ARTIFICIAL INTELLIGENCE AND LAW IN INDIA: NEED FOR REGULATION IN THE DIGITAL ERA

Abstract

Artificial Intelligence (AI) is increasingly becoming an integral part of modern governance, industry, and daily life. Its ability to process vast amounts of data and automate decision-making has improved efficiency but has also introduced complex legal challenges. Issues such as data protection, algorithmic discrimination, and lack of accountability highlight the urgent need for regulation. In India, despite rapid technological adoption, the legal framework governing AI remains fragmented. This article examines the legal implications of AI and emphasizes the necessity for a comprehensive regulatory structure to ensure its ethical and lawful use.

Keywords: Artificial Intelligence, Data Privacy, Algorithmic Bias, Accountability, Fundamental Rights, AI Regulation, Digital Governance, India

Introduction

The rapid development of Artificial Intelligence has significantly altered the functioning of contemporary society. From healthcare to finance, AI systems are now performing tasks that were traditionally dependent on human intelligence. While this technological advancement offers numerous benefits, it also raises critical legal concerns. The shift from human decision-making to algorithm-based processes creates uncertainty regarding responsibility and legal accountability.

In India, the expansion of digital infrastructure and government initiatives such as Digital India have accelerated the adoption of AI technologies. However, the absence of specific legislation dealing with AI poses challenges in addressing risks associated with its misuse. It is therefore essential to examine how the law can adapt to regulate this evolving technology.

Concept and Nature of Artificial Intelligence

AI encompasses a broad range of technologies, including machine learning, natural language processing, and robotics. These systems rely on large volumes of data to learn, adapt, and improve over time. However, their complex and often opaque functioning — where even developers may not fully understand how decisions are reached — creates significant legal and ethical concerns. It is precisely this lack of transparency that makes AI uniquely challenging to regulate under existing legal frameworks.

Growth of Artificial Intelligence in India

India is actively promoting AI-driven development through initiatives such as Digital India and the National Strategy on Artificial Intelligence published by NITI Aayog.¹ AI is increasingly deployed across critical sectors, including fraud detection in banking, diagnostics in healthcare, and predictive analytics in law enforcement. This rapid and wide-ranging adoption makes the need for a corresponding legal framework all the more pressing.

Legal Issues Arising from Artificial Intelligence

1. Data Privacy Concerns

AI systems depend on vast amounts of personal data, including sensitive information such as financial records, health data, and online behaviour. This raises serious concerns regarding informed consent, unauthorized surveillance, and the potential misuse of data. The right to privacy, recognised as a fundamental right by the Supreme Court in Justice K.S. Puttaswamy v. Union of India,² is of direct relevance in regulating AI systems that collect and process personal information.

Further, in Anuradha Bhasin v. Union of India,³ the Supreme Court emphasised that access to the internet is closely linked to the exercise of fundamental rights, indirectly underscoring the importance of protecting digital privacy. Accordingly, any AI system that collects or processes personal data must comply with constitutional safeguards and ensure the informed consent of individuals.

2. Algorithmic Bias and Discrimination

AI systems may produce discriminatory outcomes when trained on biased datasets. This can lead to unequal treatment in areas such as hiring, lending, and law enforcement, thereby violating Article 14 of the Constitution of India.

Although India lacks direct case law on AI-specific bias, applicable principles may be drawn from equality jurisprudence. In E.P. Royappa v. State of Tamil Nadu,⁴ the Supreme Court held that arbitrariness is antithetical to equality under Article 14. Algorithmic bias — which produces outcomes that cannot be rationally justified — can be characterised as a form of arbitrariness, rendering AI systems that perpetuate such bias constitutionally suspect.

3. Lack of Accountability

One of the most complex legal challenges posed by AI is the difficulty of determining liability when an AI system causes harm. Unlike traditional systems operated directly by humans, AI operates with a degree of autonomy that makes it difficult to assign responsibility to any single developer, operator, or user.

In Shreya Singhal v. Union of India,⁵ the Supreme Court stressed the importance of clear legal standards to prevent the arbitrary application of law. By analogy, the absence of clear liability rules in the context of AI creates legal uncertainty and risks injustice for those harmed by algorithmic decisions. There is therefore a compelling need for a legal framework that clearly defines accountability among developers, operators, and users of AI systems.

4. Transparency and Explainability

AI systems frequently operate as “black boxes,” whereby the internal decision-making processes are opaque even to those who deploy them. This lack of explainability is particularly problematic when AI is used in judicial or administrative settings, where affected individuals have a legitimate interest in understanding the basis for decisions that affect them.

The Supreme Court in Maneka Gandhi v. Union of India⁶ held that any procedure affecting life or liberty must be just, fair, and reasonable. Applying this principle to AI-driven decision-making, it follows that algorithmic decisions must be transparent and capable of explanation in order to meet constitutional standards of procedural fairness.

Constitutional Implications of Artificial Intelligence

The deployment of AI has direct implications for the fundamental rights guaranteed under the Constitution of India:

• Article 14 (Equality before Law): Algorithmic bias risks discriminatory outcomes that violate the right to equality and the prohibition against arbitrariness.⁷
• Article 19 (Freedom of Speech and Expression): AI-driven content moderation may result in the unlawful restriction of free expression online.⁸
• Article 21 (Right to Life and Personal Liberty): The misuse of personal data processed by AI systems threatens both privacy and human dignity.⁹

The Supreme Court’s landmark expansion of Article 21 in Maneka Gandhi v. Union of India to incorporate the requirements of fairness and reasonableness is of particular significance. This principle must extend to AI-based decision-making systems to ensure that automated processes do not arbitrarily curtail the rights of individuals.

