A Guest Lecture on GDPR and Data Protection Bill was conducted on 29th September, 2018. Mr. Vikram Patil, Chief Privacy Officer, L&T spoke about the principles of GDPR and about the various clauses of India’s proposed Data Protection Bill. The session started with Mr.Patil giving a brief introduction about the history of GDPR. He gave insights about how it protects personal identification information, personal health information, and payment card information. Moving on further, he explained the ten chapters of GDPR like right to data, transfer to third country, Independent supervisory authority etc. As the students were curious to know more about right to data, he spoke about the right to information, right to access, right to rectification, right to be forgotten, the restriction for processing, right to data portability, right to get notification at breach, right to object, right to object automated decision making and profiling. He also explained about Data Protection Officer, Supervisory Authority, Data Controller and Data Processor.
The second half of the session was about the Data Protection Bill of India. He spoke about how GDPR has played a major role in setting up of the bill. He also highlighted the differences and similarities between the Data Protection Bill of India and GDPR. Talking about similarities, he mentioned about the consent and that the data should be collected for specific purpose. About the differences, he mentioned that citizens are not given the right to demand their data to be erased. He explained in detail about what happens in case of a data breach; who is held responsible, who is the decision making authority and the penalty for the offence.
The session was a complete package of recent updates in the field of Information Security that fascinated the students. Diving deep into the happening topics made the students inquisitive. They asked more questions to the speaker which made the entire session lively and highly interactive.