Malaysia legislation
Section 27
Section 27
(a)
developing written policies and procedures to be followed by its employees, agents and contractors;
(b)
establishing controls, including—
(i)
the use of passwords, credential tokens, digital signatures or other mechanisms; and
Act 710
(ii)
user identification;
(c)
providing information and training to ensure compliance with the policies, procedures and controls;
(d)
monitoring usage and regularly checking compliance with the policies, procedures and controls;
(e)
taking appropriate action in relation to identified breaches of the policies, procedures and controls; and
(f)
maintenance of logs of all accesses, amendments and audit trails to the credit information provided to it by the credit reporting agency.
(2)
A person who contravenes subsection (1) commits an offence and shall, upon conviction, be liable to a fine not exceeding two hundred thousand ringgit or to imprisonment for a term not exceeding two years or to both.
Unfavourable credit action