Government of India may introduce the Personal Data Protection Bill, 2018 in the coming winter session, as per Ministry of Electronics and Information Technology official said.
S Gopalakrishnan, Joint Secretary of Ministry of Electronics and Information Technology said the Ministry has appointed a committee headed by tech company Infosys to make recommendation on how to handle non personal data.
The draft bill is ready. This Bill will go to the Parliament in coming winter session. A Regulator will be appointed for few months after the Bill is passed, Gopalakrishnan said. He said that the new law will prescribe some penalties and compensations so that people will take it more seriously.
The draft of Personal Data Protection Bill, 2018 based on the recommendations of the Government constituted high-level panel headed by Justice B N Srikrishna – restricts and imposes conditions on the cross-border transfer of personal data and suggests setting up of Data Protection Authority of India to prevent any misuse of personal information. Replying to a query on the RBI’s circular requiring that all data relating to payment systems are stored in a system only in India, the official said the Bill will address that issue also.
Reserve Bank of India is a financial regulator. As far as the financial matters are concerned RBI will have the last word. So the Bill also provides for localisation of critical data. If RBI says the payment data is critical and it has to be localised, it will also be in harmony with what the data protection law says.