DIGITAL PERSONAL DATA PROTECTION ACT 2023 (DPDPA)
DIGITAL PERSONAL DATA PROTECTION ACT 2023 (DPDPA)
DIGITAL PERSONAL DATA PROTECTION ACT 2023 (DPDPA)
The DPDPA, 2023 is a crucial legislative initiative aiming to safeguard personal data in the digital age. It focuses on empowering individuals with control over their data, setting stringent guidelines for responsible data handling that strikes a balance between privacy protection and data-driven innovations. Here we will provide you all information related to DPDPA, 2023.
The DPDPA, 2023 is a crucial legislative initiative aiming to safeguard personal data in the digital age. It focuses on empowering individuals with control over their data, setting stringent guidelines for responsible data handling that strikes a balance between privacy protection and data-driven innovations. Here we will provide you all information related to DPDPA, 2023.
The DPDPA, 2023 is a crucial legislative initiative aiming to safeguard personal data in the digital age. It focuses on empowering individuals with control over their data, setting stringent guidelines for responsible data handling that strikes a balance between privacy protection and data-driven innovations. Here we will provide you all information related to DPDPA, 2023.
DIGITAL PERSONAL DATA PROTECTION ACT 2023 (DPDPA)
The DPDPA, 2023 is a crucial legislative initiative aiming to safeguard personal data in the digital age. It focuses on empowering individuals with control over their data, setting stringent guidelines for responsible data handling that strikes a balance between privacy protection and data-driven innovations. Here we will provide you all information related to DPDPA, 2023.
Latest Updates
Latest Updates
Latest Updates
Latest Updates
As the Digital Personal Data Protection Act is enacted, let's understand the journey of DPDPA in distinct stages:
As the Digital Personal Data Protection Act is enacted, let's understand the journey of DPDPA in distinct stages:
As the Digital Personal Data Protection Act is enacted, let's understand the journey of DPDPA in distinct stages:
As the Digital Personal Data Protection Act is enacted, let's understand the journey of DPDPA in distinct stages:
1. Introduction in Lok Sabha: The Bill is introduced and the first reading concludes.
1. Introduction in Lok Sabha: The Bill is introduced and the first reading concludes.
1. Introduction in Lok Sabha: The Bill is introduced and the first reading concludes.
1. Introduction in Lok Sabha: The Bill is introduced and the first reading concludes.
2. Second Reading: The Bill will proceed to the stage of second reading. During this phase, various clauses and provisions are thoroughly examined and debated before a vote is taken. There’s also a possibility of referring the Bill to a Select Committee for in-depth scrutiny and recommendations.
2. Second Reading: The Bill will proceed to the stage of second reading. During this phase, various clauses and provisions are thoroughly examined and debated before a vote is taken. There’s also a possibility of referring the Bill to a Select Committee for in-depth scrutiny and recommendations.
2. Second Reading: The Bill will proceed to the stage of second reading. During this phase, various clauses and provisions are thoroughly examined and debated before a vote is taken. There’s also a possibility of referring the Bill to a Select Committee for in-depth scrutiny and recommendations.
2. Second Reading: The Bill will proceed to the stage of second reading. During this phase, various clauses and provisions are thoroughly examined and debated before a vote is taken. There’s also a possibility of referring the Bill to a Select Committee for in-depth scrutiny and recommendations.
3. Second Reading: The Bill will proceed to the stage of second reading. During this phase, various clauses and provisions are thoroughly examined and debated before a vote is taken. There’s also a possibility of referring the Bill to a Select Committee for in-depth scrutiny and recommendations.
3. Second Reading: The Bill will proceed to the stage of second reading. During this phase, various clauses and provisions are thoroughly examined and debated before a vote is taken. There’s also a possibility of referring the Bill to a Select Committee for in-depth scrutiny and recommendations.
3. Second Reading: The Bill will proceed to the stage of second reading. During this phase, various clauses and provisions are thoroughly examined and debated before a vote is taken. There’s also a possibility of referring the Bill to a Select Committee for in-depth scrutiny and recommendations.
3. Second Reading: The Bill will proceed to the stage of second reading. During this phase, various clauses and provisions are thoroughly examined and debated before a vote is taken. There’s also a possibility of referring the Bill to a Select Committee for in-depth scrutiny and recommendations.
4. Third Reading and Voting: In the third reading, no further amendments are allowed. The House must decide whether to reject or pass the Bill as a whole. A majority vote in favor propels the Bill to the Rajya Sabha.
4. Third Reading and Voting: In the third reading, no further amendments are allowed. The House must decide whether to reject or pass the Bill as a whole. A majority vote in favor propels the Bill to the Rajya Sabha.
