Page 3 - Data Protection
Asci bats for 'privacy by design' to reduce need to take consent from users
Asci said that before the final data protection rules in India are notified, advertisement companies must also undertake data audits to check their preparedness
 "Asci bats for 'privacy by design' to reduce need to take consent from users")
Digi Yatra voluntary, data can be collected only after consent: Scindia
Digi Yatra is purely voluntary for air passengers and personnel at airports have been directed to collect data for the application only with the consent of passengers, according to Civil Aviation Minister Jyotiraditya Scindia. There have been complaints that biometric data for Digi Yatra were being gathered from passengers without their consent and the issue was flagged to the minister by Rajya Sabha member Saket Gokhale. Digi Yatra, which provides for contactless, seamless movement of passengers at various check points at airports based on Facial Recognition Technology (FRT), is currently available at a minimum 13 airports for domestic passengers. In response to the member, Scindia has said that the issue was examined and "airport operators have been advised to sensitise Digi buddies on consent taking process and keeping use of Digi Yatra completely voluntary". To support passengers with the use of Digi Yatra, services of individuals called Digi buddies have been made available at
 "Digi Yatra voluntary, data can be collected only after consent: Scindia")
'Data protection seal' to vet platforms for privacy benchmarking: DSCI
Organisations who have volunteered under the project are undergoing a pilot testing stage
 "'Data protection seal' to vet platforms for privacy benchmarking: DSCI")
DPDP rules to be out by January-end, says MoS IT Rajeev Chandrasekhar
They will help curb deepfakes posted on social media platforms
 "DPDP rules to be out by January-end, says MoS IT Rajeev Chandrasekhar")
Sachin Tendulkar's deepfake video sparks concern: How to protect yourself
Sachin Tendulkar's deepfake video: The fabricated video of the cricketer depicted him endorsing a mobile gaming application, sparking concerns over data privacy on social media
 "Sachin Tendulkar's deepfake video sparks concern: How to protect yourself")
Cyber risks biggest threat faced by Indian orgnaisations, says survey
Cyber risks are cited as the biggest threat faced by Indian organisations with 38 per cent of respondents feeling highly or extremely exposed to it, says a survey. With this, cybersecurity has jumped two spots from number three to number one on the risk radar when compared to the 2022 Global Risk Survey, the PwC's 2023 Global Risk Survey- India edition stated. PwC said the final results of the survey are based on 3,910 survey responses from Business and Risk Management leaders (CEO, board, risk management, operations, technology, finance, audit) across 67 territories providing their views on the status and direction of risk in their organisation. 163 Indian organisations were a part of this survey. Other digital and technology risks are also top concerns for business leaders in India (at 35 per cent). To address the challenges, Indian organisations are making bold investments in cybersecurity with more than half of the respondents planning to invest in cybersecurity tools (55 per .
 "Cyber risks biggest threat faced by Indian orgnaisations, says survey")
Top porn sites must verify ages to protect kids under EU's new digital law
Three of the world's biggest porn websites face new requirements in the European Union that include verifying the ages of users, the 27-nation bloc said Wednesday, expanding the reach of its digital law designed to keep people safe on the internet. Pornhub, XVideos and Stripchat have now been classed as very large online platforms subject to more stringent controls under the Digital Services Act because they have more than 45 million users each, according to the European Commission, the EU's executive branch. The three companies did not respond immediately to requests for comment. They are the first porn sites to be targeted by the sweeping Digital Services Act, which imposes tough obligations to keep users safe from illegal content and dodgy products. Violations are punishable by fines of up to 6% of global revenue or even a ban on operating in the EU. Some 19 online platforms and search engines have already been identified for stricter scrutiny under the DSA, including TikTok, ...
