The Kris Gopalakrishna Committee was constituted on 13th September 2019 with a brief terms of reference to study the various issues relating to Non Personal data and make specific suggestions. It was headed by Shri Kris Gopalakrishna, Co-Founder Infosys and contained 7 other members.
The task entrusted to the committee was complex and the committee has come up with a comprehensive set of suggestions which are very promising. These are early days though as the recommendations will be churned again and again until it is implemented. But the road map has been set and the journey has begun.
In order to enable more people understanding the import of the recommendations and respond with their comments to the Government, I have tried to provide through a series of 8 articles preceding this, a glance at the recommendations. By no means these are complete and require refinement.
However, we must recognize that this is the fore runner to a new regulation of immense importance to the industry in India. It is of interest not only to Jio or Google or FaceBook, but also the entire IT industry, the public, the Government etc.
We often say “Data is Oil” and recognize its economic potential. A time has come now to look at the regulation that can ensure that the harnessing of “Data” as a “National Asset”.
We are now on the threshold of passing the “Personal Data Protection Act” which will regulate that part of the Data Universe that has the identity of an individual. Now a new “Non Personal Data Regulation Act” will address the regulation of the rest of the Data universe.
The law is yet to be framed. Even the Bill is not ready. But the die is cast. In due course an Act will be come into being. The industry has to gear itself to this new development.
The development will have a profound impact on the businesses because it will drag the many establishments including several Government agencies into a hitherto not present regulatory environment. It will give raise to new opportunities in the area of technology which innovative technology start ups can harness.
The professional work force which was slowly coming to terms with the Data Protection Act will now have another disruption to contend with. As I have already been hinting at, the Non Personal Data Governance will bring in a new professional namely, “Data Governance Officer” in a corporate set up who will discharge a new function different from what the DPO or CISO or CTO or CCO or CRO discharges. This will be a new breed of “Data Management Experts” who will be “Techno Management Experts” who will come out of the Business Schools having both management skills and Technology skills.
As is customary, Naavi starts his journey into this world of Data Governance and will try to facilitate other professionals to join in.
Currently Naavi is focussed on the Foundation of Data Protection Professionals in India (FDPPI) and the “Foundation of Data Governance Professionals in India” will be a natural extension.
I invite other professionals to start thinking in this direction as we address both Personal Data and Non Personal Data management as a common objective.
For the time being however, let us concentrate on studying the recommendations of the Committee and formulate our comments to be submitted to the Government. With the Government requiring to complete its obligations on passing the PDPB 2019 at the earliest, the Non Personal Data Regulation Act may take some time to emerge. But let us use this interim period to learn more on this subject and prepare ourselves for the new era.
I have tried to provide below a list of articles that have appeared on this site in the past for immediate reference. I look forward to comments from others to collate more thoughts on this subject.
September 16 2019:
September 2019-July 2020
What is Data Governance Framework ?-September 14, 2019
Committee on Data Governance…: Is it relating to Anoymized Personal Data or Non Personal Data?-September 14, 2019
What is Community Privacy? and who has the right of disposal?-September 23, 2019