DGPSI is the beacon of light for DPDPA Compliance..1

Posted on August 23, 2024 by Vijayashankar Na

We recognize that India is in the cusp of a new era of DPDPA. Whether we like it or dislike it, whether we think Government is serious or not, the reality is that soon we will have a notification of the rules of DPDPA.

The CFO of an organization should be the first to raise his voice that a new Financial risk has appeared before the Company that needs to be “Mitigated” and “Covered”. He may not know how and request his CISO or CCO to suggest. The CEO has to therefore start a new discussion in the business war rooms on how DPDPA is likely to impact business and what actions are required to be initiated.

There will always be one voice in the Corporate War room which says, “The rules are yet to be notified… We shall wait…”.

This will be music to the ears of some who revel in “Procrastination” and are happy to work on short term goals for the next quarter. But those who have the long term vision, DPDPA 2023 is already the “Due Diligence” requirement under ITA 2000 and hence the compliance by date has already arrived.

The Government may eventually release the rules first fas a draft for public comments. It may first notify the requirements of setting up of DPB (Data Protection Board) so that it can be constituted before further operational rules that affect the industry directly in terms of compliance can be rolled out. Even after the operational rules are rolled out, there could be different timelines under which different rules may become effective.

The wiser companies have already had the first discussions at their Board level to start working on “DPDPA Gap Assessment” so that they will understand where they stand and how should they strategize their next moves.

The second stage is for companies to look out for guidance on how to proceed with the compliance of DPDPA and adopting an appropriate framework for compliance.

In this context DGPSI emerges as the beacon of light as the only framework exclusively stitched together for compliance of DPDPA 2023.

As the realization of what DGPSI is and how it helps a company to find the shore of compliance, dawns, strategy war rooms in companies will reverberate with the words “DGPSI” and DGPSI would become the “Corporate Mantra” for the emerging DPDPA Era.

P.S: We will explore DGPSI point by point through this series of articles.

Naavi

About Vijayashankar Na

Naavi is a veteran Cyber Law specialist in India and is presently working from Bangalore as an Information Assurance Consultant. Pioneered concepts such as ITA 2008 compliance, Naavi is also the founder of Cyber Law College, a virtual Cyber Law Education institution. He now has been focusing on the projects such as Secure Digital India and Cyber Insurance
This entry was posted in Cyber Law. Bookmark the permalink.