white_paper_on_data_protection_in_india_171127_final_v2
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
that the <strong>in</strong>formati<strong>on</strong> is not <strong>in</strong> the ―public doma<strong>in</strong>.‖ However, this approach may not be<br />
entirely satisfactory as <strong>in</strong> the absence of identifiability, the privacy <strong>in</strong>terest of an <strong>in</strong>dividual <strong>in</strong><br />
the <strong>in</strong>formati<strong>on</strong> is not clear. 237 The third k<strong>in</strong>d of def<strong>in</strong>iti<strong>on</strong> which runs the risk of be<strong>in</strong>g<br />
outdated quickly is the approach which identifies specific types of <strong>data</strong>. California‘s S<strong>on</strong>g -<br />
Beverly Credit Card Act of 1971 and the COPPA are examples of this approach, though the<br />
latter is an open ended def<strong>in</strong>iti<strong>on</strong> which permits the regulator to add to the listed categories of<br />
pers<strong>on</strong>al <strong>in</strong>formati<strong>on</strong>. 238<br />
Solove and Schwartz c<strong>on</strong>trast these def<strong>in</strong>iti<strong>on</strong>s with the EU model and propose an alternative.<br />
The EU model, <strong>in</strong> their op<strong>in</strong>i<strong>on</strong>, is too broad <strong>in</strong> that even <strong>data</strong> from which an <strong>in</strong>dividual may<br />
be identifiable would be pers<strong>on</strong>al <strong>in</strong>formati<strong>on</strong> entitled to the full spectrum of protecti<strong>on</strong>.<br />
Impos<strong>in</strong>g, say, requirements of notice and c<strong>on</strong>sent <strong>on</strong> use of such <strong>in</strong>formati<strong>on</strong> would require<br />
that the <strong>data</strong> be c<strong>on</strong>verted from identifiable state to an identified state. This would be a<br />
disproporti<strong>on</strong>ate resp<strong>on</strong>se to the risk <strong>in</strong>volved. They suggest that the law should <strong>on</strong>ly impose<br />
obligati<strong>on</strong>s of <strong>data</strong> security, transparency and <strong>data</strong> quality <strong>on</strong> such identifiable <strong>in</strong>formati<strong>on</strong>. 239<br />
3.3. Provisi<strong>on</strong>al Views<br />
1. It is <strong>data</strong> about/relat<strong>in</strong>g to an <strong>in</strong>dividual that may be the subject matter of protecti<strong>on</strong><br />
under the law. Data <strong>in</strong> this c<strong>on</strong>text ought to <strong>in</strong>clude any k<strong>in</strong>d of <strong>in</strong>formati<strong>on</strong> <strong>in</strong>clud<strong>in</strong>g<br />
op<strong>in</strong>i<strong>on</strong>s or assessments irrespective of their accuracy.<br />
2. Data from which an <strong>in</strong>dividual is identified or identifiable/reas<strong>on</strong>ably identifiable may<br />
be c<strong>on</strong>sidered to be pers<strong>on</strong>al <strong>data</strong>. The identifiability can be direct or <strong>in</strong>direct.<br />
3. New technologies pose c<strong>on</strong>siderable challenges to this dist<strong>in</strong>cti<strong>on</strong> based <strong>on</strong><br />
identifiability. This standard may have to be backed up by codes of practice and<br />
guidance notes <strong>in</strong>dicat<strong>in</strong>g the boundaries of pers<strong>on</strong>al <strong>in</strong>formati<strong>on</strong> hav<strong>in</strong>g regard to the<br />
state of technology.<br />
3.4. Questi<strong>on</strong>s<br />
1. What are your views <strong>on</strong> the c<strong>on</strong>tours of the def<strong>in</strong>iti<strong>on</strong> of pers<strong>on</strong>al <strong>data</strong> or <strong>in</strong>formati<strong>on</strong>?<br />
2. For the purpose of a draft <strong>data</strong> protecti<strong>on</strong> law, should the term ‗pers<strong>on</strong>al <strong>data</strong>‘ or<br />
‗pers<strong>on</strong>al <strong>in</strong>formati<strong>on</strong>‘ be used?<br />
Alternatives:<br />
237 Paul M. Shwartz and Daniel Solove, ‗The PII Problem: Privacy and a New C<strong>on</strong>cept of Pers<strong>on</strong>ally Identifiable<br />
Informati<strong>on</strong>‘, 86 NYU Law Quarterly Review 1814 (2011).<br />
238 Paul M. Shwartz and Daniel Solove, ‗The PII Problem: Privacy and a New C<strong>on</strong>cept of Pers<strong>on</strong>ally Identifiable<br />
Informati<strong>on</strong>‘, 86 NYU Law Quarterly Review 1814, 1832 (2011).<br />
239 Paul M. Shwartz and Daniel Solove, ‗The PII Problem: Privacy and a New C<strong>on</strong>cept of Pers<strong>on</strong>ally Identifiable<br />
Informati<strong>on</strong>‘, 86 NYU Law Quarterly Review 1814, 1881 (2011).<br />
39