Union Minister Ashwini Vaishnaw on August 3 introduced the Data Personal Protection Bill (DPB) in the Parliament. Subsequently, Lok Sabha on August 7 passed the bill outlining rules for handling digital data in India while safeguarding individual rights.
Violations of the new rules carries substantial penalties ranging from Rs 50 crore to Rs 250 crore, emphasising adherence to the bill's provisions.
Bill aims to establish a robust framework safeguarding personal data, applicable to both online and offline data collected within India, to be transformed into digital format.
Continue viewing BT Visual Story
Catch the latest business news, share market updates, expert analysis and exclusives only on BTTV.in
Entities outside India, processing data for Indian consumers should also abide by the bill's regulations if offering goods/services within the country.
Entities handling user data must ensure its protection, even when stored with third-party data processors.
Companies must promptly notify the Data Protection Board (DPB) and affected users in case of data breaches.
Processing data of minors and individuals under guardianship will require explicit guardian consent.
It is mandatory for firms to appoint a DPO and share their contact details with users.
Central government is empowered to oversee personal data transfers to foreign entities; appeals against DPB decisions settled by the Telecom Disputes Settlement and Appellate Tribunal.
DPB holds the power to summon individuals, inspect company documents, and recommend action against repeated breaches by blocking access.