New Delhi, November 15 (IANS). Industry experts on Saturday welcomed the Centre’s move to notify the Digital Personal Data Protection (DPDP) Rules, 2025.
With the Ministry of Electronics and IT notifying the DPDP Rules, 2025, it has been clearly stated that organizations will have to provide a consent notice for using personal data explaining why the personal data is being collected and for what purpose it will be used. Organizations will be required to provide information about the specific purpose of personal data.
Ivana Bartoletti, Chief Privacy and AI Governance Officer, Wipro, said, “There is no doubt that India has entered a new era of privacy. Trust is extremely important in this era of AI. Because AI depends on a huge amount of data, strong privacy protection should come first. This step taken by the government is very important in strengthening India’s digital ecosystem. Also, the government is This move is also in line with India’s recent AI governance guidelines.”
He further said that the new rules come with strong data governance, which clearly states the responsibilities and defines the structure, consent and privacy. These rules will help organizations move forward by becoming sustainable and accountable.
“The government has removed the uncertainties with the notification of the rules and the Act,” said Nikhil Narendran, TMT-partner at Trilegal.
He further said, “Indian companies now have 18 months to become fully compliant. It is going to be very important for most organizations to start the work with data mapping, consent and notice flow redesign, training programs. For this work, these organizations will need the help of lawyers, technologists and privacy professionals. However, the real focus will be on the formation of a new data protection authority. It has to be seen that the authority in How does one interpret the rules?
Jaspreet Singh, Partner and Chief Revenue Officer, Grant Thornton India, said that the DPDPA Rules 2025 reflect a shift from India’s policy intent to operational accountability and privacy.
Singh further said, “Compliance under DPDPA is not a checklist, but it is a culture of trust, which every company will now have to institutionalise.”
–IANS
SKT/
