Latest news with #DPDP

Business Wire

12 hours ago

Health
Business Wire

Predictmedix AI Expands into Mobile Diagnostics with New AI-Driven Diabetes Screening Platform

TORONTO--(BUSINESS WIRE)--Predictmedix AI Inc. (CSE: PMED | OTC: PMEDF | FRA: 3QP), a leader in artificial intelligence-driven health screening solutions, is expanding into the direct-to-consumer market with a mobile solution designed to deliver rapid, non-invasive diabetic screening — with India identified as the initial launchpad for this transformative initiative. Leveraging the company's proprietary AI technology, the platform is intended to empower millions with instant access to diabetic risk assessments using only a smartphone, eliminating the need for blood draws, lab visits, or clinical infrastructure. Predictmedix AI is expanding into the direct-to-consumer market with a mobile solution designed to deliver rapid, non-invasive diabetic screening. By combining advanced facial and biometric analysis with seamless smartphone delivery, the solution brings accessible, affordable, and scalable diabetic screening to some of the most underserved populations across India. This milestone represents a significant step in Predictmedix AI's broader vision to reshape global healthcare delivery and accelerate the adoption of AI-enabled, mass-scale preventive health solutions. 'We are addressing a critical gap in healthcare access with a cutting-edge solution that empowers individuals to take control of their health using the device they already own — their mobile phone,' said Dr. Rahul Kushwah, COO of Predictmedix AI. 'India has over 100 million diabetics and a significant number remain undiagnosed. Our app is designed to bridge that diagnostic divide.' Key Features: Instant Diabetic Risk Scoring via smartphone. AI-driven facial and biometric analysis based on Predictmedix's proven non-invasive screening platform. User-friendly design with multilingual support for broad accessibility. Secure, privacy-compliant data handling, in line with India's Digital Personal Data Protection (DPDP) Act. Strategic Significance: India's diabetes epidemic is accelerating, with estimates projecting nearly 1 in 3 adults to be diabetic or prediabetic by 2045. Simultaneously, smartphone adoption now exceeds 1.1 billion users — a convergence that creates a once-in-a-generation opportunity for mobile-first, AI-powered health solutions. Our platform is uniquely positioned to: Capture significant market share in a high-need, high-growth region. Generate recurring revenue streams through direct-to-consumer and B2B channels. Align with public health priorities of governments, NGOs, and large employers. Scale globally with minimal marginal cost, leveraging cloud-based delivery. Details of the company's recent product validations, pilot programs, and strategic partnerships can be found in earlier press releases available at: About Predictmedix AI Inc. Predictmedix AI Inc. (CSE: PMED) (OTC: PMEDF) (FRA:3QP) is an emerging provider of rapid health screening and remote patient care solutions globally. The Company's Safe Entry Stations – powered by a proprietary artificial intelligence (AI) – use multispectral cameras to analyze physiological data patterns and predict a variety of health issues including 19 physiological vital parameters, impairment by drugs or alcohol, fatigue, or various mental illnesses. Predictmedix AI's proprietary remote patient care platform empowers medical professionals with a suite of AI-powered tools to improve patient health outcomes. To learn more, please visit our website at or follow us on Twitter, Instagram or LinkedIn. Caution Regarding Forward-Looking Information: This news release may contain forward-looking statements and information based on current expectations. These statements should not be read as guarantees of future performance or results of the Company. Such statements involve known and unknown risks, uncertainties and other factors that may cause actual results, performance or achievements to be materially different from those implied by such statements. Although such statements are based on management's reasonable assumptions, there can be no assurance that such assumptions will prove to be correct. We assume no responsibility to update or revise them to reflect new events or circumstances. The Company's securities have not been registered under the U.S. Securities Act of 1933, as amended (the 'U.S. Securities Act'), or applicable state securities laws, and may not be offered or sold to, or for the account or benefit of, persons in the United States or 'U.S. Persons', as such term is defined in Regulations under the U.S. Securities Act, absent registration or an applicable exemption from such registration requirements. This press release shall not constitute an offer to sell or the solicitation of an offer to buy nor shall there be any sale of the securities in the United States or any jurisdiction in which such offer, solicitation or sale would be unlawful. Additionally, there are known and unknown risk factors which could cause the Company's actual results, performance or achievements to be materially different from any Page 4 of 4 future results, performance or achievements expressed or implied by the forward-looking information contained herein, such as, but not limited to dependence on obtaining regulatory approvals; the ability to obtain intellectual property rights related to its technology; limited operating history; general business, economic, competitive, political, regulatory and social uncertainties, and in particular, uncertainties related to COVID-19; risks related to factors beyond the control of the Company, including risks related to COVID-19; risks related to the Company's shares, including price volatility due to events that may or may not be within such party's control; reliance on management; and the emergency of additional competitors in the industry. All forward-looking information herein is qualified in its entirety by this cautionary statement, and the Company disclaims any obligation to revise or update any such forward-looking information or to publicly announce the result of any revisions to any of the forward-looking information contained herein to reflect future results, events or developments, except required by law. Disclaimer: The Company is not making any express or implied claims that its product has the ability to diagnose, eliminate, cure or contain the COVID-19 (or SARS-2 Coronavirus) at this time. THE CANADIAN SECURITIES EXCHANGE HAS NOT REVIEWED NOR DOES IT ACCEPT RESPONSIBILITY FOR THE ADEQUACY OR ACCURACY OF THIS RELEASE.

