Summary
The National Human Rights Commission (NHRC) has started a legal inquiry into how major technology companies handle children's data in India. The commission is concerned that several AI, social media, and education platforms are not following the Digital Personal Data Protection (DPDP) Act. These companies allegedly lack proper systems to track where children's information goes and do not have good ways for users to file complaints. This action aims to ensure that the digital privacy of young users is protected under the country's new laws.
Main Impact
This move by the NHRC marks a major step in enforcing India's new data privacy rules. By issuing notices to several government ministries, the commission is forcing a closer look at how tech giants operate. The main impact is a push for immediate accountability. While some parts of the law give companies more time to adjust, the NHRC is highlighting rules that must be followed right now. This pressure could lead to stricter controls on how apps for kids are managed and how easily parents can protect their children's information online.
Key Details
What Happened
The NHRC took action after receiving a complaint based on a report by a think tank called ASIA. The report pointed out that many popular digital tools are failing to meet safety standards. A bench led by NHRC member Priyank Kanoongo decided to send formal notices to the Ministry of Electronics and Information Technology, the Ministry of Education, and the Ministry of Communications. They want to know why these platforms are not following the law and how children are getting access to mobile services without clear oversight.
Important Numbers and Facts
The DPDP Act was passed in 2023, and its specific rules were put into place in late 2025. While companies have an 18-month window to set up systems for "verifiable parental consent," other rules are active now. These include having secure servers and a working system to handle user complaints. The NHRC has given the government and the involved entities 15 days to submit a detailed report on how they are following these rules. The commission also raised questions about how SIM cards are registered for minors, as there is currently no clear data on this process in India.
Background and Context
Data protection is a way to make sure that companies do not use your personal information in ways you do not like. In India, the DPDP Act was created to give people more control over their digital lives. This is especially important for vulnerable groups like children, women, and the elderly. Children are at higher risk because they may not understand how their data is being tracked or sold. The law requires platforms to get permission from parents before collecting a child's data. It also forbids companies from tracking children's behavior for advertising purposes. The NHRC is stepping in because privacy is now seen as a basic human right in the digital age.
Public or Industry Reaction
The report named several famous platforms that are allegedly not following the rules. These include Meta (which owns Facebook and Instagram), WhatsApp, and Khan Academy. It also mentioned newer AI tools like Grok, Gemini, Perplexity AI, and Microsoft Math Solver. The NHRC expressed "serious concern" about these lapses. They believe that if these platforms do not fix their systems, children could face significant safety risks online. The commission’s involvement shows that the government is no longer just suggesting safety measures but is now demanding them through legal channels.
What This Means Going Forward
In the coming weeks, the government ministries must explain how they plan to fix these gaps. Tech companies will likely have to update their apps to include better complaint systems and more transparent data tracking. If they fail to do so, they could face heavy fines under the DPDP Act. The NHRC has also hinted that this is just the beginning. They plan to look into how the data of senior citizens is protected next. This suggests a long-term trend where the Indian government will keep a very close eye on how any personal information is handled by big tech firms.
Final Take
The NHRC’s decision to issue these notices is a wake-up call for the tech industry. It shows that the DPDP Act is not just a piece of paper but a tool for active enforcement. Protecting children in the digital world is a complex task, but the government is making it clear that the responsibility lies with the companies providing the services. As these platforms respond to the 15-day deadline, we will see how quickly the digital environment in India changes to become safer for its youngest users.
Frequently Asked Questions
What is the DPDP Act?
The Digital Personal Data Protection (DPDP) Act is a law in India that sets rules for how companies collect, store, and use people's personal information online. It aims to protect user privacy and punish companies that misuse data.
Which companies were mentioned by the NHRC?
The report mentioned several major platforms, including Meta, WhatsApp, Khan Academy, and AI tools like Gemini, Grok, and Perplexity AI. These platforms are being looked at for how they handle children's data.
Why is the NHRC involved in data privacy?
The NHRC protects human rights in India. Since privacy is considered a human right, the commission has the power to investigate when companies or government bodies fail to protect the personal information of citizens, especially children.
