India adopts new data protection laws
India has adopted new data protection rules.
India, an emerging economy and home to approximately one-sixth of the world's population, recently adopted new data protection measures designed to protect personal information.
The legislation, called the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules 2011, was put in place recently to implement a law passed by the country's government in 2008.
According to a recent InformationWeek report, the proposed rules did not undergo the rigorous process of public scrutiny to which legislation is often subjected, due to the fact that they implement an already existing law. Despite this, they are considered legally binding, the report said.
The new data protection rules require that organizations inform individuals whenever their personal information is collected by email, fax or letter. Furthermore, they demand that organizations take steps to secure personal data and offer a dispute resolution process for issues that arise around the collection and use of personal information.
It is yet to be seen whether companies in the subcontinent will comply fully with the new rules. Similarly, it is not yet known to what degree Indian authorities will actually enforce them.
According to Miriam Wugmeister, head of the global privacy practice at law firm Morrison & Foerster, however, the new rules could have a dramatic effect on the IT landscape in India.
Wugmeister told InformationWeek that "the law applies to all companies in India getting any information from anywhere." This means that, "on the face of it, it doesn't exempt the service provider." This may have ramifications for foreign companies that outsource services to India.
The new rules in India come at a time when governments worldwide are scrambling to bring legislation up-to-date with technological developments. According to a recent Silicon.com report, intellectual property law, too, needs to keep up with technological advances.
Spotlight
Cloud Computing
- Cloud security group develops third-party certification program
- US makes large investment in cyber weaponry
- Wall Street has data security concerns over Bloomberg reporting
- Security in backups means more than just encryption
Virtualization
- Virtualization-specific challenges could threaten data security
- Evolving threats put security skills in high demand
- Virtualization security requires education, access control management
- Tips for launching effective virtual security tools
Internet Safety
- Virtualization-specific challenges could threaten data security
- Evolving threats put security skills in high demand
- Virtualization security requires education, access control management
- Tips for launching effective virtual security tools
Vulnerabilities & Exploits
CTO Insights
First Line of Defense
Newsletter
Stay up to date with the latest news and information on online threats.
Recent News
- Twitter now offers two-factor authentication
- DHS needs better sharing plan, experts say
- Cloud security group develops third-party certification program
- US makes large investment in cyber weaponry
Tag Cloud
cloud cloud computing cloud computing security Cloud Security Compliance & Regulations Consumerization Current News cybercrime Data Privacy data security Encryption Government Policy Internet Protection Internet Safety Internet Safety - DO NOT USE Internet Security Malware Mobile Security Mobility Policy Policy - DO NOT USE Privacy Privacy & Policy Private Cloud Public Cloud Reports Research Spotlight threat intelligence threat research Trend Labs Underground Economy virtualization Vulnerabilities Vulnerabilities - DO NOT USE web security web threats
Comments
No comments yet