As Malaysia’s amended Employment Act (EA) now allows employees to formally apply for flexible working arrangements, work-from-home (WFH) and hybrid arrangements now sit within a legal and operational framework that must be managed properly.
This means WFH is no longer just an internal practice, it now intersects with statutory obligations, timelines, and documentation requirements. As companies recognise that some level of flexibility is expected, a clear, enforceable Work From Home Policy becomes key to set expectations, prevent abuse, and strengthen internal governance.
Key terms
These are not exhaustive, and companies may include additional rules based on their operational needs, industry requirements, or internal risk considerations.
Eligibility
Clear eligibility criteria prevent claims of unfair treatment (e.g., “why can finance WFH but admin cannot?”) and reduce the risk of grievances or discrimination issues.
The policy should specify:
- which positions are eligible
- whether eligibility depends on seniority, performance, or job nature
- whether WFH is regular, hybrid, or only allowed with approval
Availability and communication rules
Setting predictable communication standards ensures staff remain reachable, responsive, and accountable while working remotely.
The policy should outline:
- expected response times for calls, messages, and emails
- virtual meeting rules (camera on/off, acceptable backgrounds, dress code, etiquette)
Deliverables and performance expectations
Clear performance benchmarks prevent employees from assuming home-based standards are more relaxed and help maintain consistent output.
The policy should clarify:
- tasks must be completed on time
- no drop in quality or responsiveness
- KPIs remain the same as in-office expectations
Attendance and absence rules
Clear rules prevent misuse of WFH as a substitute for medical or annual leave and reduce disputes over absenteeism.
The policy should specify:
- daily check-in/check-out requirements
- WFH does not replace medical or annual leave
Data protection, confidentiality and cybersecurity
Strong cybersecurity standards protect company information and ensure confidentiality is maintained outside the office environment.
The policy should outline:
- no use of public WIFI unless connected through a company-approved VPN
- approved devices only (no shared family computers)
- security practices must match in-office standards
How the EA regulates flexible work arrangements
Under Sections 60P and 60Q of the Employment Act, WFH is not an automatic right and employees must apply for it in writing, detailing different working hours, days, or place of work.
Key points employers should understand:
- employers must respond in writing within 60 days stating approval or rejection (with reasons)
- approval may depend on job scope, supervision needs, and business impact
- if WFH is approved, it must be documented clearly, because all normal Employment Act rules still apply (working hours, overtime eligibility, rest days, leave rules, etc.)
A clear WFH policy becomes essential because the Employment Act requires employers to document and communicate their decisions on flexible-work applications. By setting out objective rules and evaluation criteria, this policy helps employers ensure their decisions are defensible and transparent.
Practical considerations
Employers need a clear framework to decide when WFH is suitable, and key factors include:
- Job suitability. Consider whether the job requires physical presence, involves handling physical documents/equipment, or depends on close in-person supervision.
- Performance & accountability. Check the employee’s performance history, ability to work independently, and clarity of KPIs.
- Tools & equipment. Employees must have reliable internet, a proper workspace, and secure devices to protect confidential information.
- Team workflow & impact. Assess whether WFH will disrupt communication, slow team collaboration or response times, or affect client service.
How to implement a WFH policy
Most companies adopt these steps:
Step 1: Document clearly in handbook or as standalone policy
Make sure employees know where to find the WFH rules. You can:
- circulate it via email together with an employee acknowledgment
- include the WFH policy in the employee handbook so all workplace rules sit in one consolidated, enforceable document
Step 2: Train managers and HR
Managers and HR must apply WFH rules fairly and consistently. Brief them on:
- how to evaluate WFH requests
- what can or cannot be approved
- when to reject a request and how to justify it
Step 3: Reserve right to suspend or revoke WFH privileges
Your policy should state clearly WFH arrangements may be suspended or revoked if:
- performance drops or KPIs are repeatedly missed
- the employee receives a warning letter, show-cause, or is under investigation
- misconduct, misuse of flexibility, or behaviour inconsistent with company expectations is identified
Step 4: Review policy periodically
Update the WFH policy when:
- business needs evolve (e.g., new workflows)
- new roles or departments require different remote-work arrangements
- cybersecurity or data-protection risks increase
WFH terms in employment contracts
Whether WFH arrangements should be written into employment contracts depends on if WFH is an agreed benefit or a discretionary arrangement.
If WFH is a confirmed contractual term, for example, “2 days WFH and 3 days in office”, then it should be reflected in the employment contract, typically under the place of work clause. If not, employees may raise questions, feel the employer is insincere in offering the arrangement, or worse, assume that the benefit is not contractually guaranteed.
However, if WFH is not a guaranteed entitlement, such as cases where it is granted occasionally (e.g., after company events), based on performance, or only upon application, then it is better to keep these details in the WFH Policy or Employee Handbook, rather than the contract.
Final thoughts
WFH is no longer just a benefit, it also affects employee satisfaction, recruitment competitiveness, legal compliance, cybersecurity and productivity.
If you are introducing or refining your work policies, we can help you prepare a clear and legally compliant WFH policy that fits your industry, internal structure, and operating model.
