scholarly journals The Adequacy of Data Protection Laws in Protecting Personal Data in Malaysia

2021 ◽  
Vol 6 (10) ◽  
pp. 488-495
Author(s):  
Nurkhairina Binti Noor Sureani ◽  
Atikah Shahira Binti Awis Qurni ◽  
Ayman Haziqah Binti Azman ◽  
Mohd Bahrin Bin Othman ◽  
Hariz Sufi Bin Zahari
Keyword(s):  
Comparative Analysis ◽  
Data Protection ◽  
Personal Data ◽  
Data Breaches ◽  
Personal Data Protection ◽  
Analysis Methodology ◽  
Data Subject

With the burgeoning technology, Malaysia has seen a staggering number of data breaches and data leaks within this past decade alone, with no signs of the trend decreasing. This has raised questions on whether the Personal Data Protection Act 2010 (PDPA) adequately protects the personal data of Malaysians. With the recent COVID-19 pandemic, data has been collected on a larger scale than before, with more frequent data leaks occurring. Hence, this study aims to analyse the adequacy of the PDPA by benchmarking it to the United Kingdom’s (UK) Data Protection Act 2018, which have seen a decrease in data breaches since the implementation of the new legislation. In this context, personal data refers to information processed or recorded that relates directly or indirectly to a data subject, who may be identified from the information and may include sensitive personal data. The study uses a doctrinal analysis methodology to best explore the ideas and concepts within the literature available regarding the protection of personal data. The study also employs a comparative analysis methodology by comparing the scope and application of Malaysian and UK legislation for benchmarking. The findings suggest that there are improvements to be made for the PDPA to be adequate.

scholarly journals Delegation-Based Personal Data Processing Request Notarization Framework for GDPR Based on Private Blockchain

2021 ◽  
Vol 11 (22) ◽  
pp. 10574
Author(s):  
Sung-Soo Jung ◽  
Sang-Joon Lee ◽  
Ieck-Chae Euom
Keyword(s):  
Data Processing ◽  
Data Protection ◽  
Data Privacy ◽  
Personal Data ◽  
General Data Protection Regulation ◽  
Personal Data Protection ◽  
Compliance Audit ◽  
General Data ◽  
Data Controller ◽  
Data Subject

With the growing awareness regarding the importance of personal data protection, many countries have established laws and regulations to ensure data privacy and are supervising managements to comply with them. Although various studies have suggested compliance methods of the general data protection regulation (GDPR) for personal data, no method exists that can ensure the reliability and integrity of the personal data processing request records of a data subject to enable its utilization as a GDPR compliance audit proof for an auditor. In this paper, we propose a delegation-based personal data processing request notarization framework for GDPR using a private blockchain. The proposed notarization framework allows the data subject to delegate requests to process of personal data; the framework makes the requests to the data controller, which performs the processing. The generated data processing request and processing result data are stored in the blockchain ledger and notarized via a trusted institution of the blockchain network. The Hypderledger Fabric implementation of the framework demonstrates the fulfillment of system requirements and feasibility of implementing a GDPR compliance audit for the processing of personal data. The analysis results with comparisons among the related works indicate that the proposed framework provides better reliability and feasibility for the GDPR audit of personal data processing request than extant methods.

A comparative analysis of personal data protection regulations between the EU and China

2020 ◽  
Vol 20 (3) ◽  
pp. 565-587
Author(s):  
Philip Andreas Weber ◽  
Nan Zhang ◽  
Haiming Wu
Keyword(s):  
Comparative Analysis ◽  
Data Protection ◽  
Personal Data ◽  
Personal Data Protection ◽  
The Eu

scholarly journals Projekt reformy ochrony danych osobowych - czy rzeczywiście powstanie jednolity i spójny system?

2014 ◽  
pp. 93-125
Author(s):  
Agnieszka Grzelak
Keyword(s):  
Comparative Analysis ◽  
European Commission ◽  
Data Protection ◽  
Legal Status ◽  
Personal Data ◽  
General System ◽  
Consistent System ◽  
Personal Data Protection ◽  
Criminal Matters ◽  
The Eu

In January 2014 two years passed since the European Commission presented a package of reforms of the system of personal data protection in the EU. Com‑ mission proposed to create, in its opinion, a uniform and consistent system across the EU. The idea of the paper is to answer the question whether the Commission’s proposal to adopt two separate acts (one as a general system, and the second for cooperation in criminal matters and police), should meet the proposed assumptions. In order to analyze that, first the treaty background is presented, then current legal status in the field of personal data in the EU, and finally a comparative analysis of the solutions of the two drafts. The analysis leads to the conclusion that there are serious concerns about the lack of consistency.

scholarly journals Odpowiedzialność karna za utrudnianie i udaremnianie prowadzenia kontroli na gruncie ustawy o ochronie danych osobowych z dnia 10 maja 2018 r. Podstawowe zagadnienia karnoprawne

2020 ◽  
Vol 30 (4) ◽  
pp. 165-180
Author(s):  
Daria Sieradzka
Keyword(s):  
Comparative Analysis ◽  
Data Protection ◽  
Criminal Liability ◽  
Personal Data ◽  
Supervisory Authority ◽  
Personal Data Protection ◽  
Eu Legislation ◽  
Characteristic Features ◽  
The Eu ◽  
The Way

The paper analyses two provisions of the Act of 10 May 2018 on Personal Data Protection. It describes the structure and characteristic features of acts which obstruct or frustrate an inspection of compliance with personal data protection provisions. The paper emphasises the importance of powers held by a supervisory authority, the President of the Office for Personal Data Protection, especially in the context of the EU legislation. The article also gives examples of interrelationship between the controller and the entity that is controlled and discusses the way this impacts criminal liability. It presents a comparative analysis of the said provision alongside its analogous provision which is related to inspection carried out under Article 55 of the Act of 14 December 2018 on Personal Data Protection in Connection with Preventing and Fighting Crime. The final conclusions include some proposals for, inter alia, the analysis of problems noted by the Personal Data Protection Office while conducting control proceedings in the years 2018–2019.

