A customer-centric framework to implement data protection in financial services
Dvara Research, with the Data Security Council of India (DSCI), co-developed two privacy handbooks directed at FSPs in the insurance and banking sector. The handbooks help FSPs implement data protection in a customer-centric manner throughout the data lifecycle, including in legacy systems.
Protecting the users — what the primary aim of a personal data protection legislation should be
The latest iteration of India’s data protection legislation calls for a reminder of why the country needs a Personal Data Protection Bill and what would make it a good one.
Data Protection Bill | Three changes that will sharpen draft Bill
Protecting citizens’ privacy is a pre-eminent mandate of any data protection regime. The Digital Personal Data Protection Bill appears to have departed farther away from that mandate
Marking up India’s Personal Data Protection Bill
India’s Personal Data Protection Bill, 2019 (the Bill) was introduced in Parliament in December 2019, and is currently under consideration by a Joint Parliamentary Committee of MPs.
Understanding harm from personal data processing activities and its challenges for user protection
This paper seeks to understand the nature of harm emerging from personal data processing activities and its impact on user protection. To this end, the paper analyses how personal data-related harms are unique and distinct from other kinds of harms arising from torts, breach of contract, crime or defects in products and services.
Response dated 31 January 2021 to the Report by the Committee of Experts on Non-Personal Data Governance Framework released by the Ministry of Electronics and Information Technology in December 2020
An analysis of literature on the socio-economic implications of sharing privately held NPD and the objectives of other comparable frameworks suggests that the rationale for some of these goals are unclear. They do not take into consideration the complete economic and social merits and demerits of sharing privately held NPD.
Our Response to the Report by the Committee of Experts on Non-Personal Data Governance Framework, December 2020
In this blog post, we present our comments to the Report by the Committee of Experts on Non-Personal Data Governance Framework, December 2020
An operational architecture for privacy-by-design in public service applications
Governments around the world are trying to build large data registries for effective delivery of a variety of public services. However, these efforts are often undermined due to serious concerns over privacy risks associated with collection and processing of personally identifiable information.
Response dated 13 September 2020 to the Report by the Committee of Experts on Non-Personal Data Governance Framework released by the Ministry of Electronics and Information Technology in July 2020
This response identifies some overarching concerns with the Report that we seek to convey and substantiate.
They are categorised under the following three sections:
Section 1: The Report fails to identify the basis for a separate regulatory regime to regulate non-personal data (NPD).
Our Response to the Report by the Committee of Experts on Non-Personal Data Governance Framework
In this blog post, we present our comments to the Report by the Committee of Experts on Non-Personal Data Governance Framework
