Purpose of the study: The benefits of the internet during a pandemic bring opportunities for cybercrimes, such as online data theft and leakage of consumers’ personal data. For this reason, the objectives of this study are 1) to determine the phenomenon of misuse of consumer’s personal data amidst COVID-after19 in Indonesia and 2) to describe strategies in preparing consumer personal data protection as the key to the success of the new normal in Indonesia.

Methodology: This study used non-doctrinal research. To describe the phenomenon of misuse of consumers’ personal data amidst COVID-19 in Indonesia, the data were collected by distributing questionnaires to internet users in Indonesia and applying qualitative methods employing survey data collection techniques with stratified multi-stage random sampling technique.

Results: It was found that the consumers’ personal data in Indonesia is still unprotected, so the conception adopted by the European Union and the OECD can be used as a reference for Indonesia in making a Law on Personal Data Protection.

Applications of this study: To raise the people's awareness in protecting online personal data and encourage the government to educate society on cyber security through the National Cyber and Crypto Agency

Novelty/ Originality of this study: This paper analyzes the protection strategy of e-commerce consumers during the new normal situation in Indonesia. The originality is that it discusses amidst Covid 19 cyber security. 

Annur, C. M. (2020). Zoomboombing terjadi di RI, rapat online disuguhi foto & video porno (Zoombombing happened in Indonesia, pornographic photos and videos were sent during online meeting). Retrieved from: https://katadata.co.id/berita/2020/04/16/zoomboombing-terjadi-di-ri-rapat-online-disuguhi-foto-video-porno

Annur, C. M. (2020). Data 500 ribu lebih akun zoom dijual di dark web dan forum peretas (The data of more than 500 zoom accounts were sold in the dark web and in hacker forums). Retrieved from: https://katadata.co.id/berita/2020/04/16/data-500-ribu-lebih-akun-zoom-dijual-di-dark-web-dan-forum-peretas

Annur, C. M. (2020). Indonesia menjadi target phishing tertinggi di ASEAN (Indonesia becomes the highest phishing target in ASEAN). Retrieved from: https://databoks.katadata.co.id/datapublish/2020/09/28/indonesia-menjadi-target-phishing-tertinggi-di-asean#

CISSReC. (2017). Tingkat kesadaran masyarakat tentang keamanan informasi (The people’s awareness level on information security). Retrieved from: https://www.cissrec.org/download.html

Clapp, R. (2020). E-Commerce Shopping More Frequent because of COVID-19. Retrieved from: https://www.warc.com/content/paywall/article/WARC

Diggelmann, O. & Cleis, M. N. (2014). How the right to privacy became a human right. Human Rights Law Review, 14.

Djafar, W. & Santoso, M. J. (2019). Perlindungan data pribadi mengenali hak-hak subjek data, serta kewajiban pengendali dan prosesor data (Personal data protection, knowing the rights of data subjects and the obligations of data controllers and processors). South Jakarta: Lembaga Studi dan Advokasi Masyarakat (LSAM) and Australian Government Department of Foreign Affairs and Trade (DFAT).

EC Data Protection Working Party. (2011). Geolocation Services on Smart Mobile Devices. Retrieved from: http://ec.europa.eu/justice/policies/privacy/docs/wpdocs/2011/wp185_en.pd

Gellert, R. (2015). Understanding data protection as risk regulation. Journal of Internet Law, 18(11).

Krishnan, A. (2020). COVID-19 and the new normal for e-commerce. Retrieved from: https://securityboulevard.com/2020/05/covid-19-and-the-new-normal-for-e-commerce

Kumparan. (2020). 15 juta data pengguna dilaporkan bocor, Tokopedia akui ada upaya pencurian (15 million user data were reported to be leaked, Tokopedia admits there is an attempted theft). Retrieved from: https://kumparan.com/kumparantech/15-juta-data-pengguna-tokopedia-dilaporkan-bocor-1tL0ntUNJEX/full

Lubis, A & Siahaan, A. P. U. (2016). Network forensic application in general cases. IOSR Journer of Computer, 18(6), 41–44.

Nasution, M. D. T. P., Siahaan, A. P. U., Rossanty, Y., Aryza, S. (2018). The phenomenon of cyber crime and fraud victimization in online shop. International Journal of Civil Engineering and Technology (IJCIET), 9(6), 1583–1592. Article ID: IJCIET_09_06_178 Retrieved from: http://www.iaeme.com/ijciet/issues.asp?JType=IJCIET&VType=9&IType=6

Pertiwi, W. K. (2020). Hacker klaim punya data 1,2 juta pengguna Bhinneka.com (Hacker claims to own 1,2 million user data of Bhinneka.com). Retrieved from: https://tekno.kompas.com/read/2020/05/10/21120067/hacker-klaim-punya-data-12-juta-pengguna-bhinnekacom

Rosadi, S. D. (2009). CyberLaw: perlindungan privasi atas informasi pribadi dalam e-commerce menurut hukum internasional (CyberLaw: privacy protection on personal information in e-commerce according to international law). Bandung: Widya Padjadjaran.

Salim, et al. (2017). Legal research of doctrinal and non-doctrinal. International Journal of Trend in Research and Development, 4(1). ISSN: 2394-9333.

Schwartz, P. M. & Solove, D. J. (2011). The PII problem: privacy and a new concept of personally identifiable information. Retrieved from: https://papers.ssrn.com/sol3/papers.cfm?abstract_id=1790262

Wardoyo, S. (2020). Corona & PSBB untungkan e-commerce RI, benarkah? (Do corona and large-scale social social restrictions bring profit to Indonesian e-commerce?). Retrieved from: https://www.cnbcindonesia.com/tech/20200505181156-37-156534/corona-psbb-untungkan-e-commerce-ri-benarkah