Evaluating Data Breach Notification Protocols
Comparative Analysis of Indonesia and South Korea
DOI:
https://doi.org/10.19184/ejlh.v12i1.47621Abstract
Data protection is one of the most important aspects of the digital economy, with its legal implications extending across digital landscapes. The failure to protect data in data breaches can threaten the interests of owners and expose them to various risks. Legal compliance regarding how owners are notified of data breaches is important to prevent this, necessitating deep legal discourse and analysis. Using a comparative legal research method with a statutory approach, this study dissects norms within Indonesia and South Korea’s legal systems to analyze their differences in legal compliance regarding this issue. The findings of this study highlight the discrepancies in legal frameworks between Indonesia and South Korea. It particularly notes Indonesia's lack of a governing body for data breach notifications and the absence of comprehensive privacy impact assessments or cybersecurity compliance. Ultimately, the study underscores the need for Indonesia to develop a normative model for data protection to address its significant regulatory gaps—contrasting with South Korea's more robust legal mechanisms and the GDPR's systematic oversight.
Keywords: Data Breach, Data Breach Notification, Data Protection.
Downloads
References
Baballe, M A et al, “Online Attacks Types of Data Breach and Cyber-attack Prevention Methods” (2022) 2:5 Global Journal of Research in Engineering & Computer Sciences.
Baldwin, David, Jennifer Buckley & D Slaugh, “Insuring against Privacy Claims Following a Data Breach” (2018) 122:3 Penn State Law Review.
Bisogni, Fabio & Hadi Asghari, “More Than a Suspect: An Investigation into the Connection Between Data Breaches, Identity Theft, and Data Breach Notification Laws” (2020) 10 Journal of Information Policy.
Borgesius, Frederik Zuiderveen et al, “The GDPR’s Rules on Data Breaches: Analysing Their Rationales and Effects” (2023) 20:2 SCRIPTed: A Journal of Law, Technology & Society.
Christou, George & Ji Soo Lee, “EU-South Korea Cooperation on Cybersecurity, Data Protection and Emerging Technologies” in Gertjan Boulet, Michael Reiterer & Ramon Pacheco Pardo, eds, Cybersecurity Policy in the EU and South Korea from Consultation to Action: Theoretical and Comparative Perspectives (Cham: Springer International Publishing, 2022).
Culot, Giovanna et al, “Behind the Definition of Industry 4.0: Analysis and Open Questions” (2020) 226 International Journal of Production Economics.
Değermen, Anıl & Maryam Mohammadabbasi, “Using Big Data In Analysis Of Consumer Behavior: A Qualitative Study” (2023) 12:1 KLUJFEAS.
Disemadi, Hari Sutra, “Data Ownership in Regulating Big Data in Indonesia Through the Perspective of Intellectual Property” (2022) 13:2 Jurisdictie: Jurnal Hukum dan Syariah.
———, “Lenses of Legal Research: A Descriptive Essay on Legal Research Methodologies” (2022) 24:2 Journal of Judicial Review.
Fitri, Winda, Hari Sutra Disemadi & Monica Rindiyani, “Data Leakage of Consumer Personal Data in Telecommunications Services Customer Registration: Who Is Responsible?” (2024) 4:1 Yustisia Tirtayasa : Jurnal Tugas Akhir.
George, Dr A Shaji, “The Fourth Industrial Revolution: A Primer on Industry 4.0 and its Transformative Impact” (2024) 02:01 Partners Universal Innovative Research Publication (PUIRP).
Groumpos, Peter P, “A Critical Historical and Scientific Overview of all Industrial Revolutions” (2021) 54:13 IFAC-PapersOnLine.
Harfoush, Fady A, “Data Ethics: Facts and Fiction” in Fady A Harfoush, ed, From Big Data to Intelligent Data: An Applied Perspective (Cham: Springer International Publishing, 2021).
Haucap, Justus, “Competition and Competition Policy in a Data-Driven Economy” (2019) 54:4 Intereconomics.
Hayat, Ahatsham et al, “Introduction to Industry 4.0” in (Singapore: Springer Nature Singapore, 2023).
Hoofnagle, Chris Jay, van der Sloot ,Bart & Frederik Zuiderveen and Borgesius, “The European Union general data protection regulation: what it is and what it means*” (2019) 28:1 Information & Communications Technology Law.
