Search results

This paper aims to identify the reasons why cases of leakage of patient personal data often occur in the health sector. This paper also analyzes personal data protection regulations in the health sector from a comparative legal perspective between Indonesia, Singapore and the European Union (EU).

This type of research is legal research. The research approach used is the statute approach and conceptual approach. The focus of this study in this research is Indonesia with a comparative study in Singapore and the EU.

Cases of leakage of patient personal data in Indonesia often occur. In 2021, the data for 230,000 COVID-19 patients was leaked and sold on the Rapid Forums dark web forum. A patient’s personal data is a human right that must be protected. Compared to Singapore and the EU, Indonesia is a country that does not yet have a law on the protection of personal data. This condition causes cases of leakage of patients’ personal data to occur frequently.

This study analyzes the regulation and protection of patients’ personal data in Indonesia, Singapore and the EU to construct a regulatory design for the protection of patients’ personal data.

The results of this study are useful for constructing regulations governing the protection of patients’ personal data. The regulation is to protect the patient’s personal data like a patient’s human right.

The ideal regulatory design can prevent data breaches. Based on the results of comparative studies, in Singapore and the EU, cases of personal data leakage are rare because they have a regulatory framework regarding the protection of patients’ personal data.

Legal strategies that can be taken to prevent and overcome patient data breaches include the establishment of an Act on Personal Data Protection; the Personal Data Protection Commission; and management of patients’ personal data.

General Data Protection Regulation (GDPR) of the European Union (EU) was passed to protect data privacy. Though the GDPR intended to address issues related to data privacy in the EU, it created an extra-territorial effect through Articles 3, 45 and 46. Extra-territorial effect refers to the application or the effect of local laws and regulations in another country. Lawmakers around the globe passed or intensified their efforts to pass laws to have personal data privacy covered so that they meet the adequacy requirement under Articles 45–46 of GDPR while providing comprehensive legislation locally. This study aims to analyze the Malaysian and Saudi Arabian legislation on health data privacy and their adequacy in meeting GDPR data privacy protection requirements.

The research used a systematic literature review, legal content analysis and comparative analysis to critically analyze the health data protection in Malaysia and Saudi Arabia in comparison with GDPR and to see the adequacy of health data protection that could meet the requirement of EU data transfer requirement.

The finding suggested that the private sector is better regulated in Malaysia than the public sector. Saudi Arabia has some general laws to cover health data privacy in both public and private sector organizations until the newly passed data protection law is implemented in 2024. The finding also suggested that the Personal Data Protection Act 2010 of Malaysia and the Personal Data Protection Law 2022 of Saudi Arabia could be considered “adequate” under GDPR.

The research would be able to identify the key principles that could identify the adequacy of the laws about health data in Malaysia and Saudi Arabia as there is a dearth of literature in this area. This will help to propose suggestions to improve the laws concerning health data protection so that various stakeholders can benefit from it.

Personal data is a powerful tool. The more someone know about us, the more power they got over us. But who will control the most of our personal data? Does the government and the big tech really care about our personal data? This paper aims to look at data practices, data-related policy making as well as its economic consequences in the context of emerging economies.

Using qualitative methods such as literature review and analysis of numerous government documents, this paper inquires into the dynamics in the use of data by the business sectors, explains how data governance can add value to the business sectors while ensuring customers’ data privacy protection based on the data governance mechanism framework and details what it takes.

Using the case of Indonesian recent development on data privacy regulation, this paper describes the problems and threats to personal data protection. The advent of latest computing and mobile technology is shifting power relations between the governments, the big tech, as well as the end users. To conclude, the strategy and policy recommendations for implementing data privacy protection are also presented.

This paper provides a timely synthesis of data practices in the context of developing countries, particularly in relation to policy making and economic consequences. This paper also identifies and shares several promising future research ideas.

This study aims to analyze the development of digital market characteristics particularly focusing on how the strategic choices of platforms are not fully reflected in pricing. In addition, the implications for the development of theories of harm are investigated to explore the necessity of a relevant market definition in assessing infringement and evaluating the adequacy of Indonesian competition law.

