On October 16, the Group of Experts on Privacy, Chaired by Mr. A. P. Shah, submitted its Report to the Planning Commission. The Expert Group was appointed to set out the principles that Indian privacy law should abide by. Even though privacy has been held to be a fundamental right as long back as in 1962, India does not have a law that specifies safeguards to privacy. Moreover, recent government initiatives, such as the UID, involve collection of personal information and storage in electronic form. The absence of a law on privacy increases the risk to infringement of the fundamental right. In this blog we list the recommendations made by the expert group, discuss the status of the right to privacy in India, and why there is a need for an enactment. Recommendations of the Expert Group on Privacy
Present status of the Right to Privacy While the Supreme Court has held privacy to be a fundamental right, it is restricted to certain aspects of a person’s life. These aspects include the privacy of one’s home, family, marriage, motherhood, procreation and child-rearing. Therefore, to claim privacy in any other aspect, individuals have to substantiate these are ‘private’ and should not be subjected to state or private interference. For instance, in 1996 petitioners had to argue before the Court that the right to speak privately over the telephone was a fundamental right. Risks to privacy Government departments collect data under various legislations. For instance, under the Passport Act, 1967 and the Motor Vehicles Act, 1988 persons have to give details of their address, date of birth etc. These enactments do not provide safeguards against access and use of the information by third parties. Similarly, information regarding ownership of property and taxes paid are publicly available on the MCD website. Furthermore, recent government initiatives may increase the risk to infringement of privacy as personal information, previously only available in physical form, will now be available electronically. Initiatives such as the National e-Governance Plan, introduced in 2006 and Aadhaar would require maintenance of information in electronic form. The Aadhaar initiative aims at setting up a system for identifying beneficiaries of government sponsored schemes. Under the initiative, biometric details of the beneficiaries, such as retina scan and fingerprints, are collected and stored by the government. The government has also introduced a Bill in Parliament creating a right to electronic service delivery. As per news reports, a draft DNA Profiling Bill is also in the pipeline.
In April last year the government had notified the Information Technology (Intermediary Guidelines) Rules, 2011 (IT Rules) under the Information Technology Act, 2000. The IT Rules are listed for discussion in Rajya Sabha today in pursuance of a motion moved by Mr. P. Rajeeve [CPI(M)]. The motion seeks to annul these Rules and recommends that Lok Sabha also concur with the motion. The IT Rules require intermediaries (internet service providers, blogging sites like Blogger and Wordpress, and cyber cafés) to take certain action. Intermediaries are required to enter into agreements with their users prohibiting publication of certain content. Content that cannot be published includes anything that is ‘harmful to minors in any way’, ‘blasphemous’, ‘encouraging money laundering’ etc. This raises three issues. Some of the categories of content prohibited for publication are ambiguous and undefined. For instance, ‘grossly harmful’ and ‘blasphemous’ content are not defined. Publication of certain content prohibited under the IT Rules, is currently not an offences under other laws. Their publication is in fact allowed in other forms of media, such as newspapers. Newspapers are bound by Press Council Norms. These Norms do not prohibit publication of all the content specified under the IT Rules. For instance, while these Norms require newspapers to show respect to all religions and their gods, they do not prohibit publication of blasphemy. However, under the IT Rules blasphemy is prohibited. This might lead to a situation, where articles that may be published in newspapers legally, may not be reproduced on the internet for example in the e-paper or on the newspaper’s website. Prohibition of publication of certain content under the IT Rules may also violate the right to freedom of speech. Under Article 19(2) of the Constitution restrictions on the right to freedom of speech may be imposed in the interest of the State’s sovereignty, integrity, security and friendly relations with other States, public order, morality, decency, contempt of court, and for protection against defamation. The content prohibited under the IT Rules may not meet the requirement of Article 19(2). This may impinge on the right to freedom of speech and expression. Further, anyone can complain against such content to the intermediary. The intermediary is required to remove content if it falls within the description specified in the IT Rules. In the event the intermediary decides not to remove the content, it may be held liable. This could lead to a situation where, in order to minimise the risk of liability, the intermediary may block more content than it is required. This may imply adverse consequences for freedom of expression on the internet. PRS’s detailed analysis of the IT Rules may be accessed here.
