Malaysia’s digital payments ecosystem is expanding at an unprecedented pace, but scale alone does not define strength. In 2025, the country recorded 18.4 billion e-payment transactions, marking a 25 per cent year-on-year increase, with each Malaysian carrying out an average of 538 digital transactions. DuitNow QR volumes have doubled to three billion, supported by close to three million merchant touchpoints nationwide.

While these figures reflect strong adoption, they also raise a more pressing question for the industry: whether trust is keeping pace as digital transactions become more deeply embedded in daily life. Reported fraud losses reached RM2.8 billion in 2025, underscoring the growing risks within an increasingly digital ecosystem. By the first quarter of the year alone, online fraud cases had already climbed to 12,110, with total losses amounting to RM573 million. Although digital payments continue to scale rapidly, these figures highlight a parallel reality in which confidence in the system is being tested in real time. This marks a clear inflection point, where the focus must now shift from driving adoption at scale to reinforcing assurance and trust at every level of the transaction journey.

Trust in payments is often discussed in abstract terms, but for businesses on the ground it comes down to three fundamental elements: visibility, control, and protection. Visibility ensures that merchants know the status of every transaction at any given time, while control provides certainty over when funds are received, enabling better cash flow management. Protection, in turn, offers reassurance that businesses are safeguarded when the unexpected occurs. When any one of these elements is compromised, trust erodes quickly, particularly for smaller businesses operating on tight margins.

In practice, most payment failures do not occur at scale but at the edges, where systems are fragmented, processes are unclear, and the margin for error is smallest. For micro, small and medium enterprises (MSMEs), a delayed settlement or disputed transaction is not merely an inconvenience but a disruption to daily operations.

Bank Negara Malaysia has already recognised this shift in focus. The priority is no longer only on expanding digital payments, but also on preserving trust within the ecosystem. Frameworks such as the Shared Electronic Fraud and Theft policy establish shared accountability between financial institutions and users, while infrastructure upgrades like RENTAS+ and the adoption of ISO 20022 standards strengthen transaction transparency and resilience. These are important foundations, but regulation alone does not build trust. Trust is ultimately shaped through consistent, day-to-day experiences at the merchant level.

Malaysia’s 1.2 million MSMEs sit at the centre of this transition. Unlike large enterprises, they do not operate with extensive financial control systems or dedicated risk teams. Their exposure is immediate, and their tolerance for disruption is low. For these businesses, trust is not defined by policy frameworks or technical standards, but by whether payments arrive as expected, whether transactions are transparent, and whether digitalisation reduces complexity rather than adding to it. This is where the industry must move beyond enabling access and begin delivering assurance.

From an operator’s perspective, closing this gap requires rethinking what payment infrastructure is designed to achieve. Direct connectivity to national payment rails, for example, is not merely a technical enhancement. It removes intermediary layers, giving businesses faster access to funds and clearer visibility over cash flow. This is not only about speed, but about certainty, which is what businesses ultimately rely on.

Similarly, consolidating multiple payment methods into a single platform or device is not simply about convenience. It reduces fragmentation, lowers operational risk, and ensures that businesses are not forced to manage multiple systems with inconsistent outcomes. Unified terminals that support QR, card, and alternative payment methods within a single controlled environment are designed with this in mind. These are intentional design choices shaped by how merchants operate, rather than how payment systems have traditionally been structured.

Trust must also extend beyond transactions to address the broader risks businesses face. Many MSMEs remain underinsured, often due to the complexity or perceived disconnect between traditional insurance products and their day-to-day operations. Embedding protection directly into payment infrastructure offers a more practical approach, where coverage such as business interruption, liability, and asset protection becomes part of the tools merchants already use. By integrating these safeguards into the payment experience, barriers to adoption can be reduced while businesses are better protected against unforeseen disruptions. This reflects a broader shift in fintech, where value is created not only through functionality, but through relevance and integration into real business needs.

For example, Paydibs has partnered with Great Eastern General Insurance to embed business protection directly into its payment terminals. Coverage for fire and flood damage, cash-in-transit loss, employer liability, and business disruption is bundled with the terminal a merchant already uses to accept digital payments. The underlying principle is simple: a merchant should not have to choose between growing digitally and keeping their business safe; both should be built in as standard.

Eighteen billion transactions in a single year is a significant milestone, and Malaysia has clearly demonstrated its ability to achieve digital payment scale. Bank Negara Malaysia’s priorities for 2026, which emphasise stronger fraud prevention, enhanced cross-sector collaboration, and inclusive adoption, further reinforce the importance of trust as a foundational pillar for continued progress.

In this environment, differentiation will no longer be defined by transaction volume or processing speed alone. It will be shaped by the ability to deliver systems that are resilient, transparent, and purpose-built to support businesses through both growth and uncertainty. Digitalisation accelerates when businesses have confidence in the systems they rely on, and that confidence is earned through consistent performance, clear visibility, and meaningful protection.