The Personal Data Protection Act (PDPA) establishes a new general data protection law in Malaysia which governs the collection, use and disclosure of individuals’ personal data by organizations.
The Personal Data Protection Department (PDPD) is established under the PDPA with the key functions, amongst others, of promoting awareness of data protection in Malaysia and administering and enforcing the PDPA.
The course will give course participants a good overview and understanding of the PDPA and how it may be applied to the organizations for compliance and the necessary preventive measures to be adopted / implemented towards risk of personal data loss.
After completing this course participants will be able to:
- Understand the application of the Personal Data Protection Act 2010 and its related offences as a result of non-compliance in the hospitality industry.
- To reorganize the practices and process at the respective work areas to support data protection in line with Personal Data Protection Act 2010
- Increase the data integrity and ensure business continuity without contamination and infringement.
- Develop principles and mechanism to detect and prevent unauthorized management and dissemination of Personal Data.
Think differently to alter direction.
The experience of learning to read and write for the first time is likely to remain vivid in your memory. The skill is ingrained and it stays. The primary objective of our training and workshop is to make your new knowledge and abilities as durable as the ones you've already accumulated. They foster fresh ideas. They enable great feats. Individual behaviour and attitude contribute to your organization's success is what we prioritise.
Combining experiential, instructional, and discovery learning with current coaching technology promotes profound transformations in attitudes and behaviour that enable sustainable change in your business. These adjustments improve results.
Our programmes involve with 12 unique learning methodology as below:
In relation to the hospitality industry, how do the General Principles on Personal Data Protection Act 2010 apply
This module will look at how to:
- Appreciate who and what is covered by Personal Data Protection rules
- Understand the organization’s policy and aims on personal data use
- Overview of the Act
- Know and apply the core principles for personal data use
For Human Resources departments, meeting the requirements of data protection law can be particularly challenging. Holding and handling staff information carries significant legal responsibilities and risks.
This module discusses key areas of compliance issues.
- Ensuring that the recruitment and selection process meets legal requirements, including the content of application forms, pre-employment vetting, criminal records, medical checks and the interview process
- Retaining staff records, and appropriate periods of time for keeping information
- Dealing with staff information requests – what must be disclosed and can be withheld
- Disclosing staff information to outside third parties –the legal requirements that must be met before staff information can be sent outside the organization
- References and the rights of ex-members of staff
- Monitoring staff activities and communication including using Managers, CCTV cameras and website technologies
- Outsourcing functions to third party providers
This module looks at what constitutes a Personal data security breach and how such breaches can occur. It also considers how to avoid breaches, and the practical steps that should be taken when a breach occurs.
Key aspects of this module include:
- Analysis of the Security Principle under Section 9 PDPA
- Managing Information security
- Data Security Standard -Implementation
- Understanding risks to Personal Information
- Taking a holistic approach to data security – staff vetting and access and other important organizational measures that should be implemented
- Knowing what to do in the event of a data protection breach