Stop Reading about the PDPA.
Start Operationalising It.
With mandatory DPO appointments now law under the 2024 PDPA Amendments, the role has shifted from "legal advisor" to "operational leader."
Master the three-day hands-on framework to protect your organisation while enhancing your career.
The Compliance Landscape Has Shifted.
Are You Ready?
Malaysia’s PDPA is no longer a "suggestion." The latest enforcement updates have introduced:
Mandatory DPO Appointment:
Every qualifying organisation must now have a registered, competent DPO.
72-Hour Breach Notification:
It is now a legal requirement to report data leaks to the Commissioner within
3 days.
RM 1 Million Penalties:
Significant increases in fines and potential criminal liability for
non-compliance.
The Reality: Most DPOs know what the law says, but don't know how to implement it across the organisation in areas such as HR, IT, and Marketing. We bridge that gap in three days.
Skills That Move the Needle
Data Mapping & Inventory:
Build a complete visual map of how personal data flows through your
business units.
Execute a
Professional DPIA:
Conduct a full Data Protection Impact Assessment to identify and mitigate high-risk gaps.
Draft a
Response Manual:
Create a ready-to-use Data Breach Incident Response plan that meets the 72-hour reporting window.
Secure Boardroom
Buy-In:
Master the language of risk to justify compliance budgets to senior management.
The Three-Day Roadmap: From Theory to Actionable Programme
DAY 1
The New Foundation
Deconstructing the 2024 PDPA Amendments.
Mapping the Business Process:
Collection → Usage → Storage → Disposal.
DAY 2
Risk & Governance
Hands-on Risk Assessment Workshop.
Design Internal Policies
Create internal policies that employees actually follow.
DAY 3
Day 3: Operational Excellence
Simulating a Data Breach: The 72-hour countdown.
Software Intensive:
Live training on the DPOinBOX.AI platform
Final Practical Assessment & Certification
Course Fee & Dates
Standard Fee: RM 5,250 (Full 3-Day Certification)
Upcoming Cohort: 13 – 15 April 2026 | Kuala Lumpur (In-Person)
Capacity: Strictly limited to 20 seats to ensure hands-on coaching
Exclusive Bonuses
2-Month Subscription Gen AI Tools for DPOs:
Use the industry’s leading AI-powered privacy management platform to automate your DPIAs and inventories. (Value: RM 1,200)
The Physical Guidebook:
Receive a copy of "99 Privacy Breaches to Beware Of", a practical guide to real-world case studies. (Worth: RM 100)
Upcoming Courses on Data Protection
Fundamentals of The Malaysia
Personal Data Protection Regulation
Information & Cyber Security for Managers‚ EXIN Certification
Who This is For
New DPOs
Get a running start on your mandatory appointment duties.
Professionals, Managers & Executives
Upskill for one of the highest-demand roles in Malaysia’s digital economy
HR & IT Leads
Protect the most sensitive data silos in your company.
Legal & Compliance Managers
Translate legal requirements into technical workflows
Learn from Practitioners, Not Academics
Meet our team of trainers
Benjamin Shepherdson
CIPM, GRCP
Benjamin is a recognised authority in data protection and risk management with over 17 years of experience across diverse sectors, including banking, healthcare, aviation, edtech and telco. As an Adjunct Lecturer at the Singapore Management University (SMU) Academy, he specialises in breaking down complex regulatory frameworks into actionable business strategies.
Benjamin has a proven track record of helping multinational corporations and SMEs navigate the complexities of digitalization while maintaining the "core value of trust". He is a Certified Information Privacy Manager (CIPM) and a Certified Governance, Risk, and Compliance Professional (GRCP), known for his ability to drive operational resilience and sustainable financial performance.
Syed Isa Alhabshee
CIPM, CIPP/E, Adv Cert in Data Protection Operational Excellence, Adv Dip in Data Governance and Management, Adv Cert in Generative AI, Ethics and Data Protection, Data Protection Practitioner Certificate in Personal Data Protection (Singapore) 2020
Isa leads the Consulting and Legal team in Straits Interactive in Singapore where he manages the legal affairs of the company and oversees the consulting team that provides data protection advisory services for clients. As a Certified Information Privacy Manager (CIPM), Isa has been conducting Data Protection and Privacy training in Singapore since 2022.
Prior to joining Straits Interactive, Isa was a successful litigation lawyer in the maritime industry who represented local and international clients in contentious legal proceedings, such as ship collisions, cargo damage and contamination, ship arrests, and marine insurance claims.
Mohammad Said Bin Salleh
Adv Dip in Data Protection, GRCP,
B.SC Management & Security Studies, SUSS
Said is a dynamic training professional with over 10 years of training experience. He has successfully trained individuals on the topics of data analytics, data visualization,service excellence, data protection and risk management.
Ever since obtaining his Advanced Diploma in Data Protection from Singapore Management University Academy in 2022, he has provided training in Singapore on the Personal Data Protection Act. Said’s knowledge and sharing of real life experiences has helped participants to learn and understand that it is important to know how to be operationally compliant with the data protection laws.
Frequently Asked Questions
Is this course HRD Corp Claimable?
Yes. This course is 100% claimable under the HRD Corp SBL-Khas scheme.
Do I need a legal background to attend?
No. This course is designed for PMEs (Managers/Heads of Dept) in HR, IT, and Operations who need practical steps, not just legal theory.
What happens after the 2-month software trial ends?
You will have the option to export all your data at the end of the 2 months or continue with our affordable annual subscription.
Tel: +603 9212 8533
Email: [email protected]
