The Corporate & Commercial Law Society Blog, HNLU

Tag: digital-marketing

  • Contesting The ‘Big Tech’ Tag: India’s Digital Competition Bill At A Turning Point

    Contesting The ‘Big Tech’ Tag: India’s Digital Competition Bill At A Turning Point

    BY UJJWAL GUPTA AND BHAVISHYA GOSWAMI, SECOND- YEAR STUDENTS AT RMLNLU, LUCKNOW

    INTRODUCTION

    With India’s digital economy being nearly five times more productive than the rest of the economy, technological​‍​‌‍​‍‌​‍​‌‍​‍‌ companies have become central economic actors of a rapidly digitalising India, which prompted the need for a digital competition law to prevent the build-up of market power before it materialises. The Digital Competition Bill, 2024 (‘DCB’), aims at introducing ex-ante oversight to ensure competition in digital markets, thus complementing the already existing ex-post regime under the Competition Act, 2002. The DCB envisages a regime to identify Systemically Significant Digital Enterprises (‘SSDE’) and to impose conduct obligations on them.

    However, the draft has sparked discussion about whether its design manages to achieve the proper balance between restraining potential gatekeepers and protecting the growth of India’s tech ecosystem. While industry players and policy-makers generally agree on the necessity to control highly concentrated digital power, they are still worried that this tag may negatively affect rapidly growing Indian companies. The emerging proposal to allow companies to contest their SSDE designation reflects this balance-seeking approach. It indicates that the balance between protecting competition and giving the regulated entities fair treatment is not lost, i.e. the control does not hamper the innovation, investment, and the rise of domestic digital ​‍​‌‍​‍‌​‍​‌‍​companies.

    The SSDE DESIGNATION DEBATE

    One​‍​‌‍​‍‌​‍​‌‍​‍‌ of the key ideas of the DCB is SSDEs, which are entities that, due to their scale, reach, or market interlinkages, require ex-ante regulatory oversight. Under section 3 of the draft Bill, a company may be designated as an SSDE if it meets certain financial and user-based criteria. For example, a turnover in India of ₹4000 crore, global market capitalisation of USD 75 billion, or at least one crore end users. Besides, the Competition Commission of India (‘CCI’) can also identify an enterprise as an SSDE, even if it does not meet these quantitative criteria, by using qualitative factors like network effects, market dependence, or data-driven advantages. This allows the CCI to take preventive measures by identifying “gatekeepers” before their dominance becomes monopoly power.

    However, the Parliamentary Standing Committee and industry associations have pointed out that India’s comparatively low user threshold (one crore end users) might inadvertently prematurely rope in rapidly growing domestic firms, like Zomato or Paytm, that are still in the process of consolidating their market positions. By equating India’s digital scale with that of smaller Western markets, the Bill could act as a silent killer of innovation, deterring investment and freezing the entrepreneurial spirit. The concern is that the Bill’s broad definition of “systemic significance” could lead to a growth penalty and disincentivize the very growth India seeks to encourage under its “Digital India” and “Startup India” programs.

    Globally, the DCB draws clear inspiration from the European Union’s Digital Markets Act, 2022 (‘DMA’) and the UK’s Digital Markets, Competition and Consumers Act, 2024 (‘DMCC’). Each of their aims is to control the gatekeeping power of big tech companies. However, the implementation of the measures varies. The DMA is limited to ten defined “core platform services”, and it has already identified seven gatekeepers: Alphabet, Amazon, Apple, Booking, Byte Dance, Meta, and Microsoft. Moreover, it permits rebuttals under exceptional circumstances, a measure that is not in the current draft DCB. The DMCC creates the concept of “strategic market status” for dominant firms and thus puts more focus on tailor-made conduct rules. As per Schedule I, the draft DCB identifies nine “Core Digital Services”, similar to the DMA, excluding “virtual assistants”, and introduces “Associate Digital Enterprises”, defined under section 2(2), an Indian innovation to ensure group-level accountability.

    III. The Case for a Rebuttal Mechanism

    As established earlier, a ‍​‌‍​‍‌major concern of technology firms about the DCB is the lack of a mechanism to challenge a designation as an SSDE. These firms see such a designation as bringing problems of high compliance costs and of reputational risk to them, thus potentially labelling them as monopolistic even before any wrongdoing is established.