From cloud-first to cloud-smart: Why Indian enterprises need a sovereign strategy

Time of India

23-06-2025

Business
Time of India

From cloud-first to cloud-smart: Why Indian enterprises need a sovereign strategy

Over the past decade, Indian enterprises have quickly adopted the cloud and are now embracing a cloud-first approach to accelerate their digital transformation. But today, the conversation is shifting. With rising compliance demands and geopolitical concerns, this strategy to gain agility and scale is being re-evaluated. This transition from "cloud-first" to "cloud-smart" is especially relevant in a country like India, where there is growing emphasis on digital sovereignty. In the early phases of digital transformation, the cloud-first model was effective. It prompted companies to update their IT systems, migrate workloads more rapidly, and respond to business demands more quickly. However, soon, a lot of businesses began to face difficulties. They discovered that not all workloads are suitable for the public cloud, including performance bottlenecks for applications sensitive to latency, and soaring costs. Businesses began to encounter increasingly complex challenges related to data control, security, and regulatory compliance as digital systems evolved. Cloud-smart: Optimizing for control, and compliance A cloud-smart strategy involves the judicious usage of cloud resources. It emphasizes choosing the right deployment model, which is either public, private, hybrid, or sovereign cloud , based on regulatory obligations and the organization's workload requirements. Gartner predicted that by 2023, 60% of all organizations that had adopted a cloud-first policy would seek out a more balanced, cloud-smart approach to it. This is a vital approach for India. The Digital Personal Data Protection (DPDP) Act mandates strict guidelines for localization and data handling. Sectoral regulators such as the RBI and IRDAI have introduced data residency requirements for financial and insurance data. In this context, data storage with processing overseas might not always be a viable or compliant option when depending on foreign hyperscalers. Why sovereign cloud is becoming non-negotiable Digital sovereignty is having national jurisdiction over data and digital infrastructure. While global cloud platforms offer scalability and innovation, they bring challenges. With escalating cyber threats, enterprises and governments are prioritizing control over security. India recorded over 1.6 billion cyberattacks in 2023 alone. Enterprises now face risks due to foreign surveillance laws, such as the U.S. CLOUD Act. Hyperscalers worldwide, even with technological prowess, cannot often provide a guarantee of jurisdiction. In contrast, a sovereign cloud ensures data is stored, processed, and managed under Indian laws within Indian borders. It allows enterprises to control their digital assets and aligns itself with the vision of the government for a self-reliant digital India. The problems with relying on global hyperscalers Many CIOs and CTOs are now rethinking how their infrastructure is set up, especially when it comes to critical workloads. It's becoming harder to ensure that data stays within India and keeps up with changing local regulations. There's also a growing security concern, with limited visibility into where exactly data is stored or who might have access. Moreover, using proprietary tools often leads to vendor lock-in, making it tough to switch providers when needed. Shifting global politics poses the constant risk of foreign policy changes. This can disrupt access to essential data or services. These concerns are pushing tech leaders to look for smarter, more resilient strategies that offer better control and resilience. The roadmap for enterprise leaders 1. Give hybrid and multi-cloud architectures top priority: Use a combination of sovereign, private, and public cloud services. While less sensitive workloads can use global infrastructure, sensitive data can remain in India, providing flexibility and ensuring compliance. 2. Integrate Compliance by Design: Ensure your cloud strategy incorporates Indian data protection laws from the outset. Decide on deployment models based on the sensitivity of the data. Collaborate with suppliers who provide clear data residency controls. 3. Reduce Vendor Lock-In: Use infrastructure-agnostic tools, containerized apps, and open standards. To maintain resilience and bargaining power, design systems with portability in mind. 4. Make Security and Observability Better: Implement strong encryption methods, keep track of your own encryption keys, and make sure that data flows between platforms are always being watched and audited. 5. Partner with cloud providers based in India: Local cloud partners can give you sovereign infrastructure, faster support, and a better understanding of the rules and regulations. Look for providers that MeitY has approved for government and BFSI workloads. Looking ahead The cloud will be the cornerstone of India's projected $1 trillion digital economy by 2027. However, this foundation needs to be based on compliance, sovereignty, and smart architectural decisions. The cloud-smart approach is a strategic necessity rather than merely a tactical change. In addition to future-proofing their operations, businesses that adopt a sovereign-first mentality will also support India's larger goal of technological autonomy. The time has come for IT leaders to review their cloud strategy and establish sovereignty as a key component of their digital approach.

