Data Protection Bill 2019:
The Unique Identification Authority of India (UIDAI) has asked for exemption from the Personal Data Protection (PDP) Law.
- UIDAI functionaries said the authority is already being governed by the Aadhaar Act and there cannot be duplicity of laws.
The Personal Data Protection (PDP) Bill 2019:
- The genesis of this Bill lies in the report prepared by a Committee of Experts headed by Justice B.N. Srikrishna.
- The committee was constituted by the government in the course of hearings before the Supreme Court in the right to privacy case (Justice K.S. Puttaswamy v. Union of India).
- As per the bill, it is the individual whose data is being stored and processed.
- Social media companies, which are deemed significant data fiduciaries based on factors such as volume and sensitivity of data as well as their turnover, should develop their own user verification mechanism.
- An independent regulator Data Protection Agency (DPA) will oversee assessments and audits and definition making.
- Each company will have a Data Protection Officer (DPO) who will liaison with the DPA for auditing, grievance redressal, recording maintenance and more.
- The bill also grants individuals the right to data portability, and the ability to access and transfer one’s own data.
- The right to be forgotten: This right allows an individual to remove consent for data collection and disclosure.
- The Personal Data Protection (PDP) Bill 2019 has a contentious section 35, which invokes “sovereignty and integrity of India,” “public order”, “friendly relations with foreign states” and “security of the state” to give powers to the Central government to suspend all or any of the provisions of this Act for government agencies.