    The Twenty-Fifth Report of the Standing Committee on Finance recognised this problem. It stated that the current proposal has no provision for rebutting the presumption of designation based on quantitative thresholds, i.e., the Committee suggested referring to Article 3(5) of the DMA by implementing a “rebuttal mechanism in exceptional cases”. This would allow companies that meet or exceed quantitative criteria to demonstrate that they do not possess the qualitative features of gatekeepers, such as entrenched dominance or cross-market leveraging.

    Article 3(5) of the DMA is a good example in this case. Under it, companies can show “sufficiently substantiated arguments” which “manifestly call into question” their presumed gatekeeper status. In ByteDance v. Commission, the General Court of the European Union set a high standard for the issue and demanded that the companies bring overwhelming evidence and not mere technical objections. Firms like Apple, Meta, and Byte Dance have used this provision as a ground to challenge their identification; however, the evidentiary burden is still significant, and market investigations go on despite the fact that compliance with obligations is expected within six months after designation. Yet, the EU’s model illustrates that a rebuttal does not weaken enforcement; rather, it enhances it by allowing for flexibility in rapidly changing markets without compromising the regulator’s intention.

    The implementation of a similar mechanism in India would be beneficial in several ways. It would enhance the predictability of regulation and discouraging the over-designation of large but competitive firms, and also send a signal of institutional maturity consistent with international standards. In this context, the Centre is reportedly considering the introduction of an appeal mechanism that would allow firms to contest their designation after a market study on the digital sector is completed. However, the government still needs to deal with the possible disadvantages, such as the delay of enforcement against dominant players, the procedural burden on the CCI and the risk of strategic litigation by well-funded ​‍​‌‍​‍‌​‍​‌‍​‍‌corporations.

    IV. Dynamic vs. Fixed Metrics: Rethinking ‘Big Tech’

    The biggest challenge in DCB lies in the criteria for identifying SSDE as choosing between fixed quantitative metrics and dynamic qualitative assessments will shape administrative efficiency and long-term success. DCB follows primarily fixed metrics based on the DMA , having fixed quantitative criteria such as valuation or turnover for SSDE designation.

    The biggest advantage of fixed metrics is its speed and legal certainty. It becomes very simple vis-à-vis the administrative screening process when one has clear numerical boundaries, which then allows CCI to quickly identify the potential firms that pose competitive risks. However, this approach has attracted a lot of criticism. Industry stakeholders opine that the thresholds in DCB are “too low” and oversimplistic in the wage of a unique economic context and population scale of India.

    Another limitation is the risk of arbitrariness; if the benchmark were solely based on numerical terms, it could disconnect from the regulatory framework in finding a genuine entrenched competitive harm. For instance, in a market as large as India, having a high user database may only reflect the successful scaling and effective service delivery rather than having the real ability to act as an unchallengeable bottleneck. This challenge, where restriction is just imposed because a firm is successful irrespective of conserving if that firm has demonstrated any specific harmful market power, has led to a widespread demand that SSDEs forms should be allowed to contest this designation, and this tag should be revoked if they prove not to be harmful in the competitive or entrenched market power.

    On the other hand, the dynamic criteria are recognised in the DMCC, where the firm must possess ‘substantial and entrenched market power’. Through this, the UK regime can put conduct requirements based on qualitative and contextual market analysis, rather than quantitative analysis. However, its effective application requires resources vis-à-vis institutional capacity and legal justification while imposing terms on powerful firms.

    The dynamic criteria have been recognised by the CCI itself and provided a roadmap, which highlights the challenges arising out of the structural control that the big players have across the entire AI value chain and AI ecosystems, especially the control over data, computing resources, and models. The definition of the “significant presence” shall expand beyond turnover and should incorporate the firm’s control over the proprietary and high-quality resources, such as high-end infrastructure.

    V. The Road Ahead: Regulation without Stifling Growth

    The DCB will have a significant responsibility to manage the compliance needs of such a large country in its evolving shape. For that, the government is considering the establishment of a dedicated Digital Markets Unit within the CCI. It will be responsible for communicating with industry, academia, regulators, government, and other stakeholders, and facilitating cross-divisional discussions. It will avoid any structural damage caused by delays in the above-mentioned things.

    Yet another challenge is the very limited capacity of Indian regulators compared to other jurisdictions, which leads to the execution of prescriptive and technically complex regulations being extremely challenging. This deficiency in terms of specialised economists, data scientists, and technology lawyers would be the deciding factor in this fast-changing world, and India needs to cope with this as soon as possible.

