TY - JOUR
T1 - A Decision-Making Model for Selecting Personal Data Protection Frameworks for Companies in Indonesia
AU - Reksoprodjo, Aqil Athalla
AU - Dachyar, Muhammad
AU - Pratama, Novandra Rhezza
N1 - Publisher Copyright:
© 2024, Success Culture Press. All rights reserved.
PY - 2024
Y1 - 2024
N2 - In the modern business landscape, companies frequently utilize personal data for various purposes. However, a lack of attention to data security can create vulnerabilities that may lead to data breaches and misuse of personal information. To bolster personal data protection efforts, the implementation of a robust data security system is imperative. Selecting an appropriate framework plays a crucial role in enhancing personal data protection measures. For companies operating in Indonesia, the absence of a dedicated personal data protection framework tailored to Indonesia's Personal Data Protection Act adds complexity to the selection process. This research aims to address this challenge by identifying the optimal framework alternative for personal data protection. To achieve this objective, an Analytical Hierarchy Process (AHP) approach is employed to ascertain the relative importance of selection criteria. Subsequently, the Technique for Order of Preference by Similarity to Ideal Solution (TOPSIS) is used to rank the available alternatives. The findings of this study reveal that ISO 27701 emerges as the top choice for the personal data protection framework for companies in Indonesia. By adopting ISO 27701, businesses can enhance their data security measures, comply with relevant regulations, and safeguard personal data more effectively. This research provides valuable insights to assist companies in Indonesia in making informed decisions to protect sensitive personal information.
AB - In the modern business landscape, companies frequently utilize personal data for various purposes. However, a lack of attention to data security can create vulnerabilities that may lead to data breaches and misuse of personal information. To bolster personal data protection efforts, the implementation of a robust data security system is imperative. Selecting an appropriate framework plays a crucial role in enhancing personal data protection measures. For companies operating in Indonesia, the absence of a dedicated personal data protection framework tailored to Indonesia's Personal Data Protection Act adds complexity to the selection process. This research aims to address this challenge by identifying the optimal framework alternative for personal data protection. To achieve this objective, an Analytical Hierarchy Process (AHP) approach is employed to ascertain the relative importance of selection criteria. Subsequently, the Technique for Order of Preference by Similarity to Ideal Solution (TOPSIS) is used to rank the available alternatives. The findings of this study reveal that ISO 27701 emerges as the top choice for the personal data protection framework for companies in Indonesia. By adopting ISO 27701, businesses can enhance their data security measures, comply with relevant regulations, and safeguard personal data more effectively. This research provides valuable insights to assist companies in Indonesia in making informed decisions to protect sensitive personal information.
KW - Decision Making
KW - Framework Selection
KW - Information Security
KW - Personal Data Protection
UR - http://www.scopus.com/inward/record.url?scp=85184867322&partnerID=8YFLogxK
U2 - 10.33168/JSMS.2024.0210
DO - 10.33168/JSMS.2024.0210
M3 - Article
AN - SCOPUS:85184867322
SN - 1816-6075
VL - 14
SP - 156
EP - 171
JO - Journal of System and Management Sciences
JF - Journal of System and Management Sciences
IS - 2
ER -