Excerpt from The Economic Times Article – Published on Aug 04, 2023
The Data Protection Bill aims to establish rules for data handling by businesses and individual rights. It seeks to prevent cross-border data transfers, penalize data breaches, and create a data protection body for compliance.
Noncompliance leads to penalties for businesses, with data retention aligned with business purpose. Corporations can’t process child-detrimental data, while government agencies may be exempt.
The legislation grants Data Principals rights like information access, withdrawal of consent, data correction, and grievance redressal. They must refrain from false info and complaints.
Data-holding companies must transparently explain data collection, seek informed consent, ensure accuracy, and implement security measures. Data sharing should involve contracts, and larger organizations need a data protection officer and auditor.
The Bill introduces the Data Protection Board of India (DPB), overseeing compliance and penalties. DPB is responsible for upholding personal data privacy.
Entities must delete user data without an intended business purpose. Government agencies may be exempt for national security.
Noncompliance and failure in data breach prevention result in penalties. Violators face fines up to Rs 250 crore and a minimum of Rs 50 crore.
Globally, around 70% of countries have data protection laws. The EU’s General Data Protection Regulation sets a global standard. Nations like China, Vietnam tighten data transfer controls, and Australia allows police access to encrypted data.
To delve deeper into this topic, please read the full article on The Economic Times.