Fri Sep 20 08:05:15 UTC 2024: ## India’s New Data Protection Rules to Require Strict Age Verification, Raising Privacy Concerns

**New Delhi, India** – India’s upcoming Digital Personal Data Protection (DPDP) Act Rules are expected to mandate stringent age verification measures for all users, raising concerns about excessive surveillance and potential harm to vulnerable groups.

According to sources, the rules will require companies to use a government ID-based age verification system, mirroring the Know Your Customer (KYC) approach used in sectors like telecom and finance. While schools and universities will be subject to the rules with some exemptions, ed-tech companies will not receive the same leniency.

The DPDP Act mandates consent-based data processing, with exceptions for legitimate uses like voluntary data provision. However, the age verification requirement, intended to protect children under 18, has drawn criticism. Critics argue that it will make anonymous internet browsing impossible and could disproportionately impact LGBTQ+ youth and other vulnerable groups.

Big Tech companies like Google have also expressed concerns about the potential for age verification to hinder access to critical services and require users to submit sensitive personal information. They advocate for using hard identifiers like government IDs only for high-risk services such as gambling and pornography.

The DPDP Rules, which will operationalize India’s data protection law, are expected to provide broader guidelines for consent management rather than specific rules for companies to follow. While the aim is to protect children, the implementation of the age verification system raises significant concerns about the balance between privacy and security.

**Note:** This news article summarizes the provided text, emphasizing the key points and potential concerns surrounding the age verification requirement in India’s upcoming data protection rules.

Read More