Call Us Now

+91 9606900005 / 04

For Enquiry

legacyiasacademy@gmail.com

What do draft data protection rules state?

Background:

  • The Ministry of Electronics and Information Technology released the draft rules for the Digital Personal Data Protection (DPDP) Act, 2023, on January 3, 2025.
  • Concerns have been raised about the adequacy of the existing legislation in creating a comprehensive data privacy framework.

Relevance : GS 2(Governance)

Data Localisation Mandate:

  • Definition: Data localisation involves restricting the transfer of data across borders, ensuring that data related to a country’s citizens is stored within its own borders.
  • Expansion Beyond DPDP Act: The draft rules extend the localisation mandate, which previously applied only to specific notified countries under the DPDP Act.
  • New Government Committee: A government-appointed committee will decide which types of data cannot be exported from India. This could affect major tech companies like Meta, Google, Apple, Microsoft, and Amazon, classified as significant data fiduciaries (SDFs) due to their high volume and sensitive data processing.
  • Challenges for Tech Companies:
    • Operational difficulties in segmenting and storing data in different locations.
    • Increased operational costs and restrictions on business activities.
  • Two-Year Compliance Timeline: Companies are expected to comply with localisation requirements within two years, with support from a central committee to streamline the process and prevent fragmented mandates from different departments.

Concerns on Executive Overreach:

  • Section 36 of the DPDP Act & Rule 22:
    • These provisions grant the Union government extensive discretionary powers to demand any information from data fiduciaries or intermediaries for national security or sovereignty reasons.
    • This power could potentially be misused for surveillance.
  • Impact on End-to-End Encryption:
    • Rule 22 could require social media companies like WhatsApp to compromise end-to-end encryption for compliance with government demands.
    • Meta previously raised concerns about this potential breach of privacy in their challenge to the 2021 Intermediary Guidelines.
  • Lack of Oversight:
    • The government could requisition data without checks, bypassing judicial scrutiny, and without notifying affected individuals (in violation of the 2012 expert committee’s recommendation).
    • Critics argue this could lead to abuses of power, particularly in politically sensitive situations.

Potential Impact on Businesses and Individuals:

  • For Tech Companies:
    • High costs and operational hurdles to ensure compliance.
    • Risk of affecting business operations due to restrictive data handling.
  • For Citizens:
    • Greater vulnerability to surveillance.
    • Lack of transparency in government access to personal data.
    • Concerns about the erosion of privacy rights with inadequate safeguards.

Expert Opinions:

  • Aparajita Bharti (Tech Compliance Expert):
    • The localisation mandate will cause significant operational challenges, especially for start-ups and smaller companies.
  • Apar Gupta (Internet Freedom Foundation):
    • The lack of adequate restrictions on government access to data could lead to misuse, harming privacy rights and political freedoms.
  • Amar Patnaik (Advocate):
    • Calls for more scrutiny of the rules, suggesting they be reviewed by a parliamentary standing committee to ensure accountability.
Recent Posts
January 2025
MTWTFSS
 12345
6789101112
13141516171819
20212223242526
2728293031 
Categories
Tags
Biodiversity Budget Disaster management Diseases Economic Development Economic Survey Education GS-1 Art and Culture GS-1 Geography GS-1 History GS-1 Indian Society GS-2 Agriculture GS-2 Bilateral GS-2 Environment and Ecology GS-2 Executive and judiciary GS-2 Geography GS-2 Governance GS-2 Health GS-2 Indian Constitution GS-2 Indian Economy GS-2 International Relations GS-2 Polity and Constitution GS-2 Science and Technology GS-2 Social Justice GS-2 Welfare Schemes GS-3 Agriculture GS-3 Disaster Management GS-3 Environment and Ecology GS-3 Food Processing GS-3 Growth and Development GS-3 Indian Economy GS-3 Industry and Infrastructure GS-3 Internal Security GS-3 Science and Technology GS2 GS 3 International Relations Indian economy International Institutions Motivation PIB Preparation Strategy for History Optional Sociology Optional Strategy Space Technology Welfare Schemes Women Empowerment
Enquire Now

About

Legacy IAS Academy (LIA) is a well-known name for IAS Preparation in Bangalore. LIA is a group of experienced faculties, which included retired IAS/IPS/IRS officers, Academics, and extraordinary tutors from trusted Institutes in India.

Newsletter

Stay updated with our latest analysis on Daily Current affairs from the Hindu, Indian Express and other leading newspapers along with our PIB and Editorial Summaries.
Register now and be a part of the clan to not miss even a single update on getting one step closer to your dreams!

    Facebook Twitter Youtube Instagram Telegram

    Contact us

    Legacy IAS Academy – Drive Location 

    Address: #1535, 39th Cross Rd, Kottapalya, 4th T Block East, Jayanagara 9th Block, Jayanagar, Bengaluru, Karnataka 560041

    Phone: +91 9606900005 /04

    Email:  legacyiasacademy@gmail.com

                  info@legacyias.com

    Legacy IAS Academy © 2019-2024 All Rights Reserved.