This study is a legal analysis that uses statutory approaches, cases, comparative law and the development of theories of harm in digital mergers. The case approach is conducted by analyzing three cases decided by the Indonesia Business Competition Supervisory Commission. This approach provides insight into the response of Komisi Pengawas Persaingan Usaha concerning the merger and acquisition cases in the digital era as well as the provision of different analyses in conventional markets. However, competition can be potentially damaged in digital markets and a comparative law approach is taken by analyzing digital merger cases decided by authorities in other countries.

Results reveal that the digital market has created a “relevant market” that is challenging and blurred due to multi-sided network effects and consumer data usage characteristics. Platform-based enterprises’ prices fluctuate due to the digital market’s network effect and consumer data statistics. Smartphone prices depend on the number of apps and consumer data. Neoclassical theory focusing on product markets and location applied in Indonesia must be revised to establish a relevant digital economy market. To evaluate digital mergers, new harm theories are needed. The merger should also protect consumer data. Law Number 27 of 2022 on Personal Data Protection and Government Regulation on the Implementation of Electronic Systems and Transactions protects online consumers, a basic step in due diligence for digital mergers. The Indonesian Government should promptly strengthen the notion of “relevant markets” in the digital economy, which could lead to fair business competition violations like big data control. Notify partners or digital merger participants of the accessibility of sensitive data like transaction history and user location.

The development of digital market characteristics has implications for developing theories of harm in digital markets. Indonesian competition law needs to develop such theories of harm to analyze the potential for anticompetitive digital mergers in the digital economy era.

This paper aims to investigate the cooperative governance mechanisms for personal information security, which can help enrich digital governance research and provide a reference for the formulation of protection policies for personal information security.

This paper constructs an evolutionary game model consisting of regulators, digital enterprises and consumers, which is combined with the simulation method to examine the influence of different factors on personal information protection and governance.

The results reveal seven stable equilibrium strategies for personal information security within the cooperative governance game system. The non-compliant processing of personal information by digital enterprises can damage the rights and interests of consumers. However, the combination of regulatory measures implemented by supervisory authorities and the rights protection measures enacted by consumers can effectively promote the self-regulation of digital enterprises. The reputation mechanism exerts a restricting effect on the opportunistic behaviour of the participants.

The authors focus on the regulation of digital enterprises and do not consider the involvement of malicious actors such as hackers, and the authors will continue to focus on the game when assessing the governance of malicious actors in subsequent research.

This study's results enhance digital governance research and offer a reference for developing policies that protect personal information security.

This paper builds an analytical framework for cooperative governance for personal information security, which helps to understand the decision-making behaviour and motivation of different subjects and to better address issues in the governance for personal information security.

This study aims to evaluate blockchain as an e-government governance model. It assesses its alignment with legal frameworks, emphasizing robustness against disruptions and adherence to existing laws.

The paper explores blockchain’s potential in e-government, focusing on legal, ethical and governance aspects. It conducts an in-depth analysis of blockchain’s integration into data governance, emphasizing legal compliance and resilient security protocols.

The study comprehensively evaluates blockchain’s implementation, covering privacy, interoperability, consensus mechanisms, scalability and regulatory alignment. It highlights governance’s critical role in ensuring legal compliance within blockchain paradigms.

Ethical and legal concerns arising from blockchain adoption remain unresolved. The study underscores how blockchain challenges its core principles of anonymity and decentralization in e-government settings.

The framework outlined offers potential for diverse technological environments, albeit raising ethical and legal queries. It emphasizes governance’s pivotal role in achieving legal compliance in blockchain adoption.

Blockchain’s impact on legal and ethical facets necessitates further exploration to align with its core principles while addressing governance in e-government settings.

This study presents a robust framework for assessing blockchain’s viability in e-government, emphasizing legal compliance, despite ethical and legal intricacies that challenge its fundamental principles.

The authors argue that privacy is integral to the well-being of consumers and an essential component in not only corporate social responsibility (CSR) but what they term uniquely as social media responsibility (SMR). A conceptual framework is proposed that delineates the privacy issues companies should pay attention to in artificial intelligence (AI)-fueled social media environments.

The authors review literature on privacy issues in social media and AI in the academic and practitioner literatures. Based on the review, arguments focus on the need for an SMR framework, proposing responsible use of consumer data that is attentive to consumers' privacy concerns.

Implications from the framework are a path forward for social media companies to treat consumer data more fairly in this new environment. The framework has implications for companies to reduce potential harms to consumers and consider addressing their power and responsibility. With social media and AI transforming consumer behavior so profoundly, there are a variety of short- and long-term social implications.

