<img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=654132&amp;fmt=gif">

India's Joint Parliamentary Committee Announces Recommended Changes to Privacy Bill

Last month, the Indian Joint Parliamentary Committee submitted its report on the 2019 Personal Data Protection Bill after two years of consideration, research, and analysis. The bill, while not a certainty but likely to pass, would replace what some consider to be archaic data protection regulations. Although not finalized, the biggest obstacle if implemented as envisioned is strict data localization. India has been in the group of countries legislating data privacy for decades, culminating in the 2021 JPC report submission. Here’s a look at the history of data privacy legislation in India.


The History of Data Privacy Legislation in India

  • 2000 – Information Technology Act is passed by parliament and signed by President K.R. Narayanan addressing electronic documents, e-signatures, and record authentication.
  • 2017 – The Indian Supreme Court hears Justice KS Puttaswamy vs Union of Indiaand passes a historic judgment affirming the constitutional right to privacy.
  • 2019 – Introduction of the Personal Data Protection Bill and immediately sent to the JPC to be examined.
  • 2021 – JPC submits report on PDP to Indian Parliament revisions.


The long-awaited report submitted December 16, 2021 by the JPC has provided necessary clarification and modifications that seek to enhance the syntax and governance of the bill.


The recommended amendments are as follows:

  • Scope – The bill has a proposed name change to Data Protection Bill and will cover both personal and non-personal data which is unusual as distinction of data type can be difficult when managing mass amounts of data. Clauses also address the deceased and transfer of minor rights (see Clause 16 below).
  • Implementation Timeline – The report outlines a timeline with a 24-month implementation period for data processors to comply.
  • Definitions – The following terms have been defined or revised: consent manager, data auditor, data breach, data fiduciary, data processor, data protection officer, harm, and non-personal data.
  • Clauses 13 & 14 – These clauses apply to consent of personal data processing for employment and legitimate interest, marrying the interests of both the data principal and data fiduciary.
  • Clause 16 – Entities dealing with the data of children must register with the DPA and are required to communicate with the subject 3 months prior to adult age to regain consent and “must continue providing the services to the child unless the child withdraws consent.”


The implementation timeline for the Data Protection Bill is still unknown but will likely be a phased approach. Like California, there is discussion of an oversight committee called the Data Protection Authority of India that would supervise compliance with the proposed law. With the notable amendments to the bill, it’s unlikely we’ll see this come to fruition quickly. Not unlike most proposed privacy legislation, it has been met with dissent and opposition and will have to make its way through the courts of India before becoming law.


All Posts

Choosing a Compliance Management Software: How to Pick the Right One

Automated compliance software supports the compliance strategy within your organization and helps automate the process of adhering to the policies and controls within different industries. 

For example, an automated compliance management software system helps streamline compliance with data privacy regulations such as the EU General Data Protection Regulation (GDPR) and the California Consumer Protection Act (CCPA).

Regardless of the industry, there are a few core capabilities to look for. Here are some common traits of an effective regulatory compliance system. 

Different Deployment Options 

When it comes to software deployment, each company has different needs. An on-premises solution is one that is hosted at your company's location, whereas a cloud-based system is hosted in "the cloud" meaning it's stored via the Internet rather than a hard drive. 

The difference between the two comes down to preference and use. Those with an on-premises solution often use their internal IT team for updates and maintenance, whereas a cloud-based system puts maintenance in your service providers hands.   

cloud-based compliance software system also provides data privacy and security like an on-premises solution does, by using different security methods like encryption, permissions, and authenticity.

Those currently looking to move to a cloud-based solution from an on-premises system have options for doing so. Talk to your service provider to find out how you can make the switch and what it entails for you.  


Automated Change Management Process 

Change is a necessary aspect of any business. It's what helps you improve your processes and makes you stand out from your competitors. It can also be extremely difficult if you don't have the tools to do it right. 

Change is complex but having an automated compliance system helps ease the process. 

