- Advertisement -
News

MySejahtera data fully owned by govt, Khairy tells Dewan Negara

He says this was one of the key terms in the non-disclosure agreement between the National Security Council and KPISOFT.

Bernama
2 minute read
Share
Health Minister Khairy Jamaluddin speaks at the Dewan Negara today. Photo: Bernama
Health Minister Khairy Jamaluddin speaks at the Dewan Negara today. Photo: Bernama

The data and information acquired from the use of the MySejahtera application is fully owned by the government of Malaysia, the Dewan Negara was told today.

Health Minister Khairy Jamaluddin said this was among the key terms in the non-disclosure agreement (NDA) between the National Security Council for the government and KPISOFT on April 1, 2020. 

He also assured that all of the data kept in the MySejahtera database was protected and only for the control of the pandemic by the health ministry.

“In this regard, the usage and management of MySejahtera data is subject to the Prevention and Control of Infectious Diseases 1988 (Act 342) , the Medical Act 1971 (Act 50) and international standards.

“Apart from that, the transaction data from the MySejahtera application uploaded into the cloud server network daily can only be accessed for the use of MySejahtera as well as the supporting applications related to Covid-19 pandemic,” he said when winding up the motion on the MySejahtera application at the Dewan Negara today.

On the security of the application and data, he said the Malaysian Administrative Modernisation and Management Planning Unit (Mampu) and National Cyber Security Agency (Nacsa) had conducted various tests to ensure that the application was safe and passed the penetration and vulnerability test before it was launched.

He said Nacsa also conducts monthly security audits and carries out penetration tests as well as audit trails to the server keeping the MySejahtera data.

“If anyone attempts to log in and take data from our server, we will know who logged in the data,” he said.

Nacsa via the Cyber Coordination and Command Centre (NC4) also monitors security continuously on MySejahtera to detect intrusions and reviews the MySejahtera application operator company which has also received the ISO270001 (ISMS) standard.

Khairy said the standard was the specification recognised internationally for information security management systems covering policies and information security management, physical security and surrounding, communication security and human resource security.

“Based on these facts I want to emphasise that all data and information acquired via the MySejahtera application is completely under the control of the government and its security and secrecy is assured.

“I hope the people will continue to use MySejahtera without any doubts, and the health ministry  is always monitoring so that this aspect is not compromised,” he said.