Page 2 - Data Protection Laws
Nigeria slaps $220 mn fine on Meta over violation of data protection laws
Nigeria's government on Friday announced a fine of USD 220 million on Meta, saying its investigations found multiple and repeated violations of the country's data protection and consumer rights laws on Facebook and WhatsApp. A statement from Nigeria's Federal Competition and Consumer Protection Commission, or FCCPC, listed five ways that Meta violated data laws in the West African country, including by sharing the data of Nigerians without authorization, denying consumers the right to self-determine the use of their data, discriminatory practices as well as abuse of market dominance. "Being satisfied with the significant evidence on the record, and that Meta Parties have been provided every opportunity to articulate any position ... the Commission has now entered a Final Order, and issued a penalty against Meta Parties," FCCPC chief executive Adamu Abdullahi said in a statement. A spokesperson for Meta didn't immediately respond to a request for comment. Nigeria, which is Africa's
 "Nigeria slaps $220 mn fine on Meta over violation of data protection laws")
DPDP rules should be released soon to ensure a smooth compliance: Experts
Draft of Digital Personal Data Protection rules are in an advanced stage, and industry consultation will start soon, said Ashwini Vaishnaw, Minister of Electronics and I-T, Railways, and I&B
 "DPDP rules should be released soon to ensure a smooth compliance: Experts")
54% data fiduciaries lack experience in enforcing data protection laws
The research findings are based on the provisions of India's Digital Personal Data Protection (DPDP) Act that was passed by both the houses of parliament in August 2023
 "54% data fiduciaries lack experience in enforcing data protection laws")
US lawmakers propose new rules to protect personal data, strengthen privacy
Two influential lawmakers from opposing parties have crafted a deal on legislation designed to strengthen privacy protections for Americans' personal data. The sweeping proposal announced Sunday evening would define privacy as a consumer right and create new rules for companies that collect and use personal information. It comes from the offices of Democratic Sen. Maria Cantwell and Republican Rep. Cathy McMorris Rodgers, both of Washington state. Cantwell chairs the Senate Commerce Committee while McMorris Rodgers leads the House Energy and Commerce Committee. While the proposal has not been formally introduced and remains in draft form, the bipartisan support suggests the bill could get serious consideration. Congress has long discussed ways to protect the personal data regularly submitted by Americans to a wide range of businesses and services. But partisan disputes over the details have doomed previous proposals. According to a one-page outline released Sunday, the bill worked
 "US lawmakers propose new rules to protect personal data, strengthen privacy")
Govt to introduce 'risk-based' framework for age-gating on social media
The framework will operate as a part of the Digital Personal Data Protection Act, of 2023, which was passed by the parliament in August
 "Govt to introduce 'risk-based' framework for age-gating on social media")
DPDP rules ready but unlikely to be tabled in winter session of Parliament
As India's first-ever dedicated legislation for digital privacy, the DPDP Act provides broad principles of collection and processing of personal information in digital form
 "DPDP rules ready but unlikely to be tabled in winter session of Parliament")
Majority organisations' very concerned' on impact of data law: EY study
While the rules that would provide exact processes of the DPDP Act are yet to be notified, the government has consistently claimed that large organisations must not require much time to comply
 "Majority organisations' very concerned' on impact of data law: EY study")
Google appoints new public policy head in India amid regulatory overhaul
The central government is currently working on the draft Digital India Bill to replace the Information Technology Act, 2000
 "Google appoints new public policy head in India amid regulatory overhaul")
Entities may be given a year to comply with data protection norms: MoS IT
Entities may be given about a year to tune their systems to comply with norms of Digital Personal Data Protection Act, 2023, Minister of State for Electronics and IT Rajeev Chandrasekhar said on Wednesday. Speaking to reporters on the sidelines of consultation with the industry, Chandrasekhar said the Data Protection Board and guidelines for the eight rules, including consent management, will be put in place within a month. "Industry wants some more time for age-gating, different timelines for transition for different data fiduciaries. We expect transition for most of the rules except age-gating will happen in 12 months from now," the minister said. The consultation was attended by about 125 people representing various companies, including Meta, Lenovo, Dell, Netflix, among others. The Digital Personal Data Protection Act, 2023, which comes after six years of the Supreme Court declaring 'Right to Privacy' as a fundamental right, has provisions to curb the misuse of individuals' da
