“When it comes to privacy and accountability, people always demand the former for themselves and the latter for everyone else.”
― David Brin
On 25th May 2019 General data protection regulation came into force and the companies in 2021 are trying to adjust to these regulations. The managing director of data privacy consultancy Castlebridge advice to not use WhatsApp as it does not comply with GDPR.
Countering all the rumors and misinformation in the market, a WhatsApp spokesperson told PTI: "No accounts will be deleted on May 15 due to this update and no one in India will lose WhatsApp functionality. We will follow up with reminders for people in the coming weeks."
In 2014, WhatsApp released a statement stating that the partnership with Facebook does not alter their values and principles and that they would continue to work independently and autonomously, but to date their policy segment reads that the information they share with Facebook companies include user account registration, transaction data, service-related information, mobile device information, IP address and the like which they obtain upon notification or based on user consent. Major changes include Facebook having access to messages users share with businesses on WhatsApp, WhatsApp will begin processing payment accounts and transaction information which includes payment method information, shipping details and the amount of the transaction. WhatsApp will also collect granular information about user activity and device and connection information such as battery levels and signal strength. In addition, it will collect the IP address and other information such as the prefix to estimate the overall location even if the user is not using the location features. At this point, users have no choice but to click "Agree" or simply stop using the service.
PRIVACY AND DATA PROTECTION LAWS
· Section 72A of The Information Technology Act,2000, which talks about Punishment for disclosure of information in breach of lawful contract.
· Section 2 (1)(w) of The Information Technology Act,2000 according to which WhatsApp can be considered as Public Authority Hence, relying on Puttaswamy Judgement.
· Rule 3 of Information Technology (Reasonable security practices and procedures and sensitive personal data or Information) Rules of 2011.
· Sub-rule 7 of rule 5 and Rule 8 of Information Technology (Reasonable security practices and procedures and sensitive personal data or Information) Rules, 2011.
It can be observed that the EU due to its strict laws such as the GDPR could protect its citizens from the change in policy which appears to be to the benefit of the App and its parent companies and in a sense puts the data at risk for users. del App. This data sharing with Facebook may not pose a big risk at the moment, but it could pose security threats in the near future. The country's politicians and lawmakers should know better when it comes to protecting the privacy of its country's citizens. Data is the new oil and extraction by a private company poses a risk to the country and its citizens in terms of privacy, security and data leakage.