PDPA Awareness and Compliance Training Malaysia

This programme helps employees and organisations understand their obligations under the Personal Data Protection Act 2010 (PDPA). Practical and non-legal in tone, it is designed for any staff member who handles personal data as part of their role.

Modules

Introduction to PDPA Malaysia
What PDPA is, why it exists, who it applies to, and what the consequences of non-compliance look like.

What Counts as Personal Data
Identifying personal data and sensitive personal data in your organisation's day-to-day operations and systems.

The 7 Principles of PDPA
Practical application of the General, Notice, Choice, Disclosure, Security, Retention, Data Integrity, and Access principles.

Consent and Notification
How to obtain valid consent, what must be disclosed to data subjects, and how to manage and record consent properly.

Data Subject Rights
Handling access requests and correction requests from individuals, including your obligations and response timelines.

Security and Retention
What security measures PDPA requires and how long personal data may be kept under different circumstances.

Dealing with Breaches
Steps to take when a data breach occurs. Organisational responsibilities, documentation, and escalation procedures.

Final Activity

Scenario Review Exercise. Participants work through workplace scenarios to identify PDPA obligations, data risks, and the correct course of action.

Key Outcomes:
Understand what PDPA requires from your organisation
Identify personal data in everyday business processes
Apply the 7 PDPA principles in practice
Handle consent, access requests, and corrections correctly
Know what to do when a data breach occurs
Reduce compliance risk through better day-to-day data handling

Fee: RM 1,750 per participant
Minimum enrolment: 1 participant
Duration: 1 Day
Level: All staff / No legal background required
HRD Corp Claimable
Certificate included