How Time Flies! SMEs, watch out!!
Wow, it’s 2025! If you don’t buck up, you might land up in hot soup unless you keep abreast with evolving trends and regulatory changes.
The business landscape in 2025 is evolving rapidly, presenting both challenges and opportunities for businesses. To stay competitive and compliant, SMEs must navigate key regulatory changes across labor laws, sustainability practices and data protection.
- Amendment to the Employment Act (EA) 1955
The recent amendments to Malaysia’s Employment Act (EA) 1955, effective from January 2023, have significantly impacted workplaces. Key changes include a reduction in weekly working hours from 48 to 45 hours, expanded maternity and paternity leave, and increased protection for contract workers. These reforms aim to enhance work-life balance and fair treatment for all types of employees. SMEs should pay close attention to these updates, particularly as discussions on the Gig Economy Bill progress. This bill, if passed, will mandate social security contributions for gig and platform workers, creating new obligations for businesses that rely on flexible or project-based labor. As these shifts unfold, SMEs must update employment contracts, work policies, and benefits to remain compliant and foster a positive work environment.
- Environmental, Social, and Governance (ESG) Reporting
Sustainability is becoming increasingly important with Bursa Malaysia’s introduction of enhanced Sustainability Reporting in its Main Market Listing Requirements. Listed companies must now provide detailed reports on climate risks, carbon emissions, and social impacts. While ESG reporting is mandatory for listed firms, non-listed companies are also expected to voluntarily adhere to frameworks like the Malaysian Code on Corporate Governance (MCCG). Adopting ESG principles can enhance SME’s reputation with investors, customers and stakeholders, demonstrating a commitment to transparency and responsible corporate practices. As environmental and social governance continues to gain traction, SMEs that neglect ESG reporting could miss out on potential investment opportunities and consumer trust.
- Data Privacy, Cybersecurity, and OSHA Compliance
The Personal Data Protection (Amendment) Act (PDPA) 2024 introduces stricter regulations such as mandatory and prompt data breach notifications and extends compliance requirements to foreign companies processing Malaysian data. SMEs need to ensure they are up-to-date with PDPA to avoid penalties.
Simultaneously, cybersecurity has emerged as a critical focus, with the Cybersecurity Act 2024 imposing additional obligations on businesses to strengthen IT infrastructure and report breaches. Cybersecurity investments will be essential for SMEs to protect against increasingly sophisticated cyber threats.
Occupational Safety and Health Act (OSHA) compliance remains crucial. As workplaces evolve, SMEs must ensure safety regulations, conduct regular training, and implement effective safety protocols to safeguard employees and avoid legal consequences.
Conclusion
The evolving regulatory environment in 2025 requires SMEs to stay agile and proactive. Legal changes in labor laws, ESG reporting, and data protection are not only about compliance but also about positioning for long-term success. By responding to these shifts, SMEs can enhance stakeholder relationships, reduce legal risks and gain a competitive edge.
Time is of the essence, and those who fail to keep pace with these changes may find themselves at a disadvantage in the fast-moving business landscape.