Data Privacy

These apps on your phone are 'spying' on you: How to protect your data

Apps are harvesting data on you constantly-sometimes beyond what they need. Here's why it matters, how it's used, and what you can do to regain some control

IIGC launches Code of Standards to govern influencer-brand deals

The Indian Influencer Governing Council's new code mandates disclosure of partnerships, regulates virtual influencer use, and introduces contract templates for brands

Data privacy: Irish privacy watchdog hits TikTok with 530 mn euro fine

European Union privacy watchdogs fined TikTok 530 million euros ($600 million) on Friday after a four-year investigation found that the video sharing app's data transfers to China breached strict data privacy rules in the EU. Ireland's Data Protection Commission also sanctioned TikTok for not being transparent with users about where their personal data was being sent and it ordered the company to comply with the rules within six months. The Irish national watchdog serves as TikTok's lead data privacy regulator in the 27-nation EU because the company's European headquarters is based in Dublin. TikTok failed to verify, guarantee and demonstrate that the personal data of (European) users, remotely accessed by staff in China, was afforded a level of protection essentially equivalent to that guaranteed within the EU, Deputy Commissioner Graham Doyle said in a statement. TikTok said it disagreed with the decision and plans to appeal. The company said in a blog post that the decision foc

WhatsApp bans over 9.7 mn accounts in India during Feb for safety reasons

WhatsApp on Tuesday said it banned more than 9.7 million accounts in India during February 2025, 1.4 million of which were proactively banned prior to any user reports. Releasing its monthly safety report, the Meta-owned messaging app also shared tips on using the platform responsibly. It listed out ways to do so, including respecting boundaries, avoiding spamming with bulk and auto messages, and using broadcast lists responsibly. "According to the report for the month of February 2025, WhatsApp banned over 9.7 million accounts in India for violating its Terms of Service. More than 1.4 million of these accounts were proactively banned prior to any user reports," WhatsApp said. A WhatsApp spokesperson further said the platform has consistently invested in Artificial Intelligence and other technology, data scientists and experts, and processes, to keep users safe on the platform. "In accordance with the IT Rules 2021, our latest published report outlines user complaints received, ...

Cyber incidents: IRDAI asks insurers to empanel forensic experts in advance

Regulator Irdai on Wednesday directed insurers to empanel forensic auditor in advance so that they could conduct forensics and root cause analysis of cyber incidents without any delay. In a circular, which has come in the wake rising incidents of data breach, Insurance Regulagtory and Development Authority of India (Irdai) said that in today's digital age, any cyber incident and crisis poses significant threats to organisations. Therefore, it is crucial to be prepared to respond effectively to prevent or minimise damage to information assets, including customer data and ensure business continuity. In 2023, the regulator had issued Irdai Information and Cyber Security Guidelines regarding cyber incident or crisis preparedness. "In addition..., all regulated entities are required to establish a well-defined procedure/practice to ensure that the forensic auditor/s are empanelled in advance and can be onboarded to conduct forensics and root cause analysis of cyber incident/s without an

China's Baidu denies data breach after executive's daughter leaks info

Baidu was thrust into the spotlight last week after online users accused the teenage daughter of Baidu vice president Xie Guangjun of posting personal information of other users

87% of people say personal data compromised in public domain: Survey

A significant percentage of citizens believe that one or more of their personal data elements are already in the public domain or in databases that have been compromised, a survey said on Monday. According to online platform LocalCircles, 87 per cent of citizens surveyed believe their personal data was leaked in the public domain. The survey claims to have received over 36,000 responses from citizens located in 375 districts of India between August 25 to February 28. However, the number of responses on each question varied. Most of the respondents have blamed telecom operators, e-commerce apps, banks and financial service providers, government departments etc for compromising their data in public domain. Of those Indians who believe their personal identification data has been leaked or in public domain, over half of them say it is either their Aadhaar or PAN card details or both that have been compromised. "Citizens whose personal data has been leaked and in public domain hold var

What is Goose, Jack Dorsey's open-source AI? Can it disrupt the industry?

Traditionally, AI development was exclusive, reserved for big firms with hefty budgets. Goose challenges this status quo. Dorsey's vision is to make cutting-edge AI tools available to everyone

Data Privacy Day highlights India's need for stronger digital protections

In India, the significance of this day is further elevated, with the rules around the Digital Personal Data Protection (DPDP) Act in the final phases of consultation

Best of BS Opinion: Risks and Outcomes in an Uncertain Future

Here's a quick capsule of the best of Business Standard's opinion pages today for your quick reading.

Consent, data, parental nod on social media in focus: Experts on DPDP

The draft DPDP rules which moot parents' verifiable consent to create a child's user account on social media platforms, and adds localisation requirement for certain types of personal data has significant ramifications for big tech firms, experts say noting that businesses may also face "complex challenges" in managing consent which is core to data protection norms. According to Deloitte India, maintaining consent artefacts and offering the option to withdraw consent for specific purposes would necessitate changes at design and architecture level of applications and platforms. The comment comes against the backdrop of government releasing the long-awaited draft of Digital Personal Data Protection Rules which proposes to make parent's verifiable consent and identification mandatory for creation of child's user account on online or social media platforms, and also moots possible data localisation requirements for specified personal data. The provision related to localisation and ...

US moves to boost crackdown on China Telecom's unit over data privacy

There is growing alarm in Washington about China's alleged efforts known as Salt Typhoon to infiltrate American telecommunications companies

'Right to Privacy' petitioner Justice Puttaswamy passes away at 98

Former Karnataka High Court judge Justice K S Puttaswamy, who played a pivotal role in declaration of right to privacy as a fundamental right from the Supreme Court in 2017, passed away at his Bengaluru residence on Monday. He was 98. Justice Puttaswamy was the lead petitioner who had moved the apex court in 2012 challenging the constitutional validity of the Aadhaar scheme as being violative of the privacy right. The Aadhaar scheme subsequently received legislative sanction. In a landmark verdict in August 2017, a nine-judge bench through an unanimous verdict declared the right to privacy a fundamental right under Article 21 (protection of life and personal liberty) of the Constitution. It had underlined privacy to be "the constitutional core of human dignity". Born on February 8, 1926, Puttaswamy studied at Maharaja's College, Mysore and obtained a law degree from Government Law College, Bengaluru. He was enrolled as an advocate in January 1952 and became the Karnataka High Co

Rs 42,300 cr loans given since launch of account aggregator framework

Nearly half of it has been facilitated in the second half of financial year 2024 (H2FY24)

Is your phone listening? Marketing firm confirms tech behind targeted ads

The fine print in terms of use agreements, which most users do not read in detail, often contains clauses that permit such invasive practices

Over 60% companies in India follow problematic data practices: Study

These practices, as defined by the report, include excessive data collection, secondary processing without consent, among others

Got tax refund text? Verify source, don't divulge sensitive information

They sometimes misuse personal information collected during tax preparation, leading to identity theft or unauthorised financial transactions

Meity plans to deploy experts for streamlining internal govt data use

The said 'data expert' may be a single person or multiple people, depending on the requirements of a particular ministry

Most fintech, banking apps tap into users' location, other information

Calling them "most sensitive permissions," the report on currency and finance has highlighted that fintech apps often collect personal data, potentially invading users' privacy

Google makes U-turn, dropping plan to remove cookies on Chrome browser

In a blog post on Monday, Google said it decided to abandon the plan after considering the impact of the changes on publishers, advertisers and everyone involved in online advertising industry