    India’s number one priority is job creation through rapid growth, so that we can achieve sufficient wealth for all age groups. In the present scenario, policy experts have criticized the DCB, saying that it is “anti-bigness and anti-successful firms” that discourage Indian firms from expanding globally. Therefore, the DCB should maintain a balance that gives a fillip to competitiveness in the market while upholding the digital scale and innovation of one’s country.

    The DCB overlaps with the recently implemented amendments to the Competition Act, 2002. The Competition (Amendment) Act, 2023, has introduced the Deal Value Threshold, which makes it compulsory for any merger and acquisition that exceeds INR 20 billion to be notified prior. The problem would be the friction between the conduct control that the DCB would govern through its conduct rules and prohibitions, and structural control, because the mergers and acquisitions are subject to DVT clearance under the Competition (Amendment) Act.

    This dual scrutiny increases the legal complexity and transactional costs. Thus, if the proposed Digital Markets Unit under DCB lacks clear guidelines as to harmonise the existing inconsistencies between the conduct requirements and merger clearance conditions. This would lead to nothing but slowing down essential acquisitions imperative for scaling of the firm, and would contradict the overall aim of promoting efficient market dynamics.

  • Digital Competition Bill: Complementing or Competing with the Competition Act?

    Digital Competition Bill: Complementing or Competing with the Competition Act?

    BY Winnie Bhat, SECOND- YEAR STUDENT AT NALSAR, HYDERABAD
    Introduction

    Data is the oil that fuels the engine of the digital world. The economic value and competitive significance of data accumulation for companies in the digital age cannot be overstated. It is in recognition of this synergy between competition and data privacy laws, that the Competition Commission of India (‘CCI’) has imposed a fine of Rs 213 crore on Meta, the parent company of WhatsApp, for abusing its dominant market position under Section 4 of the Competition Act, 2002 (‘CA’).

    As digital markets evolve, so too must the legal frameworks that regulate them. This article considers whether the proposed Digital Competition Bill, 2024 (‘DCB’) enhances the current competition regime or risks undermining it through regulatory overlap. In doing so, it assesses how traditional competition tools have been stretched to meet new challenges and whether a shift toward an ex-ante model is necessary and prudent.

    Reliance on Competition Act, 2002

    In the absence of a dedicated digital competition framework, Indian regulators have increasingly relied on the CA to address issues of market concentration, data-driven dominance, and unfair terms imposed by Big Tech firms. One of the clearest examples of this reliance is the CCI’s scrutiny of WhatsApp’s 2021 privacy policy. In the present case, CCI found that WhatsApp’s 2021 privacy policy which mandated sharing of users’ data with WhatsApp and thereafter its subsequent sharing with Facebook vitiated the ‘free’, ‘optional’ and ‘well-informed’ consent of users as WhatsApp’s dominant position in the market coupled with network and tipping effects effectively left users with no real or practical choice but to accept its unfair terms.

    This contrasts with the CCI’s previous stances in Vinod Kumar Gupta v WhatsApp and Harshita Chawla v WhatsApp & Facebook, where it declined to intervene because data privacy violation did not impact competition. However, in a slew of progressive developments, a market study by CCI has now recognized privacy as a non-price competition factor and the Supreme Court’s nod in 2022 for CCI to continue investigation in the Meta-WhatsApp mater has effectively granted CCI the jurisdiction to deal with issues relating to privacy that have an adverse effect on competition.

    The facts of this case very closely resemble that of Bundeskartellamt v Facebook Inc.,2019 wherein the German competition regulator had flagged Facebook for imposing one sided terms about tracking users’ activity in the social networking market where consent was reduced to a mere formality. Both cases illustrate how dominant digital platforms exploit their market power to impose unfair terms on users, effectively bypassing meaningful consent. This pattern reflects a deeper structural issue—where existing competition law, focused on ex-post remedies, is used to address the unique challenges of digital markets. It is precisely this regulatory gap that the proposed DCB seeks to fill through its ex-ante approach.

    Abuse of dominant positions by Big Tech companies in the digital era occurs in more subtle ways as the price of these services is paid for with users’ personal data. A unilateral modification in the data privacy policy leaves users vulnerable as they have little bargaining power against established corporate behemoths. These companies collect huge chunks of “Big data” by taking advantage of their dominance in one relevant market (in the present case, the instant messaging market) and use them in other relevant markets (social networking, personalized advertising, etc.) which gives them a significant edge against their competitors. This creates entry barriers and a disproportionate share of the market goes to a few large corporations resulting in monopoly-like conditions.

