A personal data breach is a security breach “leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data,” (GDPR, Article 4.12). All data breaches whether reportable or not require the completion of...
Many manufacturers and retailers of IoT devices don’t realise that these devices fall under the purview of data privacy regulations. As data regulators turn their attention to IoT devices, manufacturers and retailers must take steps to stay ahead of developing global...
The Attack: Ransomware attacks across the globe are mutating, exposing organisations’ vulnerability in having their data extracted from the network and forcing the victims to pay hefty ransom fees for its safe destruction, or it will be leaked to the world via...
In Part 2 of the series, we discussed the seven key principles under the Malaysian PDPA Law 2010. The final article focuses on data controller contracts, data subject rights, data transfers and how breach reporting can be done in the Health and Financial sector. Data...
Introduction Malaysia’s PDPA was introduced to increase consumer confidence in commerce and e-commerce in the face of the ever-increasing number of credit cards and to detect identity theft and sales fraud involving unauthorized users. PDPA stipulates a set of...
The Law Malaysia’s first comprehensive personal data protection legislation, the Personal Data Protection Act 2010 (PDPA), was passed by the Malaysian Parliament on June 2, 2010, and came into force on November 15, 2013. Definitions Definition of personal data...