The Personal Data Protection Department is now actively enforcing the PDPA.
Companies in the hotel and education sector, as well as an employment agency have been fine up to RM 20,000 for breach of the PDPA.
Data users should therefore ensure that there is full compliance with all the requirements under the PDPA and its subsidiary legislation, including the Personal Data Protection Regulation and the Personal Data Protection Standards.
The details of the offence and penalty are set out below:
No | Entity | Offence | Penalty |
1. | Hotel Judgement date:20/9/2017 |
Section 16(4) Processing personal data without certification of registration Section 5(2) |
Either:
|
2. | Private Higher Education Institution Judgement date: 14/8/2017 |
Section 16(4) Processing personal data Without certificate of registration |
Either:
|
3. | Employment Agency Judgement date: 27/9/2017 |
Section 16(4) Processing personal data without certificate of registration |
A fine of RM 10,000 |
Imprisonment may be applicable to any director or officer of tile body corporate, unless such individual manages to prove:
|