Data Insecurity

CONTEXT: Government has set up National Cyber Security Committee to probe into Shenzhen based data firm and broader implication of surveillance on privacy and personal data.

Background:

• Recent ban on Chinese mobile application by Indian Government was similar to the US’s stance on TikTok, indicating growing global concern over aggressive Chinese policy of hijacking personal data and jurisdiction where there was no control.
• Shenzhen based data firm which has linkages with the Chinese Government was found to be tracking prominent Indian figures.

Challenges faced:

• Hybrid Warfare strategy: It incorporates data to create social discord, discredit leadership and undermine institutions, is currently being employed by China.
• Creation of Actionable Intelligence: Vast amount of unrelated data can also be put together to create ‘Actionable Intelligence’.
• Lack of individual’s right: over their data, the flow of information and decision-making process.

• Individuals being tracked by the Chinese Data firm include politicians, diplomats, industrialists and figures of civil society.

Way Ahead:

• Cyber Hygiene: Enforcing strict protocol over data sharing by government functionaries over social media.
• Pre-empt Disinformation: Capacity building of public institutions to utilise collected information to curtail the spread of disinformation pre-emptively. 
• A Robust Personal Data Protection Framework: Framework should explicitly include provisions to seek consent on data sharing, examining and monitoring the flow of information among third parties.
• Consultation with all stakeholders, ensuring transparency and assigning accountability.