Skip to main content

India’s data protection plan would affect how data is managed there

Several countries have successfully implemented major data privacy and protection regulations over the past decade. The EU’s General Data Protection Regulation (GDPR) drastically changed how companies managed data, not just for their customers in the EU, but worldwide. Then came the California Consumer Privacy Act (CCPA), which had a similar cascading effect when companies decided that if they had to alter their practices for customers in California, they might as well update them for everyone.   

For the past few years, India has been working towards a law called the Personal Data Protection Bill that would have similarly large effects across the industry. On Dec. 16 of last year, the Indian Joint Parliamentary Committee (JPC) submitted a report on a draft of the bill, and according to the National Law Review, it’s likely that the bill could be passed and go into effect in the first half of 2022.

According to Elizabeth Schweyen, senior manager of global pridatavacy and compliance at data protection company Druva, the bill was initially drafted in 2017 to protect personal data of Indian citizens. Over the past few years it has undergone changes and now covers both personal and non-personal data.

There is a data localization component to the bill that would require certain data to be processed locally within the country. “Sensitive data, including biometric information, government identifiers and financial information, can be transferred outside of India but organizations are required to keep a copy of this data locally,” Schweyen added.

In addition, organizations that have experienced a data breach would be required under this law to disclose it to the authorities within 72 hours of discovery if it affects the data of Indian citizens . Then, the Data Protection Authority would decide whether those people need to be notified, Schweyen explained. 

The National Law Review also reported that the JPC has recommended a phased approach to implementing the law. First, a number of government offices will be appointed, and then the law would be fully implemented within two years. 

If the bill were to pass, organizations would need to educate themselves on the new law and the differences with other recent privacy laws. 

“They need to enhance their existing compliance strategy to incorporate mechanisms that will allow them to fulfill Indian data requests, collaborate with the Indian data protection agencies, and support their customers and consumers’ needs in the region,” said Schweyen. “Employee training should be expanded to include the new law and ensure employees understand their responsibility when handling personal data. Once fully enacted, India will become another country in a growing list of countries with strong data privacy laws.”

Non-compliance with the law has financial penalties, similar to other major data protection laws, but also the possibility of imprisonment, Schweyen explained. “For example, an individual who re-identifies personal data that had previously been de-identified by a data fiduciary or a data processor without consent may be punished with both imprisonment of a term that may extend to three years and a fine of up to 200,000 rupees,” she said.

She also noted that this law would make social media platforms potentially liable for content that is posted from unverified accounts to their platform. According to Schweyen, this would make it one of the first countries to have a law that does this. 

“The bill will usher in a new era of data privacy in India in which maintaining compliance will be key. Companies should implement a privacy-first strategy now to prepare or else they will face large fines, or even prison time in their future,” Schweyen said.

The post India’s data protection plan would affect how data is managed there appeared first on SD Times.



from SD Times https://ift.tt/D43bcoUAP

Comments

Popular posts from this blog

Difference between Web Designer and Web Developer Neeraj Mishra The Crazy Programmer

Have you ever wondered about the distinctions between web developers’ and web designers’ duties and obligations? You’re not alone! Many people have trouble distinguishing between these two. Although they collaborate to publish new websites on the internet, web developers and web designers play very different roles. To put these job possibilities into perspective, consider the construction of a house. To create a vision for the house, including the visual components, the space planning and layout, the materials, and the overall appearance and sense of the space, you need an architect. That said, to translate an idea into a building, you need construction professionals to take those architectural drawings and put them into practice. Image Source In a similar vein, web development and design work together to create websites. Let’s examine the major responsibilities and distinctions between web developers and web designers. Let’s get going, shall we? What Does a Web Designer Do?

A guide to data integration tools

CData Software is a leader in data access and connectivity solutions. It specializes in the development of data drivers and data access technologies for real-time access to online or on-premise applications, databases and web APIs. The company is focused on bringing data connectivity capabilities natively into tools organizations already use. It also features ETL/ELT solutions, enterprise connectors, and data visualization. Matillion ’s data transformation software empowers customers to extract data from a wide number of sources, load it into their chosen cloud data warehouse (CDW) and transform that data from its siloed source state, into analytics-ready insights – prepared for advanced analytics, machine learning, and artificial intelligence use cases. Only Matillion is purpose-built for Snowflake, Amazon Redshift, Google BigQuery, and Microsoft Azure, enabling businesses to achieve new levels of simplicity, speed, scale, and savings. Trusted by companies of all sizes to meet

2022: The year of hybrid work

Remote work was once considered a luxury to many, but in 2020, it became a necessity for a large portion of the workforce, as the scary and unknown COVID-19 virus sickened and even took the lives of so many people around the world.  Some workers were able to thrive in a remote setting, while others felt isolated and struggled to keep up a balance between their work and home lives. Last year saw the availability of life-saving vaccines, so companies were able to start having the conversation about what to do next. Should they keep everyone remote? Should they go back to working in the office full time? Or should they do something in between? Enter hybrid work, which offers a mix of the two. A Fall 2021 study conducted by Google revealed that over 75% of survey respondents expect hybrid work to become a standard practice within their organization within the next three years.  Thus, two years after the world abruptly shifted to widespread adoption of remote work, we are declaring 20