4. Third Reading and Voting: In the third reading, no further amendments are allowed. The House must decide whether to reject or pass the Bill as a whole. A majority vote in favor propels the Bill to the Rajya Sabha.
4. Third Reading and Voting: In the third reading, no further amendments are allowed. The House must decide whether to reject or pass the Bill as a whole. A majority vote in favor propels the Bill to the Rajya Sabha.
5. Rajya Sabha: The Bill will undergo the same process in the Rajya Sabha – introduction, second reading, and the third reading, which concludes with the voting.
5. Rajya Sabha: The Bill will undergo the same process in the Rajya Sabha – introduction, second reading, and the third reading, which concludes with the voting.
5. Rajya Sabha: The Bill will undergo the same process in the Rajya Sabha – introduction, second reading, and the third reading, which concludes with the voting.
5. Rajya Sabha: The Bill will undergo the same process in the Rajya Sabha – introduction, second reading, and the third reading, which concludes with the voting.
6. Presidential Review: After successful passage in both Houses, the Bill lands on the desk of the Hon’ble President of India. The President can either grant assent or send it back to the Parliament for reconsideration.
6. Presidential Review: After successful passage in both Houses, the Bill lands on the desk of the Hon’ble President of India. The President can either grant assent or send it back to the Parliament for reconsideration.
6. Presidential Review: After successful passage in both Houses, the Bill lands on the desk of the Hon’ble President of India. The President can either grant assent or send it back to the Parliament for reconsideration.
6. Presidential Review: After successful passage in both Houses, the Bill lands on the desk of the Hon’ble President of India. The President can either grant assent or send it back to the Parliament for reconsideration.
7. Publication in Gazette: Upon receiving Presidential assent, the Bill is officially published in the Gazette, cementing it as the law of the land.
7. Publication in Gazette: Upon receiving Presidential assent, the Bill is officially published in the Gazette, cementing it as the law of the land.
7. Publication in Gazette: Upon receiving Presidential assent, the Bill is officially published in the Gazette, cementing it as the law of the land.
7. Publication in Gazette: Upon receiving Presidential assent, the Bill is officially published in the Gazette, cementing it as the law of the land.
8. Release of Draft Rules for Public Consultation: The Draft Rules are released for public consultation.
8. Release of Draft Rules for Public Consultation: The Draft Rules are released for public consultation.
8. Release of Draft Rules for Public Consultation: The Draft Rules are released for public consultation.
8. Release of Draft Rules for Public Consultation: The Draft Rules are released for public consultation.
9. Publication of Rules and Enforcement: After public consultation, the final version of the Rules is published in the Gazette and the Act is operationalised and comes into force.
9. Publication of Rules and Enforcement: After public consultation, the final version of the Rules is published in the Gazette and the Act is operationalised and comes into force.
9. Publication of Rules and Enforcement: After public consultation, the final version of the Rules is published in the Gazette and the Act is operationalised and comes into force.
9. Publication of Rules and Enforcement: After public consultation, the final version of the Rules is published in the Gazette and the Act is operationalised and comes into force.
Overview
Overview
Overview
Overview
The Digital Personal Data Protection Act 2023 of India aims to safeguard personal data, ensuring privacy and security. It establishes guidelines for data processing, mandates user consent, and introduces penalties for non-compliance. The Act enhances digital trust and aligns India's data protection framework with global standards, promoting responsible data usage. It envisages penalties for non-compliance, which can extend up to Rs. 250 crores!
The Digital Personal Data Protection Act 2023 of India aims to safeguard personal data, ensuring privacy and security. It establishes guidelines for data processing, mandates user consent, and introduces penalties for non-compliance. The Act enhances digital trust and aligns India's data protection framework with global standards, promoting responsible data usage. It envisages penalties for non-compliance, which can extend up to Rs. 250 crores!
The Digital Personal Data Protection Act 2023 of India aims to safeguard personal data, ensuring privacy and security. It establishes guidelines for data processing, mandates user consent, and introduces penalties for non-compliance. The Act enhances digital trust and aligns India's data protection framework with global standards, promoting responsible data usage. It envisages penalties for non-compliance, which can extend up to Rs. 250 crores!
The Digital Personal Data Protection Act 2023 of India aims to safeguard personal data, ensuring privacy and security. It establishes guidelines for data processing, mandates user consent, and introduces penalties for non-compliance. The Act enhances digital trust and aligns India's data protection framework with global standards, promoting responsible data usage. It envisages penalties for non-compliance, which can extend up to Rs. 250 crores!
