"India's new data privacy rules, requiring companies like Amazon, Meta, and OpenAI to minimize the collection of personal information, came into force this month. The Digital Personal Data Protection Act (DPDP) aims to secure Indian users' personal data, while guaranteeing their consent. Under the DPDP rules, firms will only be able to collect customer data that is necessary for a specific purpose. They must allow users to opt out and tell them if their information is involved in a data breach."
"The DPDP and its rules "create a simple, citizen-focused and innovation-friendly framework for the responsible use of digital personal data," said the Ministry of Electronics and Information Technology in a statement. However, the DPDP has been criticized for giving the government broad powers to access personal data without strong independent oversight. India's DPDP has been compared to the EU's General Data Protection Regulation (GDPR), which requires strict consent, data minimization, and has an independent regulator."
India's Digital Personal Data Protection Act (DPDP) requires companies to minimize personal data collection, collect only data necessary for specific purposes, secure consent, provide opt-outs, and notify users of breaches. Firms like Amazon, Meta and OpenAI must comply with data minimization and consent rules. The law establishes a government-appointed Data Protection Board with four members to oversee privacy, raising concerns about insufficient independent oversight and potential government access to personal data. The DPDP lacks an independent regulator comparable to the EU's GDPR, which enforces strict consent, minimization, and independent oversight. Additional digital rules, including higher AI and social media compliance, are being drafted.
Read at www.dw.com
Unable to calculate read time
Collection
[
|
...
]