Law in indonesia – dla piper global data protection laws of the world escoliosis derecha

In Indonesia, as of the date of this publication there is no general law on data protection. However, there are certain regulations concerning the use of electronic data escoliosis lumbar levoconvexa. The primary sources of the management of electronic information and transactions are Law No. 11 of 2008 regarding Electronic Information and Transactions (EIT Law) as amended by Law No. 19 of 2016 regarding the Amendment of EIT Law (EIT Law Amendment), Government Regulation No. 82 of 2012 regarding Provisions of Electronic systems and Transactions (Reg. 82) and its implementing regulation, Minister of Communications & Informatics Regulation No. 20 of 2016 regarding the Protection of Personal Data in an Electronic System (MOCI Regulation).


However, a new draft Bill on the Protection of Private Personal Data (the Bill) is being discussed and as of this date it has not been issued. Although the exact date remains uncertain and the Bill is still to be considered by the House of Representatives, if passed, this will become Indonesia’s first comprehensive law to specifically deal with the issue of data privacy.

Article 40 of Law No. 36 of 1999 regarding Telecommunications (‘Telecommunications Law’) provides that any person is prohibited from any kind of tapping of information transmitted through any kind of telecommunications network. Article escoliosis lumbar dextroconvexa 42 of the Telecommunications Law stipulates that any telecommunications services operator has to keep confidential any information transmitted or received by a telecommunications service subscriber through telecommunications networks or telecommunications services provided by the relevant operator. Public Information Sector

Article 6 of Law No. 14 of 2008 regarding Disclosure of Public Information provides that information relating to personal rights may not be disclosed by public bodies. Article 17 of the relevant law, together with other laws, prohibits the disclosure of private information of any person, particularly herniated lumbar disc sleeping position that which concerns family history; medical and psychological history; financial information (including assets, earnings and bank records) and evaluation records concerning a person’s capability, recommendation, intellectual, formal, or informal education records. Banking and Capital Markets Sectors

Data privacy in this sector is regulated under Law 7 of 1992 as amended by Law 10 of 1998 on Banking (‘Banking Law’) and Law 8 of 1995 on Capital Markets (Capital Markets Law) respectively. The regulations apply to both individuals and corporate data.

Bank Indonesia’s Regulation No. 9/15/PBI/2007 on the Implementation of Risk Management in the Utilization of Information Technology by the Bank stipulates that the bank’s customer data transfer (by way of establishing a data center or data processing outside the Indonesia territory) necessitates prior approval being obtained from Bank Indonesia.

In Indonesia, as of the date of this publication dolor lumbar pdf there is no general law on data protection. However, there are certain regulations concerning the use of electronic data. The primary sources of the management of electronic information and transactions are Law No. 11 of 2008 regarding Electronic Information and Transactions (EIT Law) as amended by Law rx de columna lumbar normal No. 19 of 2016 regarding the Amendment of EIT Law (EIT Law Amendment), Government Regulation No. 82 of 2012 regarding Provisions of Electronic systems and Transactions (Reg. 82) and its implementing regulation, Minister of Communications & Informatics Regulation No. 20 of 2016 regarding the Protection of Personal Data in an Electronic System (MOCI Regulation).

However, a new draft Bill on the Protection of Private Personal Data (the Bill) is being discussed and as of this date it has not been issued. Although the exact date remains uncertain and the Bill is still to be considered by the House of Representatives, if passed, this will become Indonesia’s first comprehensive law to specifically deal with the issue of data privacy.

Article 40 of Law No. 36 of 1999 regarding Telecommunications (‘Telecommunications Law’) provides that any person is prohibited from any kind of tapping of information transmitted through any kind of telecommunications network. Article 42 of the Telecommunications Law stipulates that any telecommunications services operator has to keep confidential any information transmitted or received by a telecommunications service subscriber through telecommunications networks or telecommunications services provided by the relevant operator. Public Information Sector

Article 6 of Law escoliosis derecha No. 14 of 2008 regarding Disclosure of Public Information provides that information relating to personal rights may not be disclosed by public bodies. Article 17 of the relevant law, together with other laws, prohibits the disclosure of private information of any person, particularly that which concerns family history; medical and psychological history; financial information (including assets, earnings and bank records) and evaluation records concerning a person’s capability, recommendation, intellectual, formal, or informal education records. Banking and Capital Markets Sectors

Data privacy in this sector is regulated under Law 7 of 1992 as amended by Law 10 of 1998 on Banking (‘Banking Law’) and Law contractura muscular lumbar 8 of 1995 on Capital Markets (Capital Markets Law) respectively. The regulations apply to both individuals and corporate data.

