This site uses cookies to provide you with a more responsive and personalized service. By using this site you agree to our use of cookies. Please read our cookie notice for more information on the cookies we use and how to delete or block them.

Bookmark Email Print page

Personal data protection

PDPA lockThe Malaysian government gazetted the Personal Data Protection Act 2010 (PDPA) in June 2010 with the objective of regulating the collection, processing, use and storage of personal data for commercial transactions. With the PDPA in effect, it is imperative for organizations to have in place proper safeguards and an effective personal data protection & privacy framework to ensure compliance. It is also important for organizations to realize that violation of the act will result in risks of legal penalties as well as reputational risks.

Is your organisation ready to deal with PDPA?

At Deloitte, we provide advisory services to assist an organization in its efforts to comply with the PDPA. We can assist your organization to manage the risks across various activities including the design and implementation of data protection & privacy framework, performing detailed industry specific compliance assessments, customer information flow analysis, breach response reviews, third party privacy reviews and training and awareness programmes. The breadth of our services enables us to better understand the essence of the issues an organization faces, and provide realistic, practical recommendations for improvement. Our services in this area is holistic in its approach focusing on the people, governance, process and technology perspective of the subject matter.

Our range of services include:                                                                                                            

  • Awareness programme – provide a general overview of PDPA , including objectives, principles, compliance requirements, and roles and responsibilities
  • PDPA Training – equip your people with the knowledge and basic skills to get started with PDPA compliance in your organization
  • PDPA Readiness QuickScan – conduct a quick scan to assess your organization’s current level of PDPA readiness
  • Customized Assessment – industry specific compliance assessments that review and analyze the controls and personal information flow of your organization
  • PDPA Framework & Data Mapping – enable your organization to achieve system based data protection & privacy management
  • Compliance & Audit – enable your organization to achieve a continuous and sustainable data protection & privacy management framework and culture

The Deloitte value – Benefiting your organization

  • Satisfying PDPA requirements: Establishing end-to-end data privacy and protection processes, policies and procedures in line with PDPA.
  • Achieving competitive advantage in the market: An organization that practices efficient and effective privacy and security measures places them ahead of their competitors as it promotes security and level of assurance to the customers.
  • Promoting transparency: Build better relationship with employees and customers, consequently encouraging people to provide more valuable information as they are confident it will be used appropriately.

Learn more:

PDPA brochure: Privacy matters
New obligations for organizations to process personal data

Deloitte as pioneer

CEO Breakfast Series - PDPA

FMM Seminar - PDPA Training

BFM Press Interview

General enquiry:
Vicky Shi
03-7723 6500 ext 6319

Click here if your organization is small to medium sized enterprise

Click here if your organization is large enterprise

Stay connected:
More on Deloitte
Learn about our site