Technology and Privacy — Prelims Strategy

While 'Technology and Privacy' is primarily a Mains topic, its factual and legal components are highly relevant for Prelims, especially in the Polity and S&T sections.

What to Memorize:

Landmark Judgments: — Know the name and year of the *Justice K.S. Puttaswamy v. Union of India (2017)* case and its core outcome (Privacy as a fundamental right under Article 21).
Key Legislation: — Remember the full name and year of the *Digital Personal Data Protection Act, 2023*. Be clear about key definitions like 'Data Fiduciary' and 'Data Principal'. Memorize the composition and appointment process of the Data Protection Board (appointed by Central Govt.).
Constitutional Articles: — Article 21 is central. Also, be aware of related articles like Article 19 (freedom of speech, with reasonable restrictions).
Committees: — Know the name of the committee that drafted the initial data protection bill (Justice B.N. Srikrishna Committee).

Conceptual Understanding:

Clearly understand the difference between various concepts: Data Localization vs. Geolocation; Algorithmic Bias vs. Cybersecurity threat.
Grasp the essence of the 'proportionality test' from the Puttaswamy judgment. You don't need to quote it verbatim, but you must understand its four components.

Common Traps & Elimination:

Absolutes: — Be wary of options with words like 'absolute', 'only', 'always'. The Right to Privacy is not absolute.
Incorrect Body Names/Appointments: — UPSC often creates traps by mixing up the names and appointment processes of regulatory bodies (e.g., confusing the DPB with bodies appointed by a collegium). Pay close attention to these details.
GDPR vs. DPDP Act: — Questions might attribute features of the GDPR to the Indian Act. For example, the high penalty percentage (4% of global turnover) is a GDPR feature, not from the DPDP Act.