Here is a chapter-wise break down of the Act:
Here is a chapter-wise break down of the Act:
Here is a chapter-wise break down of the Act:
Here is a chapter-wise break down of the Act:
Chapter
Chapter
Chapter
Chapter
Title of the Chapter
Title of the Chapter
Title of the Chapter
Title of the Chapter
Sections
Sections
Sections
Sections
Chapter I
Chapter I
Chapter I
Chapter I
Preliminary
Preliminary
Preliminary
Preliminary
Sections 1 - 3
Sections 1 - 3
Sections 1 - 3
Sections 1 - 3
Chapter II
Chapter II
Chapter II
Chapter II
Obligations of Data Fiduciary
Obligations of Data Fiduciary
Obligations of Data Fiduciary
Obligations of Data Fiduciary
Sections 4 - 10
Sections 4 - 10
Sections 4 - 10
Sections 4 - 10
Chapter III
Chapter III
Chapter III
Chapter III
Rights and Duties of Data Principal
Rights and Duties of Data Principal
Rights and Duties of Data Principal
Rights and Duties of Data Principal
Sections 11 - 15
Sections 11 - 15
Sections 11 - 15
Sections 11 - 15
Chapter IV
Chapter IV
Chapter IV
Chapter IV
Special Provisions
Special Provisions
Special Provisions
Special Provisions
Sections 16 - 17
Sections 16 - 17
Sections 16 - 17
Sections 16 - 17
Chapter V
Chapter V
Chapter V
Chapter V
Data Protection Board of India
Data Protection Board of India
Data Protection Board of India
Data Protection Board of India
Sections 18 - 26
Sections 18 - 26
Sections 18 - 26
Sections 18 - 26
Chapter VI
Chapter VI
Chapter VI
Chapter VI
Powers, Functions and Procedure to be Followed by Board
Powers, Functions and Procedure to be Followed by Board
Powers, Functions and Procedure to be Followed by Board
Powers, Functions and Procedure to be Followed by Board
Sections 27 - 28
Sections 27 - 28
Sections 27 - 28
Sections 27 - 28
Chapter VII
Chapter VII
Chapter VII
Chapter VII
Appeal and Alternate Dispute Resolution
Appeal and Alternate Dispute Resolution
Appeal and Alternate Dispute Resolution
Appeal and Alternate Dispute Resolution
Sections 29 - 32
Sections 29 - 32
Sections 29 - 32
Sections 29 - 32
Chapter VIII
Chapter VIII
Chapter VIII
Chapter VIII
Penalties and Adjudication
Penalties and Adjudication
Penalties and Adjudication
Penalties and Adjudication
Sections 33 - 34
Sections 33 - 34
Sections 33 - 34
Sections 33 - 34
Chapter IX
Chapter IX
Chapter IX
Chapter IX
Miscellaneous
Miscellaneous
Miscellaneous
Miscellaneous
Sections 35 - 44
Sections 35 - 44
Sections 35 - 44
Sections 35 - 44
EVOLUTION OF DPDPA: A TIMELINE
EVOLUTION OF DPDPA: A TIMELINE
EVOLUTION OF DPDPA: A TIMELINE
2011 - SPDI Rules: The Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, were notified under the IT Act, 2000, setting the initial framework for data protection in India.
2011 - 2017
2012 - AP Shah Committee: The Justice AP Shah Committee, appointed by the erstwhile Planning Commission, recommended a comprehensive privacy framework.
2017 - Puttaswamy Ruling: The Supreme Court of India declared the Right to Privacy as a Fundamental Right under Article 21 of the Indian Constitution in the landmark Puttaswamy judgment.
2011 - SPDI Rules: The Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, were notified under the IT Act, 2000, setting the initial framework for data protection in India.
2012 - AP Shah Committee: The Justice AP Shah Committee, appointed by the erstwhile Planning Commission, recommended a comprehensive privacy framework.
2017 - Puttaswamy Ruling: The Supreme Court of India declared the Right to Privacy as a Fundamental Right under Article 21 of the Indian Constitution in the landmark Puttaswamy judgment.
2011
2011
2011
2011 - 2017
2011 - 2017
2011 - 2017
2018 - 2022
2018 - Srikrishna Committee: The committee, led by Justice BN Srikrishna, submitted its report and a draft Personal Data Protection Bill, 2018, proposing a comprehensive data protection framework.
2019 - Personal Data Protection Bill, 2019: Introduced in Parliament, this bill aimed to regulate the processing of personal data. It was referred to a Joint Parliamentary Committee (JPC) for further scrutiny.
