What Should India's New Data Protection Bill Look Like?Shivangi Nadkarni on Why Scrapping the Old Bill Is a Blessing in Disguise
The Indian government has scuttled its personal data protection bill after the proposal grew in scope beyond data protection. Shivangi Nadkarni, the CEO of Arrka Consulting, says, "Implementing a privacy program itself is extremely complicated and a long-drawn exercise." She believes the new bill must be "clean and focused on protecting personal data."
"Privacy principles are constant," Nadkarni says. The new bill should reflect that and also provide "clarity on the ground."
In a video interview with Information Security Media Group, Nadkarni also discusses:
- The misconception that the old personal data protection bill was the same as the EU's General Data Protection Regulation;
- How India, by being "late in the game" in this area, can learn from other data protection laws;
- The need for the new bill to apply to countries outside India that handle the personal data of Indian residents.
Nadkarni has more than 22 years of experience in information risk and privacy, e-commerce and networks. She previously headed the global application security and identity management practice at Wipro and established India's first licensed certifying authority for digital signatures in collaboration with Sift.