Asia’s IT Coalition Group seeks extension for newly approved data protection regulation!
The consulting industry in India is a rapidly growing sector, with a CAGR of 30%. The industry is worth up to $1.4 billion and is expected to reach $2.1 billion by 2025. The key players in the consulting industry in India include some of the multinationals, however, Karma Global has upped its ante with loads of consulting work carried out in the IT, financial and regulatory services sectors.
Karma Global a leading consulting firm, with operations in U.K, U.S. Canada, Middle East and South East Asia, specialises in areas like staffing, on-boarding, payroll, facility management, curbing regulatory risk, auditing and abiding by all labour law related compliance on PAN basis.
Asia’s IT Coalition Group seeks extension for newly approved data protection regulation!
The Asia Internet Coalition (AIC), an industry group representing Big Tech companies like Meta, Google, Apple and Microsoft, on Thursday urged the Ministry of Electronics and Information Technology (MeitY) to extend the deadline by 12-18 months to comply with certain provisions under the Digital Personal Data Protection (DPDP) Act, 2023.
In a letter addressed to Union IT Minister Ashwini Vaishnaw and Minister of State for Electronics and IT, Rajeev Chandrasekhar, the group said that since implementing these provisions would require structural changes in organisations and businesses, “they are likely to face significant amount of challenges during the course of such transition”.
“This exercise will be fairly new to domestic and international business entities alike, since compliance with data laws of other jurisdictions like GDPR do not have such provisions. Hence, businesses would require fundamental changes in the technology architecture of their platform,” the coalition wrote in the letter.
The government had said last month that some entities (like start-ups and MSMEs and establishments like hospitals that handle people’s data) may be given a year’s time to fine-tune their systems to comply with the DPDP Act, 2023, as the government officials work with industry stakeholders to formulate detailed rules.
According to the AIC letter, businesses would be required to conduct time-intensive data mapping exercises across all the datasets of the Data Principals in order to comply with Section 5 notice requirements for existing data sets.
“Consent notices would be required to be stored in an accessible manner for Data Fiduciaries to modify or erase Data Principal’s personal data. This would require significant software and hardware upgrade in the infrastructure of the country which is time and financial resource consuming,” the letter read.
India’s Digital Personal Data Protection Act ranks among the world’s most stringent regulations on technology firms, curbing international data transfers and levying fines for violations. New Delhi contends that the modernized rules are essential for safeguarding its citizens’ data and instigating a “fundamental behaviour change” in organizations that collect and utilize personal data.
For many tech giants, including Meta and Google, India represents their largest user base. India’s digital economy should grow to approximately $1 trillion by 2030, according to projections by Google, Temasek and Bain.
Proprietary blog of Karma Global
Collated and Compiled by the internal staff of Karma Global with the knowledge and expertise that they possess, besides adaptation, illustration, derivation, transformation, collection and auto generation for its monthly newsletter Issue 18 of December 2023 and in case of specific or general information or compliance updates for that matter, kindly reach out to the Marketing Team – kush@karmamgmt.com / yashika@karmamgmt.com