The Adequacy of Data Protection Laws in Protecting Personal Data in Malaysia

Abstract: With the burgeoning technology, Malaysia has seen a staggering number of data breaches and data leaks within this past decade alone, with no signs of the trend decreasing. This has raised questions on whether the Personal Data Protection Act 2010 (PDPA) adequately protects the personal data of Malaysians. With the recent COVID-19 pandemic, data has been collected on a larger scale than before, with more frequent data leaks occurring. Hence, this study aims to analyse the adequacy of the PDPA by benchmarking it… Show more

“…Malaysia, in addition to passing the PDPA 2010, published the PDPA Standard 2015 and the PDP (Class of Data Users) (Amendment) Order 2016 (Noor Sureani et al, 2021). As in other legal environments governing personal data in the region, it regulates fundamental elements of personal data protection, such as consent and the security obligations of platforms.…”

“…As in other legal environments governing personal data in the region, it regulates fundamental elements of personal data protection, such as consent and the security obligations of platforms. However, the PDPA does not explicitly include the right to be forgotten nor does it protect user data in social media, despite this being a vulnerable area for personal data in the country (Sureani et al, 2021). PDPA 2010 Article 1 paragraph 2 states the law applies to "…any personal data in respect of commercial transactions" in which "commercial transactions" is understood as "any transaction of a commercial nature…which includes any matters relating to the supply or The regulations in these four member states follow the general principle of the ASEAN PDP to varying degrees.…”

Improving Data Governance and Personal Data Protection through ASEAN Digital Masterplan 2025

“…Malaysia, in addition to passing the PDPA 2010, published the PDPA Standard 2015 and the PDP (Class of Data Users) (Amendment) Order 2016 (Noor Sureani et al, 2021). As in other legal environments governing personal data in the region, it regulates fundamental elements of personal data protection, such as consent and the security obligations of platforms.…”

“…As in other legal environments governing personal data in the region, it regulates fundamental elements of personal data protection, such as consent and the security obligations of platforms. However, the PDPA does not explicitly include the right to be forgotten nor does it protect user data in social media, despite this being a vulnerable area for personal data in the country (Sureani et al, 2021). PDPA 2010 Article 1 paragraph 2 states the law applies to "…any personal data in respect of commercial transactions" in which "commercial transactions" is understood as "any transaction of a commercial nature…which includes any matters relating to the supply or The regulations in these four member states follow the general principle of the ASEAN PDP to varying degrees.…”

Improving Data Governance and Personal Data Protection through ASEAN Digital Masterplan 2025

Balancing Ubiquitous Computing: Addressing Ethical, Privacy, and Cybersecurity Challenges for Responsible and Secure Implementation in Malaysia

A Comparative Analysis of Legislative Protections for Online Safety in the Global South: A Case Study of the Caribbean