Digital Personal Data Protection (DPDP) law aims to protect the privacy of Indian citizens while proposing a penalty of up to Rs 250 crore on entities for misusing or failing to protect digital data of individuals.
The draft rules have been issued after Parliament approved the Digital Data Protection Bill 2023 about 14 months back.
The "construct of the DPDP Act" cannot be changed at this stage, though there may be some minor tweaks in the language of the Rules and formats in certain legitimate cases.
Hours after Congress leader Manish Tewari on Thursday said the government might get the Digital Data Protection Bill classified as a money bill, Union IT Minister Ashwini Vaishnaw refuted the charge and termed it a "normal bill".
The data protection bill introduced in Parliament on Thursday enables the government "to call for information" from data protection board, data collecting entities or intermediary, and safeguards the Centre from legal proceedings for "action taken in good faith" under the provisions of the legislation.
The government on Wednesday withdrew the Personal Data Protection Bill from Lok Sabha and said it will come out with a 'set of fresh legislations' that will fit into the comprehensive legal framework.
'There were two options before the government -- create a complex, cumbersome law, which will cause a tremendous amount of compliance challenges for startups or say let's go back and do a clean slate, where we do a framework of laws and policies'
After withdrawing the personal data protection bill, the government is hopeful of getting a new legislation passed by the next Budget session of Parliament, Union minister Ashwini Vaishnaw has said. The government on Wednesday withdrew the Personal Data Protection Bill from the Lok Sabha. The Joint Committee on Personal Data Protection Bill, 2019, headed by BJP member P P Chaudhary, had tabled its report in Lok Sabha on December 16, 2021.
The Rajya Sabha on Wednesday passed the Digital Personal Data Protection Bill 2023 by voice vote following a walkout by opposition members over the Manipur issue.
A new law that defines how companies should process users' data came into force with the President giving assent to the Digital Personal Data Protection (DPDP) Act passed by Parliament in the just-concluded monsoon session. The law arms individuals with greater control over their data while allowing companies to transfer users' data abroad for processing, except to nations and territories restricted by the Centre through notification. It also gives the government power to seek information from firms and issue directions to block content.
The new rules allow for a staggered implementation road map, giving companies, data fiduciaries, data principals, and other stakeholders up to 18 months to comply with the administrative guidelines under the DPDP Act.
The government on Thursday tabled the Digital Personal Data Protection Bill 2023 in the Lok Sabha with an aim to protect the privacy of Indian citizens, while proposing a penalty of up to Rs 250 crore on entities for misusing or failing to protect digital data of individuals.
The report touches on variety of issues including consent, rights of children, data protection authority and right to recall data.
After withdrawing the personal data protection bill, the government is hopeful of getting a new legislation passed by the next Budget session of Parliament, Union Minister Ashwini Vaishnaw has said.
...on par with oil, power, and defence, and to restrict its storage under foreign control.
'The real risk is not that AI will fail to transform India's economy.'
'The risk is that it already is -- while our measurement systems continue to look the other way,' observes Nishant Sahdev, a theoretical physicist at the University of North Carolina.
Significant controls and exemptions to the government under the proposed Digital Personal Data Protection bill 2022 are likely to make it harder for companies to invest in data centres and data processing activities in India, according to global technology industry body ITI. The ministry of electronics and IT has floated draft Digital Personal Data Protection (DPDP) Bill 2022 and has invited comments on the same till January 2. "The Bill grants significant controls to the executive arm of GOI (Government of India) and delegates much of the detailed rulemaking authority to separate, as yet undefined processes.
During an open house discussion with stakeholders on the draft Digital Personal Data Protection (DPDP) bill 2022, Chandrasekhar said that the right to privacy is a fundamental right while the right to information is not. "Right to privacy is a fundamental right and right to information is not.
After the draft data protection bill, the government is now all set to bring another key legislation -- Digital India Bill -- that will be made available for public consultation by the month-end, Minister of State for IT Rajeev Chandrasekhar said on Thursday. The Digital India Bill, which will replace the 22-year old Information Technology (IT) Act, will be contemporary and a modern piece of legislation, the Minister promised. The proposed bill, alongside the Digital Personal Data Protection (DPDP) Bill whose draft was released recently, will contribute to the evolving framework which is light on regulation, safeguards consumer rights and catalyses innovation, the minister said while speaking at CII Global Economic Policy Summit 2022.
