---
layout: default
title: "India's Plan to Offer Citizens Digital Lockers Poses a Privacy Threat, Say Experts"
description: "A Scroll.in article examining privacy concerns raised by experts regarding India's digital locker initiative, which allows citizens to store important documents online using Aadhaar authentication."
categories: [Media mentions]
date: 2015-03-19
authors: ["Mridula Chari"]
source: "Scroll.in"
permalink: /media/digital-lockers-privacy-threat-scroll/
created: 2026-01-03
---

**India's Plan to Offer Citizens Digital Lockers Poses a Privacy Threat, Say Experts** is a *Scroll.in* article published on 19 March 2015. The piece examines the privacy and security implications of the government's digital locker service, which enables citizens to store scanned documents online. Technology policy experts questioned the scheme's data protection measures, particularly concerns around centralised storage and potential involvement of foreign cloud service providers.

## Contents

1. [Article Details](#article-details)  
2. [Full Text](#full-text)  
3. [Context and Background](#context-and-background)  
4. [External Link](#external-link)

## Article Details

<dl class="media-details">
  <dt>📰 Published in:</dt>
  <dd><em>Scroll.in</em></dd>

  <dt>📅 Date:</dt>
  <dd>19 March 2015</dd>

  <dt>👤 Author:</dt>
  <dd>Mridula Chari</dd>

  <dt>📄 Type:</dt>
  <dd>News Report</dd>

  <dt>📰 Website Link:</dt>
  <dd>
    <a class="btn" href="https://scroll.in/article/708746/indias-plan-to-offer-citizens-digital-lockers-poses-a-privacy-threat-say-experts">
      Read Online
    </a>
  </dd>
</dl>

## Full Text

<div class="highlighted-text" id="fulltext">

<p><em>They say the state should instead focus on the basics, such as improving the country's low computer ownership and internet penetration.</em></p>

<hr class="article-separator">

<p>The Indian government launched a test version of a service called the digital locker last month that allows citizens to store scanned versions of important documents online, something that experts say poses a serious threat to people's privacy.</p>

<p>Based on a similar project being tried out in Maharashtra, the service allows people with Aadhaar cards to store scanned copies of their passports, birth certificates, ration cards and other important documents on remote servers. This way, people can digitally back-up important documents and also send them over the internet to others, such as potential employers or banks, for availing themselves of other services.</p>

<p>The service, whose test version was launched on February 12, will be optional. But it could find takers from among the about 90% of India's households who do not own a laptop or computer and the 95% that do not have an internet connection, according to the 2011 census. Experts are concerned that sensitive data stored in a central place could be stolen or misused.</p>

<p><strong>Serious threat</strong></p>

<p>"Any large linked database with personal information is a serious threat to citizens' data," said G Nagarjuna, a researcher at the Homi Bhabha Centre for Science Education in Mumbai and a member of the Free Software Movement. "There exists no agency that could secure their data till date without any possibilities of data theft."</p>

<p>Digitisation is not inherently a problem, experts say. It is the kind of information stored that is. There are two kinds of information people need to be concerned about, said Sunil Abraham, executive director of the Bangalore-based Centre for Internet and Society, in an email to Scroll.in. Public domain information such as land records, PAN cards and ration cards should be available to the public anyway. However, private information such as biometrics and passports are of concern.</p>

<p>"Unless the cryptography and architecture is organised in such a manner that only the citizen will have access there can be very serious consequences for the individual's right to privacy," he said.</p>

<p>The scheme raises the same concerns about privacy that came up during the creation of Aadhaar cards, for which the government has collected biometric and identification data for 773 million citizens.</p>

<p><strong>Information is power</strong></p>

<p>Experts pointed to the dangers of the state having access to crucial data about citizens. The dangers are perhaps greater when the data passes into the hands of private corporations, they said.</p>

<p>The Indian government has not said who will run the central servers on which all the data is to be stored, but Maharashtra said in January that it would upload the data it was collecting to a private cloud service run by Microsoft.</p>

<p>"This is a terrible idea because it is centralising storage of personal information across silos controlled by different data controllers and also giving the citizen no control over who has access to his or her data," said Abraham.</p>

<p>"A blunder of the highest order is to pass this information to a cloud, and that too to a foreign company," said Nagarjuna. "India is a sovereign republic, and hence we should assert this in the country's digital assets as well. How secure can India be if our security is passed on to another agency that owes its allegiance to another country?"</p>