 "Entities may be given a year to comply with data protection norms: MoS IT")
Top headlines: Pharma likely to take 5-6% price hikes, FDI outflow soars
Business Standard brings the top headlines at this hour
 "Top headlines: Pharma likely to take 5-6% price hikes, FDI outflow soars")
Top headlines: Jio Financial shares to debut, big techs seek relaxation
Business Standard brings you the top headlines at this hour
 "Top headlines: Jio Financial shares to debut, big techs seek relaxation")
Big techs seek relaxations from parental consent norm of data law
The provision was one of the most contentious issues during the public consultations on the bill
 "Big techs seek relaxations from parental consent norm of data law")
Privacy and penalty: Managing business with new data protection law
Stringent legal obligation to prevent breaches has companies reviewing their security practices
 "Privacy and penalty: Managing business with new data protection law")
Governments abroad call Data Protection Bill a 'landmark' regulation
Countries such as New Zealand said that they are taking a 'keen interest' in the implementation of the Bill and also its approach to privacy regulation
 "Governments abroad call Data Protection Bill a 'landmark' regulation")
Data Protection Board: Chance to bring regulatory agility or a miss hit?
Data Protection Board of India could play an essential role in bringing about regulatory agility and striking the right balance between regulation and innovation in a data-dependent digital economy
Usage and ground rules: New Digital Personal Data Protection framework
A new law that defines how companies should process users' data came into force with the President giving assent to the Digital Personal Data Protection (DPDP) Act passed by Parliament in the just-concluded monsoon session. The law arms individuals with greater control over their data while allowing companies to transfer users' data abroad for processing, except to nations and territories restricted by the Centre through notification. It also gives the government power to seek information from firms and issue directions to block content. While the new law seeks to establish a robust framework for the protection of personal data in the digital realm, it has drawn criticism from some quarters over broad exemptions granted to state entities and some of its provisions diluting the landmark Right to Information (RTI) law. The new legislation comes after the government, last year, withdrew a December 11, 2019 bill that had alarmed tech companies like Facebook and Google with its proposals
 "Usage and ground rules: New Digital Personal Data Protection framework")
Govt expects to implement new data protection law within 10 months
The government is expecting to implement the Digital Personal Data Protection law within 10 months, Union IT Minister Ashwini Vaishnaw said on Wednesday. The Rajya Sabha on Wednesday passed the Digital Personal Data Protection Bill 2023 with a voice vote amid a walkout by opposition members over the Manipur issue. The Bill, which comes after six years of the Supreme Court declaring 'Right to Privacy' as a fundamental right, has provisions to curb the misuse of individuals' data by online platforms. "We have started work on implementation. This kind of legislation will require a 6-10 month kind of frame. We will take every step with proper checks and balances. It is a guesstimate. We might do it faster than that," Vaishnaw said. Elaborating on the principles, he said the data collected by the citizens should be used as per the law, only for the purpose for which it has been collected and the quantum of data should be limited to the requirement. Vaishnaw said citizens will have the
 "Govt expects to implement new data protection law within 10 months")
Rajya Sabha passes data protection law amid surveillance concerns
The new legislation comes after India withdrew a 2019 privacy bill that had alarmed tech companies like Facebook and Google with its proposals for stringent restrictions on cross-border data flows
 "Rajya Sabha passes data protection law amid surveillance concerns")
Data Protection Bill: Experts flag legitimate purposes concern for Big Four
The consulting firms have gone into a temporary wait-and-watch mode on certain things in the Bill until a rulebook could clarify it for them
Opposition MPs demand parl committee vetting of data protection bill
In a meeting held on Wednesday, members from the ruling side proposed the standing committee to adopt the draft report
 "Opposition MPs demand parl committee vetting of data protection bill")
