India's new data protection law includes elements--such as a requirement to get written consent prior to collecting sensitive personal information--that are more restrictive than laws in the EU and U.S., according to a CIO article that explores the challenges of the new rules and gives tips for chief information officers on how to move forward if their companies do business in India. The report suggests letting service providers take the lead on finding compliant solutions, but adds "there are penalties (up to two years imprisonment or a fine, and directors are also liable), so organizations with a presence in India may want to be more proactive."
Full Story


If you want to comment on this post, you need to login.