Trai moves to rein in spam calls with new digital consent rule

Mint

16-06-2025

Business
Mint

Trai moves to rein in spam calls with new digital consent rule

Get ready for fewer annoying calls and messages. The Telecom Regulatory Authority of India (Trai) is launching a three-month pilot project, requiring your digital permission before companies can send you promotional calls or texts. This initiative, involving telecom operators and banks, aims to give consumers greater control over marketing communications and drastically cut down on unwanted spam, a government official aware of the matter said. This comes amid concerns over unwanted calls and messages, which consumers continue to face from sectors such as banking, financial services and insurance (BFSI) and real estate, among others. This also assumes further salience as the government is expected to soon notify the rules to implement the digital personal data protection (DPDP) Act, after which the companies will have to seek consent from users before using their personal data. According to the telecom regulator, despite technical readiness by telecom operators, senders of promotional communication, also known as principal entities (PEs), including banks, have not onboarded the Consent Registration Function (CRF), which is leading to underutilization of infrastructure and proliferation of non-compliant commercial communications. Also read: Spam call battle: Telcos win round against regulator In June 2023, Trai mandated a digital consent acquisition (DCA) system for telcos to manage and verify customer consent for commercial communications. The system, implemented under Telecom Commercial Communications Customer Preference Regulations (TCCCPR), aims to curb unsolicited commercial communications (spam) by creating a unified platform for registering and maintaining customer consent digitally. The principal entities such as banks, insurance companies and other firms that send promotional messages to consumers were asked to register user consent for receiving such messages. Principal entities hire telemarketers, which need to be registered with telecom operators, to send commercial messages. However, there are some senders/principal entities that have not adopted the DCA system. 'To strengthen the Consent Registration Function, the Authority considers it essential to operationalize a simplified, scalable and consumer-centric CRF framework through a controlled Pilot Project running within a Regulatory Sandbox to validate operational feasibility, technical performance and regulatory conformance," Trai said in its directions dated 13 June to telecom operators. A copy of the directions was seen by Mint. Mint has reached out to Trai for comment and will update the story once they respond. On 4 June, Mint reported that Trai is soon expected to come up with detailed guidelines on the DCA framework, in a bid to expedite the implementation of the system. Also read: Next-gen telecom tech to get ₹1,000-crore yearly R&D boost under telecom policy A regulatory sandbox is a controlled environment set up by a regulator that allows companies—often startups or innovators—to test new products, services, or business models with real customers, but under relaxed regulatory supervision and limited scope. Starting the consent management function first with the banks, the telecom regulator will also come up with a programme notifying sector-wise roll-out in phases upon successful completion of the current pilot project, it said in its directions, adding that telcos need to integrate end-to-end distributed ledger technology (DLT) systems for consent recording and revocation. An end-to-end DLT system for consent would ensure instant recording of permission to receive or withdraw promotional messages, simultaneous update to all the stakeholders, and no promotional message is sent without valid, verifiable consent. Trai has asked telecom operators to launch media/digital campaigns within a month to educate consumers about the Pilot Project and consent revocation mechanisms. 