How India’s proposed data privacy bill compares with protection laws across the world
India moved closer to its first data privacy law on Friday after a committee, headed by former Supreme Court judge BN Srikrishna, proposed a draft Personal Data Protection Bill.
The draft bill provides for the formation of a Data Protection Authority of India to protect citizens’ data and privacy — a growing concern in an increasingly digitising economy.
The proposed bill makes individual consent the centrepiece of data sharing, awards rights to users, imposes obligations on “data fiduciaries”— all those entities, including the State, which determine purpose and means of data processing.
It also lays out provisions on data storage, making it mandatory for a copy of personal data to be stored in India, and called for amendments to other laws, including the Right to Information. Though the bill does not mention it directly, the report also suggests changes to the Aadhaar Act.
In essence, the Data Protection Authority will function as India’s privacy regulator.
Several countries across the world have already implemented similar data protection laws. The focus on users right to their data and its protection comes after the scandal this March over access gained by political marketing firm Cambridge Analytica to data collected through Facebook.
Here is a look at how other countries have approached the data privacy issue: