You can always press Enter⏎ to continue
AKTA 709 - SEMAKAN KENDIRI PEMATUHAN PENGGUNA DATA / DATA USER COMPLIANCE SELF-ASSESSMENT
40
Questions
START
1
Maklumat Organisasi / Organisation Information
*
This field is required.
Nama Organisasi (Organisation Name)
No. Pendaftaran Syarikat/Organisasi (Company/Organisation Registration No.)
Previous
Next
Submit
Press
Enter
2
1. Adakah organisasi anda termasuk dalam golongan pengguna data wajib mendaftar dengan Pesuruhjaya? / Does your organisation fall under the category of data users who need to register with the Commissioner?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
3
2. Jika ya, adakah organisasi anda telah menyelesaikan pembayaran fi pendaftaran? / If yes, has your organisation made the registration fee payment?
*
This field is required.
Ya
Tidak
Previous
Next
Submit
Press
Enter
4
3. Nyatakan jenis sektor/industri perniagaan bagi organisasi anda. / Please state the category of your organisation's business sector/industry.
*
This field is required.
Komunikasi / Communication
Perbankan dan Industri Kewangan / Banking & Financial Institution
Insurans / Insurance
Kesihatan / Medical
Pelancongan & Hospitaliti / Tourism & Hospitality
Pengangkutan (Udara) / Transportation (Air)
Pendidikan / Education
Jualan Langsung / Direct Selling
Perkhidmatan / Services
Hartanah / Property
Utiliti (Air & Elektrik) / Utility (Water & Electric)
Pajak Gadai / Pawn Broker
Pemberi Pinjam Wang / Money Lender
Tiada Golongan - Pihak Berkuasa Tempatan / No Category - Local Public Authority
Tiada Golongan - Badan Berkanun / No Category - GLC
Tiada Golongan - Lain-lain / No Category - Others
Previous
Next
Submit
Press
Enter
5
4. Adakah terdapat jawatan khusus di organisasi anda yang bertanggungjawab mengenai perlindungan data peribadi? / Do you have specific personnel in charge of personal data protection in your organisasion?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
6
5. Adakah pemprosesan data peribadi dilakukan berdasarkan maksud yang sah? / Are you processing personal data for a lawful basis purposes?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
7
6. Adakah pemprosesan data peribadi dilakukan dengan persetujuan subjek data? / Are you processing personal data with consent?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
8
7. Adakah anda hanya mengumpul data peribadi yang perlu sahaja dan tidak berlebihan, untuk tujuan yang spesifik? / Do you only collect personal data that is adequate and necessary for a specified purpose?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
9
8. Adakah anda memproses data peribadi individu di bawah 18 tahun dengan persetujuan ibubapa/penjaga? / Are you processing child (under 18) personal data with parent/guardian consent?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
10
9. Adakah organisasi anda menyediakan mekanisme bagi subjek data menarik balik persetujuan ke atas pemprosesan data peribadinya? / Are mechanisms in place for data subjects to withdraw consent to the processing their personal data?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
11
10. Adakah organisasi anda telah menyediakan Notis Perlindungan Data Peribadi (Notis PDP), yang menerangkan kepada subjek data mengenai pengendalian pemprosesan data peribadi oleh organisasi anda? / Are you providing your data with Personal Data Protection Notice (PDP Notice) which demonstrates how you process personal data?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
12
11. Adakah Notis PDP yang disediakan adalah dalam bentuk yang jelas dan semua kehendak Akta mengenai Notis PDP dipenuhi? (Rujuk seksyen 7 Akta 709) / Is your PDP Notice clear and transparent, and all the requirements are fulfilled? (Refer section 7 Act 709)
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
13
12. Adakah anda memperlihatkan Notis PDP kepada subjek data dengan secepat mungkin apabila pertama kali meminta/mengumpul data peribadi? / Are you as soon as practicable show the PDP Notice to your data subject when first asking for/collecting personal data?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
14
13. Adakah data peribadi yang sedang diproses anda zahirkan kepada pihak ketiga, dengan persetujuan subjek data? / Do you obtain the data subject's consent before disclosing personal data to other/third parties outside your organisation?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
15
14. Adakah golongan pihak ketiga yang anda kongsikan data peribadi tersebut dinyatakan di dalam Notis PDP organisasi? / Is your PDP Notice revealing the class of third parties involved in personal data sharing?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
16
15. Adakah anda menyimpan dan menyelenggara Senarai Penzahiran Kepada Pihak Ketiga? / Are you keeping and maintaining the List of Disclosure to third parties?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
17
16. Adakah terdapat sebarang Polisi Keselamatan yang dibangunkan dan dilaksanakan di organisasi anda, berdasarkan Prinsip Keselamatan? / Is there any documented personal data protection security policy developed based on the Security Principle, implemented in your organisation?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
18
17. Adakah pegawai tertentu sahaja yang diberikan kebenaran mengakses data peribadi di organisasi anda? / Is there any control management in providing access to personal data to employees implemented in your organisation?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
19
18. Adakah data peribadi yang disimpan secara fizikal diletakkan di tempat selamat dan berkunci? / Do you keep manual personal data in a safe and locked place?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
