新數位個人資料保護法規則：18 歲以下兒童需要家長同意才能建立社群媒體帳戶

該規則還包括年齡驗證方法和資料安全規定。

The Digital Personal Data Protection Act (DPDP Act) draft rules now require children under 18 to obtain parental consent before creating accounts on social media platforms. These rules also outline age verification methods and data security provisions.

《數位個人資料保護法》（DPDP 法）草案規則現在要求 18 歲以下的兒童在社群媒體平台上建立帳戶之前必須獲得父母的同意。這些規則還概述了年齡驗證方法和資料安全規定。

New Delhi: Children will now need the permission of their parents or guardians to access social media platforms, as per the Digital Personal Data Protection Act (DPDP Act) that was approved by Parliament in August 2023. However, the Act did not clearly mention the method of checking consent. Now, its draft rules have been issued for public consultation, and feedback can be submitted till February 18.

新德里：根據議會於 2023 年 8 月批准的《數位個人資料保護法》（DPDP 法），兒童現在需要獲得父母或監護人的許可才能訪問社交媒體平台。 。目前，規則草案已向社會公開徵求意見，回饋截止日期為2月18日。

According to these rules, the age of children will be confirmed through a government ID or a token verified by the digital locker service provider.

根據這些規則，兒童的年齡將透過政府身分證或數位儲物櫃服務提供者驗證的令牌來確認。

For example, if a child (C) wants to create an account on a platform, the data fiduciary (DF) will have to check the consent of the parents (P), as per an example given in the draft rules.

例如，如果孩子（C）想要在平台上建立帳戶，資料受託人（DF）將必須檢查父母（P）的同意，並按照規則草案中給出的範例。

What will happen?

會發生什麼事？

The provisions related to children’s data processing have been a matter of controversy since 2023. Many big tech companies like Meta and Google had demanded to reduce the definition of children from 18 years to 14 years. At the same time, some sections of civil society and industry had expressed concern that such rules could affect innovation and create problems for the technology sector.

自2023年以來，與兒童資料處理相關的規定一直備受爭議。同時，民間社會和工業界的一些部門表示擔心此類規則可能會影響創新並為技術部門帶來問題。

However, in the DPDP rules, the government has exempted some data fiduciaries from the restrictions imposed on children’s data processing. These institutions include:

然而，在 DPDP 規則中，政府免除了一些資料受託人對兒童資料處理的限制。這些機構包括：

Mental health institutions and health care professionals

精神衛生機構和醫療保健專業人員

What is a data fiduciary?

什麼是資料受託人？

In simple terms, a data fiduciary is an organization or person who collects and uses your data. When you use an app, website, or service, some information (such as name, email, phone number, location) is taken from you. Whoever is given this information is called the data fiduciary. It is the responsibility of the data fiduciary to keep your data safe and use it only for the purposes for which your consent has been taken.

簡而言之，資料受託人是收集和使用您的資料的組織或個人。當您使用應用程式、網站或服務時，某些資訊（例如姓名、電子郵件、電話號碼、位置）會被竊取。獲得此資訊的人稱為資料受託人。資料受託人有責任確保您的資料安全，並僅將其用於已徵得您同意的目的。