Category Archives: Cyber Law

Data Breach Notification is an important aspect of compliance of any data protection law. DPDPA 2023 also requires a notification both to the DPBI and the Data Principal in the event of a data breach. The DPDPA 2023 act had … Continue reading →

According to DPDPA 2023, consent is to be obtained even for applicable personal data collected by a Data Fiduciary before the commencement of the Act as per the notification. Hence identifying such data and issuing notices to such data principals … Continue reading →

In one of the versions of the draft DPDPA rules which is under circulation, it is expected that the Government may provide a template for notice for consent. Accordingly a model notice as follows is expected to be part of … Continue reading →

When the rules under DPDPA is released, apart from the definition of Significant Data Fiduciary, industry would be keenly looking at the rules related to “Consent manager”. This is one area where Naavi may have divergent views with one section … Continue reading →

One of the keenly awaited rule under DPDPA 2023 is the criteria to be adopted by the Government for declaring a Data Fiduciary as a Significant Data Fiduciary. While the Act does not define “Sensitive Personal Data”, Section 10(1) brings … Continue reading →

In India we are today discussing both regulation of AI and standardization of AI at the same time. Just as the EU-AI act is a regulation while ISO 42001 is a standardization, BIS is discussing AI standardization while ITA 2000 … Continue reading →