The Malaysian Personal Data Protection Act

When: Wed, January 15, 10am – 11am, 2014
Where: Dewan Mahkota, SME Corp, Sentral, Kuala Lumpur
Admission: Free
Info: Deloitte | PwC | AmCham | DNA | Gazette | Gov

The Malaysian Personal Data Protection Act (PDPA) is intended to protect personal data belonging to the public from being misused. Personal data encompasses any personal information including name, address, telephone number and photo [abstracted from Deloitte] The act was gazetted on 15 November 2014 and comes into full force on 15 January 2014 after a three month compliance period.

Enquiries on this Pocket Talk by SME Corp: Syamsidar Abd Razak: +603.2775.6066, email; or Norhafizah Kamarudin: +603.2775.6062, email

The Seven Principles of Personal Data Protection
(translated and abbreviated from the official PDPA site)
  1. General: Not allowed to process personal data without subject's consent.
  2. Notice: Inform subject of the source, purpose and use of data.
  3. Disclosure: Do not use data beyond its stated purpose or disclose to third parties.
  4. Security: Ensure data is safe, not tempered with, abused or given to third parties.
  5. Storage: Data must be stored no longer than the required time limit.
  6. Integrity: Ensure data is accurate, complete, not misleading and purposeful.
  7. Access: Subjects must be given the right to access their data and correct it.
[Information provided as is. For details, seek professional advice or attend the event.]