Working with “Last Mile” Data Protection in India
India’s digital economy is characterized by “last mile” data protection, with privacy norms, data collection and sharing standards being set at the level of the application (“app”), operating system (OS) and the device. This practice lends itself to multiple, often crisscrossing rules maintained by smartphone manufacturers, mobile operating system vendors and application developers. The user is caught in a maze of privacy policies that bear on important questions: what data is collected, where it is stored, who it is shared with, and legal recourse in the face of policy violations or unauthorized use of data by third parties.
Contributing to the confusion is the lack of statutory or regulatory clarity on data protection. India’s own data protection rules offer wide latitude to technology companies to determine their own practices, which encourage irregular and poorly enforced privacy policies. If regulatory ambiguity has opened the door for conflicting data protection guidelines, the problem is compounded by India’s heavy reliance on foreign devices and applications, many of which transfer data of Indian users outside India’s borders and base their privacy policies on their home jurisdictions. This system of “last mile” data protection significantly diminishes the state’s ability to protect the privacy of its citizens, a right that was recently confirmed as “inalienable” by the Supreme Court of India.
This paper highlights “last mile” protection through an analysis of policies at the app, OS and device layer — using the examples of the Google Play Developer Distribution Agreement, Google Developer Policy, the India-specific privacy policies of smartphone manufacturers Huawei, Vivo and Xiaomi, as well as the privacy policy of WhatsApp. While acknowledging that such policies are here to stay and that it may not be feasible to craft statutory guidelines that comprehensively address every dimension of data sharing and collection, given the diversity in technological platforms, the paper makes the case for a self-regulating, autonomous and multi-stakeholder agency for protecting the integrity of user data.
Available in:
Regions and themes
ISBN / ISSN
Share
Download the full analysis
This page contains only a summary of our work. If you would like to have access to all the information from our research on the subject, you can download the full version in PDF format.
Working with “Last Mile” Data Protection in India
Related centers and programs
Discover our other research centers and programs
Center for Asian Studies
Asia is a nerve center for multiple global economic, political and security challenges. The Center for Asian Studies provides documented expertise and a platform for discussion on Asian issues to accompany decision makers and explain and contextualize developments in the region for the sake of a larger public dialogue.
The Center's research is organized along two major axes: relations between Asia's major powers and the rest of the world; and internal economic and social dynamics of Asian countries. The Center's research focuses primarily on China, Japan, India, Taiwan and the Indo-Pacific, but also covers Southeast Asia, the Korean peninsula and the Pacific Islands.
The Centre for Asian Studies maintains close institutional links with counterpart research institutes in Europe and Asia, and its researchers regularly carry out fieldwork in the region.
The Center organizes closed-door roundtables, expert-level seminars and a number of public events, including an Annual Conference, that welcome experts from Asia, Europe and the United States. The work of Center’s researchers, as well as that of their partners, is regularly published in the Center’s electronic journal Asie.Visions.
Find out more
Discover all our analyses
European Union-India: Lasting Rapprochement or Partnership of Convenience?
The partnership between the European Union (EU) and India has long been limited to economic exchanges. Its political dimension has gradually developed, culminating in its elevation to the status of a “strategic partnership” in 2004. However, the failure of negotiations for a free-trade agreement in 2013 slowed this momentum. Since the early 2020s, in an uncertain geopolitical context, bilateral rapprochement has gained new momentum.
Japan’s Takaichi Landslide: A New Face of Power
Prime Minister Sanae Takaichi has turned her exceptional popularity into a historic political victory. The snap elections of February 8 delivered an overwhelming majority for the Liberal Democratic Party (LDP), driven by strong support from young voters, drawn to her iconoclastic and dynamic image, and from conservative voters reassured by her vision of national assertiveness. This popularity lays the foundation for an ambitious strategy on both the domestic and international fronts.
The U.S. Policy Toward Taiwan Beyond Donald Trump: Mapping the American Stakeholders of U.S.-Taiwan Relations
Donald Trump’s return to the White House reintroduced acute uncertainty into the security commitment of the United States (U.S.) to Taiwan. Unlike President Joe Biden, who repeatedly stated the determination to defend Taiwan, President Trump refrains from commenting on the hypothetical U.S. response in the context of a cross-Strait crisis.
China’s Strategy Toward Pacific Island countries: Countering Taiwan and Western Influence
Over the past decade, China has deployed a diplomatic strategy toward the Pacific Island Countries (PICs). This strategy pursues two main objectives: countering Taiwan's diplomatic influence in the region and countering the influence of liberal democracies in what Beijing refers to as the "Global South."