R S Sharma TRAI Chairman said that apps should collect minimal data as UIDAI do to provide 12- digits Aadhar number to people.
He said that many customers are not aware of the required details they have to update and apps are collecting more than the required data.
Yesterday Mr. Sharma said, "For Aadhar enrollment, we collect just four set of data - your name, date of birth and your communication address. Nothing more, nothing less. Similarly every app must collect as much data as is required." "Data minimisation should be one of the principles just as Unique Identification Authority of India (UIDAI) adopts to collect data of people.”
The existing framework of data protection of telecom consumers is not sufficient noted by TRAI and the personal data should be brought under a data protection framework.
Tech Giants like Facebook, Paytm, Apple, these recommendations are expected to have wide reaching implications.
Sharma said that government will decide whether DoT has powers to create rules or regulations proposed by TRAI. These entities are not following any law till the government comes up with a broad agenda and to apply rules on them are required.
He also said that, "There are different rules for different sectors. For example in telecoms, the maximum encryption is proposed to be 40 bits. UIDAI has highest level of encryption where it is 2048 bits. So, what we are saying is that probably there is a need to have a general policy on encryption and we are not saying that we should apply same encryption standard."