India’s data protection bill, the Digital Data Protection Bill, has received approval from India’s Union Cabinet and is now set to go to Parliament for approval. The previous draft of the bill, issued by the Ministry of Electronics and IT (Meity) in November, received criticism from privacy advocates due to the exemptions granted to government bodies. These exemptions allowed the government to process private data in the interest of various national security concerns. The Internet Freedom Foundation expressed concerns that these exemptions gave the government too much authority and failed to adequately address data protection concerns.
Apar Gupta, a lawyer and head of the Internet Freedom Foundation, raised questions about the consultation process for the previous draft. Gupta pointed out that the consultation process was limited to those with internet access and questioned whether the responses were made public, the composition of stakeholders, and the incorporation of feedback. These concerns raised doubts about the transparency and inclusiveness of the consultation process.
The new draft of the bill aims to address some of these concerns by giving the Union government the power to establish “fair and reasonable” causes for using personal data without consent. It also calls for the establishment of a Data Protection Authority. These measures are intended to provide a more balanced approach to data protection and ensure the fair use of personal data.
The bill will now be presented to Parliament during the next session, starting on July 20. The approval of the bill by Parliament will be a significant step towards strengthening data protection in India and ensuring that personal data is handled responsibly.
In another cybersecurity development, the UK’s National Cyber Security Centre (NCSC) has requested public comment on its proposed plans for developing the cybersecurity workforce in Great Britain. The consultation document outlines the establishment of a cyber security council that will bring together existing professional bodies, academia, and industry, with the government playing an advisory role. The goal is to provide members of these bodies with access to government services and benefits. The NCSC also plans to collaborate with this council to develop the Cyber Certified Professional scheme.
The NCSC’s proposal aims to add value and create a focal point for the entire cybersecurity profession. By bringing together different stakeholders, the council can ensure that the profession keeps pace with the rapidly evolving field of cybersecurity. Public comment on the proposal will be accepted until August 31.
Meanwhile, in Singapore, the Workers’ Party (WP) has expressed its support for the Online Criminal Harm Bill (OCHA), a new legislation aimed at combating cyber scams. This is notable as the WP has previously opposed laws focused on regulating digital content, such as the Protection from Online Falsehoods and Manipulation Act (POFMA) and the Foreign Interference (Countermeasures) Act (FICA).
The chief of the Workers’ Party, Pritam Singh, explained the party’s stance during a session in Parliament. Singh emphasized that not all legislation targeting online content is equal and highlighted the concerns surrounding laws like POFMA and FICA that restrict access to content deemed false or manipulative by the government. Singh stated that reasonable people can disagree on what constitutes harmful online content and whether Singaporeans need protection from it.
However, Singh differentiated OCHA from the other legislation, stating that its focus on defending consumers’ rights sets it apart. As long as OCHA remains targeted at protecting the public from scams and offenses that can cause harm, the WP will continue to support its implementation.
Overall, these developments highlight the ongoing efforts by governments to address the challenges of data protection and cybersecurity. As technology continues to advance, it is crucial to establish robust frameworks and regulations that safeguard individuals’ privacy and security. The approval of India’s data protection bill, the NCSC’s public consultation on cybersecurity workforce development, and the Workers’ Party’s support for Singapore’s new digital crime bill are all steps in the right direction towards achieving these goals.