Author: Lemukani Pearl Nkuna

ABSTRACT 

This paper examines the constitutional tension between the right to privacy and national security in India. The relationship between citizens and the State has undergone significant transformation due to rapid advancements in digital communication and surveillance technologies. While technological advancement has improved national security and governance, it has also raised the possibility of widespread surveillance and privacy abuses. Indian constitutional jurisprudence underwent a sea change when the Supreme Court acknowledged privacy as a basic right in Justice K.S. Puttaswamy (Retd.) v. Union of India.  

The Court did, however, recognize that privacy rights are not absolute and may be curtailed for justifiable State reasons, such as national security. This article assesses whether current surveillance laws sufficiently safeguard civil liberties, critically examines the constitutional framework controlling privacy and surveillance in India, and explores significant court rulings. The paper argues that although national security constitutes a legitimate constitutional objective, inadequate safeguards and weak oversight mechanisms may undermine democratic governance and the rule of law. It advocates for a proportionality-based constitutional approach that balances privacy and security. To guarantee a fair constitutional approach, the article’s conclusion emphasizes the necessity of judicial scrutiny, openness, and more robust data protection. 

Keywords: Right to privacy, National Security, Article 21, Proportionality, Surveillance Law, Constitutional Law, Data Protection, Fundamental Rights. 

1.INTRODUCTION

a)Conceptual Foundations of Digital Privacy and National Security 

¹ Author is an LLB graduate from the University of Limpopo. 

In India, digital privacy refers to an individual’s right to regulate the collection, use, storage, and dissemination of personal data. This extends standard privacy principles to encompass informational self-determination and autonomy in digital situations. Indian researchers contend that digital technologies, like artificial intelligence, biometrics, and the Internet of Things, pose new concerns for privacy protection. This development has made it more difficult to keep sensitive information secure. 

National security encompasses more than just territorial security, including cybersecurity, digital infrastructure protection, and information control. The State frequently invokes national security as a justification for surveillance measures, including communication interceptions and online monitoring. Although necessary in certain situations, such steps may lead to excessive State intervention.  

The conflict between digital privacy and national security reflects a structural constitutional tension inherent in modern democratic governance. Scholars in India argue that the lack of clear legal boundaries and accountability systems typically favours the State. This disparity raises concerns about the limitations of State power in a democracy.  

b) Evolution of Privacy as a Fundamental Right in India 

A convoluted legal process led to India’s recognition of privacy as a fundamental right. Early constitutional jurisprudence such as M.P. Sharma v. Satish Chandra (1954), did not expressly recognise privacy as a fundamental right. In Kharak Singh v. State of Uttar Pradesh (1964), the Supreme Court offered conflicting interpretations. The majority ruling rejected privacy’s constitutional protection. Nonetheless, privacy was acknowledged as crucial to individual liberty in Justice Subba Rao’s minority decision. Through progressive interpretation, later rulings progressively expanded this recognition.  

The momentous ruling in “Justice K.S. Puttaswamy v. Union of India (2017)” completely changed the privacy landscape in India. According to a nine-judge panel, privacy is a basic right under Article 21. Privacy is “the constitutional core of human dignity”, according to the Court’s ruling, which also created a three-part criterion for privacy limits. Legality, necessity 

and proportionality must all be met by any privacy restriction. This constitutional recognition has significant implications on privacy protection and national security. It makes privacy a pillar of the Indian constitution. 

2. CONSTITUTIONAL FOUNDATIONS OF PRIVACY IN INDIA a) Privacy as an enumerated Right in the Indian Constitution 

The Indian Constitution does not expressly recognize privacy as a fundamental right. This lack posed legal issues in recognising privacy protections. The constitution’s fundamental rights chapter does not address privacy. Judicial interpretations have increasingly filled a considerable void. Courts have interpreted constitutional provisions to include privacy. This interpretative approach aligns with the doctrine of a living Constitution, which permits constitutional provisions to evolve alongside societal and technological developments. Privacy rights stem principally from “Articles 19 and 21 of the Constitution”. These articles safeguard freedom of expression as personal liberty. 

Article 21 stipulates that “No person shall be deprived of his life or personal liberty except according to procedure established by law”. This clause serves as the primary constitutional basis for privacy rights. Indian courts have broadened the definition of “life and personal liberty”. These concepts have been understood to cover unenumerated rights, including privacy in specific situations, especially when national security is at stake.  

“Article 19(a) guarantees to all citizens the rights to freedom of speech and expression”. The provision has been considered to cover informational privacy rights. Privacy is crucial for effective communication and expression. The Supreme Court acknowledged this relationship in numerous major cases. In “Secretary, Ministry of Information and Broadcasting v. Cricket Association of Bengal,” the Court emphasized information autonomy. The ruling stated that “freedom of speech encompasses the right to share and receive information. This view is the foundation for information privacy protections.”  

b) K.S. Puttaswamy v. Union of India: Analysis and Implications 

The landmark case of K.S. Puttaswamy v. Union of India (2017) altered India’s privacy landscape. “A nine-judge bench unanimously held that privacy is a fundamental right under the Constitution”. Chief J.S Khehar said that “the right to privacy is protected as an intrinsic part of the right to life and personal liberty under Article 21”. This decision clarified the constitutional status of privacy after decades of court debate. The Court overturned previous decisions in M.P Sharma and Kharak Singh instances. 

