The Aryavarth Express
Agency (New Delhi): The Digi Yatra Central Ecosystem (DYCE) is built on the fundamental tenets of privacy by design/default and there is no central storage of passenger’s Personally Identifiable Information (PII) data. The Digi Yatra processes are subjected to audits and certification by CERT-In empanelled agencies to ensure adherence to data privacy and security standards, said the govt.
Digi Yatra Central Ecosystem is managed by Digi Yatra Foundation, a Not-For-Profit company made under the Section 8 of the Companies Act, 2013 and hence does not come under the ambit of Right to Information (RTI) act.
Digi Yatra Guidelines have been issued by DGCA (Directorate General of Civil Aviation) through the Aeronautical Information Circular (AIC) No. 09/2022 dated 18.04.2022. These Digi Yatra guidelines provide for decentralised mobile wallet-based identity management platform. The personal information of the passenger is stored in the mobile-wallet of the traveller. The same are shared with the departure airport in the encrypted format and data is purged from the system after 24 hours of departure of flight. This addresses the data protection issues in implementation of Digi Yatra. Further, the Digi Yatra processes are subjected to audits and certification by CERT-In empanelled agencies to ensure adherence to data privacy and security standards.
This information was given by the Minister of State in the Ministry of Civil Aviation Gen. (Dr) V. K. Singh (Retd) in a written reply to a question in Rajya Sabha today.