The Ministry of Electronics and Information Technology (MeitY) has finalized the Digital Personal Data Protection (DPDP) Rules and sent them for legal review, MeitY Secretary S. Krishnan recently announced. The rules, critical for implementing India’s new data privacy law, are expected to be notified promptly after legal clearance.
Krishnan stated that his team met the minister’s September 28 deadline and the rules are now with legal authorities. Once clearance is given—even over a weekend—the government is prepared to issue the notification without delay. These rules will operationalize the Digital Personal Data Protection Act passed earlier this year, marking a major milestone in India’s efforts to safeguard personal data.
The new DPDP Rules are set to significantly reshape India’s digital landscape. They outline processes for obtaining consent, protecting data, cross-border data transfers, and appointing data protection officers, along with the obligations of organizations handling data.
The rules also govern how the State can process personal information to deliver public services and set requirements for consent managers, strengthening individual rights in the digital economy.
Upon notification, businesses across sectors will face new compliance obligations to protect user privacy and report breaches. Individuals will gain clearer rights over their digital data—how it is collected, used, safeguarded, and shared.
The framework promises stronger user autonomy and accountability for companies, ushering in a new era of data governance and trust for India’s internet ecosystem.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
