Regulating and enforcing data protection faces two key challenges — the wide range of entities, sectors and industries which are subject to it and the rapid pace at which technology is developing. In view of the divergent needs of each, a suitable regulatory model needs to be adopted. Once established, it is essential to support this regulation with suitable enforcement mechanisms

Customising regulation for diverse sectors

The diverse needs of various sectors demonstrate the need for customised regulation. For example, in the telecom sector, ensuring adequate encryption and other security requirements, such as for the various networks, is essential to make sure that there is no snooping on people’s communications. For the financial sector, it is crucial to maintain the confidentiality and security of the data in the possession of the financial entities. This will still need to be disclosed, routinely, to the apex financial regulator to ensure the smooth running of the industry.