Today, the full PAC report on the MySejahtera application was released, and it shows a wide variety of information regarding the development and maintenance of the application.
The report also confirmed that MySejahtera user data is all stored on local server machines at the AIMS data center in Kuala Lumpur.
This data storage also uses cloud technology service Alibaba Cloud, a cloud service from China, but access is only limited to a certain number of users.
Khairy Jamaluddin, who at the time was the Minister of Science, Technology and Innovation said that access to this database was limited, and there were audits done to ensure that only certain accounts and individuals had access to user information.
In the meantime, government agencies such as NACSA (National Cyber Security Agency) and MAMPU (Malaysian Administrative Modernization and Management Planning Unit) have also conducted tests such as pen-tests to ensure that the application's security system is safe to use by users and issues data vulnerabilities are fixed as best as possible.
There are also requests from a number of government agencies that want access to user data but are not granted to ensure the security and integrity of user data is managed.