I wrote a short explainer on the technicalities referred to in the draft without touching upon regulations adding to the previous post on ofline use. I see 2 big areas of concern.
ANCS - The implementation details aren’t available, and implementing a number capture service, while remaining optimally ignorant about authentication context is a hard problem.
Deemed consent until explicitly revoked for any use is problematic. This is just legalizing what already on code.
Shall update with a response here soon, do share yours as well and we can send in good feedback to the regulations.
Thank you for flagging this Srikanth and the explainer provided. Many policy researchers will find it useful to premise their submissions to the rules.