Srikrishna Committee has set the stage for India’s data protection regime, but the battle continues