Josua Sitompul earned a bachelor’s degree from the Faculty of Law at the University of Indonesia cum laude. He received a scholarship from Total S.A., France, to continue his master’s degree at the Audencia, School of Management in Nantes, France. In 2016, he received a scholarship from the Indonesia Endowment Fund for Education (LPDP) to continue his PhD at the Faculty of Law at the Maastricht University.

The Author has worked at the Ministry of Communication and Information Technology of Indonesia since 2008. He specialises in cybercrime law and personal data protection law of Indonesia. The Author has served as a cybercrime investigator of the ministry and has given expert statements concerning cybercrime at various police stations and district courts in Indonesia. He also has been involved in the drafting of Indonesian legislation regarding cybercrime, lawful interception, data localisation, and personal data protection.

In 2014, Josua Sitompul held a GIAC Legal on Law of Data Security & Investigations certificate from SANS Institute, United States (until 2018), and IRCA Auditor Information Security Management System ISO 27001, UK (until 2017). He also obtained ECPC-B Professional Data Protection Officer Certification from the European Centre on Privacy and Cybersecurity, Maastricht University in 2019.