Digital platforms are given a time limit of two years to adjust to the Personal Data Protection Law, the Communication and Informatics Ministry stated.
“This personal law is an improvement from the already existing (regulations),” Informatics Application Director General at the Ministry Semuel Abrijani Pangerapan noted during the digital literacy module virtual unveiling event on Thursday.
During that adjustment period, if companies commit violation, then the ministry will only give a warning instead of a penalty.
While there are still two years to adjust to the Personal Data Protection Law, he still expects the companies to comply with the applicable laws ever since the Personal Data Protection Law was ratified.
“This means that compliance has to be done (from now),” Pangerapan remarked.
He also urged digital platforms to not delay compliance to the Personal Data Protection Law since it will affect the companies’ reputation.
The ministry also urged digital platforms to have personal data protection certification.
The Personal Data Protection Law was ratified on September 2022 after going through a lengthy process.
Before the law was ratified, regulation on personal data referred to Information and Electronic Transaction Law and Governmental Regulation No. 71 of 2019 on Electronic System and Transaction Implementation.
According to the law, companies should have personal data protection officials or workers to ensure compliance to the Personal Data Protection Law.
These officials have at least four duties comprising informing and providing suggestions to the personal data processor to comply with the regulation and monitoring and ensuring compliance toward personal data regulation and policies.
They also have to provide suggestions on the personal data protection impact evaluation and they have to act as contact persons for issues related to personal data processing.
These officials can be the companies’ internal employees or external parties that have already met the competence standard.
Source: Antara News