Article Per Year (5 Year)
p-Index From 2021 - 2026
0.408
P-Index
This Author published in this journals
All Journal CEMERLANG :Jurnal Manajemen dan Ekonomi Bisnis Inovasi Kesehatan Global
Aldi Juli Saputra
Unknown Affiliation
Economics, Econometrics & Finance Medicine & Pharmacology Nursing Public Health

Published : 2 Documents Claim Missing Document
Claim Missing Document
Check
Articles

Found 2 Documents
Search

 1 
Studi Literature: Analisis Keamanan dan Privasi Data Rekam Medis Elektronik Fasilitas Pelayanan Kesehatan Berdasarkan UU Nomor 27 Tahun 2022 Adelia Inggrid Putri Maharani; Sinta Novratilova; Rina Wulandari; Dwi Rena Aulia; Azalia Tjandra Dewi; Aldi Juli Saputra
Inovasi Kesehatan Global Vol. 3 No. 2 (2026): Mei : Inovasi Kesehatan Global
Publisher : Lembaga Pengembangan Kinerja Dosen

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.62383/ikg.v3i2.3085

Abstract

Data security in Electronic Medical Records (EMR) is a crucial issue in health information governance in Indonesia. This study evaluates the compliance of health facility information security systems with Ministry of Health Regulation (PERMENKES) No. 24 of 2022 and Personal Data Protection Law (UU PDP) No. 27 of 2022, and analyzes the impact of non-compliance on service quality and patient trust. The method employed is a systematic narrative literature review on the Google Scholar database (2023–2026) using the keywords "data security and privacy," "electronic medical records," and "CIA Triad," focusing on the implementation of Confidentiality, Integrity, and Availability. The four healthcare facilities examined have implemented controls such as role-based access control, Electronic Signatures (TTE), Virtual Private Networks (VPN), data encryption, and SSL/TLS protocols in accordance with PERMENKES provisions and Article 35 of the UU PDP. However, the effectiveness of implementation is hindered by weak authentication due to the use of simple passwords and excessively long auto-logout durations, the absence of comprehensive written standard operating procedures (SOPs), low staff compliance with security protocols, and minimal patient awareness regarding personal data protection rights. These weaknesses heighten the risk of patient data breaches as well as potential administrative sanctions and fines, and carry negative implications for service quality and public trust. Recommendations include strengthening internal security policies, developing written SOPs, providing continuous training for healthcare workers, implementing stronger authentication mechanisms (e.g., multi-factor authentication/MFA), and conducting patient awareness programs to ensure regulatory compliance and maintain public confidence.
Studi Literatur: Analisis Keamanan dan Privasi Data Rekam Medis Elektronik Fasilitas Pelayanan Kesehatan Berdasarkan UU Nomor 27 Tahun 2022 Adelia Inggrid Putri Maharani; Sinta Novratilova; Azalia Tjandra Dewi; Dwi Rena Aulia; Rina Wulandari; Aldi Juli Saputra
CEMERLANG : Jurnal Manajemen dan Ekonomi Bisnis Vol. 6 No. 1 (2026): CEMERLANG : Jurnal Manajemen dan Ekonomi Bisnis
Publisher : Pusat Riset dan Inovasi Nasional

Show Abstract | Download Original | Original Source | Check in Google Scholar | DOI: 10.55606/cemerlang.v6i1.9191

Abstract

Systemic non-compliance with PERMENKES 24/2022 & UU PDP 27/2022 on EHR, such as human error, weak passwords, vulnerable physical access, and low ISO 27001, increases the risk of data breaches & fines. This research fills the gap in the study by evaluating the compliance of the CIA Triad principles on Electronic Medical Records post-issuance of PERMENKES No. 24 of 2022 and Law No. 27 of 2022 thru a literature review, while also highlighting the impact of non-compliance on service quality and patient trust. This study aims to evaluate the compliance of healthcare facility security systems with PERMENKES No. 24 of 2022 and Law No. 27 of 2022 and analyze the impact of non-compliance on service quality and patient trust. This research method employs a systematic narrative literature review design to comprehensively examine the implementation of the CIA Triad in EHR security. Searches were conducted on Google Scholar (2023-2026) using the keywords "data security and privacy," "electronic medical records," and "CIA Triad." The research results show that all four healthcare facilities have adopted access control, TTE, VPN, encryption, and SSL/TLS in accordance with PERMENKES No. 24/2022 and Article 35 of the PDP Law No. 27/2022. However, the effectiveness is hindered by authentication weaknesses (weak passwords, long auto logout), the absence of written SOPs, low staff compliance, and minimal patient socialization, resulting in the data subject's rights not being transparently fulfilled. The lack of data security socialization to patients indicates that transparency and protection of data subjects' rights based on Law No. 27 of 2022 are not optimal.
Co-Authors Adelia Inggrid Putri Maharani Azalia Tjandra Dewi Dwi Rena Aulia Novratilova, Sinta Rina Wulandari