Ministry of Electronics and Information Technology (MEITY) had released a report 1 on the “Non-Personal Data Governance Framework” in July 2020 2. The report recommends the establishment of a Non-Personal Data Regulatory Authority with an enabling role as well as enforcing role. 2 Along with this, the report defines Non Personal Data as: 3 Non-personal data: When the data is not ‘personal data’ (as defined under the PDP Bill), or the data is without any personally identifiable information (PII).
The use of Facial Recognition by law enforcement to identify offenders is one of the cases where the regulation of the technology lags way behind, and there is an urgent need to bring about policy to reduce potential pain in our society. Apart from the serious problems that are inherent with the technology like mis-identification and minimal mapping between the training sets and the actual photos. According to a recent report in TechCrunch 1, the Home Minister of India admitted to using a data set trained on the Aadhaar Database to identify individuals involved in a recent riot.