Perlindungan Hukum Data Kesehatan Pasien di Era Digital: Legal Protection of Patient's Health Data in The Digital Era

Yessy Andriani Fauziah; Dany Agus  Susanto; Yudhistira Prawira Utama

doi:10.30649/jhek.v6i1.270

Authors

Yessy Andriani Fauziah School of Dental Medicine Universitas Ciputra
Dany Agus Susanto Fakultas Hukum Universitas 45 Surabaya
Yudhistira Prawira Utama Fakultas Hukum, Universitas 45, Surabaya

DOI:

https://doi.org/10.30649/jhek.v6i1.270

Keywords:

Legal protection, Health data, Medical ethics, Digital era

Abstract

Digital transformation in the health sector has accelerated cross platform data exchange, while at the same time increasing the risks of privacy violations and patient information leakage. Law Number 27 of 2022 on Personal Data Protection and Law Number 17 of 2023 on Health emphasize the importance of secure and accountable medical data governance in Indonesia. This article aims to analyze the adequacy of legal protection for patient health data, with particular attention to regulatory coherence and existing normative gaps in the implementation of these two laws, as well as their relationship with the principles of medical ethics. This study applies a normative legal research method using a statutory approach, a conceptual approach, and a comparative approach. The statutory approach examines relevant legislation governing health data protection, while the conceptual approach explores ethical principles such as patient autonomy, confidentiality, and accountability. The comparative approach draws lessons from international regulatory practices to provide broader context. The findings indicate that although patient health data protection is explicitly regulated, significant gaps remain in practice, particularly regarding security standards, system interoperability, and the quality of digital consent. These weaknesses may undermine patient trust and increase legal and ethical risks. Therefore, this study recommends the implementation of Data Protection Impact Assessments, independent audits, and the integration of digital ethics into health professional education to strengthen accountability and sustain public trust, following best practices adopted in the European Union and the United States

References

Peraturan Perundang-undangan :

Kementerian Kesehatan Republik Indonesia. (2023). Undang-Undang Nomor 17 Tahun 2023 tentang Kesehatan. Jakarta: Kementerian Kesehatan RI.

Kementerian Kesehatan Republik Indonesia. (2022). Peraturan Menteri Kesehatan Republik Indonesia Nomor 24 Tahun 2022 tentang Rekam Medis. Jakarta: Kementerian Kesehatan RI.

Undang – Undang Perlindungan Data Pribadi No. 27 Tahun 2022

Jurnal :

Ali, O., & Osmanaj, V. (2020). The role of government regulations in the adoption of cloud computing: A case study of local government. Computer Law and Security Review, 36. https://doi.org/10.1016/j.clsr.2020.105396

Darmadi, E. Y., Andriani Fauziah, Y., Deriano Alvin, J., Alexandra Mayfrila, A., & Cyntia, W. (2025). Ethical And Legal Aspects Of Artificial Intelligence In Oral Health (Vol. 13, Issue 4). https://ejournal.uika- bogor.ac.id/index.php/Hearty/issue/archive

Fauziah, Y. A., Agustin Wahjuningrum, D., Edwin Sutikno, A., Agus Susanto, D., Wahjudianto, N., & Goenharto, A. (2024). Ethical and Legal Aspect of Digital Dentistry in Conservative Dental Practice. In Journal of International Dental and Medical Research (Vol. 17, Issue 4). http://www.jidmr.com

Fauziah, Y. A., Alhadad, H., & Susanto, D. A. (2025). Dental Malpractice and Criminal Liability : A Review of Law No. 17 of 2023 on Health. Jurnal Hukum Dan Etika Kesehatan, 5(1).

Fauziah, Y. A., Alhadad, H., & Utama, Y. P. (2024). Etika dan Tantangan Penggunaan Kecerdasan Buatan Dalam Kedokteran Gigi. Jurnal Hukum Dan Etika Kesehatan, 4(2).

