Tag: Personal Data Protection

  • Industry specialists divided over Govt resolution to withdraw Personal Data Protection Bill

    Industry specialists are divided over the federal government’s resolution to withdraw the Personal Data Protection (PDP) Bill, 2019, and exchange it with a brand new ‘comprehensive legal framework’ and ‘contemporary digital privacy laws’ for regulating on-line house.

    The invoice was revoked after practically 4 years of it being within the works, the place it went by means of a number of adjustments together with a overview by a Joint Parliamentary Committee and confronted pushback from a variety of stakeholders together with tech corporations and privateness activists.

    “The withdrawal of the PDP bill is personally disappointing to me, especially since the industry has already been waiting for four years for this draft to be taken forward,” Dr Rishi Bhatnagar, Chairman, IET Future Tech Panel informed indianexpress.com.

    According to specialists, the proposed Bill burdened on the localisation of information and lacked a bifurcation to accommodate private and non-personal datasets individually. “There were parts of the proposal that included obtaining of citizen-consent for the usage of personal data and special exemptions to probing agencies from the Act. These aspects of the Bill seem to be collectively responsible for triggering the withdrawal of it,” mentioned Bhatnagar.

    However, for Kazim Rizvi, Founding Director, The Dialogue, a New Delhi-based assume tank, the withdrawal of the “Data Protection Bill 2021 is the right move as it had various shortcomings and concerns, notably around the lack of independence of the Data Protection Authority (DPA), restrictions on cross-border data flow, the inclusion of non-personal data and broad exemptions to the executive for data processing.”

    The Bill had been broadly criticised for being biased towards the info assortment entity. For occasion, if any consumer desires to withdraw their consent from sharing their knowledge, it’s attainable however the consumer must give “a valid reason” or bear the authorized consequence for such withdrawal. Moreover, what constitutes a “valid reason” can also be subjective.

    Another main disadvantage of the Bill was a proposed provision referred to as knowledge localisation, beneath which it will have been obligatory for corporations to retailer a replica of sure delicate private knowledge inside India, and the export of undefined “critical” private knowledge from the nation could be prohibited.

    Experts hope {that a} new privateness regulation will probably be enacted by subsequent yr.  “The new bill must balance state interest, business interest, and individuals’ privacy concerns on the same keel,” notes Rizvi.

    Meanwhile, Bhatnagar believes that the brand new Bill can solely stand out if the framework comprises laws which are at par with international requirements. “The re-framing of the Bill can also be enhanced by the inputs of IT thought leaders and experts, where ground realities and existing problems in the IT ecosystem can be touched upon with clarity,” he provides.

  • Spike in compliance prices could hit tech startups onerous

    NEW DELHI :

    Crippling compliance prices arising from upcoming knowledge laws might sink many small expertise startups, specialists conscious of the foundations stated, underlining issues raised by business organizations.

    The central authorities’s IT Rules, the upcoming Personal Data Protection (PDP) invoice and the Reserve Bank of India’s funds knowledge storage guidelines are anticipated to contain important compliance prices.

    Rishi Anand, associate at regulation agency DSK Legal, stated the IT Rules “saddles” intermediaries with new compliances. Requirements akin to figuring out the primary originator of a message or submit, appointing Indian compliance officers and time-bound redressal of grievances add prices.

    The PDP invoice is predicted to convey structural adjustments in how firms deal with knowledge by means of ideas like knowledge minimization, knowledge localization and safety safeguards. However, this can want sure firms to “re-architect” their technological infrastructure, Anand said. “We have been advising our clients with respect to the latest developments in such laws that are anticipated to have significant impact on the tech-driven business,” he added.

    RBI’s new knowledge storage guidelines take impact in January 2022, which can disallow tech platforms and social media from storing customers’ funds knowledge. These platforms might want to associate with banks to supply such companies, elevating compliance prices for each platforms and banks.

    “Hypothetically, if the middleman tips have been to go unchallenged and proceed within the present type, we is not going to have any Indian equal of a world app,” said a lawyer who has advised multiple large Chinese technology companies. “When early-stage social media or e-commerce startups consult me, I send them a list of compliances they need to ensure, and the reaction usually is that they can’t afford that,” corroborated one other lawyer who has represented a number of giant Chinese expertise firms in India. “The proven fact that among the grievance redressal officers could also be responsible for failure to conform leads staff in these positions to hunt obscene quantities of cash due to the dangers of the job,” the lawyer stated on situation of anonymity.

    Industry our bodies have taken be aware of the matter as effectively. “At a time when the company legal legal responsibility regime in India is altering to enhance ease of doing enterprise by changing legal legal responsibility with penalties, these provisions below the IT Rules 2021 run counter to the pattern,” the Federation of Indian Chambers of Commerce and Industry wrote to Ajay Sawhney, secretary, MeitY, on 1 April. The US India Business Council (USIBC) and the Confederation of Indian Industry had also expressed concerns over this rule in earlier representations. The US India Strategic Partnership Forum on 23 April wrote to MeitY that the new compliance requirements will require “extensive capacity building, new operational models, product redesign and personnel on boarding”, in search of extra time for compliance.

    On 17 September, Entrackr reported that the federal government is engaged on sure amendments to the IT Rules and can situation clarifications quickly. According to the report, the federal government is seeking to impose penalties for non-compliance with the IT Rules as a substitute of imposing legal legal responsibility on compliance officers.

    Subscribe to Mint Newsletters * Enter a legitimate electronic mail * Thank you for subscribing to our publication.

    Never miss a narrative! Stay related and knowledgeable with Mint.
    Download
    our App Now!!