Implemented on 15 November 2013, Malaysia's Personal Data Protection Act (PDPA) establishes a legal framework to regulate commercial handling of personal data with the objective of protecting individual privacy rights by controlling how personal data is collected, used and disclosed.
The Personal Data Protection Act 2010 (PDPA) is Malaysia's data privacy law regulating how businesses process personal data in commercial transactions.
Key 2025 Updates:
Applies to:
A business engaged in the processing of personal data is legally mandated to adhere to the 7 personal data protection principles. These principles are as follows:
Key Requirements:
New 2025 Additions:
Consent management - tracking who agreed to what across websites, apps and offline forms.
New 2025 Complexity:
Accounting advisory
Complexity is our specialty. Work with teams that understand all facets of your accounting needs – from complex reporting requirements to strategic transactions to finance transformation.
Tax compliance
Minimise the disruption of tax compliance. Our specialists can identify tax opportunities, while improving overall efficiency and delivering accurate tax returns.
ESG services
Sustainability is our focus. Partner with experts offering tailored ESG solutions, from strategy to compliance and reporting to helping your business meet its goals and drive value.
Accounting advisory
Complexity is our specialty. Work with teams that understand all facets of your accounting needs – from complex reporting requirements to strategic transactions to finance transformation.
Tax compliance
Minimise the disruption of tax compliance. Our specialists can identify tax opportunities, while improving overall efficiency and delivering accurate tax returns.
ESG services
Sustainability is our focus. Partner with experts offering tailored ESG solutions, from strategy to compliance and reporting to helping your business meet its goals and drive value.