Malaysia's First Integrated Integrity Platform

Manage Integrity & Governance Effortlessly

A centralized, secure integrity management platform built to streamline employee declarations, audit compliance, and whistleblower reporting.

Explore Modules Admin Login
No credit card required  ·  Setup in under a day
i-IMS Control Panel
Central Integrity Monitoring
● Active
Active Cases
12
-18% vs last month
Completion SLA
98.4%
+1.2% increase
Recent Declarations Pending Review
Gift Declaration (RM 1,200) — Staff #419 Pending Review
Conflict of Interest — Dept #02 Approved
🇲🇾 Malaysia's first integrated integrity management platform | Built specifically for Malaysian integrity units — Section 17A, ISO 37001, and beyond
Why i-IMS

Most Integrity Units Are Still Running on Spreadsheets and Email

Integrity and compliance teams are expected to detect risk, enforce policy, and prove it to regulators — often with no system built for the job. Here's what that looks like in practice, and what changes when i-IMS takes over.

Without i-IMS
Complaints arrive by email, WhatsApp, and paper forms — and quietly get lost between inboxes.
With i-IMS
Every complaint — official or whistleblower — enters one tracked intake with a case number, owner, and deadline from day one.
Without i-IMS
Whistleblowers stay silent because there's no way to report anonymously without fear of being identified.
With i-IMS
An encrypted, anonymous reporting channel with secure two-way chat protects identity while keeping the case moving.
Without i-IMS
Gift, asset, and conflict-of-interest declarations sit in someone's "to review" folder for months.
With i-IMS
Structured approval workflows route declarations to the right reviewer automatically, with policy alerts when something looks off.
Without i-IMS
When an auditor or regulator asks "show me the trail," the honest answer is reconstructing it from memory.
With i-IMS
Every action — submission, review, decision — is logged automatically, ready for Section 17A and ISO 37001 evidence on demand.
Without i-IMS
Complaints, COI, disciplinary, and risk data live in separate tools that never talk to each other.
With i-IMS
14 modules share one record system, so a pattern in one area — like repeat gift declarations from the same vendor — is never invisible.
The Honest Comparison

Spreadsheets, Generic Tools, or i-IMS

There's no shortage of ways to "manage" integrity on paper. Here's how they actually hold up.

Capability Spreadsheets & Email Generic Compliance Tools i-IMS
Anonymous whistleblower reporting
Covers all 14 integrity functions
One record system across modules
Automatic audit trail for Section 17A
Built around Malaysian regulatory context
Role-based approval workflows
Time to first live module Weeks Under a day

Partial = typically requires add-ons, manual workarounds, or covers only one function.

Why Now

The Law Changed. Most Tools Didn't Catch Up.

Section 17A of the MACC Act made organizations directly liable for corruption by their employees and associates — unless they can prove "adequate procedures" were in place. That proof has to come from somewhere.

2018
MACC (Amendment) Act 2018 passed
Introduced Section 17A — corporate liability for corruption, a first for Malaysia.
2020
Section 17A comes into force
Commercial organizations become strictly liable for bribery by employees, agents, or associates acting on their behalf.
Ongoing
"Adequate procedures" becomes the only defense
The law gives organizations one way out: demonstrate documented, enforced anti-corruption controls — top-level commitment, risk assessment, monitoring, and review.
Today
GLCs, government agencies, and PLCs are expected to formalize integrity units
But most are still proving compliance with spreadsheets, email threads, and manual filing — fragile evidence in a regulator's eyes.
What "Adequate Procedures" Actually Requires
Top-level commitment
i-IMS gives leadership a live dashboard of every open case, declaration, and risk — not a quarterly slide deck.
Risk assessment
Corruption Risk Management and Integrity Due Diligence modules document risk reviews as they happen.
Due diligence on staff and partners
IDD screening covers employees, vendors, and business partners before risk becomes exposure.
Communication and training
Integrity Strengthening tracks certification, ethics training, and pact participation by employee.
Monitoring and review
Every module logs who did what and when — the exact evidence trail "adequate procedures" defenses are built on.
99.9%
Uptime SLA
100%
Data Encryption
14+
Compliance Modules
256-bit
Security Level
Platform Capabilities

Enterprise Governance in a Single SaaS Platform

Designed for compliance units, integrity units, and risk management divisions in GLCs, government agencies, and PLCs.

Complaints Management (CMS)

End-to-end management of integrity complaints, whistleblower intake, secure chats, and full case resolution workflow.

Governance & Committee

Track decisions of the Corporate Integrity Committee (CEC), agenda setting, minutes of meetings, and compliance records.

Integrity Strengthening

Automate governance training certification, ethics surveys, corruption risk assessments, and integrity pact management.

Asset & Gift Declaration

Allow staff to declare assets, gifts, and hospitality online with multi-level approval workflows and policy warning alerts.

Conflict of Interest (COI)

Structured COI submission and review mechanisms, helping identify, mitigate, and record corporate conflicts early.

Real-Time Analytics

Actionable risk intelligence dashboard displaying KPIs, investigation status trends, and automated compliance reporting.

How It Works

From Sign-Up to Audit-Ready

Adopting a new system shouldn't mean a six-month IT project. Here's the actual path from first login to your first audit trail.

1
Pick your modules

Choose which of the 14 modules your integrity unit needs first — most teams start with Complaints and COI.

2
Migrate existing records

Bring over open cases, declarations, and policy documents — your historical data doesn't get left behind.

3
Set up roles & approvals

Define who reviews what — officers, investigators, and admins each see only what their role requires.

4
Go live, audit-ready

From day one, every action is logged. The next audit or regulator request is a report, not a scramble.

Data Security Guaranteed
ISO/IEC 27001 compliant infrastructure
ISO 37001 ABMS Ready
Aligns directly with anti-bribery standards
MACC Act Compliance
Supports Section 17A Corporate Liability
Questions

Before You Ask, We Probably Already Did

i-IMS is a new category in Malaysia — here's what teams usually want to know first.

Is i-IMS just another whistleblowing or complaint tool?
No — most tools in this space handle one function, usually whistleblowing intake. i-IMS covers all 14 areas an integrity unit is responsible for: complaints, COI, gift declarations, asset declarations, disciplinary action, governance, risk management, and more — sharing one record system instead of 14 separate logins.
How does i-IMS handle PDPA and data protection?
Whistleblower identities are encrypted and access-controlled by role, so only authorized reviewers can see identifying details when a case requires it. Infrastructure runs on ISO/IEC 27001-aligned hosting, and every access to a record is logged — which also supports your obligations under Malaysia's Personal Data Protection Act.
We already use spreadsheets and email — why switch now?
Spreadsheets and email don't produce the kind of evidence trail Section 17A's "adequate procedures" defense requires, and they make it nearly impossible to spot patterns — like the same vendor showing up across multiple gift declarations. The risk isn't using simple tools today; it's still using them when a regulator asks for your controls.
Can i-IMS integrate with our existing HR or audit systems?
Yes. i-IMS is built to sit alongside your existing HR, audit, and ERP systems rather than replace them — staff records and org structure can be synced in, so declarations and cases are tied to real employee data instead of being entered twice.
How long does implementation actually take?
Most teams are live with their first module — usually Complaints or COI — within a day of setup. Full rollout across all 14 modules depends on how much historical data needs migrating, but there's no multi-month IT project required to get started.
Who is i-IMS built for?
Integrity and compliance units in GLCs, government agencies, and PLCs operating under Malaysian regulatory requirements — anyone responsible for proving "adequate procedures" under Section 17A, or formalizing integrity functions under ISO 37001.