There are several key nuances differentiating India's Digital Personal Data Protection Act and the EU General Data Protection Regulation, CoRover.ai founder and CEO Ankush Sabharwal writes in Forbes. He said one example is the DPDPA introducing the concept of "deemed consent," in which data controllers have the legal grounds to process an individual's personal information for the "explicit purpose for which the individual willingly shared their data," unless they withdraw it. Under the GDPR, a data controller must obtain "explicit and affirmative consent before collecting and processing user data."
16 Nov. 2023
OPINION
Op-ed: How 'deemed consent' differentiates India's DPDPA with the EU GDPR
RELATED STORIES
AI and digital governance: Exploring platform liability laws in the EU
IAPP P.S.R. 2024: The blueprint to protecting US data from adversarial regimes
IAPP P.S.R. 2024: Privacy pros look to an AI-tinged future
How the FCC and FTC regulate AI-powered robocalls
IAPP P.S.R. 2024: NIST sees nontechnical barriers to agencies' PETs adoption