Dec 102019
 December 10, 2019  Posted by  Govt, Laws, Non-U.S.

Manish Singh reports:

India has proposed groundbreaking new rules that would require companies to garner consent from citizens in the country before collecting and processing their personal data. But at the same time, the new rules also state that companies will have to hand over “non-personal” data of their users to the government, and New Delhi will also hold the power to collect any data of its citizens without consent, thereby bypassing the laws applicable to everyone else, to serve sovereignty and larger public interest.

Read more on TechCrunch. 

So far, this doesn’t sound like a good system to me, especially when you remember that this is a country that requires everyone have a national ID number (aadhaar).  And none of the new rules that I have seen so far impose any new notification duties on Indian companies in the event of a breach, but I expect to see a lot more reporting and discussion of the rules before this is all over.

Sorry, the comment form is closed at this time.