‘The history of childhood is a nightmare from which we have only recently begun to awaken’. This observation made by deMause, an investigator in psycho-histories in 2005 regarding traditions of child-rearing in different times and cultures, holds good for each age. He expounded that the evolution of child rearing gives insight into the development of a particular society. If this is the yardstick, what does that say about India’s development when a mechanism to ensure data privacy<\/a> of children<\/a> is absent, while their presence online is normalised through formal government approval due to COVID<\/a> induced physical meeting restrictions.
Enormity of the problem<\/strong>
As of 2019, the report of the Internet and Mobile Association of India noted that almost two-thirds of the internet users in India fall into the age brackets of 12-29 years. The report found that from a total number of 451 million monthly active internet users, over 66 million were in the age group of 5-11 years and 385 million were above the age of 12 years. The Puttaswamy Judgement in the year 2012 was categorical in stating that “Privacy of children will require special protection not just in the context of the virtual world, but also the real world”. Eight years down the line, we have only begun to scratch the surface.
The OECD in the year 2010 released a report titled “Typology of Risks Online”. These included three categories: Internet Technology Risks, Consumer Related Risks and Information Privacy and Security Risks. The grey area of Indian jurisprudence lies in mitigating the third risk which includes grave offences like targeted behavioural profiling, identity theft and intimidation of children online by misusing their personal data.
The Data Security Council of India noted that between the years 2016-2018. India had the second-highest number of cyber attacks. Two instances of a data breach in case of children set the stakes high and the alarm bells are ringing loud and fast. In September 2019, the personal data of 68,000 customers [mainly school-going children] of Vedantu was compromised and recently in May 2020, Unacademy reported that personal data of 22 million users has been compromised. The turning point in this discussion has now come in wake of the COVID-19 induced lockdowns. With education institutions shut, the best way to ensure continuity of education was bringing it online. Educational platforms like Byjus, Unacademy, Toppr, Edumarshal and the governments’ Diksha have been widely used along with platforms such as Google Meets and Zoom<\/a> to host virtual classrooms. So, the hitherto medium risks of harms to children have now multiplied several folds.
Current legal safeguards<\/strong>
The existing legislation that provides some degree of protection to children apart from the Juvenile Justice (Care and Protection) Act, 2015 is the Information Technology Act, 2000. These however do not entirely suffice. While the latter deals with the first and the second risk outlined by OECD, the former is only applicable to a select class of minors, i.e. a child in conflict with the law, a child victim, a child in need of care and child witnesses. The IT Act, when enacted in the year 2000, was done so as to “legally recognise electronic transactions and facilitate e-commerce.” Further, the scheme of the Act mostly creates offences of wrongful disclosure and misuse of personal data in specific cases. The requirement of “parental consent” and “differentiated policies for children of various age groups” is absent within the Act. Thus; the act is insufficient to counter risks posed to minors on the internet concerning their personal data.
What needs to be done?<\/strong>
The UNICEF and the OECD Council have released principles to govern policies of states for data protection<\/a>. The UNICEF in the “Principles on Children Online Privacy and Freedom of Expression” has urged States to create mechanisms in relation to the evolving capacities of minors. On similar lines, the OECD also propounds for age-appropriate policies. With the General Data Protection Regulation, 2018 (GDPR<\/a>) the EU urged members to have policies that require parental consent for those under the age of 13-16, along with safeguards such as “child-friendly language for notices” and prohibiting “sole decision making in use of children’s data”. The United Kingdom obligates web-based applications to minimise data collection from minors and switch location services off by default. Under the US Children’s Online Privacy Protection Act, 2000, the operators obtain consent from parents for the disclosure and use of personal information of minors. The South Korean “Cinderella Law” forbids users under the age of 16, to access certain websites between midnight and 6 am.
Unfortunately, India does not have such mechanisms to protect children from online threats. As the Personal Data Protection<\/a> Bill is pending in the Parliament<\/a>, in the meantime, the government must promulgate an ordinance or at least pass a regulation that guarantees some degree of safety to children. Recently, the Supreme Court<\/a> issued a notice to the Centre asking them to regulate minor’s access to social media. While the above is a step in the right direction, it is time policy-makers act fast and carefully, especially given the current escalation in virtual education. The nudge has already come in the form of the report of the ad-hoc committee of the Rajya Sabha to study “the alarming issue of pornography on social media and its effect on children and society as a whole” (January 2020) in which I was a member.
Amar Patnaik is a Member of Parliament, Rajya Sabha from Odisha. Views are personal.<\/strong><\/em>
<\/body>","next_sibling":[{"msid":81341299,"title":"45% of Indian online users hit by local threats in 2020","entity_type":"ARTICLE","link":"\/news\/45-of-indian-online-users-hit-by-local-threats-in-2020\/81341299","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[],"msid":81341321,"entity_type":"ARTICLE","title":"A black mirror for policy makers: Looking at data protection for minors","synopsis":"India does not have such mechanisms to protect children from online threats. As the Personal Data Protection Bill is pending in the Parliament, in the meantime, the government must promulgate an ordinance or at least pass a regulation that guarantees some degree of safety to children. ","titleseo":"telecomnews\/a-black-mirror-for-policy-makers-looking-at-data-protection-for-minors","status":"ACTIVE","authors":[],"analytics":{"comments":0,"views":329,"shares":0,"engagementtimems":1410000},"Alttitle":{"minfo":""},"artag":"ETGovernment","artdate":"2021-03-05 08:21:26","lastupd":"2021-03-05 08:21:47","breadcrumbTags":["Personal Data Protection","covid","Supreme Court","children","Data Protection","Privacy","Zoom","parliament","GDPR","policy"],"secinfo":{"seolocation":"telecomnews\/a-black-mirror-for-policy-makers-looking-at-data-protection-for-minors"}}" data-news_link="//www.iser-br.com/news/a-black-mirror-for-policy-makers-looking-at-data-protection-for-minors/81341321">