Eye on data breaches...
By Andy McCue
Published: 7 June 2007 16:09 GMT
India is to finally get a data privacy watchdog to oversee the country's IT and BPO offshore outsourcing industry and to address international concerns about the security of customer records and data.
India does not have any data protection law equivalent to that in the UK but has been under increasing international pressure to address this in recent years due to a spate of high-profile security breaches.
The new body, which will be called the Data Security Council of India (DSCI), is a self-regulatory member organisation and is being set up by Indian IT industry group Nasscom.
Special Report: Inside India
In February silicon.com's Steve Ranger visited the Indian tech hotspots of Bangalore, Mumbai, Pune and Hyderabad. Click on the links below to see photo galleries of the cities and companies visited.
♦ Satyam's IT campus
♦ Hyderabad's tech parks
♦ Bringing tech to rural India
♦ High-tech on the streets of Pune
♦ Pune - the new Bangalore?
♦ Boom town Bangalore
♦ Bangalore's Electronics City
♦ SAP and Wipro in Bangalore
♦ The weekend in India's tech capital
Shyamal Ghosh, chairman of the DSCI, said the board and structure of the organisation should be in place by the end of next month.
He told silicon.com: "The industry felt it is better to have self-regulation because it moves so fast. It will be an independent organisation at arm's length from Nasscom."
The DSCI will develop common minimum standards for privacy and security policies, offer certification, enforce a code of ethics and best practice, and punish any breaches by Indian IT and BPO companies - which could include expelling members or calling in police.
Nandkumar Saravade, director cyber-security and compliance for Nasscom, said the DSCI will help improve security standards across the vast number of companies below the big top-tier outsourcers such as Infosys, TCS and Wipro.
He told silicon.com: "The aim is to lift the floor of the Indian IT and BPO companies because the top companies already have best practice."
The data security body is just one of Nasscom's initiatives to address international concerns about India's reputation for data security. Another key strand is the National Skills Registry (NSR), which is a centralised database of third-party verified personal and professional details of IT and BPO employees that allows employers to vet staff they are recruiting.
Nasscom said the NSR is used by 40 of India's IT companies and now has 100,000 employees registered on it, with half of those verified and their biometric details recorded.
Nasscom has also helped with the setting up of local cyber crime police labs in five of India's tech hotspots.
MUST HAVE/BE THE FOLLOWING - Proven track record in BPO solutions sales - Experience in one of the following:- - F&A, HRO, Contact Centre or Tech ...
Previous experience in designing solutions that consider information management in respect to privacy, compliance and regulatory provisions will be ...
MERIDIO DESIGNER / INTEGRATOR - Reading - Circa 45k The Meridio Designer / Integrator will author high level and detailed designs to address end ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
William Benn Future-proof your outsourcing: Stay flexible Size demands can fluctuate, scalability is key to success
Saritha Rai Why are Indian outsourcing companies such bashful suitors? No mega-mergers despite billions on hand