2021 - Revised Bill: The JPC submitted its report, and a revised version of the bill was introduced. However, it was eventually withdrawn for further revision.
2022 - New Draft Bill: A new draft of the Personal Data Protection Bill was introduced, incorporating feedback from various stakeholders. This version was also later withdrawn.
2023 - Present
2023 - Digital Personal Data Protection Act: The Digital Personal Data Protection Bill, 2023, was introduced and passed by Parliament, receiving the President's assent on August 11, 2023, becoming the Digital Personal Data Protection Act, 2023.
2025 - Draft DPDP Rules: The draft Digital Personal Data Protection (DPDP) Rules, 2025, were released for public consultation on January 3, 2025, outlining the implementation framework for the DPDP Act, 2023.
2018 - 2022
2018 - 2022
2018 - 2022
2018
2018
2018
2018 - Srikrishna Committee: The committee, led by Justice BN Srikrishna, submitted its report and a draft Personal Data Protection Bill, 2018, proposing a comprehensive data protection framework.
2019 - Personal Data Protection Bill, 2019: Introduced in Parliament, this bill aimed to regulate the processing of personal data. It was referred to a Joint Parliamentary Committee (JPC) for further scrutiny.
2021 - Revised Bill: The JPC submitted its report, and a revised version of the bill was introduced. However, it was eventually withdrawn for further revision.
2022 - New Draft Bill: A new draft of the Personal Data Protection Bill was introduced, incorporating feedback from various stakeholders. This version was also later withdrawn.
2023 - Digital Personal Data Protection Act: The Digital Personal Data Protection Bill, 2023, was introduced and passed by Parliament, receiving the President's assent on August 11, 2023, becoming the Digital Personal Data Protection Act, 2023.
2025 - Draft DPDP Rules: The draft Digital Personal Data Protection (DPDP) Rules, 2025, were released for public consultation on January 3, 2025, outlining the implementation framework for the DPDP Act, 2023.
2023
2023
2023
2023-Present
2023-Present
2023-Present
Overview
FREQUENTLY ASKED QUESTIONS
FREQUENTLY ASKED QUESTIONS
FREQUENTLY ASKED QUESTIONS
FREQUENTLY ASKED QUESTIONS
What are the latest developments regarding the DPDPA, 2023?
What are the latest developments regarding the DPDPA, 2023?
What are the latest developments regarding the DPDPA, 2023?
What is the DPDPA 2023, and what are its primary goals?
What is the DPDPA 2023, and what are its primary goals?
What is the DPDPA 2023, and what are its primary goals?
Which organizations must comply with the DPDPA provisions?
Which organizations must comply with the DPDPA provisions?
Which organizations must comply with the DPDPA provisions?
How does the DPDPA enhance individuals' control over their data?
How does the DPDPA enhance individuals' control over their data?
How does the DPDPA enhance individuals' control over their data?
What are the core principles for data handling under the DPDPA?
What are the core principles for data handling under the DPDPA?
What are the core principles for data handling under the DPDPA?
What are Significant Data Fiduciaries (SDFs)?
What are Significant Data Fiduciaries (SDFs)?
What are Significant Data Fiduciaries (SDFs)?
How does the DPDPA address data breaches and cybersecurity risks?
How does the DPDPA address data breaches and cybersecurity risks?
How does the DPDPA address data breaches and cybersecurity risks?
Are minors allowed to consent to processing of their data?
Are minors allowed to consent to processing of their data?
Are minors allowed to consent to processing of their data?
Can individuals request the deletion of their personal data?
Can individuals request the deletion of their personal data?
Can individuals request the deletion of their personal data?
What obligations do Data Fiduciaries have under the DPDPA?
What obligations do Data Fiduciaries have under the DPDPA?
What obligations do Data Fiduciaries have under the DPDPA?
What provisions does DPDPA include for cross-border data transfers?
What provisions does DPDPA include for cross-border data transfers?
What provisions does DPDPA include for cross-border data transfers?
What are the latest developments regarding the DPDPA, 2023?
What is the DPDPA 2023, and what are its primary goals?
Which organizations must comply with the DPDPA provisions?
How does the DPDPA enhance individuals' control over their data?
What are the core principles for data handling under the DPDPA?
What are Significant Data Fiduciaries (SDFs)?
How does the DPDPA address data breaches and cybersecurity risks?
Are minors allowed to consent to processing of their data?
Can individuals request the deletion of their personal data?
What obligations do Data Fiduciaries have under the DPDPA?
What provisions does DPDPA include for cross-border data transfers?