Implementation Challenges of DPDPA

FDPPI has been conducting many programs around the country discussing the implementation challenges of DPDPA. We are happy to note that after initial hesitation many other consultancy organizations have shed their complacency that the rules are not notified and started conducting their own programs. This is a welcome development for the industry.

Most of these consultants have also accepted Naavi’s argument that DPDPA as a published law has become a due diligence under ITA 2000 and hence the law needs to be applied as of now by companies as part of their plan to be ready to face the next level of compliance where “Penalties” are a “Financial Risk” to be mitigated.

This is how the “Jurisprudence” becomes the “Best Practice” while law continues to the final version that is relevant for determination of penalties.

As we move towards our next program in Delhi on December 11th with the CIOKLUB and also on December 12th under the FDPPI banner, we will continue to discuss the other implementation challenges.

The next challenge that we need to address is that many solution providers have come up offering solutions for Compliance. We understand that some of them are also in discussion with the MeitY and are trying to also advise the ministry in the rule making.

It is a distinct possibility that some of the built in capabilities of these solutions may find expression in the rules to be announced by MeitY in the next few months.

As the competition in the product market increases, there is likely to be a bombardment of different views on the user companies. The users need to be able to understand what are the compliance requirements and how does each solution meet the requirements.

I suppose that during the Delhi event we will discuss how “Consent Management” solutions or “Data Classification Solutions” which are presently in the market address these issues. We may also discuss how to evaluate interesting offers of solutions who claim “AI based Automated Compliance” as their USP.

If you are in Delhi and are interested in understanding the compliance issues with which you can evaluate different solutions, you should not miss the FDPPI event.


About Vijayashankar Na

Naavi is a veteran Cyber Law specialist in India and is presently working from Bangalore as an Information Assurance Consultant. Pioneered concepts such as ITA 2008 compliance, Naavi is also the founder of Cyber Law College, a virtual Cyber Law Education institution. He now has been focusing on the projects such as Secure Digital India and Cyber Insurance
This entry was posted in Cyber Law. Bookmark the permalink.