This research focuses on imposing sanctions on Corporations as Electronic System Operators (PSE) if the Corporation fails to carry out its obligations and misuses User's Personal Data improperly based on Law Number 27 of 2022 concerning Protection of Personal Data. The method used in this research is normative-descriptive legal research and normative-juridical research. Normative Descriptive is research that aims to find correlation, which relates to legal rules in accordance with legal norms and whether there are legal norms in the form of orders and prohibitions that are in accordance with legal principles and whether there are actions (acts) in accordance with legal norms and legal principles. Normative Juridical, namely conducting research with an approach, examining, concepts, and related theories to study existing regulations to obtain answers to legal issues in this writing. This type of research is research on legal systematics by conducting research that has the aim of identifying the understanding and legal basis that exists. The results of this study indicate that in Law No. 27 of 2022 concerning Protection of Personal Data there are strict sanctions for Corporations as Electronic System Operators (PSE) if the Corporation leaks or misuses its Users' Personal Data.

Keywords: Personal Data, Corporations, Sanctions.

Marzuki, Peter Mahmud. Penelitian Hukum, Prenada Media Grup, Jakarta, 2015

Alan Westin : Privacy is the claim of individuals group or institution to determine for themselves, when,

how, and to what extent information about them is communicated to others dalam Allan Westin, Alan F. Westin, Privacy and Freedom, London 1967

Freeman, Marc and Van Er, Gibran. International Human Right Law, Irwin Law Inc, Canada, 2004.

Aco. A. Agus dan Riskawati. “Penagangan Kasus Cybercrime di Kota Makassar (Studi pada Kantor

Kepolisian Resort Kota Besar Makassar)”. Jurnal Supremasi Volume 10, Nomor 5, 2016

Djafar Wahyudi. “Perlindungan Data Pribadi di Indonesia Lanskap Urgensi dan Kebutuhan

Pembaharuan”. Jurnal Becoss Volume 1, Nomor 1, 2019

Dewi Rosadi Sinta. “Prinsip-Prinsip Perlindungan Data Pribadi Nasabah Kartu Kredit menurut

Ketentuan Nasional dan Implementasinya. Jurnal Sosiohumariora Volume 19, Nomor 3, 2017

Siagian Lauder, Arief Budiarto dan Simatupang. “Peran Keamanan Siber Dalam Mengatasi Konten

Negatif Guna Mewujudkan Ketahanan Informasi Nasional”. Jurnal Prodi Perang Asimetris, Volume 4, Nomor 2, 2018.

Starkey dan Eppel, E. “Digital Data in New Zealand School: Policy Reform and School Leadership”.

Educational Management Administration and Leadership (2017)

Indonesia,Undang-Undang Republik Indonesia Nomor 19 Tahun 2016 tentang Perubahan atas Undang-

Undang Nomor 11 Tahun 2008 tentang Informasi dan Transaksi Elektronik (Lembaran Negara Republik Indonesia Tahun 2016 Nomor 251 )

Indonesia, Undang-undang Republik Indonesia Nomor 27 Tahun 2022 tentang Pelindungan Data

Pribadi (Lembaran Negara Republik Indonesia Tahun 2022 Nomor 6820 )

Graham Greenleaf, 76 Global Data Protection Laws, Privacy Laws & Business Special Report, September 2011

Lidwina, Andrea. “Kebocoran Data Pribadi yang Terus Berulang

https://katadata.co.id/ariayudhistira/infografik/60b3bbeda4185/kebocoran-data-pribadi-yang-terus-berulang, 24 Maret 2023

https://cnnindonesia.com/teknologi/20221230125430-192-894094/10-kasus-kebocoran-data-2022-bjorka-domain-ramai-ramai-bantah, 24 Maret 2023