As India is contemplating legislating in the sphere of data rights, with recent iterations such as the Draft Personal Data Protection Bill, 2019, it is evident that next in the pipeline (post-enactment) would be the setting up of the Data Protection Authority for India (DPA). To bring off a robust DPA for India, we suggest means and strategies advised by international best practices and other legacy regulators in India in this policy paper. The recommendations provided in this paper would aid in the process of building DPA, keeping regulatory synergy, capacity, accountability, independence etc., as core values.
Authored by: Kamesh Shekar, Karthik Venkatesh, Shefali Mehta