3.CURRENT LEGISLATIVE FRAMEWORK FOR DATA PROTECTION

a)Information Technology Act, 2000 and Amendments of 2008 

The Information Technology Act, 2000 constitutes one of the primary statutory frameworks governing data protection and cyber regulation in India. The intended purpose of this law was to recognize electronic transactions and deter cybercrime. The original enactment did not prioritize data protection. There were few provisions in the Act that addressed confidentiality and data security. As the use of digital technology increased, these restrictions became more noticeable. The 2008 modifications made substantial changes to address these new issues. 

b) Indian Telegraph Act, No. 13 of 1885: Colonial Foundations in the Digital Age 

The Indian Telegraph Act, No. 13 of 1885, despite its colonial origins and drafted before the digital era, nonetheless plays a crucial role in creating permission for surveillance in India. Section 5(2) of the Act authorises the central and State governments to intercept communications during emergencies or to improve public safety if it affects sovereignty, integrity, national or public safety.¹¹ 

c) Digital Personal Data Protection Act, 2023 

India’s attempt to provide a thorough data protection framework is represented by the Digital Personal Data Protection Act, 2023. The Act acknowledges the value of information privacy and controls data processing. But the Act also gives the government wide exclusions for reasons including public order and national security which raises concerns regarding executive overreach.  

4. JUDICIAL APPROACH TO RIGHT TO PRIVACY AND NATIONAL 

SECURITY

a)Analysis of Significant Case Law 

India’s judicial approach to data privacy and consumer protection has largely been shaped by landmark decisions. These verdicts have increased security for personal information in business settings. The case of Karmanya Singh Sareen v. Union of India focused on WhatsApp’s privacy policy revisions following Facebook’s violated privacy rights. The court recognised that WhatsApp users cannot have a legitimate expectation of privacy for information they voluntarily give. However, it drastically limited data-sharing procedures. The court ruled that WhatsApp cannot disclose user data obtained before September 2016 with Facebook. 

The ongoing case Foundation for Media Professionals v Union of India demonstrates how Indian courts apply the Puttaswamy proportionality test to modern surveillance challenges. The petitioners questioned the practice of police and investigating agencies seizing and cloning entire digital devices under wide powers, frequently alleging “investigation” and “national security”. They claimed that copying all data from phones and laptops violates the right to privacy guaranteed by Article 21, as it exposes personal correspondence, journalistic sources, and irrelevant personal information unrelated to the accused offence. The Supreme Court is considering whether such blanket access passes the three-part Puttaswamy test. 

District Registrar and Collector v. Canara Bank is a key judgement on financial data privacy. The Supreme Court debated whether the government might scrutinise financial paperwork under Stamp Act requirements. The Court said that compelled scrutiny of bank information violates constitutional privacy rights. According to Justice Lahoti, a citizen’s right to privacy includes where they retain their documents with the expectation of privacy¹³. This idea ensures high protection of customer financial information. It limited government access to personal financial data without enough legal safeguards. 

Additionally, the Supreme Court reaffirmed that national security cannot be invoked as a general defence to evade judicial scrutiny in the Pegasus spyware proceedings (Manohar Lal 

Sharma v. Union of India) and ordered an independent technical evaluation of claims of surveillance. 

Together, these rulings demonstrate that, despite its legitimacy, national security is subject to constitutional restrictions. 

5. Surveillance Laws and Constitutional Concerns 

India’s surveillance regulations primarily stem from the Indian Telegraph Act, No. 13 of 1885 and the Information Technology Act of 2000. These laws grant the government broad authority to intercept, monitor, and decrypt communications for national security purposes. However, Indian scholars argue that these laws are overly broad and lack adequate protections. 

6. CONCLUSION 

The Right to Privacy and National Security have a constitutional connection that must be seen as one of balance rather than confrontation. National security is crucial for maintaining public order and sovereignty, but it cannot excuse unjustified or disproportionate violations of fundamental rights. The Indian Supreme Court has repeatedly upheld that only stringent constitutional protections- specifically, the proportionality doctrine- allow for privacy restrictions. Although legislative changes like the Digital Personal Data Protection Act of 2023 are a step forward, their success hinges on the development of strong oversight and transparency.  

In the end, constitutional democracy is characterized by its dedication to preserving liberty, autonomy, and dignity rather than just its ability to guarantee security. Harmonising private rights with national security imperatives in India requires a balanced strategy based on judicial monitoring, parliamentary responsibility and constitutional morality. 

BIBLIOGRAPHY 

Cases 

1. Justice K.S. Puttaswamy v. Union of India, (2017) 10 SCC 1. 
2. Karmanya Singh Sareen v. Union of India, 2016 SCC Online Del 5334, para 23. 
3. District Registrar and Collector v. Canara Bank, (2005) 1 SCC 496, para 53 
4. M.P. Sharma v. Satish Chandra, AIR 1954 SC 300 
5. Kharak Singh v. State of Uttar Pradesh, AIR 1963 SC 1295. 

Statutes and Legislation 

1. Digital Personal Data Protection Act, 2023, No. 22, Acts of Parliament, 2023 (India). 
2. The Constitution of India, 1950. 
3. Indian Telegraph Act, No. 13 of 1885 (India) 

Books 

1. HM SEERVAI, THE CONSTITUTIONAL LAW IN INDIA: A CRITICAL 

COMMENTARY 43 (Central Pook publications, New Delhi, 2003) 

2. Diksha Taneja & Ganesh Dubey, Digital Privacy: A Legal and Social Perspective in India, 11 JMSG E-J. 1(2025). 

Journal Articles 

1. Sarvajith Kumar J N & Manohar N, Right to Privacy v National Security, IJFMR (2025)