To ‘support’ the automobile industry, the government has come out with a policy where organisations and researchers can buy bulk data pertaining to vehicle registrations on an annual basis.
Eligible bodies can purchase the data for Rs 5 crore from the next fiscal and would be required to ensure strict security steps to prevent its theft or transfer, according to the policy approved by the government.
Violation of data, the policy warns, will result in action under the IT Act and other applicable laws, besides debarring the agency from access to this data for a period of three years.
According to the ‘Bulk Data Sharing Policy & Procedure’ issued earlier this month, sharing of vehicle registration data in a “controlled manner can support the transport and automobile industry”.
“The sharing of data will also help in service improvements and wider benefits to citizens & government,” the policy said.
The prime focus is on delivering simpler, better and safer services to citizens and sharing of data “will also benefit the country’s economy”, the policy said.
“There have been continuous advances in technology and the range of purposes for which individuals and organisations want access to DL&RC data. There has been a growing demand to share the data for wider benefit.”
The Ministry of Road Transport and Highways collects and holds data as part of issuance of Vehicle Registration Certificates (RC) and Driver Licence (DL).
The Ministry currently shares complete data with specified agencies such as enforcement agencies. The data is also shared with automobile industries, banks, finance companies, etc, at specified rates for each data set.
Earlier this month, the Road Transport and Highways Ministry also announced that it was going paperless and said driving licences and vehicle registration certificates would now be issued as plastic cards in a standard format across the country.
Under the new norms notified by the Ministry, states would have the option to issue the two documents in the form of cards, which would be made of PVC (Polyvinyl Chloride) or polycarbonate.
“A QR code has been prescribed on the cards. This would enable easy linking and access and validation of the information on the cards with the SARATHI or VAHAN database,” the Ministry has said.
Recently, the Ministry amended the Central Motor Vehicles Rules 1989, enabling issuance and use of transport-related documents in electronic form.
In the bulk data sharing policy, the government has said: “Capture of old data on RC&DL (registration certificate & driving licence) before the implementation of SARATHI and VAHAN has still not taken place. The possibility of a number of vehicles having been transferred from one person to another or one location to another and the driving licence holders having relocated themselves without updating the database cannot be ruled out.”
The policy makes it clear that under the circumstance, the Ministry is not in a position to ensure the sanctity of the data, which would be made available on an “as-is-where-is” basis.
The policy said free access to the vehicle’s basic data available to all the registered users through the mParivahan App or the Web portal of the ministry shall be restricted to basic details regarding statutory compliances and the owner’s name.
On the eligibility for accessing Bulk Data, it said such organisations requesting data should be registered in India with at least 50 per cent ownership by an Indian resident or an Indian company.
“All bulk data accessed by the organisation shall be processed/ stored in servers/ or a data centre residing in India. The data at any point shall not be transferred/ processed/ stored in a server outside India,” it said.
For data safety it said: “Monitor, control and block any sensitive data being transferred from the data processing organisation network. This includes e-mails, files, browser, application, etc. This is to be achieved through content & context aware protection.”
Besides it stipulated ‘Cross Platform Security’ to ensure that sensitive data does not reside in desktops running on Windows, Linux or Mac OS.
It said all sensitive data should be in encrypted format while stored in the disk, and should only be decrypted when accessed through proper mechanisms.
About the cost, the policy said the organisations can purchase the data for one calendar year at any time.
“Commercial organisations and individuals seeking bulk data will have to pay an amount of Rs 3 crore for FY 2019-20. Educational institutions can use this data for research purposes for internal use only and would be provided the bulk data one time on payment of an amount of Rs 5 lakh, only for FY 2019-20,” the policy said, adding that there shall be an annual increase of 5 per cent from FY 2020-21 onwards.
The government made it clear that the data in bulk will be released in encrypted format.
“Wherever it comes to the notice of the Ministry through audit or any other source that the protocol of use of data as prescribed herein has not been followed or has been violated, the person/ agency concerned shall be liable for any action permissible under the IT Act/ any other applicable law, besides debarring of such agency from access to this data for a period of three years,” the policy said.