Since last summer, when a committee of experts appointed by the Indian government first published a draft of a comprehensive data protection law until approval of its revised version in the form of the Personal Data Protection Bill 2019, a lot has been contributed to the literature on data privacy laws in India. The most common conclusion emerging is the latest privacy bill being referred to as a replica of the EU General Data Protection Regulation. That may not be wrong if you limit your comparison to broad topics under both the regimes. But when you drill down to lawful processing, those who are now GDPR compliant may struggle to remain compliant if following the tenets of India's bill, writes Sandeep Sangwan, CIPP/A, in this exclusive for The Privacy Advisor.
If you want to comment on this post, you need to login.