The Indian Railways Catering and Tourism Corporation (IRCTC) has intentions to monetize its bank of passenger data for conducting business with public and private organizations, which raises privacy concerns regarding the commercial usage of passenger data on trains.
Let’s Dive Into the details of the Indian Railways Privacy Protection Roadmap:
The selected expert should create the monetization plan while keeping in mind the “current Personal Data Protection Bill, 2018,” according to the tender notice on the IRCTC website. India does not, however, currently have any data protection laws.
According to clarifications provided by the government, the consultant will give IRCTC advice on how to enhance its current operations in addition to developing plans to capitalize on opportunities that might arise in the future.
Over 10 crore users of the IRCTC, 7.5 crores of whom are active users. The proposal called for analyzing information such as name, age, mobile number, gender, address, e-mail address, class of travel, payment method, log in or password, etc., collected by various public-facing applications.
According to the report, the consultant would be tasked with investigating data from the Indian Railways’ passenger, freight, and parcel businesses from systems including PRS, NGeT, NTES, UTS, Rail Madad, FOIS, TMS, and e-CRM, as well as vendor-related data from systems like IREPS, VMS, and IPAS.
The focus is likely to be on behavioral information such as travel mode, payment method, number of destinations, booking methods, travel class, frequency, trip time, and booking time.
IRCTC doesn’t store any monetary information of its customers at its finish nor sells its data and neither has any intention to try to do so.