Global Site
Argentina Aruba Barbados Bolivia Brazil Canada Cayman Islands Chile Colombia Costa Rica Curacao El Salvador Guatemala Honduras Mexico Paraguay Peru Puerto Rico Saint Martin Suriname United States Uruguay Venezuela
Australia Cambodia China Hawaii Hong Kong India Indonesia Japan Macau Malaysia Maldives Mongolia Myanmar Nepal New Zealand Pakistan Philippines Singapore South Korea Sri Lanka Taiwan Thailand Vietnam
Albania Andorra Armenia Austria Azerbaijan Belgium Bulgaria Croatia Cyprus Czech Republic Denmark Estonia Finland France Georgia Germany Greece Hungary Ireland Italy Kazakhstan Kosovo Latvia Lithuania Luxembourg Malta Moldova Netherlands Norway Poland Portugal Romania Serbia Slovakia Slovenia Spain Sweden Switzerland Tajikistan Turkey Ukraine United Kingdom Uzbekistan
Algeria Angola Bahrain Egypt Ghana Israel Jordan Kenya Kuwait Lebanon Liberia Mauritius Morocco Mozambique Nigeria Oman Qatar Saudi Arabia Senegal Sierra Leone South Africa Tanzania Togo Tunisia Uganda United Arab Emirates Yemen
Contact Us
home Services Risk Consulting
Crowe Malaysia
RISK CONSULTING

Personal Data Protection (Amendment) Act 2024

Protect your business & customer data
Start the conversation >>>

End-to-end PDPA compliance solutions

Implemented on 15 November 2013, Malaysia's Personal Data Protection Act (PDPA) establishes a legal framework to regulate commercial handling of personal data with the objective of protecting individual privacy rights by controlling how personal data is collected, used and disclosed.

On December 19, 2024, Malaysia’s Minister of Digital announced the phased commencement of the Personal Data Protection (Amendment) Act 2024. This significant update to the Malaysian PDPA will roll out in three stages: 1 January 2025, 1 April 2025, and 1 June 2025.

These changes substantially strengthen Malaysia’s data protection, aligning standards with international practices after a comprehensive multi-year review and July 2024 amendments. Key updates include mandatory Data Protection Officer (DPO) appointments, expanded sensitive personal data definitions, obligatory data breach notifications, and the removal of the whitelist system for cross-border data transfers.

Our PDPA compliance services:

  1. Gap analysis & roadmap development: Identify compliance gaps against PDPA’s 7 Principles and create a tailored implementation plan.
  2. Framework development: Design policies, roles and procedures for data protection.
  3. Compliance audits: Assess systems and processes against PDPA standards.
  4. Training & awareness programs: Educate staff on PDPA requirements and best practices.

Cables Technology

What is PDPA?

The Personal Data Protection Act 2010 (PDPA) is Malaysia's data privacy law regulating how businesses process personal data in commercial transactions.

Key 2025 Updates:

  • Higher Penalties: Fines up to RM1 million (from RM500K) and 3 years' jail (effective 1 April 2025)
  • Stricter Rules: Now covers data processors (e.g., vendors, cloud providers) and pseudonymized data
  • Appointment of Data Protection Officer 
  • Mandatory data breach notification.

Need PDPA compliance support?

Contact us today for a free consultation.
Contact us

Related Services

Accounting advisory

Complexity is our specialty. Work with teams that understand all facets of your accounting needs – from complex reporting requirements to strategic transactions to finance transformation.

Explore more

Tax compliance

Minimise the disruption of tax compliance. Our specialists can identify tax opportunities, while improving overall efficiency and delivering accurate tax returns.

Explore more

ESG services

Sustainability is our focus. Partner with experts offering tailored ESG solutions, from strategy to compliance and reporting to helping your business meet its goals and drive value.

Explore more

Accounting advisory

Complexity is our specialty. Work with teams that understand all facets of your accounting needs – from complex reporting requirements to strategic transactions to finance transformation.

Explore more

Tax compliance

Minimise the disruption of tax compliance. Our specialists can identify tax opportunities, while improving overall efficiency and delivering accurate tax returns.

Explore more

ESG services

Sustainability is our focus. Partner with experts offering tailored ESG solutions, from strategy to compliance and reporting to helping your business meet its goals and drive value.

Explore more

Our latest thinking and news

loading gif
Sustainble green building. Eco
Final Call: Malaysia’s ESG Transition Grant for SMEs & MTCs
Final call for Malaysian SMEs & MTCs to secure DIAF-ESG grant support before December 2025.
ransomware attack protection
What KLIA’s US$10 Million Ransom Demand Tells Us About Cyber Risk Today
KLIA's $10M ransomware attack exposes growing cyber risks. Learn 9 critical strategies to protect your business from costly breaches.
National Sustainability Reporting Framework (NSRF)
National Sustainability Reporting Framework (NSRF)
The NSRF updates Malaysia’s ESG reporting with phased implementation starting in 2025.
Sustainble green building. Eco
Final Call: Malaysia’s ESG Transition Grant for SMEs & MTCs
Final call for Malaysian SMEs & MTCs to secure DIAF-ESG grant support before December 2025.
ransomware attack protection
What KLIA’s US$10 Million Ransom Demand Tells Us About Cyber Risk Today
KLIA's $10M ransomware attack exposes growing cyber risks. Learn 9 critical strategies to protect your business from costly breaches.
National Sustainability Reporting Framework (NSRF)
National Sustainability Reporting Framework (NSRF)
The NSRF updates Malaysia’s ESG reporting with phased implementation starting in 2025.

Stay up-to-date with our newsletter

Click to Subscribe

We are here to help

Start the conversation
Working together we can help you successfully adapt and overcome the challenges you may face, both today and in the future.
Amos Law Chih Chien
Amos Law
Head of Risk ConsultingKuala Lumpur
Tan Loon Hean
Loon Hean Tan
Partner, Risk ConsultingKuala Lumpur