Personal Data Protection Act Malaysia 2013

Section 129 1 of the pdpa states that a company may only transfer personal data out of malaysia if the country is specified by the minister of communications and multimedia malaysia and this is then published in the gazette.

Personal data protection act malaysia 2013. Any additional measures implemented to ensure proper security retention and data integrity of personal data are of course optional and permitted by the commissioner if not encouraged. These address issues such as the appointment of the personal data protection commissioner the commissioner the registration of data users and the fees that may be imposed under the pdpa. As expected tuan abu hassan bin ismail is appointed as the personal data protection commissioner with effect from 15 november 2013. The law applies to the processing of personal data by entities operating in malaysia but generally does not apply to data processed entirely outside of malaysia.

Together with the pdpa five pieces of subsidiary legislation were also enforced on 15 november 2013. The standards are considered the minimum standards to be observed by data users as each and every requirement of the standards must be implemented as part of the data user s policy in its handling of personal data of customers and employees. The main responsibility of this department is to oversee the processing of personal data of individuals involved in commercial transactions by user data that is not misused and misapplied by the parties concerned. Users need to be protected to prevent any form of abuse against the storage or processing of personal data of individuals public and private sectors in malaysia for commercial transactions is stipulated under the pdpa.

On november 15 2013 the personal data protection act 2010 pdpa came into force in malaysia with the objective of protecting the personal data of individuals with respect to commercial transactions. Iv international data transfer and data localisation. December 5 2013 by michael young. Personal data protection 13 non application 3.

2 this act shall not apply to any personal data processed outside malaysia unless that personal data is intended to be further processed in malaysia. On 15 november 2013 the personal data protection act 2010 pdpa came into force in malaysia with the objective of protecting the personal data of individuals with respect to commercial transactions. This act applies to any person who collects and processes personal data in regards to commercial transactions. After enactment in 2010 malaysia s personal data protection act and implementing regulations finally went into effect on november 15 2013.