Teruskan Pakai Zoom atau Tidak?

Oleh: Sonny Zulhuda

Dikarenakan kondisi darurat pergerakan akibat pandemi Covid-19 saat ini, beberapa produk dan jasa bisnis meroket karena permintaan meningkat. Food delivery, e-commerce portal dan online meeting platform di antara yang menangguk keuntungan. Zoom sendiri sudah menorehkan peningkatan pemakaian 20 kali lipat. Biasanya hanya 10 juta meeting online perbulan, kini setidaknya ada 200 juta meeting online sebulan.

Pertanyaan yang kini banyak dilontarkan masyarakat: Amankah untuk memakai Zoom?

Zoom ini layaknya banyak platform media online lainnya seperti Skype, Google Hangouts dan lain lain. Masing-masing ada kelebihan dan kekurangan baik dari segi setting (setelan), features (spesifikasi) teknis dan non-teknis, ongkos ataupun fasilitas lainnya.

Zoom, seperti layaknya produk lain, sangat mungkin memiliki kekurangan dan kelemahan sistem. Apakah yang lain itu aman? Ketika banyak kasus curi mobil yang melibatkan mobil merek tertentu, apakah karena mobil mereka lain lebih aman? Tidak juga. Mungkin saja karena mobil merek itu adalah yang paling banyak penggunanya sehingga lebih mudah dipelajari, lebih mudah dicari kuncinya dan lebih mudah dijual hasil curiannya.

Ketika penggunaan Zoom meningkat sampai 20 kali ganda, perlu dipahami dari dua sisi: Pengguna dan Penyedia jasa. Dari sisi ppengguna, banyak sekali dari mereka yang baru pertama kali memakai platform seperti ini. Banyak diantara mereka yang baru sekali itu melakukan online meeting. Malah parahnya, banyak juga di antara mereka yang baru pertama kali menggunakan teknologi internet! Bisa dibayangkan apakah para pengguna ini mengerti tentang seluk beluk lalu lintas Internet yang penuh dengan risiko dan rambu-rambunya?

Kedua, pemilik Zoom bisa dijangka kewalahan saat mendapatkan durian runtuh ini. Ada tiga hal yang setidaknya harus mereka sediakan: 1. Setelan teknis, 2. Business process, dan 3. Sumber daya manusia. Apakah Zoom telah siap dalam ketiga hal tersebut untuk menerima luapan pengguna dalam sekelip mata?

Continue reading “Teruskan Pakai Zoom atau Tidak?”

PDP Act Compliance Program – Where to Start?

By: Sonny Zulhuda

success manThis New Year was marked by concerns about complying with the Personal Data Protection (PDP) Act 2010 for Malaysian data users: Bankers, Telco’s, Insurers, Hospitals, Marketers, Airliners, Property Sellers, and many more.

For data users, this is what you may consider:

1. Get to know about the law and its implication to you;

2. Make self-assessment on your current business processes to what extent it complies (or not) with the law;

3. Plan a massive personal-data compliance programme.

For the first one, the shortcut is to attend forum, workshops or training on Personal Data Protection law. There are now few such training in the market. Identify them and get involved. There are few types of training you can consider, according to your needs:

Continue reading “PDP Act Compliance Program – Where to Start?”

What You Need to Know about the PDPA


My Intro: The following article, appeared in The Star newspaper, is about public awareness on the Personal Data Protection Act (PDPA) 2010 (Act 709). The journalist had compiled the report out of few resources, including the PDP Department and myself (through series of interaction). It is indicated at the bottom of the article itself. I reproduce the article in this page for the benefit of more readers.

Cheers! Sonny Zulhuda


“What You Need to Know about the PDPA”

(Reproduced from The Star Online, published on Sunday, 30/12/2012)

PDPA 2010A freelance journalist from Penang was already coping with the pain from a hemorrhoids surgery when she had to endure another hurtful experience – she discovered that her surgeon had taken photographs of her private parts without her consent when she was under.

When she confronted him, she was told that it was “normal procedure” and a common practice for “medical purposes”. Outraged that her privacy had been violated, she sued the doctor.

This is one of the many cases of personal data breaches and privacy violations in the country. Hence, the enforcement of the Personal Data Protection Act (PDPA) this New Year is much lauded. In fact, it is long awaited – for some, over a decade long.

However, while pictures of one’s private parts may constitute as personal data, the aggrieved patient would not be able to take action under the Act – our PDPA only regulates commercial transactions. (The freelance journalist, however, won RM25,000 in damages in her civil court case.)

Here are some of the facts you need to know about the PDPA: Continue reading “What You Need to Know about the PDPA”

From the 2nd Annual Summit on Personal Data Protection (KL, 12-13 Dec 2012)

By: Sonny Zulhuda

Brochure2 PDP Forum Dec 2012This 2nd Annual Personal Data Protection Summit was held in Royale Chulan of Kuala Lumpur. As admitted by the organiser (the World Asian Summit), this year edition showed much bigger interest. This impressive crowd attendance can only mean one thing: the undeniable importance of the PDP Act 2010.

The Deputy Minister Dato’ Joseph Salang had re-emphasised the Government’s seriousness about implementing the long-awaited legislation, which was already passed since June 2010. In his key-note speech, he again revealed that the Act will be enforced on the 1st January 2013 – echoing similar statement by the Minister of Information, Communications and Culture recently (Read reports on Dato’ Joseph’s announcement here, here and here).

I was invited to speak in the 2-day conference, on “Reality check on the right to privacy in Malaysia — and how is it affected by the mobile technologies and social media.” Continue reading “From the 2nd Annual Summit on Personal Data Protection (KL, 12-13 Dec 2012)”

Personal Data Protection Act 2010 will be Enforced from 01.01.2013 — Or so it was said…

By Sonny Zulhuda

That is it. No more waiting or being complacent.

The Minister of Information, Communications and Culture  of Malaysia, Datuk Seri Rais Yatim was reported today (23 Oct 2012) as saying that the crucial Act will be enforced beginning of the year 2013 — that is less than two months from now. The report from The Sun Daily can be viewed here.

Credit: The Sun Daily (c) 2012
Credit: The Sun Daily (c) 2012

And when it is implemented, as prescribed by the Act itself, data users will have three months to prepare to comply with the rules and regulations on personal data that they collect, process or otherwise store. In total, companies as well as individual data users will only have five months to prepare themselves before the Data Protection Commissioner can knock their doors if he wishes to inspect their personal data system and the level of compliance.

Also, it would mean that the consumers, termed as data subjects, would be able to come and check the accuracy of their personal data collected and processed at their bankers, telecommunications providers, or any other services providers that they had contract with.

Who will be implicated? Continue reading “Personal Data Protection Act 2010 will be Enforced from 01.01.2013 — Or so it was said…”