Review of Legal Weakness on Protection of Personal Data in Online Transactions on Consumer-to-Consumer Concept in E-Commerce

Abstract

The need for legal protection guarantees for digital concepts is very much needed in the digitalization era, especially with the widespread use of the internet in Indonesia, which tends to increase to become very vulnerable to opportunities for criminal acts to occur, especially law enforcement on personal data leaks. There have been several cases of personal data leakage in several e-marketplaces in Indonesia. The existence of vulnerabilities in the e-commerce cyber security system in Indonesia against personal data leakage requires the government to resolve law enforcement issues through the ratification of Law No. 27 of 2022 concerning the Protection of Personal Data as a legal umbrella if there is a problem of leakage of personal data to every citizen as an e-commerce user. This study aims to review "weaknesses in the law" on protecting personal data in online transactions on the concept of "consumer to the consumer in e-commerce". This review research uses a normative legal evaluation approach and normative-empirical law with qualitative analysis. This study found that personal data protection regulations are still partial, so Law no. 27 of 2022 concerning the Protection of Personal Data does not yet have maximum legal force purely as a legal regulator for guaranteeing personal data security.