Decoding the Digital Personal Data Protection Rules 2025
The draft Digital Personal Data Protection (DPDP) Rules 2025, open for public consultation, propose guidelines for operationalizing the DPDP Act 2023. A Data Protection Board will digitize governance, ensuring consent in processing data, enabling penalties, and simpler compliance for startups, with targeted January 2027 implementation.
- Country:
- India
The government has released the draft Digital Personal Data Protection (DPDP) Rules 2025 for public review, with a deadline for feedback set for February 18. The draft outlines the regulations to enforce the Digital Personal Data Protection Act 2023, marking a crucial step in digital governance.
These rules propose the establishment of a Data Protection Board, tasked with operating digitally to oversee compliance with the new data protection legislation. Key procedures focus on ensuring parental consent for children's data and controlling personal data transfers outside of India.
Data fiduciaries, including major digital platforms, are obliged to secure explicit consent for data use, helping protect personal information. Effective digital governance mechanisms, including monetary penalties for violations, are set to follow, with a full rollout anticipated by 2027.
(With inputs from agencies.)
Google News