Personal Data Protection Compliance Training Course – Malaysia

Course Description

This course provides training on the requirements for collecting and handling personal information in Malaysia

Failure to properly collect, handle and protect people’s personal information can put businesses at considerable financial and reputational risk. Malaysian and European laws impose strict requirements on businesses operating in Malaysia, and all staff need to be adequately trained to meet these requirements and understand what is required of them when dealing with individuals’ personal information.

This course covers all the areas of privacy law that are likely to be encountered by Malaysian businesses. Three modules deal with the provisions of the Malaysian Personal Data Protection Act (PDPA), which sets out the rules for collecting, storing, using, handling, anonymizing, correcting and deleting personal data. It applies to all individuals, businesses and associations that operate in Malaysia or handle the personal data of Malaysians. It covers data protection and breach notification.

The European Union General Data Protection Regulation (GDPR) contains very strict privacy protection provisions. It applies to Malaysian organisations that deal with EU citizens or with their personal data (for example, if they have a website with any of the EU languages other than English.) As the EU is Malaysia’s third largest trading partner it is crucial that Malaysian businesses understand and comply with its requirements.

The lessons in this course provide scenarios and case studies that illustrate the sorts of privacy issues that staff can expect on a daily basis, and bring the business of privacy protection to life.

The PDPA was seen as a key enabler to strengthen consumer confidence in electronic commerce and business transactions …

– Shanthi Kandiah, SK Chambers The Privacy, Data Protection and Cybersecurity Law Review – Edition 5 October 2018

Who should do this training?

The course is suitable for all staff who handle personal information. Moreover, all staff, including directors and senior managers, should be familiar with the introductory material in course one and the GDPR material in course four.

For more information on other GRC Solutions’ privacy training resources:


Privacy – Covering the Privacy Act and the Australian Privacy Principles

Privacy for Schools – Covering the Privacy Act and the Australian Privacy Principles as they apply to schools

Health Privacy – Health businesses collect and maintain sensitive personal information

Australia – Financial Services

Financial Services Privacy Training – covering the Privacy Act and the Australian Privacy Principles

Credit Reporting – covering the Credit Reporting Act

Health Privacy

New Zealand

Privacy – New Zealand – covering privacy in New Zealand under the 2020 updates to the law


General Data Protection Regulation – covering the GDPR – which has global implications


Data Protection Singapore – covering the Personal Data Protection Act 2012 and also the implications of the GDPR


California Consumer Privacy Act

Course Outline

Module one: Protecting Personal Data

Module two: Protecting Personal Data (Advanced)

Module three: Preventing and responding to data breaches

Module four: GDPR

Anti-Money Laundering – Malaysia

Course Description

The Salt Compliance Anti-Money Laundering course trains reporting entities and their representatives to understand their obligations and provides a general understanding of the risks related to money-laundering and terrorism financing. Some sources estimate that over $1.5 trillion is laundered worldwide every year. Of that amount, it is estimated that $200 billion is laundered in the Asia-Pacific region alone.

We explain how to adopt an Anti-Money Laundering program, conduct Know-Your-Customer procedures and to provide reports to Bank Negara Malaysia.

The intent of this course is to provide a general understanding of money-laundering and terrorism-financing risks, and give specific understanding of the various legislative obligations imposed by the Act.

Who is this training for?

The course should be completed by all employees of reporting entities (including those involved in compliance and risk management functions) that offer services such as:

  • providing bank account-related services
  • making loans
  • exchanging currencies
  • issuing debit and stored value cards
  • issuing securities and derivatives
  • stockbroking

Course Outline

  • Module 1: Introduction to money laundering
  • Module 2: The risk of money laundering
  • Module 3: KYC obligations
  • Module 4: Monitoring and reporting obligations
  • Module 5: Terrorist financing