Union Minister of State for Skill Development & Entrepreneurship and Electronics & IT, Rajeev Chandrasekhar, participated in the first Digital India Dialogue discussions on the recently enacted Digital Personal Data Protection Act in New Delhi on Wednesday. These discussions were held with key industry stakeholders on the transition time needed for specific clauses of the law and to seek specific inputs on the implementation.
During this session, the minister recounted the journey behind the creation of the historic legislation, detailing its evolution from inception to its current status as enacted law. Rajeev Chandrasekhar elaborated on how this law integrates into a broader mission aligned with Prime Minister Narendra Modi’s vision. This vision aims to establish contemporary and relevant laws tailored to Indian requirements along with platform obligations.
Rajeev Chandrasekhar said, “Over the next 30 days, there will be necessary rules prescribed for the Act. We will also work on forming the Data Protection Board in the upcoming month. Some businesses like startups and MSMEs and establishments like hospitals that handle people’s data might get more time to adhere to these rules. This is because they may not have as much experience in handling data as bigger data fiduciaries do. So, they can ask for more time to learn and follow the rules.
If anyone breaks these rules, the Data Protection Board will handle it and make decisions. But they will only start doing this when they are fully ready for adjudication.” The session was attended by a diverse range of stakeholders of the technology ecosystem including industry associations, startups, IT professionals, think tanks and lawyers. Around 100+ stakeholders attended the consultation.
The Minister reiterated the primary purpose of this law which is to guarantee the trust and safety of all digital nagriks, emphasizing that all data fiduciaries must adhere to the law. He further assured that the Government is open to considering valid arguments for extending the compliance period when accompanied by compelling reasons.
“Companies that already follow similar rules like that of the GDPR (EU’s General Data Protection Regulation) shouldn’t ask for a very long time to follow these new rules. We are now in the phase of implementing these rules, and it should happen smoothly and quickly. The goal is to create a culture of trust, a behavioural change among all who deal with personal data and create the change required to make them do it responsibly and in alignment with the trust that the data principle has agreed to.
This is a deterrent act, it is supposed to create good behaviour,” the Minister added while answering questions. These consultations are in line with Prime Minister Narendra Modi’s consultative approach to law and policy making. This is the first time that Consultations are taking place on the Implementation and rule structures of the Digital Personal Data Protection Act 2023.