. 10 Tahun 1998, LN. No. 182 Tahun 1998 (Law Number 10 Year 1998, SG. No. 182 Year 1998.
---. Undang-Undang tentang Informasi dan Transaksi Elektronik (Law regarding Electronic Information and Transaction), UU No. 11 Tahun 2008, LN. No. 58 Tahun 2008 (Law Number 11 Year 2008, SG. No. 58 Year 2008)
---. Undang-Undang tentang Kesehatan (Law regarding Health), UU No. 36 Tahun 2009, LN. No. 144 Tahun 2009 (Law Number 36 Year 2009, SG. No. 144 Year 2009).
---. Undang-undang tentang Perubahan atas Undang-Undang Nomor 11 Tahun 2008 tentang Informasi dan Transaksi Elektronik (Law regarding the Amendment of Law Number 11 Year 2008 regarding Electronic Information and Transaction), UU No. 19 Tahun 2016, LN. No. 251 Tahun 2016 (Law Number 19 Year 2016, SG No. 251 Year 2008).
---. Rancangan Undang-Undang tentang Perlindungan Data Pribadi (Data Protection Bill), Draft 29 April 2019.
---. Keputusan Menteri Kehakiman tentang Tambahan Pedoman Pelaksanaan Kitab Undang-undang Hukum Acara Pidana (the Decree of Ministry of Justice regarding Additional Guidelines for the Implementation of the Criminal Procedure Law), Keputusan No. M.14-PW.07.03 Tahun 1983 (Decree No. M.14-PW.07.03 Year 1983).
---. Peraturan Kapolri tentang Manajemen Penyidikan Tindak Pidana (Regulation of the National Police Chief on the Administration of Criminal Investigation), Peraturan No. 14 Tahun 2012 (Regulation No. 14 Year 2012)
In the Matter of the Search of Information Associated with the Facebook Account Identified by the Username Aaron.Alexis that is Stored at Premises Controlled by Facebook, Inc., 21 F.Supp.3d 1 (2013).
In the Matter of the Search of Information Associated with [redacted]@mac.com that is Stored at Premises Controlled by Apple, Inc., 25 F.Supp.3d 1 (2014).
In the Matter of a Warrant for All Content and Other Information Associated with the Email Account xxxxxxx gmail.com Maintained at Premises Controlled By Google, Inc., 33 F.Supp.3d (2014).
U.S. v. Deppish, 994 F.Supp.2d (2014).
U.S. v. George, 975 F.2d 72, 78 (2d Cir. 1992).
U.S. v. Hill, 459 F.3d 966, 73, 973 (9th Cir. 2006).
U.S. v. Matish, 193 Supp.3d 585 (2016).
U.S. v. Stabile, 633 F.3d (3d Cir. 2011).
Books
Afiah, Ratna N. Barang Bukti dalam Proses Pidana. Jakarta: Sinar Grafika, 1989.
Asshiddiqie, Jimly. Menuju Negara Hukum yang Demokratis. Jakarta: Bhuana Ilmu Populer, 2009.
Grande, Elisabetta. "Rumba Justice and the Spanish Jury Trial," in Comparative Criminal Procedure, ed. Jacqueline E. Ross and Stephen C. Thaman. Massachusetts: Edward Elgar Publishing Limited, 2018.
Harahap, M. Yahya. Pembahasan Permasalahan dan Penerapan KUHAP: Penyidikan dan Penuntutan. Jakarta: Sinar Grafika, 2016.
Mahkamah Konstitusi. Buku I: Latar Belakang, Proses, dan Hasil Pembahasan UUD 1945. Naskah Komprehensif Perubahan Undang-Undang Dasar Negara Republik Indonesia Tahun 1945: Latar Belakang, Proses, dan Hasil Pembahasan 1999-2002. Revised ed. Jakarta: Sekretariat Jenderal dan Kepaniteraan Mahkamah Konstitusi, 2010.
Purbopranoto, Kuntjoro. Hak-Hak Asasi Manusia dan Pancasila. 4th ed. Jakarta: Pradnya Paramita, 1969.
Articles
Dewi, Sinta. "Privacy: An Overview of Indonesia Statutes Governing Lawful Interception." Central European Journal of International and Security Studies 12, no. 4 (2018): 586-97.
Fern L. Kletter, "Validity of Search and Seizure Warrant, and Execution Thereof, to Disclose Records and Electronic Communications Relating to Specific E-mail Address," American Law Review 15, no. 5 (2016): 1-100.
Kerr, Orin S. "The Fourth Amendment and the Global Internet." Yale Law Journal 123, no. 2 (2015): 285-329.
———. "The Fourth Amendment Seizures of Computer Data." The Yale Law Journal 119, no. 4 (2010): 700-24.
———. "Search and Seizures in a Digital World." Harvard Law Review 119 (2005): 531-85.
Rosadi, Sinta D. "Protecting Privacy on Personal Data in Digital Economic Era: Legal Framework in Indonesia." Brawijaya Law Journal 5, no. 1 (2018): 143-57.
Sitompul, Josua. "Perlindungan Privasi dan Data Pribadi: Suatu Telaahan Awal." Buletin Hukum Perbankan dan Kebanksentralan, 2013, 71-94.
---. "Indonesian Cybercrime Verdicts Collected 2016-2018," https://doi.org/10.17026/dans-zrh-cfub.
Websites
BPHN. "Naskah Akademis RUU Perlindungan Data Pribadi, Draft 2016." https://www.bphn.go.id/data/documents/na_perlindungan_data_pribadi.pdf. Accessed 25 July 2019.
Dignan, Larry, "Top Cloud Providers 2018: How AWS, Microsoft, Google Cloud Platform, IBM Cloud, Oracle, Alibaba Stack Up." https://www.zdnet.com/article/cloud-providers-ranking-2018-how-aws-microsoft-google-cloud-platform-ibm-cloud-oracle-alibaba-stack/. Accessed 26 May 2018.
Gatra.com. "Elsam Pertanyakan Realisasi RUU Perlindungan Data Pribadi." https://www.gatra.com/detail/news/426087/politic/elsam-pertanyakan-realisasi-ruu-perlindungan-data-pribadi. Accessed 25 July 2019.
GDPR.EU, "What is GDPR, the EU's new data protection law?," https://gdpr.eu/what-is-gdpr/. Accessed 19 November 2019.
Haryanto, Agus T., "Draft RUU Perlindungan Data Pribadi Dibahas Bulan Depan." https://inet.detik.com/law-and-policy/d-4426709/draft-ruu-perlindungan-data-pribadi-dibahas-bulan-depan. Accessed 30 April 2019.
Kemp, Simon, "Digital in 2018: World's Internet Users Pass the 4 Billion Mark." https://wearesocial.com/blog/2018/01/global-digital-report-2018. Accessed 25 May 2018.
Meodia, Arindra. OJK: Perlindungan Data Konsumen Jadi PR di Ekonomi Digital. https://www.antaranews.com/berita/969708/ojk-perlindungan-data-konsumen-jadi-pr-di-ekonomi-digital. Accessed 25 July 2019.
Recommended Citation
Sitompul, Josua
(2019)
"DEVELOPING A LEGAL FRAMEWORK OF PERSONAL DATA PROTECTION IN THE INDONESIAN CRIMINAL PROCEDURE LAW,"
Indonesia Law Review: Vol. 9:
No.
3, Article 1.
DOI: 10.15742/ilrev.v9n3.582
Available at:
https://scholarhub.ui.ac.id/ilrev/vol9/iss3/1