India's Ministry of Electronics and Information Technology published draft rules for the Personal Digital Data Protection Act of 2023 (English version begins on page 28). They contain guidance related to key parts of the act, including what notice must be given by data fiduciaries (controllers) to data principals (subjects) to obtain consent for the use of personal information; what steps fiduciaries should take to keep data secure; and how to deal with data breaches. The rules also address fiduciaries' responsibilities regarding the processing of children's personal data; the rights of data subjects; and the establishment of a Data Protection Board. Comments on the proposed rules are due Feb. 18.
Asia Pacific
to
Refine Category Search
Clear Terms
Search Primer
Term list: Separate terms with spaces, not commas or semicolons.
Multi-word term: Place inside quotes to ensure an exact match (e.g. "private right of action").
Acronyms: Use all capital letters to ensure the search is not looking for that letter sequence instead. (e.g., HIPAA).
Required term: If a term must be included in any resulting articles, prefix it with a plus sign (e.g., FTC +rule).
Excluded term: If a term should be excluded from any articles being found, prefix it with a minus sign (e.g., AI -deepfake).
Simplest form: Use the simplest form of a term s (e.g. "lawsuit" instead of "lawsuits").