Compliance How-Tos
How to Conduct a DPDP Data Audit: Step-by-Step Guide
A practical, step-by-step methodology for auditing your personal data processing against DPDP Act requirements, with templates, time estimates, and common pitfalls.
Technical Implementation
How to Create a DPDP-Compliant Cookie Consent Banner
A technical guide to building cookie consent banners that satisfy Section 5 and Section 6 of the DPDP Act 2023, with cookie classification and implementation.
Industry Guides
DPDP for EdTech: Children's Data, Parental Consent, and Compliance
How India's DPDP Act reshapes EdTech data practices, from parental consent and tracking bans to the compliance steps every platform needs before May 2027.
Industry Guides
DPDP Compliance for E-Commerce: Complete Guide for Online Sellers
How the DPDP Act 2023 affects Indian e-commerce businesses: consent, data retention, children's data, seller obligations, and a step-by-step compliance approach.
Compliance How-Tos
DPDP Breach Notification: The 72-Hour Rule, CERT-In vs DPBI, and What You Must Report
India now has two parallel breach reporting regimes. Here is exactly what to report, to whom, and by when under the DPDP Act 2023 and CERT-In Directions.
Compliance How-Tos
DPDP Compliance Checklist: 15-Step Guide for Indian Businesses (2026)
A phased, 15-step DPDP compliance checklist with time estimates, Act section references, and practical guidance for Indian businesses targeting the May 2027 deadline.
DPDP Fundamentals
Legitimate Uses Under DPDP: Section 7 Examples and Boundaries
A practical Section 7 guide for deciding when personal data can be processed without consent under the DPDP Act, with examples, boundaries, and proof to keep.
DPDP Fundamentals
DPDP Act Exemptions: When the Law Does Not Apply
Section 17 of the DPDP Act 2023 carves out 10 categories of exempt processing. Here is what qualifies, what remains partially covered, and what businesses get wrong.
Industry Guides
DPDP for Healthcare: How India's Data Protection Law Applies to Hospitals, HealthTech, and Clinical Research
Healthcare providers are Data Fiduciaries under DPDP. Here are the consent rules, breach obligations, research exemptions, and children's data carve-outs that apply specifically to your sector.
DPDP Fundamentals
Data Principal Rights Under DPDP: A Practical Workflow for Businesses
A business workflow for handling DPDP Data Principal rights: access, correction, erasure, grievances, nomination, verification, vendors, and evidence.