Data Bill to prevent willful wrongdoers: Srikrishna
The legislation contains a provision for ‘ Right to be Forgotten’, which is in line with GDPR
Bengaluru, Aug. 5: The proposed data protection bill, making offences cognisable and non- bailable, is a deterrent for businesses who wilfully do wrong as giant corporations can otherwise get away with flagrant breaches ‘ merely by throwing the fine monies,’ Justice B. Srikrishna has said.
“Every modern statute has a criminal liability clause. That is a deterrent for those who will do wrong intentionally or grossly negligently.
Without such provision, merely imposing civil liabilities will make the law a toothless tiger as giant corporations can and will get away with flagrant breaches merely by throwing the fine monies,” he told PTI.
Data privacy is a fundamental right emanating from Article 21, as held by the Supreme Court in the Puttaswamy case, and breach of fundamental right must be viewed very seriously, he added.
Some businesses are gripped with fear about making offenses cognisable and non- bailable under the bill by saying this will make it tougher for businesses. They have argued that it would force companies and executives to deal with criminal machinery, instead of focusing on business, he said.
The central government had constituted the 10member committee, headed by Justice Srikrishna, in July 2017 to recommend a framework for securing personal data in the increasingly digitised economy, as also to address privacy concerns and build safeguards against data breaches.
The committee had submitted its report to the government on July 27, suggesting steps for safeguarding personal information, defining obligations of data processors as also rights of individuals, and mooting penalties for violation.
On “right to be forgotten” provision, Justice Srikrishna said it cannot be exercised unilaterally without considering the consequences of one’s action on persons who may have bonefide and innocently entered into transactions for downstream processing of data, which would give rise to a series of legal liabilities.
The proposed legislation contains a provision for the ‘ Right to be Forgotten’, which is in line with European data privacy laws such as GDPR.
Without such provision, merely imposing civil liabilities will make the law a toothless tiger as giant corporations can and will get away with flagrant breaches merely by throwing the fine money. — JUSTICE B. N. SRIKRISHNA