Some are also justifiably concerned about the potential disclosure of the personal data of millions of MySejahtera users between private entities. In 2010, Malaysia passed the Personal Data Protection Act. Lesson #2: Do not disclose personal data of your customers/users to third parties without their consentRegardless of who legally owns the personal data, the more important question is this: Besides the government and KPISoft, who else had access to our personal data in MySejahtera? However, if it did have access and MySejahtera users had not consented to such access, it would be a breach of the PDPA. In short, tread carefully and seek expert advice, if necessary, whenever personal data is at stake.

Source: The Edge Markets April 11, 2022 06:25 UTC