India is taking bold strides in addressing data security following the EU’s GDPR and California’s CCPA law, which came into force on January 1, 2020.

India, with a population of more than 1 billion people, is a major player on the international stage when it comes to data use, and will be a prominent digital power for years to come. The country has proposed groundbreaking new data rules that will be the nation’s first, and require that citizens need to provide their consent before data is collected and processed.

If the new bill that is being debated passes, it will mean that the Indian government will also have new powers to collect citizen data without consent in the context of serving its sovereignty and for the larger public interest.

The new proposals for a data law have been in discussion for 2 years, and with pressure on governments intensifying over ‘data rights’ and protecting consumer data, we are likely to see further enhancements of GDPR style laws around the world.

So what does that mean for businesses? Essentially, being prepared for these new rules means looking at data infrastructure as a whole, and internal company processes. For example, companies that collect and process data will need to employ a Data Protection Officer who can audit their data disposal and destruction efforts, as well as comply with data laws, and how information is stored.

Having internal auditing and being able to properly handle data across different departments will be crucial for employers, and will provide that extra layer of compliance that will be necessary in the years to come.