The intersection of privacy rights and reasonable restrictions has been a recurring theme in Indian jurisprudence. The High Court, in numerous instances, has reiterated that while privacy is undoubtedly a fundamental right, it is not absolute and is subject to certain limitations. These limitations are often imposed in the interest of public order, morality, national security, and the rights of others.
The Supreme Court's landmark judgment in Justice K.S. Puttaswamy v. Union of India (2017) affirmed that the right to privacy is protected as an intrinsic part of the right to life and personal liberty under Article 21 of the Constitution. This ruling was a watershed moment, clarifying ambiguities surrounding the subject and paving the way for individuals to directly approach the courts to protect their information from state intrusions, particularly in the digital age. However, the apex court also acknowledged that this right is not unfettered and can be reasonably restricted.
One of the key aspects of this balancing act lies in the proportionality of the restrictions. Any encroachment on privacy must be justified by a legitimate goal, and the means employed to achieve that goal must be proportionate to the need. This principle ensures that the state does not arbitrarily infringe upon individual liberties in the name of security or public interest.
Several recent cases highlight this ongoing negotiation between privacy and its limitations. For instance, the Delhi High Court has emphasized the "right to be forgotten," directing online portals and search engines to mask the names of individuals acquitted in criminal cases, acknowledging that the permanence of information on the internet can disproportionately affect their lives even after exoneration. Similarly, the Madras High Court has upheld spousal privacy as a fundamental right, deeming evidence obtained by violating this right inadmissible in court, underscoring the importance of trust and autonomy within marital relationships. (November 1, 2024)
However, this is not always the case, Madhya Pradesh HC has upheld the admissibility of WhatsApp chats, even if obtained without consent, stating that the right to privacy is a fundamental right, but it is not absolute and can be subject to reasonable restrictions - particularly if it clashes with the right to a fair trial, which too is a constitutional guarantee. (June 20, 2025)
The Digital Personal Data Protection Act of 2023 represents a significant step towards establishing a comprehensive legal framework for data protection in India. Drawing inspiration from the European Union's GDPR, the Act seeks to prevent the misuse of personal data by online businesses and mandates transparency and accountability in data collection, processing, and storage. However, it also includes certain exemptions for government entities, raising concerns about potential surveillance and the need for robust oversight mechanisms.
The debate around the Aadhaar scheme exemplifies the complexities involved. While the government touts Aadhaar as a tool for efficient service delivery and fraud prevention, critics argue that the mandatory collection of biometric data poses a serious threat to privacy, particularly in the absence of strong data protection laws. The Supreme Court has addressed these concerns by upholding the validity of the Aadhaar Act while also emphasizing the need for safeguards to prevent data breaches and misuse.
Ultimately, the judiciary plays a crucial role in striking a balance between individual privacy and legitimate state interests. By carefully scrutinizing restrictions on privacy and ensuring that they are reasonable, necessary, and proportionate, the courts can safeguard fundamental rights while also allowing the state to fulfill its essential functions. As technology continues to evolve and new challenges to privacy emerge, this balancing act will remain a critical task for the Indian legal system.