Bank Indonesia’s Regulation No. 9/15/PBI/2007 on the Implementation of Risk Management in the Utilization of Information Technology by the Bank stipulates that the bank’s customer data transfer (by way of establishing a data center or data processing outside the Indonesia territory) necessitates prior approval being obtained from Bank Indonesia.

Minister of Communication and Informatics Regulation No. 36 of 2014 regarding Procedures of Electronic System Provider Registration (MOCI Reg 36) differentiates electronic system providers into electronic system provider for public services and electronic system provider for non-public services. An electronic system provider for public services must conduct registration, while an electronic system provider for non-public services may escoliosis dorsolumbar conduct registration, which suggests registration is not mandatory for an electronic system provider for non-public services).

MOCI Reg 36 specifically states that electronic system providers for public services are legal entities related with the government for example state institutions, government agencies, corporations in the form of state-owned enterprises, regional government-owned enterprise, or other legal entities in relation with state’s mission.

Electronic system providers for non-public services are not specifically defined under MOCI Reg 36, but in general other legal entities that are not related with government, such as private corporations, can be classified as electronic system providers for non-public services.

GR No. 96 defines Public Service as an activity or chain contractura lumbar ejercicios of activities in terms of fulfilling the service needs in accordance with the law and regulation for every citizen and individual on goods, services, and / or administrative services that are provided by the public service operator. GR No. 96 further defines Public Service Operator as every state cirugia hernia discal lumbar operator institution, corporation, independent institution that are formed based on laws for public service activity, and other legal entities that are formed only for the public service activity. Law No. 25 of 2009 regarding Public Services (Law No. 25). Article 5 (1) of Law No. 25 provides that the scope of public services includes public goods and services as well as administrative services. Article 5(2) of Law No. 25 further provides that this includes education, teaching, work and business, housing, communication and information, environment, health, social security escoliosis tratamiento, energy, banking, transportation, natural resources, tourism and other strategic sectors.

In relation to the above, an electronic system provider for non-public services falls under the corporation (non-government related legal entity), providing service for every citizen / individual. Therefore, an electronic system provider for non-public services is also considered as public services pursuant to GR No. 96.

Article 4 of Minister of Communications and Informatics Regulation No. 4 of 2016 regarding Management System of Information Protection (MOCI Reg. No. 4/2016) provides that there are three categories of electronic systems: (i) strategic electronic system, which is an electronic system that causes serious impact to the public interest, public services, state governance stability, or state defense and security; (ii) high electronic system, which is an electronic system that causes limited impact to the interest of certain sector and / or territory; and (iii) low electronic system, which is any other electronic system aside from dolor de lumbares strategic and high electronic systems.

Article 10 of MOCI Reg. No. 4/2016 provides that strategic and high electronic system providers (for public services) must obtain a Certificate of Management System of Information Protection, while low electronic system providers (for public services) may obtain Certificate of Management System of Information Protection.

EIT Law, Reg. 82 and the MOCI Regulation specifically regulates the obligation to obtain "consent" from the owner of the personal data in the case of data collection, use and processing. Article 7(1) of MOCI Regulation regulates that in obtaining and collecting Personal Data the electronic system provider must also be limited to the relevant and suitable information in accordance to its purpose and must be conducted accurately. Article 12(1) of MOCI Regulation also regulates that Personal Data can only be processed and analyzed in accordance with the needs of the electronic system provider that have been stated clearly at the time the Personal Data is obtained and collected.

• In the provision of an Electronic System, the provider hernia lumbar tratamiento casero should ensure secrecy, totality and the availability of the Personal Data it manages. The provider should also ensure that the collection, the consumption and usage of Personal Data is based on the consent of the Personal Data owner, except if regulated otherwise. (Article 15(1)(b) of Reg. 82). The provider should ensure that the usage or disclosure of data is done based on consent and is in line with the objectives as disclosed to the relevant owner at the time of obtaining the data. (Article 15(1)(c) of Reg. 82).

Article 22(2) of Reg. 82 regulates rx de columna lumbosacra the transfer of data, which provides in any case that in the implementation of an Electronic System or Electronic Document aimed to transfer Electronic Information or Electronic Document, the Electronic Information or Electronic Document must be unique and (the provider shall) explain the control and possession of the Electronic Information or Electronic Document.

• By Consent (being defined as a written agreement either manually or electronically being given by the owner of Personal Data after obtaining a full explanation regarding the radiografia dorsolumbar process for acquiring, collecting, processing, analyzing, storing, displaying, announcing, disseminating and sending, including the confidentiality or non-confidentiality of the Personal Data), except as otherwise stipulated by laws and regulations, and

Article 22(1) of the MOCI Regulation states that transferring Personal Data that is managed by an electronic system operator at the government and regional government institution including the public or private sector domiciled in the territory of Indonesia to [parties] outside the territory of Indonesia must: