An IT industry trade body is setting up a data privacy watchdog in India. The Data Security Council of India will not have legal powers, but will certify companies' data security.

Following a number of media exposes of data security breaches in India, IT industry trade body Nasscom is establishing the DSCI to counter criticism that outsourcing to India threatens privacy.

Channel 4 and The Sun newspaper have both conducted investigations in which poor privacy and data security were exposed in outsourcing agreements to Indian companies. A reporter for Channel 4's Dispatches programme was offered hundreds of thousands of banking and financial profiles for sale after investigating India's call centre industry.

Nasscom (the National Association of Software and Services Companies) will be able to refer breaches to the police and will offer certification of privacy policies to companies.

While the new body may refer cases to the police, as may anyone, there is still doubt about the strength of data protection laws in India. Though the Government amended the Information Technology Act (ITA) late last year to punish data theft, there is still no single piece of data protection legislation in India to compare with that in the UK.

The legal changes last year included creating fines of up to $1m for companies or people who fail to stop data theft or leakage. The move was in response to significant concerns over the reputation of the massive Indian outsourcing industry.

Nasscom had previously made recommendations to the Indian government about changes to the ITA. It said last October that the changes made then met most of their concerns.

Copyright © 2007, OUT-LAW.com

OUT-LAW.COM is part of international law firm Pinsent Masons.

Related stories

• Hackers target outsourced app development (7 April 2008)
• Former HP boss in the dock over call centre murder (22 February 2008)
• Indian IT sector will employ 2m by end of 2008 (13 February 2008)
• Indian police academy hosts phishing site (9 October 2007)
• Transformation feeds outsourcing surge (25 July 2007)
• Europe goes mad over outsourcing (13 July 2007)
• Press code bans snooping in wake of royal eavesdrop case (28 June 2007)
• Open source 'leaving Asia behind' (26 June 2007)
• Pfizer worker data leaked via P2P (14 June 2007)
• Data retention laws do not cover Google searches (14 June 2007)
• Privacy chief warns EU on terror laws (13 June 2007)
• Google throws a bone to privacy watchdogs (13 June 2007)
• Better privacy policies can make money, finds P3P study (12 June 2007)
• Video download site ordered to spy on users (12 June 2007)