info@otc.com.my +6012-588 2263

PERSONAL DATA PROTECTION ACT 2010 (INCLUSIVE OF AMMENDMENTS 2024)

Share:

INTRODUCTION FOR PERSONAL DATA PROTECTION ACT 2010 (INCLUSIVE OF AMMENDMENTS 2024)

The purpose of conducting the Personal Data Protection Act 2010 (PDPA 2010) and its amendment in 2024 workshop/training is to enrich participants with knowledge on how to implement and design a personal data protection plan based on PDPA 2010 and Personal Data Protection Standards 2015.
This workshop will provide the rules and regulations, coupled with do’s and don’ts with customer’s personal data in order to avoid or minimize the risk of the same being unlawfully used or disseminated.
This workshop/training will also provide insight on how personal data can be better protected, from a Risk Management perspective, by formulating prevention methodologies and risk mitigation plans.

 

LEARNING OBJECTIVES

  • Understand the application of the Personal Data Protection Act 2010 (Inclusive of Amendment 2024) and its related impact as a result of non-compliance.
  • Reorganize the practices and processes in respective work areas to support data protection in line with the Personal Data Protection Act 2010.
  • Increase data integrity and ensure business continuity without contamination and infringement.
  • Develop principles and mechanisms to detect and prevent unauthorized management and dissemination of Personal Data.
  • Develop and execute a Risk-Based Compliance Inspection Plan to protect personal data.

 

LEARNING METHODOLOGY

  • Virtual Online Training Session via Zoom
  • Highly Interactive Session, with a bilateral approach to the subject allowing participants to share incidents at respective work locations
  • Case Studies
  • Mind Mapping and Recap Sessions
  • Breakout / Mini Workshop Session – allowing participants to develop their own processes and to support subject matter and work in synergy with other participants.

 

DURATION

2 Days

COURSE CONTENTS

  • The Underlying reason for the enactment of Personal Data Protection Act 2010
    • Increasing number of cases: Identity Theft, Data Loss, Unauthorized dissemination of data, Fraudulent Activities
  • Overview of Personal Data Protection Act 2010
    • Regulates processing of personal data
    • Only commercial transactions
    • Not data processed outside Malaysia
    • 7 Principles
    • Criminal
    • No civil remedies
    • Other supporting Regulations under PDPA 2010
    • Personal Data Protection Standards 2015
    • Amendments to PDPA 2010 (What to be prepared for)
  • Data Subject, Data User & Data Processor (New definition under the amendment 2024)
    • Definition
    • Categories
  • Personal Data
    • What is Personal Data and its express and implied definition
    • Forms of Personal Data: As long as it identifies a data subject
    • Email – Whether it can be classified as personal data depends on the circumstances of the case.
    • IP address – Whether it can be classified as personal data depends on the manner in which it is disclosed.
    • Employer and Employee relationship: Data collated as pre-employment checks; Data volunteered just prior to employment; Data obtained during the course of employment.
  • Commercial Transaction
    • Any transaction of a commercial nature, whether contractual or not.
    • What are the areas of commercial activity that fall under the purview of Commercial Transaction.
    • Contracts (Data Processor Agreements)
    • Transfer of personal data overseas
  • Sensitive Personal Data
    • Definition and categories
    • Circumstances and conditions under which it can be processed or disseminated within the ambits of Personal Data Protection Act 2010
  • Processing – What constitutes Processing
    • Collecting
    • Recording
    • Holding
    • Storing
    • Organizing
    • Publishing on the Internet
    • Making available
  • Principles of Data Protection
    • General Principle
    • Notice and Choice Principle
    • Disclosure Principle
    • Security Principle
    • Retention Principle
    • Data Integrity Principle
    • Access Principle

    A detailed explanation coupled with examples and case studies of each principle will be shared with participants. The exception to the General Principle will also be discussed. These principles will be read together with the Personal Data Protection Standards 2015.

  • In instances of crime prevention, the following principles must be upheld (at least):
    • General principle
    • Notice & choice principle
    • Disclosure principle
    • Access principle.
  • Rights of Data Subject
    • Right to access personal data
    • Right to correct personal data
    • Right to withdraw consent
    • Right to prevent processing likely to cause damage or distress
    • Right to prevent processing for the purpose of direct marketing
  • Transfer of Data Overseas
    • Who can authorize transfer
    • Circumstances under which Data User can effect transfer within the ambits of PDPA 2010
  • Appointment of a Data Protection Officer
    • Competency (Qualifications, experience, skill sets)
    • Skill sets
    • Scope of Work
    • Job Description
  • What Constitutes an Offence under the Personal Data Protection Act 2010 (Amendments 2024)
    • Summary of Offences
    • Case Study
    • Liabilities within the ambit of the act and its related impact.

    •  

    Ready to Elevate Your Quality Assurance Strategy?

    End of Session – Q & A organization.

    PERSONAL DATA PROTECTION ACT 2010

    Follow Us:

    Facebook Instagram Tiktok Linkedin Youtube Book-open

    How To Submit an Enquiry to Us?

    1. Fill in the form below and submit to us.
    2. Initiate a conversation via live chat on the bottom left of our website by stating: “Hi, my name is [your-name]. I’ve already submitted the form for this training.”
    3. We’ll promptly reach out to you regarding the training you’re interested in.
    Enquiry

    Program Enquiry Form

      ORGANIZATION DETAILS






      PERSON-IN-CHARGE DETAILS





      FOR FURTHER INFORMATION, PLEASE CONTACT US!

      Thank you