Overview & Timeline of Activities

Over the years, privacy as a domain has emerged as a strong focus area. Technological advancements have been giving rise to fresh challenges from a data privacy perspective. Big Data, Social Media, Cloud computing, Internet of Things (IoT), Smart Cities and other aspects have been further reshaping the realms of data collection and its usage.

These developments, both globally and in India, have warranted explicit focus on privacy in our legal and regulatory systems. Global legislations have moved constructively in that direction and, demand the same from Indian laws – given the globally integrated nature of trade and business, in particular. Given the increasing online nature of Indian economy, and the online social behaviour of individuals, there has been rising exposure to personal data of individuals by organizations and the economic value associated with it. The individuals, data subjects, have also now started questioning about their privacy requirements, due to increased awareness on social platforms, news and elsewhere, igniting the concept of Privacy as a Right.

Further, due to the prominence of the Indian outsourcing industry, large amounts of personal data is made available to and processed by organizations providing the managed services. A globalized economy has increased the importance of transborder data flows between businesses and individuals across the globe and the same is being continuously regulated in major geographies. Data, often from countries where privacy laws and regulations are stringent, necessitates appropriate focus on Indian legislations and regulatory measures for privacy and data protection.

DSCI has brought these issues into the mainstream, and elevated the level of privacy and the debates around it through policy advocacy, thought leadership and outreach programs. In order to address the industry’s concern, DSCI has been continuously engaging with various government departments, especially Department of Personnel & Training (DoPT), for a comprehensive privacy bill considering the recommendations made by the Justice AP Shah Report, published in 2012. In accordance, DSCI has acclaimed a significant level in promoting industry self-regulation through its well-recognized and widely adopted, privacy framework - DSCI Privacy Framework (DPF©)and the DSCI Privacy Assessment Framework (DAF-P©). To address the issue of capacity building in privacy in the India, certification programs such as the DSCI Certified Privacy Lead Assessor (DCPLA©) and DSCI Certified Privacy Professional (DCPP©) have been introduced and met with a tremendous response from our stakeholders.

Timeline of activities

  • 400+ DSCI Certified Privacy Professional (DCPP©)Privacy professionals in India

  • DSCI Certified Privacy Professional (DCPP©) launched
  • Privacy certification program for organizations – DSCI Privacy Certified (DPC©) launched. Vodafone completed its privacy assessment based on DPF© and DAF-P© and Vodafone India-Delhi Circle became the first telecom organization to be declared as ‘DSCI Privacy Certified’ (DPC©)
  • Signed MoU with TRUSTe to explore creation of a joint privacy seal for websites in India that is cross recognized with international standards and also meets local privacy requirements

  • DSCI Assessment Framework-Privacy (DAF-P©) launched to help organizations provide assurance to external stakeholders on the implementation of a privacy program based on DSCI Privacy Framework (DPF©)
  • Report of the "Group of Experts on Privacy" constituted by Planning Commission of India
  • Member of Volunteer Group of Privacy Experts constituted by Organisation for Economic Co-operation and Development (OECD) for revision of Privacy Framework

  • Member of the Planning Commission’s Privacy Group chaired by Justice AP Shah

  • DSCI Privacy Framework (DPF©) launched
  • Recommendation on Cyber Security and Right to Privacy to Standing Committee on IT
  • State of Data Security and Privacy in Indian Banking industry
  • State of Data Security and Privacy in Indian BPO
  • Views on Legal Framework for Privacy submitted to DoPT
  • Comments on the proposed Right to Privacy Bill submitted to DoPT
  • Comments on proposed Bill for National Identification Authority of India
  • Study Report: The Threat Within – A Study on Insider Threat
  • Cyber Security and Right to Privacy to Standing Committee on Information Technology

  • Policy Paper: Privacy in India for Project RISE
  • Position Paper: Security and Privacy Challenges in UIDAI project
  • Thought Paper: Data Protection – Security and Privacy issues presented at the Information Technology Laws Workshop Delhi University

  • Data Protection and Privacy in India
  • Information Security and Privacy practices implemented by IT-BPM companies