India’s DPDP Act, legislated in 2023, presents a comprehensive framework for personal data protection, defining the responsibilities of data fiduciaries and processors while enhancing the rights of data principals. This legislation marks a significant shift in how digital personal data is handled, extending its reach to any business processing such data within or for customers residing in India. The Act’s strict compliance requirements and hefty penalties for violations—up to INR 250 crores per violation—underscore the importance of adhering to these new norms.
Related Posts
Ecommerce & dark patterns; how unicorn founders stack up
The government could crack down on ecommerce firms following consumer complaints of dark pattern violations during festive sales. This and…
Securing user credential management and account recovery
While weaker methods like one-time passwords (OTPs) delivered via SMS or email continue to be used, they should be viewed…
Fortinet Report: Threat actors are increasingly targeting Indian OT organizations
Fortinet’s 2024 State of Operational Technology and Cybersecurity Report shows that while OT organizations are making progress in strengthening their…