How did it start?
The Digital Personal Data Protection Bill 2022 has its roots in the Personal Data Protection Bill, 2018, the brainchild of a high-level expert group headed by BN Srikrishna, a former Supreme Court judge. It was first brought to the Parliament in 2019 to be examined by the Joint Committee of Parliament. The 2019 draft of the bill proposed the formation of a Data Protection Authority (DPA), whose essential function is to regulate the use of users’ personal data by social media companies and other organisations within the country. The bill was parallel to the European General Data Privacy Regulation and would set the stage for how big technology firms operate in India.
How is it going?
The Digital Personal Data Protection Bill 2022 is an updated version that takes into account feedback from stakeholders and incorporates changes based on global best practices. Overall, the history of this bill shows a growing recognition of the importance of protecting personal data in India and a commitment to creating a more transparent and trustworthy environment for handling personal data.
The Digital Personal Data Protection Bill 2022 is designed to regulate organizations’ use of personal data. It creates a privacy protection framework that supports individual rights through strict regulations. These regulations outline how organizations can collect, store, and process personal data in India. The bill proposes the formation of a Data Protection Authority (DPA) to regulate the use of users’ personal data by social media companies and other organisations within the country. The bill also aims to create a mechanism for “every user who registers their service from India or uses their service from India, a copy of their personal data is stored in India.” Overall, the key provisions herein, are meant to provide protection of digital privacy to individuals relating to their personal data, specify the flow of data, and create a relationship of trust between persons and entities processing the data.
The impact: How will it turn around to be?
The Digital Personal Data Protection Bill 2022 is a landmark legislation meant to regulate how various companies and organizations use individuals’ data inside India. The objective of the bill can only be fulfilled by ensuring that the bonus shifts from the users to the business entities. The impact of this bill is expected to be significant for both individuals and organizations in India. For individuals, the bill will provide greater control over their personal data and prevent misuse by organizations. It will also create a more transparent environment for handling personal data, which will help build trust between individuals and organizations.
For organizations, the bill will create a clear framework for how they can collect, store, and process personal data in India. While this may place a burden on existing business practices and complicate the start-up process within the Indian economy, it will ultimately create a more transparent and trustworthy environment for businesses to operate in. Additionally, complying with these regulations will help build trust with customers who are increasingly concerned about how their personal data is being used. Once the Bill is enacted, it will provide a level playing field for the national business entities in the global world.
Overall, the Digital Personal Data Protection Bill 2022 has the potential to benefit both individuals and organizations in India and its impact is merely speculation at present, which would only exponentiate in the future.
Note: This write-up is the introductory part of the three-part analysis of the DPDPB, do follow us for reading the upcoming piece.