    To deal with such issues, competition law first identifies a corporation’s dominant position in the market. Once this is established, it investigates the factors that lead to the abuse of this position. Here, the factor is collection of data which invades the privacy of users without their free and informed consent. The CCI, in its ruling against Meta, held WhatsApp to be in violation of Sections 4(2)(a)(i), 4(2)(c) and 4(2)(e) of the CA, dealing with imposition of unfair conditions in purchase of service, engagement in practices resulting in denial of market access and use of dominant position in one market to secure its market position in another relevant market respectively.

    The Digital Competition Bill, 2024

    The proposed Digital Competition Bill, 2024  when enacted, would signify a landmark shift in how India approaches competition regulation in digital markets. Unlike the CA, which operates on an ex-post basis; acting upon violations after analysing their effects, the DCB introduces a proactive approach that seeks to regulate the conduct of Systemically Significant Digital Enterprises (‘SSDEs’) through an ex-ante framework. SSDEs are large digital enterprises that enjoy a position of entrenched market power and serve as critical intermediaries between businesses and users. The DCB aims to curb their ability to engage in self-preferencing, data misuse, and other exclusionary practices before harm occurs, rather than waiting for evidence of anti-competitive outcomes. While this progressive approach aims to address the unique challenges posed by the dominance of digital giants, it also raises critical concerns about legislative overlap, disproportionate penalties on corporations and potential legal uncertainty.

    A key issue with the coexistence of the DCB and the CA is the overlap in their regulatory scopes. The CA, particularly through Section 4, targets abuse of dominance through a detailed effects-based inquiry. As evidenced in the CCI’s ruling against WhatsApp, a compromise or breach of data privacy of the users will not be tolerated and has the potential to be considered as a means of abuse of an enterprise’s dominant position. By contrast, the DCB imposes predetermined obligations on SSDEs, which are deemed to have significant market power. Section 12 of the DCB prescribes certain limitations on the use of personal data of the users of SSDEs, whereas Section 16 grants the CCI the power to inquire into non-compliance if a prima facie case is made out, regardless of the effects such non-compliance may have on competition.

    Concerns about dual enforcement

    This duality creates an ambiguity. For instance, should a prima facie case involving data misuse by an SSDE, which unfairly elevates its market position, be assessed under the CA’s abuse of dominance provisions, or should it fall exclusively within the purview of the DCB? The risk of dual penalties further compounds these challenges. Section 28 (1) of the DCB empowers the CCI to impose significant fines (not exceeding 10% of its global turnover) on SSDEs for non-compliance with its obligations. However, under Section 48 of the CA, these entities are also subject to penalties for engaging in anti-competitive behaviour that may stem from the same act of data misuse.

    Although, the protection against double jeopardy only applies to criminal cases, the spirit of double jeopardy is clearly visible in this case, wherein businesses could face disproportionate punishments for overlapping offenses, raising concerns about fairness and proportionality. This mirrors similar concerns in the European Union, where the Digital Markets Act (‘DMA’) (India’s DCB is modelled on EU’s DMA) and Articles 101 and 102 of the Treaty on the Functioning of the European Union (traditional EU competition law provisions) operate in tandem. However, EU’s DMA grants the European Commission overriding powers over the nations’ competition regulating authorities, which brings unique challenges and is not applicable in India since the regulating authority (CCI) oversees implementation of both the CA and DCB. This vests the CCI with considerable discretion in deciding which act takes precedence and their spheres of regulation. The MCA report leaves potential overlaps in proceedings to be resolved by the CCI on an ad hoc basis. Therefore, statutory clarity on the application of the DCB and the CA are essential to avoid inconsistency in outcomes.

    The Way Forward

    To address these challenges, India must focus on creating a harmonious regulatory framework. Moreover, a Digital Markets Coordination Council could be established to harmonize enforcement actions, share data, and resolve jurisdictional disputes. Such a body could include representatives from the CCI, the Ministry of Electronics and Information Technology (MeitY), and independent technical experts to ensure holistic oversight.

    Proportional penalties are another area for reform. Lawmakers should ensure that corporations do not have to bear the burden of being punished in two different ways for the same offence. Introducing a standardised penalty framework across the DCB and CA would prevent over-penalisation and ensure fairness.

    Since the DCB has not been enacted yet, India can pre-empt these concerns of overlap and ensure that the CA and DCB complement rather than compete with each other. The exact scope of a solution to these concerns is beyond the scope of this article, but by learning from the EU’s experiences and adopting a coordinated, balanced approach, India can create a regulatory framework that promotes innovation, safeguards competition, and protects consumers’ rights and interests in the digital age.