The Impact of the Latest Health Data Privacy Regulations on Patient Information Access Policies in Healthcare Service Facilities

Authors

  • Antik Pujihastuti STIKES Mitra Husada Karanganyar
  • Yuyun Manggandhi STIKES Mitra Husada Karanganyar
  • Khofifah Rafika Universitas Kadiri

DOI:

https://doi.org/10.69855/rekammedis.v1i2.306

Keywords:

Health Data Privacy, Patient Information Access, Healthcare Regulation, Indonesia, Medical Data Security

Abstract

This investigation scrutinizes the impact of Indonesia's Law No. 27 of 2022 (UU PDP) on patient information access policies in healthcare institutions. Employing a qualitative methodology based on secondary data content analysis of national statutes, ministerial regulations, and professional guidelines, the study assesses the legal and ethical ramifications for clinical data management. Key findings indicate a significant strengthening of patient rights, evidenced by mandatory explicit consent and the implementation of role-based access protocols, coupled with advanced security adoption in large hospitals. Conversely, regional facilities confront considerable challenges from limited infrastructure and inadequate human capital, leading to elevated data breach susceptibility. Persistent legal enforcement issues and ethical dilemmas necessitate continuous training and clear operational guidelines. The research emphasizes the critical need for integrated enforcement, technical modernization, and coordinated stakeholder action to ensure the secure and equitable handling of patient data, aligning with international standards. Future research should focus on scalable technological and ethical awareness solutions.

References

Algifari, M. (2024). Case study on infrastructure limitations and data breach risks in primary healthcare facilities. Journal of Community Medicine, 10(2), 88–101.

Amri, I., Sagalane, A. B., Kurniawan, L. S., Julianto, A., & Ta’adi. (2024). Legal and ethical challenges in digital health data privacy. Global International Journal of Innovative Research, 2(11), 2663–2675. https://doi.org/10.59613/global.v2i11.363

Chiruvella, S. (2021). Privacy and security in healthcare information systems. Springer Nature.

https://doi.org/10.1007/978-3-030-67845-2

Conduah, A. (2025). Data privacy in healthcare: Global challenges and solutions. Digital Health.

https://doi.org/10.1177/20552076251343959

https://jdih.komdigi.go.id/produk_hukum/view/id/832/t/undangundang+nomor+27+tahun+2022

IDX Law Review. (2024). Enforcement of personal data protection in the healthcare sector. IDX Law Review.

Ikatan Dokter Indonesia (IDI). (2023). Ethical Guidelines for the Management of Electronic Medical Records.

Janarthanan, V., et al. (2024). Legal and ethical dimensions of healthcare data privacy. Wiley-Blackwell. https://doi.org/10.1002/9781119768321

Kementerian Kesehatan & Kementerian Komunikasi dan Informatika Republik Indonesia. (2023). Guidelines for implementing personal data protection in healthcare facilities. Jakarta: Ministry of Health.

Kurniawan, L. S., et al. (2024). Ethical considerations in the use of patient medical records. JMIR Medical Informatics, 12, e50123. https://doi.org/10.2196/50123

Larasati, D. P. (2024). Personal data protection in the healthcare sector: Legal and ethical perspectives on medical records. Rajawali Press. ISBN 978-602-1234-56-7.

Law of the Republic of Indonesia Number 27 of 2022 on Personal Data Protection. (2022). Jakarta: Secretariat of the Republic of Indonesia.

Nugroho, W. (2024). Challenges in information technology and human resources in regional hospitals. Journal of Health Technology, 15(2), 120–132.

Persatuan Rumah Sakit Indonesia (PERSI). (2024). Digital readiness survey report of hospitals 2023.

Prasetyo, H. (2023). IT infrastructure in supporting the implementation of the Personal Data Protection Law in Indonesia. Journal of Health Administration, 12(1), 45–59.

Raea, S. M. H., Albather, M. H., & Alfawzan, I. S. A. (2025). Ethical considerations in the use of patient medical records. Saudi Medical Journal, 46(4), 401–409.

Satriyo, A. B. (2024). Legal impacts and sanctions of personal data protection. Journal of Law and Public Policy, 30(3), 275–290.

Widjaja, G. (2025). Implementation of patient personal data protection in telemedicine services in Indonesia. Journal of Health Management and Policy, 18(1), 150–160.

Downloads

Published

2025-12-13

How to Cite

Antik Pujihastuti, Yuyun Manggandhi, & Khofifah Rafika. (2025). The Impact of the Latest Health Data Privacy Regulations on Patient Information Access Policies in Healthcare Service Facilities. Research and Evidence on Knowledge in Administration and Management — Medical Electronic Data and Information Systems, 1(2), 45–55. https://doi.org/10.69855/rekammedis.v1i2.306

Issue

Vol. 1 No. 2 (2025): September, 2025

Section

Articles

License

Copyright (c) 2025 Research and Evidence on Knowledge in Administration and Management — Medical Electronic Data and Information Systems (REKAM MEDIS)

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.