Checklist
DPDP compliance readiness
Use this executive checklist to align legal, product, security, and vendor risk owners before you operationalize notices, consent, and grievance handling under India's Digital Personal Data Protection Act.
Governance & accountability
- Assign a data protection lead and escalation path for data principal requests.
- Document lawful bases and purposes for each processing activity (RoPA-style inventory).
- Align retention schedules with product analytics, marketing, and HR datasets.
Transparency & consent
- Publish clear notices in English + required languages; avoid bundled dark patterns.
- Separate marketing consents where applicable; evidence opt-in trails.
- Support correction, erasure, and grievance SLAs with ticketing metrics.
Security & vendors
- Map subprocessors; align DPAs with security annexes and breach notification timelines.
- Apply encryption and access controls for sensitive personal data flows.
- Run tabletop exercises for breach detection, regulator dialogue, and customer comms.
QSA Authorized
CEMEA · Asia Pacific · USA
Tell us Your Security Objective
Our senior consultants will contact you to discuss a tailored strategy and provide a complimentary, no-obligation quote.
CERT-In empanelled testing · PCI QSA authorized consultants · 1,000+ organizations served
Get Started
Our Office
Locations we operate from
HQ, Noida, India
405, 4th Floor, Majestic Signia, Sector 62, Noida, Uttar Pradesh 201309
Pune, India
InCube Centre, Tejaswini Society, Lane 2, Aundh, PUNE, India, 411007
Mumbai, India
A802, Crescenzo, C /38-39, G-Block, Bandra Kurla Complex, Mumbai-400051, Maharashtra, India
Bengaluru, India
Maharaj, 152/4, 8th Cross, Chamrajpet, Bengaluru, Karnataka, India, 560018
UAE
Business Point Building - Office No. 702 - Dubai - United Arab Emirates
UAE
L.L.C Muna AlJaziri Building, Office No 303 Al Mararr Dubai, UAE
Egypt
19 Dr. Omar Dessouky Street, Cairo- Egypt 4271020
Australia
Level 4, 80 Market Street, South Melbourne 3205