By Harikrishna Prabhu, COO, TechnoBind Solutions
|
The Government of India (GoI) has been pushing for stronger data protection laws. The new Digital Personal Data Protection Bill, 2022 was released focusing more on personal data. But the GoI sees this version of the Data Protection Bill as only one of the pieces that form part of its larger policy vision for the entire digital economy. With the digital push India has been receiving for the public and private sectors, there is and has been a strong demand for robust data protection and privacy policies to be set up. Approximately 137 out of 194 countries have put in place legislation to secure the protection of data and privacy currently and India is catching up to them. The policies set by USA, EU and China are currently well-established models.
1. Understanding your company, its risk appetite, the data type and the form collected
- Engage in the ‘Triple A” process where data is authenticated, access is authorized and constantly audited
- Understand the data lifecycle phase and ensure protection throughout
- Managing data access is one of the best ways to ensure data protection
2. Understand the legislative regulations of the land and plan the policies based on it
3. Organize and store the data with a 3-2-1 backup strategy
4. Include Pseudonymisation as suggested in GDRP where in the case of a data breach or loss are much simpler and the risks are greatly reduced
5. Document the data protection plan