Are you ready for a digital landscape where everyone plays by the same rules? Cybersecurity experts are applauding Malaysia's bold move to register all internet messaging and social media service providers with 8 million or more users. This is a significant step towards clearer accountability and tighter digital regulation.
Professor Dr. Selvakumar Manickam, Director of the Universiti Sains Malaysia Cybersecurity Research Centre, calls this a "regulatory masterstroke." He explains that instead of waiting for tech giants to comply at their own pace, Malaysia has set up an automatic system. This ensures that relevant industry players are immediately under Malaysian regulatory oversight, eliminating delays and voluntary participation.
This move is designed to benefit users through enhanced data protection and safety measures. Automatic licensing removes loopholes, bringing all providers into the fold, regardless of their willingness.
Cybersecurity expert Fong Choong Fook highlights that a licensing program provides a reference for providers, setting regulatory requirements for platforms. He emphasizes the importance of effective enforcement under the upcoming Online Safety Act 2025 (Onsa). But here's where it gets controversial: Fong questions whether the regulations will be followed. Without enforcement, the Onsa could become ineffective. He suggests integrating penalties scaled to revenue.
Fong proposes financial penalties and even criminal liability for the chief executives of social media platforms based in Malaysia. Professor Selvakumar supports revenue-based penalties, arguing that a fine of RM10 million for non-compliance may be insignificant for global tech giants. He suggests Malaysia should follow the European Union's example, which has imposed hefty fines on companies like Apple and Meta for legal violations.
Professor Selvakumar advocates for a "carrot and stick" approach. This involves cooperative frameworks, transparent expectations, and clear safety standards (the carrot), alongside steeper penalties for deliberate, repeated, or harmful non-compliance (the stick). And this is the part most people miss: This approach aims to create a balanced system that encourages compliance while deterring violations.
What are your thoughts? Do you agree with the proposed measures, or do you have alternative suggestions? Share your opinions in the comments below!
