Author Archives: Vijayashankar Na

(This is in continuation of the previous article) In the previous article, we discussed the distinction between the objectives of the CISO and the DPO. The same distinction raises a broader question regarding the independence of DPDPA audits. If a … Continue reading →

(This  is a continuation of the previous article) During recent discussions on the role of Independent Data Auditors, an interesting debate emerged regarding whether a Chief Information Security Officer (CISO) can effectively discharge the responsibilities of a Data Protection Officer … Continue reading →

The discussions held on June 6th regarding the role of Independent Data Auditors under DPDPA 2023 generated a number of insightful observations. Among them, two issues stood out as being particularly significant for the future evolution of DPDPA compliance and … Continue reading →

The potential conflict between the implementation of the Digital Personal Data Protection Act, 2023 (DPDPA 2023) and the Right to Information Act has already been recognized and is currently under consideration before the Supreme Court. However, another important area of … Continue reading →

In continuation of our discussions on how to maintain independence of the “Independent  Data Auditors” in a DPDPA compliance scenario, we discussed the need for share holders to approve the appointment so that the auditor does not feel obligated to … Continue reading →

We are aware that one of the aspects that supports independence of a financial auditor is because the statutory financial auditor is appointed by the share holders of a company. Hence the Auditors are able to qualify the report if … Continue reading →