REUTERS/NE NEWS SERVICE
NEW DELHI, DECEMBER 11
Allowing law enforcement to commit “authorized privacy violations” will ensure investigations are not hindered, a senior government official told Reuters on Wednesday, amid worries that India’s privacy law will increase state surveillance. India’s information technology minister, Ravi Shankar Prasad, said on Wednesday the bill would be sent to a parliamentary panel for further review.
The Personal Data Protection Bill covers how data of Indian users is stored, processed and transferred, and will apply to technology companies and government agencies.
But the bill says any government agency can be exempted from the law “in the interest of sovereignty and integrity of India” or for “preventing incitement” of certain offences, a provision privacy advocates said would allow agencies to abuse access.
The official, who is directly involved with the bill and declined to be identified because discussions are ongoing, said those exemptions were necessary for law enforcement bodies such as the Central Bureau of Investigation – India’s version of the American FBI – that need to access and analyze data.
“This provides for a future where an agency can do authorized privacy violations with checks and balances,” said the official.
India’s information technology minister, Ravi Shankar Prasad, said on Wednesday the bill would be sent to a parliamentary panel for further review.
The government will come up with a list of organizations exempt from all or some of the privacy bill, the senior official added.
Other provisions may affect big technology companies such as Facebook and Alphabet Inc’s Google by empowering the government to request user data.
The proposed government exemptions have alarmed privacy advocates.
Raman Jit Singh Chima, Asia policy director at Access Now, an international digital rights organization, said they were “deeply concerning” and said current surveillance safeguards were insufficient.
The proposed bill empowers the government to exempt an agency from the law if doing so is “necessary or expedient,” without defining those terms.
“The lack of an explanation on what is necessary and expedient is worrisome, there needs to be a body of multiple stakeholders that reviews these decisions,” said Kriti Trehan, a partner specializing in technology law at the Law Offices of Panag & Babu.
Bill to be referred to joint select committee: Prasad
The government proposed to send the much talked Personal Data Protection Bill to a joint select committee of both the Houses of Parliament amid protests by the Opposition, which said the right of privacy of citizens is being compromised.
Before introducing the Bill in Lok Sabha, Union Information Technology Minister Ravi Shankar Prasad said the government will bring a resolution in the House to refer it to a joint select committee of the Lok Sabha and the Rajya Sabha.
The proposed committee could bring out a report before the Budget session, which usually begins in the last week of January.
Shashi Tharoor, who heads the Parliamentary Standing Committee on Information and Technology, protested the move and said it should be referred to his panel.
In reply to his demand, the minister said the joint panel will have the sole agenda of going through the Bill as the parliamentary standing committee has other bills to scrutinise, Prasad added.
Courtesy: Reuters