Insights on DPDP, privacy, and compliance. Stay updated with actionable guidance on India's data protection landscape.
India now has two parallel breach reporting regimes. Here is exactly what to report, to whom, and by when under the DPDP Act 2023 and CERT-In Directions.
A phased, 15-step DPDP compliance checklist with time estimates, Act section references, and practical guidance for Indian businesses targeting the May 2027 deadline.
Section 7 of the DPDP Act 2023 defines nine grounds for processing personal data without consent. Here is what each one means, where businesses misread them, and how they differ from GDPR.
Section 17 of the DPDP Act 2023 carves out 10 categories of exempt processing. Here is what qualifies, what remains partially covered, and what businesses get wrong.
Healthcare providers are Data Fiduciaries under DPDP. Here are the consent rules, breach obligations, research exemptions, and children's data carve-outs that apply specifically to your sector.
A section-by-section guide to the four rights every Data Principal holds under India's DPDP Act 2023, plus the duties most businesses overlook.
Section 10 of the DPDP Act creates a heightened compliance tier. If your organisation qualifies as an SDF, here is exactly what changes.
Section 2(i) of the DPDP Act makes every business that decides what data to collect a Data Fiduciary. Here are the obligations, penalties, and mistakes to avoid.
A section-by-section guide to India's Digital Personal Data Protection Act, 2023, covering consent, data principal rights, penalties up to ₹250 crore, and the May 2027 enforcement deadline.
A rule-by-rule breakdown of the DPDP Rules 2025: phased deadlines, consent notices, breach notification, security safeguards, and what Indian businesses must implement by May 2027.
