The biometric identification agency and the government need to start listening to those who are pointing out critical flaws instead of issuing blanket denials and template answers.
We must move India past its existing consultative processes for rule-making, which often prompts stakeholders to take adversarial and extremely one-sided positions.
To evaluate the role data plays, we need to understand if data in its modern avatar is more akin to being pey – a vampire-like evil spirit – or bhutham – a friendly ghost.
Fingerprints and biometrics are being captured by smartphones, Rajiv Mehrishi said, for the 40% of the population that uses them.
While Justice Kaul’s opinion identifies a ‘right to be forgotten’, India’s upcoming data protection framework needs to resolve a number of hurdles before we carve out such a right.
Decision on whether privacy can be considered a fundamental right is likely to come out by end of August.
The committee, headed by former Supreme Court judge B N Srikrishna, will also suggest a draft data protection bill.
Not only do difficult questions need to be answered and competing interests be weighed, but consequent policy also needs to be made to ensure a balanced state of affairs.
On Sunday evening, a website called “magicapk.com” surfaced that reportedly contained the personal data of millions of Reliance Jio users.
According to a report in Recode, Uber executive Eric Alexander took the records back to the US, where CEO Travis Kalanick and other officials doubted the veracity of the incident.
Internet Freedom Foundation’s Kiran Jonnalagadda has alleged that ISPIRT and its co-founder Sharad Sharma set up fake Twitter profiles to harass, intimidate Aadhaar critics.
Company says that no payment or credit card data has been stolen or leaked.
The story of Aadhaar is one of coercion, rampant illegality and outrageous contempt of court orders through which the project has built its database.
When Aadhaar is woven into the fabric of everyday life, the ‘grid’, the ‘machine’ and the state are always right.
The research report looks at four major government portals whose poor information security practices have exposed personal data including bank account detail
The sad fact is that there are severe institutional capacity challenges within government departments that handle systems with sensitive data.
Focusing solely on getting rid of Aadhaar, or destroying it, is a waste of powder. The underlying issues of online privacy and civil liberties will still remain.
If Chief Justice Khehar fails to intervene, the court will allow corporations to monetise and claim property rights over the data of India’s citizens in a way that they cannot do in markets such as the European Union.
A simple Google search shows that the personal information, including Aadhaar numbers and bank account details, has simply not been secured properly.
An unprotected, publicly accessible API endpoint leaks everything from phone numbers to home addresses.
From Paytm to UID – from the Ministry of Corporate Affairs to leading insurance and telecom companies – India Inc and the government are prone to poor design choices and sloppy programming.
If the government is serious about backing disruptive technologies and finding indigenous applications, it needs to start encouraging disruptive and indigenous policy-making too.
2017 will need to see less of the carrot and more of the stick in order to persuade India’s institutions to prepare against an ever-increasing number of cyber security threats.
As we hurtle towards being an Aadhaar nation, it is imperative that a legal framework, to protect our cherished rights to security and life, is created.
In an interview with The Wire, the Rajya Sabha MP talks on issues of data sovereignty and digital patriotism, and says that the government is receptive to feedback.
Going after companies like Hacking Team alone is meaningless because they fulfil a need, albeit one we may not have fully understood but whose legitimacy manifests from time to time.