20
19. Adakah sebarang sistem backup/recovery data peribadi dilaksanakan di organisasi anda? / Is there any backup/recovery system for the processing of personal data implemented in your organisation?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
21
20. Adakah akses kepada pemprosesan data peribadi segera ditamatkan apabila kakitangan bertukar bahagian/bersara? / Do you quickly terminate access to personal data processing system when an employee resigns/change department?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
22
21. Adakah akses dan pergerakan ke atas dokumen data peribadi direkodkan secara berkala? / Are you maintaining a proper record of access to personal data?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
23
22. Adakah terdapat sebarang prosedur bagi memastikan pemindahan data peribadi yang selamat? / Are there any procedures to ensure personal data transfers are secure?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
24
23. Adakah pemproses data yang dilantik oleh organisasi anda mengambil langkah keselamatan wajar bagi melindungi data peribadi? / Do your data processor conduct sufficient security measures to protect personal data?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
25
24. Adakah kakitangan di organisasi anda mendapat latihan mengenai perlindungan data peribadi? / Is there any programme/training about personal data protection conducted for all employees in your organisation?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
26
25. Adakah organisasi anda mempunyai pelan risiko berkaitan data peribadi? / Is there any personal data risk management developed by your organisation?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
27
26. Adakah organisasi anda memusnahkan data peribadi apabila tidak lagi hendak digunakan? / Does your organisation permanently destroy personal data when no more in need?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
28
27. Adakah organisasi anda menghapuskan secara kekal semua kertas/dokumen fizikal mengandungi data peribadi yang tidak lagi diperlukan? / Does your organisation permanently dispose of unwanted paper-based personal data?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
29
28. Adakah data peribadi digital yang tidak lagi digunakan juga dihapuskan secara kekal? / Is digital personal data systematically destroyed when it is no longer in use?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
30
29. Adakah organisasi anda menyelenggara rekod berkala bagi pemusnahan data peribadi? / Do you maintain a periodic record for personal data disposal?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
31
30. Adakah penggunaan peranti mudah alih dan perkhidmatan pengkomputeran awan dilakukan dengan kebenaran pengurusan tertinggi? / Do you use removable media devices and cloud computing services with written consent from an officer authorised by the top management?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
32
31. Adakah organisasi anda membangunkan prosedur kerja untuk memastikan data peribadi dikumpul adalah tepat dan terkini? / Are there procedures in place to ensure personal data collected by you is the latest version and accurate?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
33
32. Adakah organisasi anda menggunakan borang khusus (fizikal dan/atau elektronik) bagi pembetulan/pindaan data peribadi subjek data? / Does your organisation provide physical and/or electronic form for personal data correction/amendment?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
34
33. Adakah subjek data dibenarkan untuk mengakses data peribadinya yang sedang diproses oleh organisasi anda? / Do you allow your data subjects to access their personal data?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
35
34. Adakah subjek data dibenarkan untuk mengemaskini/membetulkan data peribadinya yang sedang diproses oleh organisasi anda? / Do you allow your data subjects to amend/correct their personal data?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
36
35. Adakah pemindahan data peribadi ke luar Malaysia dilakukan oleh organisasi anda dengan persetujuan subjek data atau dengan kebenaran undang-undang? / Do you transfer personal data outside Malaysia with data subject's consent or allowed by law?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
37
36. Adakah organisasi anda turut merujuk kepada garis panduan ASEAN Model Contractual Clauses (MCCs) apabila menyediakan dokumen kontrak yang melibatkan pemindahan data peribadi kepada pihak ketiga di luar Malaysia? / Do you refer to ASEAN Model Contractual Clauses (MCCs) guidelines when preparing contract involving personal data transfer to a third party outside Malaysia?
*
This field is required.
Ya / Yes
Tidak / No
Previous
Next
Submit
Press
Enter
38
Adakah soalan semak kendiri ini membantu anda? / Does this self-assessment assist you?
*
This field is required.
Row 0, Column 0
Row 0, Column 1
Row 0, Column 2
Row 0, Column 0
Row 0, Column 1
Row 0, Column 2
Previous
Next
Submit
Press
Enter
39
Dalam skala 1 hingga 5, bagaimanakah anda menilai kadar pematuhan Akta 709 di organisasi anda? / On scale 1 to 5, how would you rate your organisation's level of compliance with Act 709?
*
This field is required.
1
2
3
4
5
Skala terendah / Lowest scale
Skala tertinggi / Highest scale
Previous
Next
Submit
Press
Enter
40
Sebarang pendapat / cadangan? (Any feedback / suggestion?)
Huge
Large
Normal
Small
Ok
quote
Created with Sketch.
Ok
Previous
Next
Submit
Press
Enter
Should be Empty:
Question Label
1
of
40
See All
Go Back
Submit
