Jurnal Sistem Informasi
Vol. 21 No. 1 (2025): Jurnal Sistem Informasi (Journal of Information System)

Data Protection Impact Assessment Framework in the Banking Sector in Indonesia to Implement Law of Personal Data Protection

Dian Ismiati Anggraini (University of Indonesia)
Panca Oktavia Hadi Putra (Unknown)

Article Info

Publish Date
26 Mar 2025

Abstract

Indonesia’s banking industry is evolving in personal data management due to technological advancements, which present both benefits and challenges. Influenced by global standards like the GDPR, Indonesia’s Law No. 27 of 2022 on Personal Data Protection incorporates these principles to enhance data protection. The Data Protection Impact Assessment (DPIA), a key risk mitigation tool mandated by the GDPR, is required for high-risk data processing under Indonesian law, though implementation regulation is still pending. This research develops and validates a DPIA framework tailored to the Indonesian banking sector, addressing components that can be considered to be the base framework of DPIA in Indonesia. Recommendations include adopting a comprehensive DPIA framework, staff training, instrument validation, integrating DPIAs into business processes, developing IT applications for DPIA, and continuous monitoring. This research offers practical solutions and contributes to the broader data protection literature.

Copyrights © 2025




Citation Download
RIS
EndNote, Reference Manager, ProCite
BibTex
Latex, Jabref
Original Source
Download Original
Google Scholar
Check in Google Scholar
Journal Info
Jurnal Sistem Informasi
Website

Abbrev

jsi

Publisher

Universitas Indonesia

Subject

Computer Science & IT

Description

Jurnal Sistem Informasi (Journal of Information System) aims to provide scientific literatures specifically on studies of applied research in information systems (IS)/information technology (IT) and public review of the development of theory, method and applied sciences related to the subject. The ...