URGENSI PEMBENTUKAN PENGATURAN PERLINDUNGAN DATA PRIBADI DI INDONESIA SERTA KOMPARASI PENGATURAN DI JEPANG DAN KOREA SELATAN

2021 ◽  
Vol 17 (1) ◽  
pp. 23-33
Author(s):  
Jeremias Palito ◽  
Safira Aninditya Soenarto ◽  
Tiara Almira Raila
Keyword(s):  
South Korea ◽  
Data Protection ◽  
Data Privacy ◽  
Personal Data ◽  
National Legislation ◽  
Personal Data Protection ◽  
Protection Mechanisms ◽  
Data Subject ◽  
What Matters

Abstract Protection of data privacy is a topic that is currently being discussed a lot. Globally, there are 132 countries that already have exclusive regulation regarding the protection of personal data, including Japan and South Korea. In Indonesia, the Personal Data Protection Bill (RUU PDP) has been included in the National Legislation Program. From the research conducted, it was found that Indonesia does not have any specific regulations regarding the protection of personal data. Furthermore, this paper also discussed the comparison between the personal data protection regulations in Japan and South Korea, so that further research can be made of what matters should be contained in the RUU PDP. The regulations in Japan and South Korea certainly have differences, but they basically contain the same things, such as principles, protection mechanisms, data subject rights, transfers to third countries, and sanctions. Keywords: Protection of Data Privacy; Japan; and South Korea. Abstrak Perlindungan data pribadi merupakan diskursus yang belakangan ini banyak dibicarakan. Secara global, terdapat 132 negara yang sudah memiliki pengaturan khusus mengenai perlindungan data pribadi, termasuk Jepang dan Korea Selatan. Di Indonesia, Rancangan Undang-Undang tentang Perlindungan Data Pribadi (RUU PDP) telah masuk ke dalam Program Legislasi Nasional. Dari penelitian yang dilakukan, didapatkan hasil bahwa Indonesia belum memiliki pengaturan mengenai perlindungan data pribadi secara khusus. Selanjutnya, dibahas pula mengenai komparasi antara peraturan perlindungan data pribadi di Jepang dan Korea Selatan, agar selanjutnya dapat diteliti hal-hal apa saja yang seharusnya dimuat dalam RUU PDP. Pengaturan di Jepang dan Korea Selatan tentunya memiliki perbedaan, tetapi pada dasarnya memuat berapa hal yang sama seperti prinsip, mekanisme perlindungan, hak data subjek, transfer ke negara ketiga, serta sanksi. Kata Kunci: Perlindungan Data Pribadi; Jepang; dan Korea Selatan.

scholarly journals Personal Data Protection in Indonesia: Legal Perspective

2020 ◽  
Vol 7 (7) ◽  
pp. 183
Author(s):  
Andriyanto Adhi Nugroho ◽  
Atik Winanti ◽  
Surahmad Surahmad
Keyword(s):  
Data Protection ◽  
Personal Data ◽  
Third Party ◽  
Data Breaches ◽  
Personal Data Protection ◽  
Private Data ◽  
Legal Perspective ◽  
Consumer Data ◽  
Financial Technology

The arrangement of personal data protection in national law is stipulated explicitly in the regulation of the Minister of the Ministry of communication and  Informasi  No. 20 of 2016 on the protection of personal data. In Indonesia, there are no rules that accommodate the protection of personal data on financial technology. That can be hazardous when the economic response of technology is not limited to its use. The case of personal data is not contained in the case of a Such hazard that may arise. The case from the theft of personal data, damage to the system that may allow the occurrence of data breaches, misuse of personal data that has been the business ruled itself, or other parties who may access personal consumer data (such as government). The need to set this up is important because private data is a person's privacy right. Still, it can fundamentally be economically valuable for a third party who is about to take advantage of it.

The Analysis of Risks to Personal Data Security

2020 ◽  
Vol 34 (34) ◽  
pp. 256-267
Author(s):  
Sylwia Kosznik-Biernacka
Keyword(s):  
Risk Analysis ◽  
Data Protection ◽  
Personal Data ◽  
Careful Analysis ◽  
General Data Protection Regulation ◽  
Analysis And Evaluation ◽  
Personal Data Protection ◽  
Analysis Methodology ◽  
General Data ◽  
The Eu

Article 32 of the EU General Data Protection Regulation imposes the obligation to implement appropriate safeguards to protect personal data. It states that the application of adequate measures is to be preceded by a risk analysis and evaluation. In the current paper, as the main risk factors, probability and consequences were assumed that take into account the basic attributes of information, i.e. confidentiality, integrity and availability. Next, a risk analysis methodology based on the risk matrix is proposed. The issue discussed in the publication is currently valid and still requires careful analysis in order to develop universal standards aimed at establishing certification mechanisms as well as quality labels and markings in terms of personal data protection.

Sign in / Sign up

Export Citation Format

Share Document