Companies must give the inactive user 48 hours' notice before deleting such data, warning them that their data will be ...

Explore the DPDP rules: data breach reporting, annual audits, data erasure timelines, consent management, and more for ...

From promptly alerting users and Data Protection Board about data breaches, to retaining all traffic data and logs for a minimum of one year, and from providing users with a 48-hour heads-up before ...

India notified the Digital Personal Data Protection Rules, 2025, on Friday to regulate how personal data is processed, secured, and governed ...

India has officially notified the Digital Personal Data Protection Rules, 2025, establishing a framework for data processing, protection, and governance. These rules, enforcing the Digital Personal ...

The DPDP Rules outline essential obligations for firms, including data breach reporting, user consent management, and annual ...

Under the rules, organisations handling personal data must explain what information is collected and why, while offering ...

The rules operationalise the Digital Personal Data Protection Act, 2023, and set in motion a phased compliance schedule ...

Policy: Sectors that handle large volumes of personal data, such as fintech, digital platforms, advertising technology, ...

Experts analyze the Digital Personal Data Protection (DPDP) rules, highlighting clarity, phased roll-out, and compliance ease ...

Security safeguards form another major pillar of the final rules. Organisations will be expected to adopt reasonable ...

The release said the DPDP framework reinforces the rights of individuals to access, correct, update or erase their personal data and to nominate another person to exercise these rights on their behalf ...