 "Top porn sites must verify ages to protect kids under EU's new digital law")
Google plans to phase out use of third-party cookies for users in 2024
The search giant is set to roll out the feature, called Tracking Protection, on Jan. 4 to 1% of Chrome users globally, that will restrict cross-site tracking by default
 "Google plans to phase out use of third-party cookies for users in 2024")
Apps that use AI to undress women in photos gaining popularity: Report
These apps are part of a worrying trend of non-consensual pornography being developed and distributed because of advances in artificial intelligence - a type of fabricated media known as deepfake porn
 "Apps that use AI to undress women in photos gaining popularity: Report")
Half of Indian IT leaders feel security missing component in data policy
As many as 49 per cent of Indian IT industry leaders feel that security is a missing component in their organisation's data policy, a study by US-based data security firm Rubrik has revealed. As marquee brands continue to reveal the challenges of successful cyber attacks targeting their business data, the report said it has found a "stark reality". It says that globally, about one in every two organisations surveyed suffered a loss of sensitive data during last year. The research was conducted in the US, the UK, France, Germany, Italy, the Netherlands, Japan, Australia, Singapore, and India between June 30 and July 11, 2023. The data includes over 35 exabytes of logical storage secured and more than 24 billion sensitive data records from January 2022 through July 2023. In fact, one of six organisations experienced multiple losses of data in the past 12 months, the report, which was released on Wednesday, said. In the research report, 'The State of Data Security: The Journey to Se
 "Half of Indian IT leaders feel security missing component in data policy")
DPDP Act 2023: Consent managers crucial in data protection amid transition
Amidst digital transformation, industry grapples with new privacy mandates
 "DPDP Act 2023: Consent managers crucial in data protection amid transition")
Big Tech told to show strong case for time to comply with data law
The Data Protection Board is also likely to be set up in 30 days
 "Big Tech told to show strong case for time to comply with data law")
Privacy and penalty: Managing business with new data protection law
Stringent legal obligation to prevent breaches has companies reviewing their security practices
 "Privacy and penalty: Managing business with new data protection law")
Data Protection Board: Chance to bring regulatory agility or a miss hit?
Data Protection Board of India could play an essential role in bringing about regulatory agility and striking the right balance between regulation and innovation in a data-dependent digital economy
Top headlines: MPC meet expectations, Data bill compliance timelines, more
Business Standard brings you the top headlines at this hour
 "Top headlines: MPC meet expectations, Data bill compliance timelines, more")
Data Protection Bill moots power to Govt to get info from entities, Board
The data protection bill introduced in Parliament on Thursday enables Government "to call for information" from data protection board, data collecting entities or intermediary, and safeguards the Centre from legal proceedings for "action taken in good faith" under the provisions of the legislation. After two or more instances of norm violation by a data collection entity, the Government on the advice of Data Protection Board, can direct blocking access to information in the interest of the general public, according to the provisions of the Bill. The Digital Personal Data Protection Bill was tabled in Lok Sabha on Thursday. "...after giving an opportunity of being heard to that Data Fiduciary, on being satisfied that it is necessary or expedient so to do, in the interests of the general public, for reasons to be recorded in writing, by order...direct any agency of the Central Government or any intermediary to block for access by the public or cause to be blocked for access by the ...
 "Data Protection Bill moots power to Govt to get info from entities, Board")
Apps, firms could lose 'continuous consent' in data protection bill
The move will discard the concept of 'continuous consent' where apps and services get permission to process data from the users when they initially sign up for the service
 "Apps, firms could lose 'continuous consent' in data protection bill")
Data protection bill: Govt mulls exempting startups from data sharing rules
Only government-notified data fiduciaries and data processing entities will be exempted when it comes to data collection and data sharing
 "Data protection bill: Govt mulls exempting startups from data sharing rules")
Data protection bill could cap penalty for data breach at Rs 250 crore
The earlier draft has stipulated that in the case of non-compliance, a penalty of up to Rs 500 crore could be imposed
Data protection Bill: Centre to get power to lower age of consent to 14 yrs
The upcoming Bill will take a graded approach to defining the age of consent on a case-by-case basis