Khan, Asharul Islam & Ali Al-Badi, “Emerging Data Sources in Decision Making and AI” (2020) 177 Procedia Computer Science.
Ko, Haksoo et al, “Structure and Enforcement of Data Privacy Law in South Korea” (2017) 7:2 International Data Privacy Law.
Kulesza, Ewa, “The Protection of Customer Personal Data as an Element of Entrepreneurs’ Ethical Conduct” (2018) 21:7 Annales Etyka w Życiu Gospodarczym.
Lauren M Lozada, “The (Possibly) Injured Consumer: Standing in Data Breach Litigation” (2020) 93:2 St John’s Law Review.
Li, Kai et al, “How Should We Understand the Digital Economy in Asia? Critical Assessment and Research Agenda” (2020) 44 Electronic Commerce Research and Applications.
Li, Xuedong, Digitalizing R&D in Manufacturing Sector: Machine Learning, Infrastructure, System Architecture and Knowledge Management Massachusetts Institute of Technology, 2021).
Manokha, Ivan, “GDPR as an Instance of Neoliberal Governmentality: a Critical Analysis of the Current ‘Gold Standard’ of Data Protection” (2023) 4:2 Political Anthropological Research on International Social Sciences (PARISS).
Mantelero, Alessandro, “The Future of Data Protection: Gold Standard vs. Global Standard” (2020) 40 Computer Law & Security Review.
Quach, Sara et al, “Digital Technologies: Tensions in Privacy and Data” (2022) 50:6 J of the Acad Mark Sci.
Romanosky, Sasha, David Hoffman & Alessandro Acquisti, “Empirical Analysis of Data Breach Litigation” (2014) 11:1 Journal of Empirical Legal Studies.
Rustad, Michael & Thomas Koenig, “Towards a Global Data Privacy Standard” (2020) 71:2 Florida Law Review.
Semchuk, Natalia, “Protection of Personal Data in the Law of Ukraine: Current Status and Recommendations for Changes” in Scientific Space: Integration of Traditional and Innovative Processes (Riga: Baltija Publishing, 2023).
Sen, Ravi & Sharad and Borle, “Estimating the Contextual Risk of Data Breach: An Empirical Approach” (2015) 32:2 Journal of Management Information Systems.
Shahrullah, Rina Shahriyani, Jihyun Park & Irwansyah Irwansyah, “Examining Personal Data Protection Law of Indonesia and South Korea: The Privacy Rights Fulfilment” (2024) 10:1 Hasanuddin Law Review.
Sholikhah, Vina Himmatus, Noering Ratu Fatheha Fauziah Sejati & Diyanah Shabitah, “Personal Data Protection Authority: Comparative Study between Indonesia, United Kingdom, and Malaysia” Indonesian Scholars Scientific Summit Taiwan Proceeding.
Subekti, Nanang, I Gusti Ayu Ketut Rahmi Handayani & Arief Hidayat, “Konstitusionalisme Digital di Indonesia : Mengartikulasikan Hak dan Kekuasaan dalam Masyarakat Digital” (2023) 2:1 Peradaban Journal of Law and Society.
Surindra, Mochamad Denny et al, “Challenges of Implementing Industry 4.0 in Developed and Developing Countries: A Comparative Review” (2024) 4:3 Mechanical Engineering for Society and Industry.
Tan, David, “Metode Penelitian Hukum: Mengupas Dan Mengulas Metodologi Dalam Menyelenggarakan Penelitian Hukum” (2021) 8:8 Jurnal Ilmu Pengetahuan Sosial.
Tugaoen, Jenna, “Standing on the Ledge: Balancing Data Breaches in the Era of Technology” (2022) 50:1 Capital University Law Review.
Dahlman, Carl, Sam Mealy & Martin Wermelinger, Harnessing the Digital Economy for Developing Countries, by Carl Dahlman, Sam Mealy & Martin Wermelinger (OECD Development Centre, 2016).
Mayer, Peter et al, “Now I’m a bit {angry:}” Individuals’ Awareness, Perception, and Responses to Data Breaches that Affected Them (2021).
Salim, Samuel Christian & Jeane Neltje, Analysis of Legal Protection Towards Personal Data in E-Commerce (Atlantis Press, 2022).
Downloads
Published
Issue
Section
License
Copyright (c) 2025 Ampuan Situmeang, Jihyun Park, Lu Sudirman, Ninne Zahara Silviani, Shenti Agustini
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