Since AI tools are becoming integral to social media company activities, this research addresses the changing responsibilities social media companies have in securing consumers' data and enabling consumers the agency to protect their privacy effectively. The authors propose an SMR framework based on CSR research and AI tools employed by social media companies.

It has been demonstrated that AI-powered, data-driven tools’ usage is not universal, but deeply linked to socio-cultural contexts. The purpose of this paper is to display the need of adopting situated lenses, relating to specific personal and professional learning about data protection and privacy.

The authors introduce the results of a case study based on a large educational intervention at a fully online university. The views of the participants from degrees representing different knowledge areas and contexts of technology adoption (work, education and leisure) were explored after engaging in the analysis of the terms and conditions of use about privacy and data usage. After consultation, 27 course instructors (CIs) integrated the activity and worked with 823 students (702 of whom were complete and correct for analytical purposes).

The results of this study indicated that the intervention increased privacy-conscious online behaviour among most participants. Results were more contradictory when looking at the tools’ daily usage, with overall positive considerations around the tools being mostly needed or “indispensable”.

Though appliable only to the authors’ case study and not generalisable, the authors’ results show both the complexity of privacy views and the presence of forms of renunciation in the trade-off between data protection and the need of using a specific software into a personal and professional context.

This study provides an example of teaching and learning activities that supports the development of data literacy, with a focus on data privacy. Therefore, beyond the research findings, any educator can build over the authors’ proposal to produce materials and interventions aimed at developing awareness on data privacy issues.

Developing awareness, understanding and skills relating to data privacy is crucial to live in a society where digital technologies are used in any area of our personal and professional life. Well-informed citizens will be able to obscure, resist or claim for their rights whenever a violation of their privacy takes place. Also, they will be able to support (through adoption) better quality apps and platforms, instead of passively accepting what is evident or easy to use.

The authors specifically spot how students and educators, as part of a specific learning and cultural ecosystem, need tailored opportunities to keep on reflecting on their degrees of freedom and their possibilities to act regarding evolving data systems and their alternatives.

Despite the unique features and potential applications in various industries, widespread blockchain adoption is hindered for several reasons. One of them is the lack of government regulations regarding blockchain and cryptocurrencies. However, a deliberate preliminary analysis of the policy initiatives by various jurisdictions proved otherwise, and a lack of sound academic literature on the policy initiatives on blockchain worldwide was evident. Addressing this gap, this study aims to summarize the policy initiatives of jurisdictions around the world, assessing if governments do not enact many regulations.

A systematic literature review was adopted in this study, in which the authors shortlisted a set of research papers and policy reports using several selection criteria and a screening process.

It was found that numerous policy initiatives have been enacted by governments worldwide, and blockchain applications are also being piloted or practiced successfully in several nations. It was also evident that governments are reluctant to accept cryptocurrencies as legal tender while embracing their underlying technology, blockchain.

To the best of the authors’ knowledge, this paper appears to be one of the first attempts to summarize the blockchain policy initiatives contributing to the body of knowledge on blockchain adoption.

This study proposes a collaborative federated learning (CFL) framework to address personal data transmission and retention issues for artificial intelligence (AI)-enabled video surveillance in public spaces.

This study examines specific challenges for long-term people monitoring in public spaces and defines AI-enabled video surveillance requirements. Based on the requirements, this study proposes a CFL framework to gradually adapt AI models’ knowledge while reducing personal data transmission and retention. The framework uses three different federated learning strategies to rapidly learn from different new data sources while minimizing personal data transmission and retention to a central machine.

The findings confirm that the proposed CFL framework can help minimize the use of personal data without compromising the AI model's performance. The gradual learning strategies help develop AI-enabled video surveillance that continuously adapts for long-term deployment in public spaces.

This study makes two specific contributions to advance the development of AI-enabled video surveillance in public spaces. First, it examines specific challenges for long-term people monitoring in public spaces and defines AI-enabled video surveillance requirements. Second, it proposes a CFL framework to minimize data transmission and retention for AI-enabled video surveillance. The study provides comprehensive experimental results to evaluate the effectiveness of the proposed framework in the context of facial expression recognition (FER) which involves large-scale datasets.