Studi Literatur: Analisis Keamanan dan Privasi Data Rekam Medis Elektronik Fasilitas Pelayanan Kesehatan Berdasarkan UU Nomor 27 Tahun 2022

Authors

  • Adelia Inggrid Putri Maharani Politeknik Indonusa Surakarta
  • Sinta Novratilova Politeknik Indonusa Surakarta
  • Azalia Tjandra Dewi Politeknik Indonusa Surakarta
  • Dwi Rena Aulia Politeknik Indonusa Surakarta
  • Rina Wulandari Politeknik Indonusa Surakarta
  • Aldi Juli Saputra Politeknik Indonusa Surakarta

DOI:

https://doi.org/10.55606/cemerlang.v6i1.9191

Keywords:

CIA Triad, Data Security, EMR, PDP Law, Privacy

Abstract

Systemic non-compliance with PERMENKES 24/2022 & UU PDP 27/2022 on EHR, such as human error, weak passwords, vulnerable physical access, and low ISO 27001, increases the risk of data breaches & fines. This research fills the gap in the study by evaluating the compliance of the CIA Triad principles on Electronic Medical Records post-issuance of PERMENKES No. 24 of 2022 and Law No. 27 of 2022 thru a literature review, while also highlighting the impact of non-compliance on service quality and patient trust. This study aims to evaluate the compliance of healthcare facility security systems with PERMENKES No. 24 of 2022 and Law No. 27 of 2022 and analyze the impact of non-compliance on service quality and patient trust. This research method employs a systematic narrative literature review design to comprehensively examine the implementation of the CIA Triad in EHR security. Searches were conducted on Google Scholar (2023-2026) using the keywords "data security and privacy," "electronic medical records," and "CIA Triad." The research results show that all four healthcare facilities have adopted access control, TTE, VPN, encryption, and SSL/TLS in accordance with PERMENKES No. 24/2022 and Article 35 of the PDP Law No. 27/2022. However, the effectiveness is hindered by authentication weaknesses (weak passwords, long auto logout), the absence of written SOPs, low staff compliance, and minimal patient socialization, resulting in the data subject's rights not being transparently fulfilled. The lack of data security socialization to patients indicates that transparency and protection of data subjects' rights based on Law No. 27 of 2022 are not optimal.

Downloads

Download data is not yet available.

References

Ardianto, Efri Tri, Sabran, and Lensa Nurjanah. 2024. “Analisis Aspek Keamanan Data Pasien Dalam Implementasi Rekam Medis Elektronik Di Rumah Sakit X.” RAMMIK : Jurnal Rekam Medik Dan Manajemen Informasi Kesehatan Vol. 3(2):18–30. doi: https://doi.org/10.47134/rammik.v3i2.54.

Budiman, Arief, Muzakar Isa, and Siti Soekiswati. 2025. “Analisis Risiko Dan Tindakan Pencegahan Kebocoran Data Rekam Medis Elektronik Pasien Di RS P Surakarta.” Ranah Research (Journal of Multidisciplinary Research and Development) 7(3):2118–27. doi: https://doi.org/10.38035/rrj.v7i3.

Ekasari, Diah Devita. 2025. “Tinjauan Keamanan Data Dan Informasi Dalam Penyelengaraan Rme Berdasarkan Permenkes No 24 Tahun 2022 Di Rsud Waras Wiris Boyolali.” Universitas Duta Bangsa.

Fahmi, Mochamad, Sri Sugiarsi, and Erna Adita Kusumawati. 2025. “Indonesian Journal of Health Information Management ( IJHIM ) Vol . 5 No . 2 ( 2025 ), 1 Keamanan Sistem Rekam Medis Elektronik Untuk Menjamin Privasi Pasien Di Rumah Sakit Mitra Idaman Kota Banjar Electronic Health Record System Security To Ensure Patient Privacy In Mitra Idaman Hospital Banjar City 2 | Indonesian Journal of Health Information Management ( IJHIM ), Vol . 5 No . 2 ( 2025 ),.” 5(2):1–9.

Ikawati, Fita Rusdian, Anis Ansyori, and Dewi Anggih Surya Permatasari. 2025. “Literature Review : Analisis Keamanan Data Rekam Medis Elektronik Di Fasilitas Kesehatan.” Manajemen Informasi Kesehatan 10(2):230–37. doi: https://doi.org/10.51851/jmis.v10i2.673.