Existing Legal Framework in India

1. Information Technology Act, 2000

The Information Technology Act, 2000¹⁰ provides a foundational framework for regulating cyber activities in India. However, its provisions were designed for an earlier technological era and are insufficient to address the specific legal challenges posed by AI systems, including algorithmic accountability and automated decision-making.

2. Digital Personal Data Protection Act, 2023: A Step Forward

The Digital Personal Data Protection Act, 2023¹¹ represents a meaningful advance in India’s data governance landscape. It establishes a framework for consent-based data processing and introduces penalties for violations. However, it does not directly regulate AI systems or govern their decision-making processes, leaving a significant gap in the legal framework.

Comparative Perspective

The European Union has adopted a proactive and risk-based approach through its Artificial Intelligence Act,¹² which classifies AI systems according to the level of risk they pose and imposes strict obligations on those considered high-risk. Operating alongside the General Data Protection Regulation (GDPR), the EU framework ensures strong data protection and meaningful accountability for AI developers and deployers.

The United States, by contrast, follows a flexible and sector-specific approach, relying on non-binding instruments such as the NIST AI Risk Management Framework.¹³ While this model encourages innovation, it lacks regulatory uniformity and leaves significant gaps in consumer protection.

India, although progressing with the Digital Personal Data Protection Act, 2023, still lacks a comprehensive AI-specific regulatory framework. By comparison with global standards, India needs stronger enforcement mechanisms, clearer liability rules, and more robust safeguards against the misuse of AI technologies.

Critical Analysis

AI presents a dual reality: it is simultaneously an opportunity and a challenge. While it promotes efficiency, innovation, and economic growth, it also creates risks of bias, privacy violations, and a lack of accountability. The constitutional framework in India provides a strong foundation for regulating AI through existing rights jurisprudence. However, the absence of specific legislation creates gaps in enforcement that cannot be bridged by constitutional principles alone.

The central challenge lies in achieving the appropriate balance between two competing imperatives:

1. Fostering technological advancement and innovation
2. Protecting fundamental rights and ensuring accountability

An overly restrictive regulatory approach risks stifling innovation and hindering India’s technological development. Conversely, a weak or fragmented framework creates conditions for misuse, discrimination, and harm. India must therefore adopt a balanced, rights-based regulatory model that promotes innovation while firmly protecting individual rights.

Recommendations and Reforms

In light of the foregoing analysis, the following reforms are recommended:

1. Enact comprehensive AI legislation: India requires a dedicated AI Act that establishes a risk-based classification system, sets standards for high-risk applications, and creates clear legal obligations for developers, operators, and users.
2. Introduce algorithmic accountability standards: Mandatory auditing and impact assessment requirements should be imposed on AI systems used in critical sectors such as healthcare, criminal justice, and financial services.
3. Ensure transparency and explainability: Regulatory standards should require that AI systems be capable of providing intelligible explanations for their decisions, particularly where those decisions affect individuals’ rights or interests.
4. Strengthen enforcement of the Digital Personal Data Protection Act, 2023: The Act’s provisions should be actively enforced, and its scope should be extended to address AI-specific data processing concerns.
5. Establish an independent regulatory authority: A dedicated AI regulatory body should be created with the mandate, expertise, and independence to oversee AI deployment, investigate complaints, and issue binding guidelines.
6. Promote ethical AI development guidelines: The government and industry should collaborate to develop and adopt a national code of ethics for AI, grounded in human rights principles and aligned with international best practices.

Conclusion

Artificial Intelligence represents a powerful tool capable of transforming society, but its unregulated use poses significant legal and ethical risks. In India, the rapid adoption of AI without a corresponding legal framework creates uncertainty and potential threats to fundamental rights. It is therefore imperative to develop a comprehensive and balanced regulatory system that ensures accountability, transparency, and fairness. Such a framework will not only protect individuals from harm but also promote sustainable technological growth in the digital era.

As Artificial Intelligence continues to shape India’s future, the nation must ensure that its regulation evolves in a manner that safeguards fundamental rights while fostering innovation and technological progress.

Reference(S):

¹ NITI Aayog, National Strategy for Artificial Intelligence (2018).

² Justice K.S. Puttaswamy v. Union of India, (2017) 10 SCC 1.

³ Anuradha Bhasin v. Union of India, (2020) 3 SCC 637.

⁴ E.P. Royappa v. State of Tamil Nadu, AIR 1974 SC 555.

⁵ Shreya Singhal v. Union of India, (2015) 5 SCC 1.

⁶ Maneka Gandhi v. Union of India, AIR 1978 SC 597.

⁷ Constitution of India 1950, art 14.

⁸ Constitution of India 1950, art 19.

⁹ Constitution of India 1950, art 21.

¹⁰ Information Technology Act, 2000 (Act 21 of 2000).

¹¹ Digital Personal Data Protection Act, 2023 (Act 22 of 2023).

¹² European Commission, Proposal for a Regulation of the European Parliament and of the Council Laying Down Harmonised Rules on Artificial Intelligence (Artificial Intelligence Act) (2021); formally adopted as Regulation (EU) 2024/1689.

¹³ NIST, AI Risk Management Framework (2023).