Fauziah, Y. A., Darmadi, E. Y., Khoironi, E., & Yudianto, A. (2025). The Role of Cone Beam Computed Tomographic (CBCT) in Odontology Forensic for Forensic Identification. Indonesian Journal of Legal and Forensic Sciences (IJLFS), 14(2), 87–94. https://doi.org/10.24843/IJLFS.2024.v14.i02.p02

Fauziah, Y. A., Wahjuningrum, D. A., Darmadi, E. Y., & Adityatama, A. P. (2024). Innovation in Dental Conservation and Their Impact on Forensic Odontology. Conservative Dentistry Journal, 14(2), 42–46. https://doi.org/10.20473/cdj.v14i2.2024.42-46

Ftouni, R., AlJardali, B., Hamdanieh, M., Ftouni, L., & Salem, N. (2022). Challenges of Telemedicine during the COVID-19 pandemic: a systematic review. BMC Medical Informatics and Decision Making, 22(1). https://doi.org/10.1186/s12911-022-01952-0

Goldschmitt, M., Gleim, P., Mandelartz, S., Kellmeyer, P., & Rigotti, T. (2025). Digitalizing informed consent in healthcare: a scoping review. BMC Health Services Research, 25(1). https://doi.org/10.1186/s12913-025-12964-7

Gunawan, T. S., & Christianto, G. M. (2020). Rekam Medis/Kesehatan Elektronik (RMKE): Integrasi Sistem Kesehatan. Jurnal Etika Kedokteran Indonesia, 4(1). https://doi.org/10.26880/jeki.v4i1.43

Ho, C. H. (2024). Secondary Use of Health Data for Medical AI: A Cross-Regional Examination of Taiwan and the EU. Asian Bioethics Review, 16(3), 407–422. https://doi.org/10.1007/s41649-024-00279-4

Jungkunz, M., Köngeter, A., Mehlis, K., Winkler, E. C., & Schickhardt, C. (2021). Secondary use of clinical data in data-gathering, non-interventional research or learning activities: Definition, types, and a framework for risk assessment. Journal of Medical Internet Research, 23(6). https://doi.org/10.2196/26631

Keesara, S., Jonas, A., & Schulman, K. (2020). Covid-19 and Health Care’s Digital Revolution. New England Journal of Medicine, 382(23). https://doi.org/10.1056/nejmp2005835

Li, E., Clarke, J., Ashrafian, H., Darzi, A., & Neves, A. L. (2022). The Impact of Electronic Health Record Interoperability on Safety and Quality of Care in High-Income Countries: Systematic Review. In Journal of Medical Internet Research (Vol. 24, Issue 9). https://doi.org/10.2196/38144

Li, Z., Merrell, M. A., Eberth, J. M., Wu, D., & Hung, P. (2023). Successes and Barriers of Health Information Exchange Participation Across Hospitals in South Carolina From 2014 to 2020: Longitudinal Observational Study. JMIR Medical Informatics, 11. https://doi.org/10.2196/40959

Nusantara, A. H. S., Umam, I. K., & Lubis, M. (2024). Jaminan Informasi dan Keamanan yang Lenih Baik: Studi Kasus BPJS Kesehatan. Nuansa Informatika, 18(2), 120–127.

Parsaoran, A., & Sitompul, H. (2023). Penggunaan Rekam Medis Elektronik Untuk Pasien Rawat Jalan Di Fasilitas Kesehatan Indonesia : Literature Review. Jurnal Ilmiah Multidisipline, 37(2).

Solimini, R., Busardò, F. P., Gibelli, F., Sirignano, A., & Ricci, G. (2021). Ethical and legal challenges of telemedicine in the era of the covid-19 pandemic. In Medicina (Lithuania) (Vol. 57, Issue 12). MDPI. https://doi.org/10.3390/medicina57121314

Tapuria, A., Porat, T., Kalra, D., Dsouza, G., Xiaohui, S., & Curcin, V. (2021). Impact of patient access to their electronic health record: systematic review. Informatics for Health and Social Care, 46(2). https://doi.org/10.1080/17538157.2021.1879810

Theodos, K., & Sittig, S. (2020). Health Information Privacy Laws in The Digital Age: HIPAA Doesn’t Apply.

Varkey, B. (2021). Principles of Clinical Ethics and Their Application to Practice. In Medical Principles and Practice (Vol. 30, Issue 1). https://doi.org/10.1159/000509119

Website :

Kompas.com. (2021, May 21). Kemenkominfo duga 279 juta data penduduk yang bocor identik dengan data BPJS Kesehatan. https://nasional.kompas.com/read/2021/05/21/15192491/kemenkominfo- duga-279-juta-data-penduduk-yang-bocor-identik-dengan-data-bpjs

Kompas.com. (2021, June 4). Polri: Diduga keras data kependudukan BPJS Kesehatan bocor. https://nasional.kompas.com/read/2021/06/04/06300041/polri--diduga- keras-data-kependudukan-bpjs-kesehatan-bocor