Are you ready for a digital landscape where everyone plays by the same rules? Cybersecurity experts are applauding Malaysia's bold move to register all internet messaging and social media service providers with eight million or more users. This initiative aims to enhance accountability and tighten digital regulations, a move many see as a crucial step forward.
Professor Dr. Selvakumar Manickam, Director of the Universiti Sains Malaysia Cybersecurity Research Centre, calls this a "regulatory masterstroke." He explains that instead of waiting for tech giants to comply at their own pace, Malaysia has set up an "automatic gate" to ensure immediate regulatory oversight, eliminating administrative delays. This means that all relevant industry players are subject to Malaysian regulations from the get-go.
But here's where it gets interesting: Professor Manickam believes users will also benefit from enhanced data protection and safety measures. He emphasizes that this automatic licensing system leaves no room for loopholes, ensuring everyone is held accountable, regardless of their willingness to comply.
Cybersecurity expert Fong Choong Fook highlights the significance of a licensing program, providing clear guidelines for providers and imposing regulatory requirements on platforms. He stresses the importance of effective enforcement under the upcoming Online Safety Act 2025 (Onsa).
And this is the part most people miss: Fong raises a critical question: Will the regulations be followed? He warns that without proper enforcement, the Onsa could become ineffective. He suggests integrating penalties scaled to revenue, including the potential for criminal liability for the chief executives of social media platforms based in Malaysia.
Professor Manickam agrees, proposing revenue-based penalties. He points out that a fine of RM10 million for non-compliance, as stipulated under Onsa, might be insignificant for global tech giants. He suggests Malaysia follow the European Union's lead, which has imposed substantial fines on companies like Apple and Meta for breaching legal obligations.
He advocates for a "carrot and stick" approach: offering cooperative frameworks, transparent expectations, and clear safety standards (the carrot), while implementing steeper penalties for repeated or intentional non-compliance (the stick).
What do you think? Do you agree with the experts that this is a necessary step? Do you think the proposed penalties are sufficient? Share your thoughts in the comments below!