Kathleen, Gabriella Aurel, Iga Kalaringga, and Boedi Prasetyo. 2025. “Pertanggungjawaban Rumah Sakit Atas Pelanggaran Pelindungan Data Pribadi Pasien Pasca Undang-Undang Nomor 27 Tahun 2022 Tentang Pelindungan Data Pribadi.” Jurnal Hukum To-Ra : Hukum Untuk Mengatur Dan Melindungi Masyarakat 11(3):531–45. doi: https://doi.org/10.55809/tora.v11i3.630.

Menteri Kesehatan Republik Indonesia. 2022. Peraturan Menteri Kesehatan Republik Indonesia Nomor 24 Tahun 2022 Tentang Rekam Medis. Jakarta.

Nurul Fajriah Istiqamah, Mujtahidah. 2025. “PERMENKES NO. 24/2022 DAN INTEROPERABILITAS REKAM MEDIS ELEKTRONIK.” https://jo(24):114–22.

Prayoga, Dina Ayu, Sinta Novratilova, and Wahyu Ratri Sukmaningsih. 2023. “Analisis Aspek Keamanan Ruang Filing Terhadap Kerahasiaan Dokumen Rekam Medis Di Rumah Sakit PKU Muhammadiyah Wonogiri Kota.” Journal Health Information Management Indonesian (JHIMI) 02. doi: https://doi.org/10.46808/jhimi.v2i2.147.

Presiden Republik Indonesia. 2022. Undang-Undang Republik Indonesia Nomor 27 Tahun 2022 Tentang Pelindungan Data Pribadi. Indonesia.

Rani, Destri Maya, and Bajeng Nurul Widyaningrum. 2025. “Evaluasi Keamanan Informasi Sistem Rekam Medis Elektronik Di RSI Sultan Agung.” 10(https://ojs.stikessaptabakti.ac.id/jmis/issue/view/67):52–62. doi: https://doi.org/10.51851/jmis.v10i1.636.

Suhariyono, Untung Slamet, Fita Rusdian Ikawati, and Nur Afifah. 2025. “Analisis Aspek Keamanan Informasi Data Pasien Pada Rekam Medis Elektronik Di UPT Puskesmas Karangploso.” Jurnal Manajemen Informasi Kesehatan Indonesia 13(1):2337–2585.

Wardani, Endah, Daniel Happy Putra, Dina Sonia, and Noor Yulia. 2024. “Keamanan Sistem Informasi Rekam Medis Elektronik Di Rumah Sakit Islam Jakarta Sukapura.” RAMMIK : Jurnal Rekam Medik Dan Manajemen Informasi Kesehatan Vol. 3(2):31–38. doi: https://doi.org/10.47134/rammik.v3i2.1756.

Yunmar, Rajif Agung, Yendi Putra, Muhammad Irwan Syahib, Victor Lamboy Sinaga, Amna, Andi Muhammad Nur Hidayat, Muh. Hajar Akbar, and Jarot Budiasto. 2026. “Prinsip Inti Keamanan Informasi.” P. 31 in Keamanan Siber: Prinsip, Praktik, dan Pertahanan, edited by H. Purnama. Padang: Get Press Indonesia.

Downloads

Published

2026-02-28

How to Cite

Adelia Inggrid Putri Maharani, Sinta Novratilova, Azalia Tjandra Dewi, Dwi Rena Aulia, Rina Wulandari, & Aldi Juli Saputra. (2026). Studi Literatur: Analisis Keamanan dan Privasi Data Rekam Medis Elektronik Fasilitas Pelayanan Kesehatan Berdasarkan UU Nomor 27 Tahun 2022. CEMERLANG : Jurnal Manajemen Dan Ekonomi Bisnis, 6(1), 245–255. https://doi.org/10.55606/cemerlang.v6i1.9191

Issue

Vol. 6 No. 1 (2026): CEMERLANG : Jurnal Manajemen dan Ekonomi Bisnis

Section

Articles

License

Copyright (c) 2026 Adelia Inggrid Putri Maharani, Sinta Novratilova, Azalia Tjandra Dewi, Dwi Rena Aulia, Rina Wulandari, Aldi Juli Saputra

Creative Commons License

This work is licensed under a Creative Commons Attribution-ShareAlike 4.0 International License.

Similar Articles

1 2 3 4 5 6 7 8 9 10 > >> 

You may also start an advanced similarity search for this article.