Malaysia to Establish Data Commission and Develop Digital Trust Strategy

Malaysia is developing a Digital Trust and Data Security Strategy 2026-2030 and establishing an independent Data Commission to safeguard digital transformation through a comprehensive national ecosystem. The initiatives aim to strengthen data protection and governance, enhance cyber resilience, and uphold the integrity of Malaysia's digital ecosystem, ensuring the nation's progress in AI and digital technologies remains secure, transparent, and accountable.

Malaysia is taking a proactive approach to bolster its digital transformation by developing the Digital Trust and Data Security Strategy 2026-2030, along with the establishment of an independent Data Commission. These initiatives aim to fortify data protection, enhance cyber resilience, and ensure the integrity of Malaysia's digital ecosystem, thereby fostering a secure and accountable environment for AI and digital technologies.

The Digital Minister, Gobind Singh Deo, announced the strategy and the Data Commission, which will serve as an independent oversight body for data governance and ethical AI. The strategy, set to be implemented over the next eight years, will provide a roadmap for countering emerging threats and ensuring data integrity. According to Deo, "The Digital Trust and Data Security Strategy will set a long-term roadmap for building resilience against emerging threats, advancing data integrity, and strengthening public confidence in Malaysia’s digital future" [1].

The Data Commission will align with ASEAN interoperability to support regional trust architecture, enabling AI to operate safely across jurisdictions and ensuring consistent data governance. This move underscores Malaysia's commitment to regional collaboration, aiming to close the AI divide and foster secure innovation. "By working collectively, ASEAN can close the AI divide, safeguard our societies, and unlock the full potential of innovation — building an AI future that is inclusive, secure, and distinctly ASEAN" [1].

In parallel, Rubrik and Sophos have formed a strategic partnership to deliver Microsoft 365 cyber resilience through their new offering, Sophos M365 Backup and Recovery Powered by Rubrik. This solution integrates Rubrik's industry-leading SaaS-based protection directly into the trusted Sophos Central platform, enhancing cyber resilience against ransomware, account compromise, insider threats, and data loss in SharePoint, Exchange, OneDrive, and Teams [2].

These developments align with the broader global trend of strengthening data protection and cybersecurity. The Internet and Mobile Association of India (IAMAI) has highlighted the importance of clarifying regulations regarding publicly available data for AI development, warning that ambiguities in the Digital Personal Data Protection (DPDP) Act could hinder India's AI progress [3]. Malaysia's approach, by contrast, emphasizes proactive measures to ensure a robust and transparent digital ecosystem.

References:
[1] https://thesun.my/malaysia-news/malaysia-to-launch-digital-trust-strategy-and-data-commission-by-2030-NF14664559
[2] https://techeconomy.ng/rubrik-sophos-to-deliver-microsoft-365-cyber-resilience-with-new-partnership/
[3] https://www.financialexpress.com/business/industry/iamai-flags-data-protection-hurdles-for-ai-firms/3939922/