'Access providers should also create a page on their websites and mobile apps within 30 days and 60 days, respectively, reflecting the issuance of this direction, with suitable content related to the pilot project and the available registration and revocation processes," Trai said in the directions. To be sure, the government has been lately cracking down on spam and illegal numbers. According to data from the Sanchar Saathi portal, the government has taken action on more than 2.6 million suspected fraud communications received from users. This includes blacklisting 211 principal entities, over 1 lakh SMS templates, and blocking over 1 lakh mobile handsets. 'Spam is a big menace for the last 20 years. While this spam issue is very complex to be resolved fully but this consent framework will surely bring in some respite for the consumers," said Satya N Gupta, former principal advisor at Trai. 'It is important for Trai to bring telemarketers under some sort of authorization framework as they are the source of spam calls and messages. If properly implemented, it will benefit the people at large," Gupta added. In a release dated 2 April, the communications ministry had said the Department of Telecommunications (DoT) disconnected approximately 1.75 lakh direct inward dialing (DID)/landline telephone numbers that were found to be involved in unauthorized promotional activities and illegal activities. Detailing process for seeking user consent for promotional communication, Trai said banks will upload the customers' consents (bulk or incremental), on the respective portals (or through any other mechanism) of the Originating Access Provider, through which a call or message is originally sent. Bulk consents mean those consents that were lawfully obtained by the respective entities such as banks prior to their onboarding onto the consent registration facility of the telecom operators. Incremental consents refer to the user consents collected by an entity after it has been onboarded onto the consent registration facility. Also read: Airtel, Google team up to counter Jio's free cloud blitz with 100 GB storage Trai said the banks and participating entities will have to submit an online undertaking about the genuineness and correctness of the consents being uploaded. Once a user's consent is collected, the Originating Access Provider (OAP) will forward the consent details to the relevant Terminating Access Provider (TAP) to register it on the DLT platform. After registration, the TAP will immediately send a confirmation SMS to the customer from the short code '127xxx', informing them about the recorded consent. This message will also include an option to opt out. If the customer chooses to opt out, the recorded consent will be deleted from the DLT platform. Trai said there will be an interoperable framework for secure and real-time sharing of consents and consent-related data. Besides, consumers will be informed fortnightly by the TAPs about the consents recorded on CRF, the mechanism for consent revocation, and weblink to the TAP's portal where consumers can securely see the complete details of concerned principal entities. Post completion of the pilot project, telcos will have to submit the report within 10 business days to the regulator, which will include consent lifecycle analysis, technical evaluation, user interface review, consumer feedback and feedback for commercial scaling of the framework, etc. In a meeting with the Joint Committee of Regulators (JCOR) on 25 April, Trai said the modalities for onboarding senders of commercial communication on DCA platform were deliberated. Trai will also constitute working groups comprising its representatives, telecom operators, RBI and banks to ensure day-to-day monitoring and preparation of necessary reports during and post-completion of the pilot project. 'JCOR members agreed to engage with the senders/principal entities within their jurisdiction to onboard them on DCA," Trai had said. JCOR includes representatives from the Reserve Bank of India, Insurance Regulatory and Development Authority of India, Pension Fund Regulatory and Development Authority, Securities and Exchange Board of India and the ministry of electronics and IT among others. Trai has fined telcos more than ₹140 crore over the years for failing to curb spam. The Telecom Disputes Settlement and Appellate Tribunal (TDSAT) has imposed an interim stay on Trai's order. The case is scheduled to be heard by TDSAT next month.

