DATA PROTECTION COMPLIANCE

Uncategorised 08 June 2026 Hits: 46

UMPSA implements comprehensive data protection and information security practices in accordance with applicable laws, regulations, and institutional policies. The university continuously strengthens cybersecurity governance, personal data protection, risk management, and digital awareness among staff and students to ensure the secure and responsible management of information assets.

1. DMAC UMPSA

The Digital Management and Analytics Centre (DMAC) serves as UMPSA's central unit for digital governance, information security, data management, and digital transformation. DMAC oversees the implementation of cybersecurity measures, institutional information systems, and ISO/IEC 27001-certified Information Security Management System (ISMS) practices to ensure the secure and effective management of university information assets.

Source link: https://dmac.umpsa.edu.my

2. ICT Security Awareness and Data Protection Initiatives

UMPSA promotes ICT security awareness and data protection through ISO/IEC 27001:2022-certified Information Security Management System (ISMS) practices, cybersecurity policies, data protection controls, regular security audits, and continuous digital awareness programmes. These initiatives strengthen cybersecurity resilience, safeguard personal and institutional data, and support responsible digital governance across the university.

3. ICT Online Desk System

UMPSA utilizes the ICT Online System to manage requests related to data, reports, domains, and ICT services in a secure and controlled manner. The system supports data protection compliance through access controls, documented approval processes, and secure handling of institutional information, thereby strengthening digital governance and accountability across the university.

UMPSA also implemented MyDigital ID authentication for staff access to the eCOMM UMPSA system, enhancing data security through secure identity verification and controlled access to institutional digital services and information systems.

4. Secure Wi-Fi Network Authentication for Staff Access

To strengthen data protection and information security, UMPSA requires staff to authenticate using their official staff ID and password when accessing the university’s Wi-Fi network. This access control measure helps safeguard sensitive information, maintain user accountability, and prevent unauthorized use of digital resources.

5. Official Forms and Procedures for Data Access Applications

UMPSA adopts a risk-based data governance approach whereby routine ICT-related requests are processed through digital systems, while access to sensitive or confidential information requires formal authorization and departmental endorsement. This practice enhances data protection, accountability, regulatory compliance, and secure management of institutional information assets.