"Leaking personal data without the consent of concerned parties is unacceptable and also unethical. The case of leakage and dissemination of personal data of Lion Air passengers must receive the government’s special attention, as the personal data of tens of millions of Indonesian citizens have been controlled or kept by foreign parties," Soesatyo pointed out here on Thursday.
The House of Representatives (DPR) chairman cautioned of the misuse of data by other parties, thereby possibly disadvantaging the passengers.
The senior politician of Golkar Party is optimistic that the Transportation Ministry and Communication and Informatics Ministry would work toward seriously handling the case, as the country is entitled to protecting its citizens.
Related news: Parliament launches public hearing with Facebook over data leak scandals
Indonesia does not have in place a special regulation on personal data protection. However, Law No. 11 of 2008 on Electronic Transaction and Information, particularly its Article 26, stipulates that the consent of data owners is necessary for use of every personal data for electronic media. Those found to be violating the law can be sued.
Furthermore, Government Regulation No. 82 of 2012 on the Implementation of Electronic Transaction and System states that personal data must be protected from unauthorized usage.
Recently, the data of tens of millions of passengers of Malindo Air had been leaked and uploaded on the online forum.
The data, being kept in the Amazon Web Services (AWS), pertained to the passengers' passports and include their addresses as well as telephone numbers.
Malindo Air is sentient of the likely misuse of that data being kept on a cloud-based system.
The internal team of Malindo Air and external data service providers -- AWS and GoQuo -- as the e-commerce partners, are currently investigating the case.