THE trust of every Malaysian in data management must be upheld as a cornerstone of digital governance, particularly amid recent reports of telecommunications companies being instructed to submit user data to the government.
The Malaysian Communications and Multimedia Commission (MCMC) has since clarified that the Mobile Positioning Data (MPD) provided is anonymised and falls outside the scope of privacy breaches under the Personal Data Protection Act 2010 (PDPA).
The Vibes.com had cited MCMC’s Deputy Chief Operating Officer Datuk Zurkarnain Mohd Yasin stating yesterday that: “The data obtained from mobile service providers is de-identified, ensuring that no personal details of individuals are revealed,”
“We have no intention of tracking an individual’s whereabouts, where they go or where they stay. That is not the purpose of MPD.”
He added that the objective of MPD is statistical, representing “a new method of acquiring statistical information” that supports digital transformation through big data analytics rather than surveillance.
While this clarification provides some assurance, the episode has reignited broader concerns about information security, the sanctity of individual privacy, and the adequacy of Malaysia’s current data protection framework.
In the digital age, personal data goes far beyond phone numbers and addresses. It includes behavioural patterns, geolocation data, application usage, and financial information.
Any access to or sharing of such data must be done transparently, ethically and in strict accordance with clearly defined legal principles.
The government’s role in safeguarding national security is well recognised. However, this must be balanced with the need to protect citizens' rights and ensure continued public confidence in data governance practices.
Without trust, even legitimate initiatives risk being undermined by suspicion.
The existence of robust, transparent guidelines—and independent oversight—is now more important than ever.
Strengthening the Personal Data Protection Act (Act 709) to reflect today’s data environment is a logical step forward. Proposed reforms should include expanding coverage to the public sector, enhancing enforcement capabilities, and updating provisions to keep pace with technological change.
The creation of an independent data oversight body—such as a National Data Commission—has also been suggested. This would provide an impartial safeguard for ensuring accountability, transparency, and legal adherence in the handling of citizens' data.
Continuous and open communication between the government, telcos and the public is essential.
Citizens must be assured that their data is protected and used solely for lawful, justified purposes.
Malaysians are increasingly aware of their digital rights and expect ethical, responsible data governance.
Strengthening these foundations is not only crucial for trust—it also reflects Malaysia’s commitment to good governance and social responsibility in an ever-evolving digital era. - June 10, 2025