Indian digital forensics market to hit $1.39 bn by 2030: Deloitte-DSCI

Business Standard

05-06-2025

Business
Business Standard

Indian digital forensics market to hit $1.39 bn by 2030: Deloitte-DSCI

The Indian digital forensics market is projected to reach $1.39 billion in the next five years, growing at a compounded annual growth rate (CAGR) of 40 per cent, compared to the global market size of $14.5 billion over the same period. The market for digital forensics is recorded at $265.9 million as of financial year 2025 (FY25). In comparison, the global market is valued at $6.5 billion during the same period, according to a joint report by Deloitte and the Data Security Council of India (DSCI). Major drivers for the sector's growth in India include regulatory requirements guided by apex regulators such as the Reserve Bank of India (RBI), the Securities and Exchange Board of India (Sebi), and cybersecurity agency CERT-In. Compliance with key legislations such as the Digital Personal Data Protection (DPDP) Act — which requires strict privacy safeguards, data protection measures, and breach notification protocols — is expected to further drive adoption. Broadly, factors leading to growing adoption of digital forensics include cybercrime, advancements across segments such as artificial intelligence (AI) and machine learning (ML), regulatory compliance, and digital transformation across sectors such as banking, financial services and insurance (BFSI), healthcare, and government. The Indian market, however, continues to face challenges such as a shortage of skilled staff to handle digital forensics. High costs and limited understanding deter small and medium enterprises (SMEs) from adopting in-house solutions, the report added. 'The sector presents a significant opportunity for growth, driven by rising enterprise demand, regulatory scrutiny and technological advancement. The way forward lies in accelerating capacity building, fostering innovation in indigenous tools, and embedding forensic readiness into the core of digital transformation strategies across sectors,' said Nikhil Bedi, Leader, Risk, Regulatory & Forensic, Deloitte India. The report added that the Centre, in 2024, introduced a scheme to improve forensic capabilities with a financial outlay of ₹2,254 crore by 2029. It is aimed at modernising forensic labs, training staff, and integrating the stream into law enforcement practices. It noted that government agencies lack standardised methodologies, tools and procedures, affecting the reliability and admissibility of digital evidence in court, while recommending domestic standards customised to local requirements. 'Investing in updated forensic tools tailored to handle emerging technologies, such as cloud and mobile forensics, is crucial. This includes leveraging AI and ML to streamline data analysis, automate processes and improve the accuracy and speed of forensic investigations,' it recommended.

Draft data rules introduce potential for data localisation requirements: trade associations to IT ministry

Economic Times

30-05-2025

Business
Economic Times

Draft data rules introduce potential for data localisation requirements: trade associations to IT ministry

The draft Digital Personal Data Protection (DPDP) rules introduce the potential for new data localisation needs that are inconsistent with the DPDP Act's supportive approach for data flows, trade bodies told the IT ministry in a letter last week. The draft rules were published on January 3. The final rules are yet to be notified. The Information Technology Industry Council, one of the signatories to the letter, counts Big Tech companies like Amazon, Apple, Google, Meta, Microsoft, Nvidia, and OpenAI as its members.'We urge the government to narrow and align these rules to bring them into alignment with the original intent of the DPDP Act,' the letter's nine signatories said. The other signatories are US India Business Council, Software and Information Industry Association, ACT | The App Association, Asia Internet Coalition, Asia Video Industry Association, Coalition of Services Industries, Computer and Communications Industry Association, and K-Internet. The industry bodies were referring to Rules 12 and 14 of the draft DPDP rules. 'This could be achieved by setting out a clear process, including timelines and safeguards, as well as adequate consultations and timelines for implementing any potential localisation requirements, and determining when and how such data localisation determinations will be made,' the associations said in their letter to The Ministry of Electronics and Information Technology (MeitY), a copy of which was seen by ET. 'We would also urge the government to view any potential restrictions on data free flows from a future "bilateral digital trade "agreement perspective,' the signatories said. The associations also want that Rules 3-15, 21 and 22 shouldn't take effect until or after two years from the date of notification. Rule 22, as currently drafted, provides the potential for an excessively broad scope of government access to private sector data without making clear that this will follow a robust, proportionate, and transparent process with proper avenues of redress and review, they said. Giving further clarity on this process, including by referencing globally-recognised Trusted Government Access principles, would be an effective way to provide clarity and reassurance on this point, they added. The associations supported the Global Cross Border Privacy Rules (CBPR) forum and similar regimes that facilitate the free flow of data across borders, promote interoperability between privacy regimes, and encourage responsible data use and strong privacy protections, they said. Also, personal data breach reporting requires clear, risk-based reporting thresholds to ensure reporting timelines and processes do not end up compromising the efficiency of risk mitigation measures, the associations wrote in their letter dated May 21. They have also asked the MeitY to 'strongly consider' adding back language proposed in previous drafts of the DPDP Act to give critical exclusion for data pertaining to credit reporting to facilitate financial transparency and fraud prevention while supporting financial inclusion. Credit bureaus such as TransUnion CIBIL, Experian, Equifax, and CRIF High Mark are approved by the Reserve Bank of India for operating in the country.