The government has raised the penalty amount to up to Rs 500 crore for violating the provisions proposed under the draft Digital Personal Data Protection Bill 2022 issued on Friday. The draft personal data protection bill in 2019 proposed a penalty of Rs 15 crore or 4 per cent of the global turnover of an entity. The draft proposes to set up a Data Protection Board of India, which will carry on functions as per the provisions of the bill.
'If Indians are to be truly protected, Parliament must review and address these dangerous provisions before they become law.'
If the Personal Data Protection Bill gets passed in its present form, a new class of companies and entities could emerge. The sole job of these new entities would be to manage the consent for data usage of a user.Banks, healthcare firms and fintech companies, among others, fear that sharing non-personal data with the government may hurt business interests. Banks also fear the threat of data misuse.
In a first of its kind move, the Indian Railways Catering and Tourism Corporation (IRCTC), the ticket booking arm of the Indian Railways, is looking to monetise its bank of passenger data while conducting business with private and government companies. IRCTC has a large bank of data related to every online railway ticket ever generated as it is the country's only railway ticketing platform, an IRCTC official told Business Standard. The public sector undertaking, which has sought the services of a consultant to assist with the monetisation process, plans to raise Rs 1,000 crore through this exercise.
Here's what you must know about the new rule, its implications, and whether it affects taxpayers' rights and privacy.
The government will "notify such countries or territories outside India to which a data fiduciary may transfer personal data", according to the draft unveiled on Friday for public feedback.
'Other sectors that manage the savings pools of Indians are giving tough competition to life insurance companies.'
The Bill says that the central government, in consultation with the Data Protection Authority, can direct any data fiduciary or data processor to provide non-personal data to enable better targeting of delivery of services. The government can also ask data processors to provide data for formulation of evidence-based policies for its own use.
Parliamentary Affairs Minister Prahlad Joshi has said that 31 bills will be taken up in the monsoon session. Among these include the Digital Personal Data Protection Bill, 2023.
Since the deadline for Justice B N Srikrishna Committee's feedback is December 31, the government is unlikely to table a data protection Bill in the winter session of Parliament.
Billionaire Mukesh Ambani on Friday backed the proposed data privacy and cryptocurrency bills, saying India is putting in place the most forward-looking policies and regulations. Ambani, who has been a votary of Indians owning and controlling their own data and the nation drafting strict rules around how digital information is stored and shared, said nations have the right to build and protect strategic digital infrastructure. Stating that data is the 'new oil', he said every citizen's right to privacy has to be safeguarded. "India is putting in place the most forward-looking policies and regulations," he said at the Infinity Forum, hosted by International Financial Services Centres Authority (IFSCA).
In the worst-case scenario, it will be next to impossible for tech companies like Amazon and Google to run any service that requires user biometrics.
The government will investigate a claim that WhatsApp accessed the microphone of smartphone users while the phone was not in use, Minister of State for Electronics and Information Technology Rajeev Chandrasekhar said on Wednesday.
'Why does a State that sees a national security issue at every turn not recognise the seriousness of the data from sensitive databases being breached?'
The digital platforms are responsible and accountable for ensuring the safety of 'digital nagriks', the minister said, adding that the government will respond to every instance of alleged misuse or alleged breach of users' privacy.
Reserve Bank Deputy Governor Michael Patra on Wednesday said the central bank's views about cryptocurrencies might have delayed the government's proposed legislation on crypto assets. Emphasising that the Central Bank Digital Currency (CBDC) will be introduced in FY23 as announced by Finance Minister Nirmala Sitharaman in the Budget speech, Patra said India will proceed very gradually on the subject as there are concerns on privacy, its impact on monetary policy formulation and energy intensity. The government had plans to introduce a bill on cryptocurrencies like Bitcoin during the Winter Session of Parliament in November-December 2021 but did not introduce it.
Agriculture, social services, education, defence and so on will be brought into the digital fold and every gram panchayat will be connected to the internet.
'The idea is to have a separate and independent consultation on non-personal data, and decide the contours of how it should be regulated, whether as guidelines, rules, or a separate policy,' said a senior official at MeitY.
MeitY had stated there was a need to set up GACs as grievance officers hired by the platforms often did not address issues satisfactorily.
At the outset, all eyes will be on the Lok Sabha Secretariat on Monday when it is expected to review the stay granted by the Supreme Court on the conviction of Rahul Gandhi in the 'Modi surname' case and decide on the revocation of his Parliament membership.
© 2026 Rediff.com - Investor Information - Advertise with us - Disclaimer - Privacy Policy - Sitemap - Feedback - About us - Terms of use - Grievances