laws for privacy in India
Since the EU tightened the protection of personal data with the General Data Protection Regulation (GDPR), calls for implementing measures reducing data vulnerability and preventing erosion of user privacy have been resounding worldwide. A series of allegations against tech giants for misuse and mishandling of personal data was a major turning point in how people look at the issue of data privacy breaches. Many jurisdictions subsequently overhauled existing laws to pave the way for stricter regulatory regimes. India is no exception – and is also making efforts on this front. Currently, this space is regulated by the Information Technology Act and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011. Section 43A of the IT act entitles a data principal to seek compensation for unauthorised disclosure of sensitive personal information. Section 72A is the penal provision under which a person, including an int...