Protecting personal data has become increasingly critical in the digital era, especially in Indonesia, where data breaches remain a pressing issue. Blockchain technology has emerged as a potential solution due to its decentralization and enhanced security mechanisms. This study aims to analyze the legal aspects of implementing blockchain technology for personal data protection in Indonesia, focusing on its effectiveness and alignment with existing regulations. A qualitative methodology was employed, including case studies in the fintech and healthcare sectors, supported by normative legal analysis. The findings indicate that blockchain significantly improves data security, with companies reporting a notable decrease in data breaches after adoption. Mechanisms such as hashing and decentralization ensure data integrity and reduce unauthorized access. However, regulatory gaps and high implementation costs hinder widespread adoption. The Personal Data Protection Law (UU PDP) in Indonesia does not yet address the unique characteristics of blockchain, creating legal ambiguities. This study highlights the need for regulatory updates and suggests targeted incentives to encourage adoption. The research contributes to theoretical understanding by integrating legal analysis with blockchain implementation and offers practical recommendations for policymakers. Future studies should explore cross-sectoral applications and comparative analyses with countries successfully adopting blockchain.

The COVID-19 pandemic has driven an increase in social media activity as a means of communication and expressing opinions, but it has also introduced new challenges to freedom of expression. This study aims to analyze policies restricting freedom of expression on social media during the pandemic from the perspective of constitutional law. A qualitative descriptive approach was employed, with data collected through in-depth interviews, focus group discussions (FGDs), and legal document analysis. The study involved 15 informants, comprising legal experts, human rights activists, and social media users. Findings indicate that 60% of informants consider the restriction policies to be ambiguous and prone to misuse, while 40% support these policies for maintaining social stability. In this context, the Electronic Information and Transactions Law (UU ITE) serves as the primary legal basis for these policies. Yet, its implementation is often criticized for conflicting with democratic principles and human rights. The study also reveals that while the policies have successfully reduced the spread of false information, their impact on freedom of expression is significant, including the removal of critical content targeting the government. This study highlights the need for more transparent, fair, and evidence-based policies to balance public protection and respect for individual rights. It contributes to constitutional law discourse by providing recommendations for policy revisions that are more responsive to the challenges of the digital era, particularly during crise

The protection of personal data has emerged as a critical concern in the digital era, particularly in Indonesia, where data breaches are increasing at an alarming rate. This study investigates the effectiveness of Indonesia's data protection policies, focusing on the implementation of Law No. 27 of 2022, and identifies the factors affecting its enforcement. Employing a qualitative approach with a case study methodology, the research analyzes three major data breach incidents involving Tokopedia, BRI Life, and BPJS Kesehatan. Data collection methods included in-depth interviews with legal practitioners and document analysis of relevant regulations and reports. The findings reveal significant gaps in the enforcement of Law No. 27 of 2022, including weak sanctions, inadequate oversight mechanisms, and limited public awareness of data privacy rights. Although the law provides a foundational framework, its effectiveness is hindered by insufficient penalties and the absence of an independent supervisory authority. For instance, while Tokopedia implemented policy revisions post-breach, similar incidents remain likely due to inadequate deterrent measures. Comparatively, the European Union's General Data Protection Regulation (GDPR) demonstrates higher effectiveness through stringent sanctions and robust enforcement mechanisms. This study contributes to the discourse on data privacy by highlighting the shortcomings of Indonesia’s current policies and proposing strategic recommendations. These include harmonizing domestic regulations with international standards, strengthening enforcement through independent oversight bodies, and enhancing public education on data privacy rights. By addressing these challenges, Indonesia can establish a more robust data protection framework, fostering trust in its digital ecosystem and ensuring alignment with global practices.