You are here: Home » International » News » Companies
Business Standard

Need for data protection law, ensuring privacy to users crucial: Experts

Explosion of data, its storage and multiple uses of such information have made it critical to build safeguards against data breaches

Press Trust of India  |  New Delhi 

data privacy
Representative Image

The concept of "minimal data" and "data purpose" have become increasingly relevant at a time when many apps are seeking blanket consent from users to access unrelated data, according to experts.

A panel discussion on 'Future of Governance' hosted by (IIC) in collaboration with and for Policy Research (CPR) saw eminent speakers converge to discuss threadbare the complex nuances of

The issue is now in the spotlight as prepares to put in place a new and robust framework. The framework, that will secure personal data in the increasingly digitised economy and build safeguards against data breaches, is widely expected be finalised by June.

"If a music app wants to know my music preference, it is understandable...But if they want my photo, what has that to do with my music preference? That is why there is concept of minimal data and data purpose, for what purpose do you want it..." said Justice B N Srikrishna (former judge), who chaired the session dealing with issues.

Alluding to a panellist's views on the issue of consent as pre-condition for services, Justice Srikrishna said it is possible to make sure that user consent "can be partially to something and partially against something".

Justice Srikrishna -- who also heads the high-level committee which is framing new norms for -- posed thought-provoking questions at the event organised last evening as part of a series of talks on digital technologies. The panel included (UIDAI) J Satyanarayana and many legal experts.

The wide canvas of questions that were debated ranged from basic issues like the need to protect data, to complex and tricky ones such as data sovereignty and ascertaining liabilities where multiple data collectors are involved.

During the discussion, the panel noted that both public and private sectors are collecting and using personal data at an unprecedented scale and for multiple purposes, and advanced algorithms now make it possible to not only predict user behaviour but also compile complete digital profiles of users.

"We need a We have, for these many years, been in sort of vacuum where there is no efficient for data protection - that is a big problem.

"So the has to define what the rights and responsibilities are, it has to address issues like ownership and of data, and then set up an adjudication mechanism for accountability framework," Vrinda Bhandari, advocate, said to a question on tackling data risks.

Bhandari said other key aspects are consumer education and embedding flexible principles in law to ensure that legislations are able to effectively deal with technological advancements.

She asserted that where multiple entities may be involved in handling and of data, the liability of the primary needs to be clearly defined as individuals tend to share their information with based on "trust".

The recent data breach episode involving US based and British data analytics firm has created an awareness like never before on issues around information privacy, user rights and consent policies, nudging to review and strengthen their privacy protection rules.

Speaking on the occasion, UIDAI's Satyanarayana said new-age technology backed by empathy has transformed the manner in which are being rendered to citizens, and that shift from paper-based to digital systems has resulted in efficiencies as well as convenience for people.

Satyanarayana asserted that Aadhaar is intended at empowerment of citizens, and that giving a unique identity to people and providing a robust digital platform to authenticate "anytime, anywhere" are aligned to this vision.

Aadhaar, he said, is protected by high-tech encryption, authentication and best-in-class security, and every device, person and software is registered and authenticated before allowing enrolment.

So far, 121.17 crore residents have been enrolled for Aadhaar. It has been used for 19.6 billion authentications, he said.

His views assume significance in the backdrop of the reserving its verdict on a batch of pleas challenging the Aadhaar Act and the use of the biometric identifier in various government and

Explosion of data, its storage and multiple uses of such information have made it critical to build safeguards against data breaches, said Chinmayi Arun, Executive Director, for Communication Governance at National Law University,

Addressing a question on relevance of consent in structure of law, Arun cautioned that consent may bring its own set of complications.

"...consent has a series of problems with it. There are situations where for government or private delivery of services, you are told that your consent is being asked for, but you don't really have a choice in the matter. So you end up consenting to get the welfare service or access a network, and you don't have an option to quit it," she added.

First Published: Fri, May 25 2018. 15:28 IST
RECOMMENDED FOR YOU