THE URGENCY OF CRIMINALIZING DOXING AS A CYBER CRIME IN INDONESIAN CRIMINAL LAW
Published:
2026-04-19Downloads
Abstract
The rapid development of digital technology in Indonesia has given rise to new forms of cybercrime, including doxing—the unauthorized collection and public dissemination of personal data with the intent to intimidate, harass, or cause harm. Despite the escalating prevalence of doxing incidents, particularly targeting journalists, activists, and ordinary citizens, Indonesian criminal law does not yet contain a specific provision that explicitly criminalizes doxing as a distinct cyber offense. This study examines the urgency of criminalizing doxing within the framework of Indonesian criminal law by employing normative legal research with statutory, conceptual, and comparative approaches. The analysis evaluates the adequacy of existing legal instruments—namely Law No. 1 of 2024 on Electronic Information and Transactions (ITE Law) and Law No. 27 of 2022 on Personal Data Protection (PDP Law)—in addressing doxing. Furthermore, a comparative analysis is conducted with the legal frameworks of Hong Kong, Singapore, and the European Union. The findings reveal that current Indonesian regulations are insufficient to address the specific characteristics of doxing, creating a significant legal vacuum. The study concludes that Indonesia urgently requires explicit criminalization of doxing, supported by clear legal definitions, graduated sanctions, and robust enforcement mechanisms aligned with international human rights standards.
Keywords:
Doxing Cybercrime Criminalization Personal Data Protection Indonesian Criminal LawReferences
Achmad, D., Farid, M., Januarti, R. P., & Syavira, A. (2023). Legal Protection Against Victims of Doxing Crime in Indonesia. Jurnal Bina Mulia Hukum, 8(1), 142–161. https://doi.org/10.23920/jbmh.v8i1.1062
Chen, M., Cheung, A. S. Y., & Chan, K. L. (2019). Doxing: What Adolescents Look for and Their Intentions. International Journal of Environmental Research and Public Health, 16(2), 218. https://doi.org/10.3390/ijerph16020218
Diati, R., & Triadi, I. (2025). Doxing as a Cybercrime: A Comparative Study Between Indonesia and Singapore. JIC: Jurnal Hukum Dan Konstitusi, 1(4), 175–183. https://doi.org/10.64272/43ax5b53
Halif, Azizah, A., & Ratrini, P. D. (2023). Regulating Doxing and Personal Data Dissemination in Indonesia. Jurnal Kajian Pembaruan Hukum, 3(1), 161–190. https://doi.org/10.19184/jkph.v3i1.33938
Li, L. B. (2018). Data Privacy in the Cyber Age: Recommendations for Regulating Doxing and Swatting. Federal Communications Law Journal, 70(3), 317–342.
MacAllister, J. M. (2017). The Doxing Dilemma: Seeking a Remedy for the Malicious Publication of Personal Information. Fordham Law Review, 85(5), 2451–2484.
Marzuki, P. M. (2017). Penelitian Hukum: Edisi Revisi. Jakarta: Kencana Prenada Media Group.
Noval, S. M. R. (2021). Doxing Phenomenon in Indonesia: Amid Waiting for Privacy Settings. Budapest International Research and Critics Institute-Journal, 4(4), 10547–10559. https://doi.org/10.33258/birci.v4i4.3072
Norton Rose Fulbright. (2022). Highlights of Indonesia’s Personal Data Protection Law. Norton Rose Fulbright Knowledge Publications.
Ong, R. (2025). Hong Kong’s Response to the Fight Against Doxxing. International Journal of Law and Information Technology, 33(1), 1–28. https://doi.org/10.1177/14737795241267290
Pangrazio, L., & Sefton-Green, J. (2021). Digital Rights, Digital Citizenship and Digital Literacy: What’s the Difference? Journal of New Approaches in Educational Research, 10(1), 15–27. https://doi.org/10.7821/naer.2021.1.616
PCPD (Privacy Commissioner for Personal Data, Hong Kong). (2021). Doxxing Can Bring Serious Legal Consequences. Hong Kong Lawyer, November 2021.
Prabowo, W. H., Wibawa, S., & Azmi, F. (2020). Perlindungan Data Personal Siber di Indonesia. Padjadjaran Journal of International Relations, 1(3), 218–239. https://doi.org/10.24198/padjir.v1i3.26194
Puspitasari, R. A., Dwiprigitaningtias, I., & Saputro, H. D. (2024). Juridical Analysis of the Qualification of Doxing as an Act of Disclosing Personal Data into the Public Space. Rechtswetenschap: Jurnal Mahasiswa Hukum, 1(1), 1–15. https://doi.org/10.36859/rechtswetenschap.v1i1.2374
Rahman, F., & Mulyani, C. K. (2023). Minimising Unnecessary Restrictions on Cross-Border Data Flows? Indonesia’s Position and Challenges Post Personal Data Protection Act Enactment. International Review of Law, Computers & Technology, 37(2), 1–20.
SAFEnet (Southeast Asia Freedom of Expression Network). (2021). The Rise and Challenges of Doxing in Indonesia. Research Report. Jakarta: SAFEnet.
SAFEnet (Southeast Asia Freedom of Expression Network). (2023). The Digital Rights Situation in Indonesia Had Worsened: Situation Report 2022. Jakarta: SAFEnet.
SAFEnet (Southeast Asia Freedom of Expression Network). (2024). Digital Rights in Indonesia: 2023 Situation Report — The Election. Jakarta: SAFEnet.
Uweng, I. S., Wadjo, H. Z., & Saimima, J. M. (2023). Criminal Legal Protection Against Doxing Based on the Electronic Information and Transactions Law. Pattimura Law Study Review, 1(1), 168–179. https://doi.org/10.47268/palasrev.v1i1.10897
Wever, M. (2022). Platform Accountability and the Regulation of Online Harassment: The Case of Doxing. Journal of Cyber Policy, 7(2), 234–252. https://doi.org/10.1080/23738871.2022.2071234
Yudiana, I. G., et al. (2023). The Urgency of Doxing on Social Media Regulation and the Implementation of the Right to Be Forgotten on Related Content for the Optimization of Data Privacy Protection in Indonesia. Padjadjaran Journal of Law, 9(3), 453–476.
License
Copyright (c) 2026 Olden Siahaan, Rahmayanti
This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.