A compliance system can automate the process of making changes to policies or processes so you don't have to track these changes manually and risk the chance of human error. 

By automating the way you make changes you'll be able to ensure that any changes made to your policies and processes were done right and will help move your business forward in a positive way. Any changes will be trained on by the proper employees to ensure compliance across your entire enterprise. 

Automated Reporting 

To ensure that your business is meeting its goals, a reporting process is necessary. However, Excel spreadsheets that are manually updated do little to improve your compliance process. 

Instead, look for a system with automated reporting capability to help you quickly see any overdue or pending tasks, and risk and compliance data. This will help you track your regulatory tasks as well to ensure compliance is being met on time and within parameters. 

An automated reporting tool will generate reports at the click of a button, making it easier to see accurate reports quickly. 

These reports will show you a complete view of any potential risks, will save time and ensure a process that is repeatable and manageable. 

Risk Management Capability 

To keep your business in compliance, you'll need to monitor and address all risks.  Automated risk management tools allow you to monitor risk in all areas of your enterprise, see risk levels, assign mitigation tasks and keep the process documented. 

These tools will also help you be proactive in mitigating risk in your processes and policies by providing visibility into high-risk areas. 

Task Management 

A good compliance management software system should include task management capability that promotes collaboration and enables you to manage your companies compliance activities, policies, projects and more. 

Automating your task management process with compliance software will help you improve overall performance by keeping your company organized and able to meet deadlines. It also improves accountability by allowing you to see which tasks are assigned to each employee and escalating tasks that are overdue so they get completed. 

Tips for Finding the Best System for Your Business 

Now that you know some of the capabilities of a compliance management software system and what to look for, there are a few things to keep in mind before selecting a system. 

Before you can make changes to your existing processes you must first determine exactly where your current processes are lacking and how you can make them better.

To do this, you'll need to audit your current processes.  This will help you see which compliance issues are the most pressing (for example, improving data privacy or reducing risk in processes) and will bring insight into any potential problems your business is facing that will need to be addressed. 

It's important to address this step of the process with the entire company, within every department, so nothing is overlooked. 

You'll want to look into what your company is currently doing and why it's not working and what traits in the compliance management system will help improve any outdated processes. This will give you insight into what compliance management solutions are most critical for your business. 

Reaping the Benefits of Compliance Management Software

A good compliance management software system will help reduce the stress, time and costs of the tasks that go into complying with regulatory requirements and adhering to data privacy laws. An effective solution will provide real-time updates and data so there is no lag time in internal changes that everyone needs to be updated and trained on. 

Automated compliance software takes manual processes out of the equation so you can drastically reduce the chance of human error and ensure you meet strict regulation deadlines. 

But don't take our word for it, see for yourself how your company can benefit from automated subject access request compliance management. Sign up for a demo and learn how we can help you improve your compliance management processes today. 

Truyo Product Preview

About Truyo
Powered by IntelⓇ, Truyo is the automated answer for enterprises seeking to deploy truly integrated SAR, consent, and other data privacy rights processing capabilities that scale with your needs, deliver conspicuous compliance, and adapt to new privacy regulations as they emerge.
Recent Posts

India's Joint Parliamentary Committee Announces Recommended Changes to Privacy Bill

Last month, the Indian Joint Parliamentary Committee submitted its report on the 2019 Personal Data Protection Bill after two years of consideration, ...

Log4J Vulnerability Update

At Truyo we take data privacy and security very seriously. Recently a security vulnerability was reported in the open-source Java library “Log4J” that...

Forrester Wave Announcement: Truyo Named Strong Performer

Report notes Truyo’s “management and fulfillment of individual privacy rights capabilities are some of the best in the market ” PHOENIX (Dec. 09, 2021...

Human Error: The Pitfalls of Manual SAR Response

In the age of information, organizations have increased the amount of consumer data housed in structured and unstructured environments. As consumers b...