Top Section
Explore Business Standard
Don’t miss the latest developments in business and finance.
The Digital Personal Data Protection (DPDP) Rules will be refined further to connect children with technology while saving them from harms in the digital space, Union minister Ashwini Vaishnaw said on Tuesday. While speaking to reporters, the minister said the rules will evolve based on the learning from their implementation. "We will refine it (DPDP Rules) further to take the power of technology to children while saving them from many harm," Vaishnaw said. The government issued draft DPDP Rules 2025 on January 3 and these are open for public consultation till February 18, 2024. According to the draft rules, digital platforms can process data of a child only after taking consent from verifiable guardian or parents. The verification can be done using voluntarily provided details of identity and age, or through a virtual token issued by an entity entrusted by law or by the Centre or state governments to maintain details of a person. Vaishnaw said the token system has been successfu
The draft protection rules released by the government create a balance between regulation and innovation while completely protecting citizen rights, Union minister Ashwini Vaishnaw said on Saturday. The government issued draft rules for the Digital Personal Data Protection (DPDP) Act on Friday for public consultation till February 18. "Rules have to be within four walls of the Act. It is within the ambit of the Act passed by Parliament. These rules have been framed to ensure a balance between regulation and innovation while completely safeguarding the rights of citizens," Vaishnaw told PTI in an interview. The minister said earlier there was only one template available to the world -- the European data protection rule with a high level of regulation. However, Indian rules have attempted to balance the regulation with innovation to safeguard the boom in the innovation ecosystem developing among startups in the country. He said extensive consultations have been held with the industry
The draft DPDP rules which moot parents' verifiable consent to create a child's user account on social media platforms, and adds localisation requirement for certain types of personal data has significant ramifications for big tech firms, experts say noting that businesses may also face "complex challenges" in managing consent which is core to data protection norms. According to Deloitte India, maintaining consent artefacts and offering the option to withdraw consent for specific purposes would necessitate changes at design and architecture level of applications and platforms. The comment comes against the backdrop of government releasing the long-awaited draft of Digital Personal Data Protection Rules which proposes to make parent's verifiable consent and identification mandatory for creation of child's user account on online or social media platforms, and also moots possible data localisation requirements for specified personal data. The provision related to localisation and ...
The government has released the long-awaited draft of Digital Personal Data Protection Rules that do not mention any penal action for violations. The draft rules, which have been published for public consultations, will be taken into consideration for making the final rule after February 18. "Draft of rules proposed to be made by the central government in exercise of the powers conferred by sub-sections (1) and (2) of section 40 of the Digital Personal Data Protection Act, 2023 (22 of 2023), on or after the date of coming into force of the Act, are hereby published for the information of all persons likely to be affected thereby," the draft notification said. The draft rules have laid out provisions related to consent processing of individuals, data processing bodies and the functioning of authorities under the Digital Data Protection Act, 2023. "...notice is hereby given that the said draft rules shall be taken into consideration after 18th February, 2025," the notification said.
The Competition Act supplements data protection regulations by placing heightened responsibilities on dominant firms and there is no inherent conflict or repugnancy between the two laws, according to fair trade watchdog CCI. Besides, the regulator has said a broader view of the concept of user data is crucial in analysing data-related competition concerns in digital markets. The observations are part of the Competition Commission of India's 156-page order imposing a Rs 213.14 crore penalty on social media major Meta for unfair business ways with respect to WhatsApp privacy policy update done in 2021. Elucidating about user data in digital markets, CCI said data-related practices might violate data protection laws but they can also be seen as the imposition of unfair terms under competition law. "This overlap creates a point of intersection between data protection and competition law, with each addressing different aspects of harm. Further, while data protection laws primarily focus
'Companies will need to overhaul processes and adjust operations'
The fine print in terms of use agreements, which most users do not read in detail, often contains clauses that permit such invasive practices
The said 'data expert' may be a single person or multiple people, depending on the requirements of a particular ministry
The government is likely to release draft rules under the Digital Personal Data Protection Act within a month, union minister Ashwini Vaishnaw said on Monday. The minister said the government has first worked on digital implementation of the Act and framed rules accordingly. "The framework is ready, and the draft rules for consultation are expected to be released within a month," Vaishnaw told reporters here. The minister said the final draft of the rules was reviewed last week, and it is expected to be in the public domain within a month.
Digital rights and advocacy groups said that the delay in the notification of rules is creating business uncertainty and has limited individuals' ability to exercise rights given to them
Nigeria's government on Friday announced a fine of USD 220 million on Meta, saying its investigations found multiple and repeated violations of the country's data protection and consumer rights laws on Facebook and WhatsApp. A statement from Nigeria's Federal Competition and Consumer Protection Commission, or FCCPC, listed five ways that Meta violated data laws in the West African country, including by sharing the data of Nigerians without authorization, denying consumers the right to self-determine the use of their data, discriminatory practices as well as abuse of market dominance. "Being satisfied with the significant evidence on the record, and that Meta Parties have been provided every opportunity to articulate any position ... the Commission has now entered a Final Order, and issued a penalty against Meta Parties," FCCPC chief executive Adamu Abdullahi said in a statement. A spokesperson for Meta didn't immediately respond to a request for comment. Nigeria, which is Africa's
Draft of Digital Personal Data Protection rules are in an advanced stage, and industry consultation will start soon, said Ashwini Vaishnaw, Minister of Electronics and I-T, Railways, and I&B
The research findings are based on the provisions of India's Digital Personal Data Protection (DPDP) Act that was passed by both the houses of parliament in August 2023
Two influential lawmakers from opposing parties have crafted a deal on legislation designed to strengthen privacy protections for Americans' personal data. The sweeping proposal announced Sunday evening would define privacy as a consumer right and create new rules for companies that collect and use personal information. It comes from the offices of Democratic Sen. Maria Cantwell and Republican Rep. Cathy McMorris Rodgers, both of Washington state. Cantwell chairs the Senate Commerce Committee while McMorris Rodgers leads the House Energy and Commerce Committee. While the proposal has not been formally introduced and remains in draft form, the bipartisan support suggests the bill could get serious consideration. Congress has long discussed ways to protect the personal data regularly submitted by Americans to a wide range of businesses and services. But partisan disputes over the details have doomed previous proposals. According to a one-page outline released Sunday, the bill worked
The framework will operate as a part of the Digital Personal Data Protection Act, of 2023, which was passed by the parliament in August
As India's first-ever dedicated legislation for digital privacy, the DPDP Act provides broad principles of collection and processing of personal information in digital form
While the rules that would provide exact processes of the DPDP Act are yet to be notified, the government has consistently claimed that large organisations must not require much time to comply
The central government is currently working on the draft Digital India Bill to replace the Information Technology Act, 2000
Entities may be given about a year to tune their systems to comply with norms of Digital Personal Data Protection Act, 2023, Minister of State for Electronics and IT Rajeev Chandrasekhar said on Wednesday. Speaking to reporters on the sidelines of consultation with the industry, Chandrasekhar said the Data Protection Board and guidelines for the eight rules, including consent management, will be put in place within a month. "Industry wants some more time for age-gating, different timelines for transition for different data fiduciaries. We expect transition for most of the rules except age-gating will happen in 12 months from now," the minister said. The consultation was attended by about 125 people representing various companies, including Meta, Lenovo, Dell, Netflix, among others. The Digital Personal Data Protection Act, 2023, which comes after six years of the Supreme Court declaring 'Right to Privacy' as a fundamental right, has provisions to curb the misuse of individuals' da
Business Standard brings the top headlines at this hour