Data Minimisation
The principle of collecting only the personal data strictly necessary for the stated purpose.
Data minimisation is a foundational privacy principle (PDPA 2010 General Principle, GDPR Article 5(c)) that requires collecting only personal data that is adequate, relevant, and limited to what is necessary. For hospital kiosks, this means MOVO-X reads only demographic fields from MyKad (name, IC, address) — not biometric data — unless biometric collection has a specific clinical justification and separate consent. All data fields are reviewed by a DPO during deployment configuration.
Related Terms
PDPA 2010
Personal Data Protection Act 2010 — Malaysia's primary data privacy law governing all healthcare data.
PDPA Consent
Explicit, informed, and freely given permission for processing personal data under PDPA 2010.
Data Protection Officer (DPO) — Malaysia
A qualified person responsible for overseeing PDPA compliance within an organisation.
Use MOVO-X for Data Minimisation
MOVO-X is Malaysia's leading platform for data minimisation in hospitals and clinics. PDPA 2010 compliant, PHFSA 1998 compliant, MyKad NFC ready.