India's Non-Personal Data (NPD) framework

India's Non-Personal Data (NPD) framework

Knowledge repo, archives and collaborations

Latest:

  1. Video of talk by Usha Ramanathan on Eminent Domain and how this applies to data regulations in India
  2. NPD primer in Bengali: https://hasgeek.com/PrivacyMode/non-personal-data/sub/smssttigt-tthyer-prstaabit-kaatthaamo-gorraar-ktha-EGuxrZPF9k99WAia3FFADU

About the Non-Personal Data (NPD) framework for India: Non-personal data (NPD) is defined as anything which is not personal data. Read primer on NPD in English, Hindi and Malayalam for a quick understanding how NPD will be regulated in India.

The Committee of Experts (CoE), led by Kris Gopalakrishnan, prepared the first version of the NPD framework in July 2020. Based on the feedback received, the CoE released V2 of the NPD framework in December 2020.

Community submissions to improve the NPD framework for India: NPD Week was conducted to draw recommendations from the community on what apsects of the NPD framework should be revised, with practical suggestions. At the end of NPD Week, a document of community recommendations was drawn up. View final recommendations (PDF) for NPD V2.
These recommendations were submitted to the CoE and MeITY on 31 January 2021.

NPD Survey: Between November 2020 and January 2021, Privacy Mode’s research team interviewed 50 respondents from startup, engineering, product and investor communities to understand their concerns with the Non-Personal Data Report V1 and NPD Report V2. View the report (PDF)


Recap of NPD Week: Between 22 and 29 January, concerns were articulated with respect to NPD’s potential impact around privacy. These concerns were on issues of:

Contact details: For inquiries, call 7676332020 or email privacymode@hasgeek.com. Follow #PrivacyMode on Twitter

Community Partners

The Centre for Internet and Society Data Meet Scribble Data Data Governance Network Upekkha SMC Project

Hosted by

Deep dives into privacy and security, and understanding needs of the Indian tech ecosystem through guides, research, collaboration, events and conferences. Sponsors: Privacy Mode’s programmes are sponsored by: more

Jyoti Panday

@pandayjyoti

Personal and non-personal data regulations globally; and how India’s NPD is positioned.

Submitted Jan 26, 2021

The panel will be composed as follows:

  1. Raegan MacDonald, Head of Public Policy, Mozilla
  2. Sean McDonald, Senior Fellow CIGI and Co-founder Digital Public
  3. Annabel Lee, Public Policy Lead for Data, Amazon Web Services (AWS)
  4. Moderator: Jyoti Panday, Internet Governance Project (IGP), Georgia Institute of Technology

The structure of this discussion will be as follows:

  1. Question for Raegan MacDonald: How is the conceptualization of data as a resource with economic and societal benefits shaping data governance laws in Europe (GDPR/Digital Services Act (DSA) /Digital Markets Act (DMA) (balancing market integration vs rights protection)?
  2. Question for Sean McDonald: At the heart of the NPD framework is the question of who has access to data and why. What are the models of ownership of data that are emerging globally (Community Rights/ Data trusts/Data Commons)? Is the model of data trusts being explored under the NPD framework similar to or diverging from how data trusts are being modelled globally?
  3. Question for Annabel Lee: What is the impact of various national data strategies on cross-border data flows/ operations of transnational companies? How are companies navigating the data laws emanating from the three big data blocs (US-EU-China)?

After the first round of statements, the panelists and moderator will move to more concrete aspects which will be raised through the following two questions:

  1. Is the separation between personal and non-personal data laws sustainable? Is such a binary separation desirable? Has non-personal data become the focus of regulation as a way to overcome the constraints created by data protection laws?
  2. What are some of the conflicts that arise when governments pursue different regulatory objectives than data protection law like enabling data access and sharing? How are these different regulatory goals shaping the development of data governance laws in India and beyond? What does this mean for the rights of businesses (big and small) and data subjects rights in the long-term?

During the last 10 minutes of the discussion, we will open up for Q&A with the audience.

Comments

{{ gettext('Login to leave a comment') }}

{{ gettext('Post a comment…') }}
{{ gettext('New comment') }}
{{ formTitle }}

{{ errorMsg }}

{{ gettext('No comments posted yet') }}

Hosted by

Deep dives into privacy and security, and understanding needs of the Indian tech ecosystem through guides, research, collaboration, events and conferences. Sponsors: Privacy Mode’s programmes are sponsored by: more