<p>Surykant Jadhav, joint secretary of the Directorate of Information Technology in Maharashtra, defended the scheme, comparing it to other optional services that the state provides such as online ticketing and filing of income tax returns. "The lockers are there only if people want to use it," he said.</p>

<p><strong>Cart before the horse</strong></p>

<p>But the government ought to be trying to improve the basics, such as increasing computer and internet penetration, before launching value-added digital services, said Nagarjuna.</p>

<p>"What is the basic social or economic problem that the government is trying to solve by creating the digital lockers?" "Just as each citizen learns how to protect their assets, the digital natives of a digital society will eventually learn how to protect their digital assets. Digital India cannot be created without providing digital literacy to all the citizens. Did we do that? Once we do that, citizens will learn what is good for them, particularly for their own assets over which the government has no ownership."</p>

</div>

<button class="copy-btn-full" data-copytarget="#fulltext">Copy Full Text</button>

{% include back-to-top.html %}

## Context and Background

This article was published during the beta testing phase of what would later be formally launched as DigiLocker on 1 July 2015 as part of the Digital India programme. The initiative emerged at a time when the government was rapidly expanding digital infrastructure and services, building upon the Aadhaar identity database that had enrolled over 773 million citizens by early 2015.

The Maharashtra state government's plan to use Microsoft Azure for storing citizen data sparked particular debate. At that time, Microsoft had not yet established local data centres in India—these would only become operational in September 2015. This meant sensitive personal documents would potentially be stored on servers outside the country, raising questions about data sovereignty and legal jurisdiction.

The concerns raised in this article reflected broader anxieties about the Aadhaar programme itself, which had faced sustained criticism from privacy advocates and civil society organisations. Critics argued that inadequate data protection legislation left citizens vulnerable, particularly when private corporations were involved in handling government data. India would not enact a data protection law until several years later.

The debate also highlighted fundamental questions about the sequencing of digital initiatives—whether governments should prioritise basic digital infrastructure and literacy before introducing sophisticated e-governance services that assumed widespread internet access and digital fluency.

## External Link

- <a href="https://scroll.in/article/708746/indias-plan-to-offer-citizens-digital-lockers-poses-a-privacy-threat-say-experts">Read on Scroll.in</a>

<style>
.media-details {
  background: #f9fbfe;
  border: 1px solid #d8e2f0;
  border-radius: 10px;
  padding: 1.2rem 1.4rem;
  max-width: 700px;
  margin: 1.2rem auto;
  font-size: 0.96rem;
  line-height: 1.5;
  color: #333;
  box-shadow: 0 2px 4px rgba(0,0,0,0.04);
}
.media-details dt {
  font-weight: 600;
  color: #1b2a49;
  margin-top: 0.7rem;
}
.media-details dd {
  margin: 0 0 0.3rem 0.3rem;
  color: #555;
}
.highlighted-text {
  background-color: #fffbea;
  border-left: 4px solid #f2ce61;
  padding: 1rem 1.2rem;
  border-radius: 8px;
  line-height: 1.65;
  color: #333;
  box-shadow: 0 1px 3px rgba(0,0,0,0.05);
  margin-bottom: 0.8rem;
}
.highlighted-text p {
  margin-bottom: 1rem;
}
.article-separator {
  border: none;
  border-top: 1px solid rgba(0,0,0,0.08);
  margin: 0.75rem 0 1rem 0;
}
.copy-btn-full {
  display: inline-block;
  background: #f1f1f1;
  border: 1px solid #ccc;
  font-size: 0.85rem;
  padding: 0.4rem 0.8rem;
  border-radius: 6px;
  cursor: pointer;
  transition: background 0.2s ease;
  margin-bottom: 1.5rem;
}
.copy-btn-full:hover {
  background: #e5e5e5;
}
</style>

<script>
document.addEventListener('DOMContentLoaded', () => {
  document.querySelectorAll('.copy-btn-full').forEach(btn => {
    btn.addEventListener('click', async () => {
      const target = document.querySelector(btn.getAttribute('data-copytarget'));
      if (!target) return;
      try {
        await navigator.clipboard.writeText(target.innerText.trim());
        const original = btn.textContent;
        btn.textContent = 'Copied!';
        setTimeout(() => (btn.textContent = original), 1500);
      } catch (e) {
        btn.textContent = 'Copy failed';
        setTimeout(() => (btn.textContent = 'Copy Full Text'), 1500);
      }
    });
  });
});
</script>