Running a background check in Malaysia is legal, but employers must do it responsibly.
In most cases, employers should get the candidate’s consent before starting any background screening. This is because background checks involve personal data, such as identity details, education history, employment records, criminal screening results, or other sensitive information.
Under Malaysia’s Personal Data Protection Act 2010, employers must handle personal data carefully. This means the candidate should know what information is being checked, why it is being checked, and how the information will be used.
Why Consent Matters
Consent is one of the most important parts of a proper background check.
Before screening a candidate, employers should explain the purpose of the check clearly. They should also get written consent from the candidate.
This protects both the employer and the candidate.
For the candidate, it creates transparency.
For the employer, it shows that the company has followed a fair and proper process.
What Employers Should Tell Candidates
Before running a background check, employers should tell candidates:
- What type of checks will be done
- Why the checks are needed
- How the information will be used
- Who will handle the information
- How long the information may be kept
This helps candidates understand the process before giving consent.
When Employers Should Not Run a Background Check
Employers should not proceed with a background check if the candidate has not given proper consent.
Employers should also avoid collecting information that is not relevant to the role.
For example, if the role does not involve financial duties, sensitive access, or regulated responsibilities, the employer should consider whether certain checks are really necessary.
A good screening process should be fair, relevant, and proportionate.
Can Employers Run Background Checks Without Consent?
In most employment situations, employers should not run a background check without consent.
There may be limited situations where certain checks are required for legal, regulatory, or compliance reasons. However, these cases should be handled carefully.
If the company is unsure, it is always better to check with the legal or compliance team first.
The safest approach is simple:
Inform clearly. Get consent. Screen responsibly.
What Is a PDPA-Compliant Background Check?
A PDPA-compliant background check should be clear, fair, and properly documented.
Employers should:
- Get written consent
- Explain the purpose of screening
- Collect only necessary information
- Use the data only for the stated purpose
- Keep screening results secure
- Limit access to authorised personnel only
- Apply screening consistently across similar roles
This helps reduce legal, compliance, and reputational risk.
How Verity Intelligence Helps
Verity Intelligence helps employers conduct background checks in a structured and responsible way.
For fast early screening, VERISafe helps employers identify possible red flags linked to criminal records, sanctions, watchlists, and adverse media.
For deeper employment checks, Verity BGC helps verify important candidate information such as education, employment history, identity, references, and other relevant checks.
Together, these solutions help employers make safer and more informed hiring decisions.
Why Employers Should Screen Responsibly
Background screening is not about judging candidates unfairly.
It is about protecting the company, employees, customers, and business operations.
A proper screening process helps employers reduce risk while still treating candidates fairly.
This is especially important for roles involving:
- Company money
- Customer data
- Sensitive systems
- Children or vulnerable groups
- Regulated responsibilities
- Company assets
- High-trust positions
Final Thoughts
A background check in Malaysia is legal when it is done properly.
Employers should be clear about the purpose of screening, get proper consent, and handle personal data responsibly.
By working with a trusted screening provider like Verity Intelligence, companies can screen candidates more confidently while supporting a fair and PDPA-aware hiring process.
Screen responsibly. Protect your business. Hire safely.
