Philipp Hanusch’s Post

The bill's provisions include: the mandatory appointment of a data protection officer (DPO) by data controllers and processors; mandatory data breach notification by data controllers to the Personal Data Protection Commissioner; the definition of a 'data breach' as any breach of personal data, loss of personal data, misuse of personal data, or unauthorized access to personal data; fines of up to MYR 250,000 (approx. $53,130), imprisonment for up to two years, or both for non-compliance with data breach notifications; data subjects' right to data portability, subject to technical feasibility and data format compatibility; the requirement for data processors to comply with the security principle under the PDPA; an increase in the maximum penalty for breach of the principles under the PDPA, from MYR 300,000 (approx. $63,760) and imprisonment of two years to MYR 1 million (approx. $212,530) and imprisonment of three years; and changes in the rules regarding data transfers, specifically that a data controller may transfer any personal data to any place outside Malaysia if there is in that place any law in force which is substantially similar to the PDPA or that place ensures an adequate level of protection in relation to the processing of personal data which is at least equivalent to the level of protection afforded by the PDPA. https://lnkd.in/euaVKZXh

In July 2024, Malaysia’s Senate passed key amendments to its Personal Data Protection Act (PDPA) 2010, enhancing compliance requirements and increasing penalties for non-compliance. Register for our upcoming webinar to learn everything you need to know about staying compliant in line with the new PDPA updates. https://bit.ly/4i3HN0W #DataProtection #webinar

On December 13, the Brazilian Data Protection Authority (BDPA) began an inspection process involving 20 large companies that failed to indicate the contact person for the processing of personal data, as required by Article 41 of the General Personal Data Protection Law (LGPD). According to the provision, “the controller must appoint a person in charge of processing personal data”, and in this way, the BDPA indicates that the inspection aims to ensure that the companies notified comply with the legal requirements, regularizing the appointment of a person in charge or a functional communication channel. Want to know more? Access the full article on the IDS website by clicking on the link: https://lnkd.in/dRrt2R2G

The Digital Personal Data Protection Act, 2023 (DPDP Act) received the Hon'ble President's assent on August 11, 2023. Subsequently, draft subordinate legislation, known as the Digital Personal Data Protection Rules, 2025, has been formulated to outline the essential details and implementation framework for the Act.

Following the passing of the Personal Data Protection (Amendment) Bill 2024 in July 2024, three public consultation papers have been issued in relation to the implementation of the following impending new legal obligations. 1. Notifying the Personal Data Protection Commissioner and affected data subjects for personal data breaches. 2. Appointing data protection officer(s). 3. Effecting the data subject's right to data portability. The recently published public consultation papers shed light on what may be required for compliance while allowing the public to contribute to the final draft of these subsidiary instruments. Kherk Ying Chew, Serene Kan and Chun Hau Ng outline some key considerations in this alert.

The Regulation on the Procedures and Principles Regarding the Transfer of Personal Data Abroad No. 32598 entered into force after being published in the Official Gazette. The Regulation aims to determine the procedures and principles regarding the implementation of Article 9 of the Personal Data Protection Law, which regulates the transfer of personal data abroad. Read more here: https://lnkd.in/ef3-M6PV #onetrust #dataguidance #kvkk

📢Today, I'm focusing on the Sixth  Standard of the Jamaica Data Protection Act (JDPA). 🎯The Sixth Standard of the Jamaica Data Protection Act emphasizes the importance of respecting data subjects’ rights. ⚖️Ensure you’re compliant by giving individuals control over their personal data. 👀Swipe through to see an easy-to-understand breakdown of this standard👇🏽 #DataPrivacy #PrivacyProfessionals #DataProtection #JamaicaDataProtectionAct #Compliance #RightToBeForgotten #DSAR

[Why Data Protection Matters: A Guide to Safeguarding Personal Information Data Protection] In today's digital landscape, safeguarding personal information is not just a regulatory requirement but a vital component of maintaining trust and integrity in business. Recent events underscore the critical importance of robust data protection measures to prevent breaches that can lead to significant financial and reputational damage. By implementing strong access controls, encryption, and regular audits, organizations can better protect sensitive data and comply with the Personal Data Protection Law. Let's prioritize data security to mitigate risks and foster a safer digital environment. Get informed, visit our blog for more. https://lnkd.in/gE2aSb_M #PutrantoAlliance #DataProtection #PersonalDataSecurity

In July 2024, Malaysia’s Senate passed key amendments to its Personal Data Protection Act (PDPA) 2010, enhancing compliance requirements and increasing penalties for non-compliance. Register for our upcoming webinar to learn everything you need to know about staying compliant in line with the new PDPA updates. http://cuda.co/wbr120424b #DataProtection #Webinar

In July 2024, Malaysia’s Senate passed key amendments to its Personal Data Protection Act (PDPA) 2010, enhancing compliance requirements and increasing penalties for non-compliance. Register for our upcoming webinar to learn everything you need to know about staying compliant in line with the new PDPA updates. http://cuda.co/wbr120424b #DataProtection #Webinar