The Magnitude of GDPR To Malaysia

  • Mohd Bahrin Bin Othman Faculty of Law, Universiti Teknologi MARA, 40450 Shah Alam, Selangor, Malaysia.
  • Muhammad Faiz Bin Abu Samah Faculty of Law, Universiti Teknologi MARA, 40450 Shah Alam, Selangor, Malaysia.
DOI: https://doi.org/10.47405/mjssh.v7i9.1776
Keywords: GDPR, Data Privacy, Data Protection, PDPA

Abstract

The European Union (“EU”) General Data Protection Regulation (“GDPR”) governs any individuals or companies that stores or processes personal information about EU citizens within EU states even if it does not involve a business presence within the EU. Malaysian businesses need to comply with the GDPR as failure to comply will cause disruption or discontinuance of business. This paper aims to understand and evaluate the scope of the GDPR and its effect on personal data protection in Malaysia. It employs a doctrinal qualitative approach by examining the GDPR and the Malaysia Personal Data Protection Act 2010. This paper suggests that the GDPR provides a more comprehensive law with its holistic principles and rights which may provide lessons for Malaysia in protecting personal data as the area covered by the GDPR is broader specifically the non-commercial transactions, its wider range of rights and the extraterritorial applicability.

Downloads

Download data is not yet available.

References

Fauzi, N. (2019, February 12). Data Privacy Laws: Malaysia Has a Long Way to Go, New Straits Times Press. https://www.nst.com.my/opinion/columnists/2019/02/459321/data-privacy-laws-malaysia-has-long-way-go.

Google Inc. v Commission Nationale de l'informatique et des libertés (CNIL) (2017) Case C-507/17 - Court of Justice of the European Union ('Google v CNIL'). https://eur-lex.europa.eu/legal-content/en/TXT/?uri=CELEX:62017CC0507

Google Spain SL and Google Inc. v Agencia Española de Protección de Datos (AEPD) and Mario Costeja González (2012) Case C‑131/12 – Court of Justice of the European Union ('Google v. Spain'). https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=CELEX%3A62012CJ0131

Linden, T., Khandelwal, R. Harkous,H., & Fawaz.K. (2019). The Privacy Policy Landscape After the GDPR. arXiv:1809.08396v3 [cs.CR].

Nguyen, T, Kai, S, Gyu, M.L. & Yike, L. (2020). A Blockchain-Based Solution. IEEE Transactions on Information Forensics and Security, 15, 1746-1761.

Nguyen, T., Kai.S., Siyao, W., Florian, G., & Guo, Y.K. (2021). Privacy Preservation in Federated Learning: An insightful survey from the GDPR Perspective. Arxiv. arXiv:2011.05411v5 [cs.CR].

Nouwens, M., Liccardi., I, Veale.M., Karger.D, & Kagal. L. (2020). Dark Patterns after the GDPR: Scraping Consent Pop-ups and Demonstrating their Influence. Proceedings of CHI '20 CHI Conference on Human Factors in Computing Systems, April 25--30, 2020, Honolulu, HI, USA. https://hdl.handle.net/1721.1/129999.

Osborne, C. (2020). Australia Proposes Privacy Act 1988 Reforms Inspired by EU’s GDPR. Portswigger. https://portswigger.net/daily-swig/australia-proposes-privacy-act-1988-reforms-inspired-by-eus-gdpr.

Published
2022-09-30
Issue
Vol 7 No 9 (2022)
Section
Articles

Most read articles by the same author(s)