The main focus of DPDP Act and Rules is to create a balance between protection of an individual’s data and provide a framework for data processors, said Shri Bhuvnesh Kumar, Additional Secretary, MEITY at an Interactive Session on Draft Digital Personal Data Protection Rules

PR No – 57

31st January, 2025

New Delhi

The main focus of DPDP Act and Rules is to create a balance between protection of an individual’s data and provide a framework for data processors, said Shri Bhuvnesh Kumar, Additional Secretary, MEITY at an Interactive Session on Draft Digital Personal Data Protection Rules

At an interactive Session on Digital Personal Data Protection Rules organised by industry body PHDCCI, Shri Bhuvnesh Kumar, Additional Secretary, MEITY said that the main focus of DPDP Act and Rules is to create a balance between protection of an individual’s data and provide a framework for data processors, He said that with the Digital Economy growing at a faster pace, innovation and regulation needs to be balanced. He said that work is being done to facilitate ease of obtaining consent and ease of withdrawing consent, as well under the Act.

Dr. Pavan Duggal, Advocate, Supreme Court of India during his address said that the DPDP Act 2025 is a game-changing law that marks a significant step toward stronger data protection. For the first time, the entire complaint process has been made accessible to all, with no entry barriers. The law defines key roles, including Data Principal, Data Fiduciary, and Data Processor, to establish clear responsibilities in handling personal data.

Mr. Sameet Gambhir, Chair, Corporate Affairs Committee, PHDCCI gave the theme address. He said that protecting personal data is crucial, especially as cybercrimes and digital breaches continue to rise daily. Safeguarding personal information is not just important—it is essential.

The interaction was followed by Panel Discussions on Open Issues & Challenges in Implementing Data Protection Rules – Legal Issues and Global Data Protection Regime including Case studies of Data Breaches and Emerging Trends & Future of Data Protection Laws in India.

Ms. Charanya Lakshmikumaran, Executive Partner, Lakshmikumaran & Sridharan ; Ms. Malini Gulati, Head – Legal & Compliance, Boston Scientific; Mr. Somesh Tiwari, Managing Partner, Vardharma Chambers; Mr. Sriram SL, Data Protection Officer, Zomato Group & Mr. Sumant Nayak, Co-Chair, Corporate Affairs Committee, PHDCCI deliberated on the interpretational uncertainties that organizations may face in complying while implementing these Rules. Issues with respect to Significant Data Fiduciaries; exemptions for government data processing activities; Cross-border data transfers; restrictions on processing children’s data i.e., for profiling, behavioural monitoring or targeting purposes & due diligence obligation on SDF to verify that algorithmic software do not pose risk to rights of Data Principals were also deliberated in detail.

Mr. Rishi Kapoor, Co-Chair, Corporate Affairs Committee, PHDCCI; Ms. Shreya Suri, Partner, Indus Law; Mr. Sanjiv Arora, Director, Cystech Controls Pvt. Ltd & Mr. Somit Chitrey, Global Head-WRB Lending Fraud Risk, Standard Chartered Bank discussed on the Global Data Protection Regime including Case studies of Data Breaches and Emerging Trends & Future of Data Protection Laws in India.

*END*

Warm Regards,

Media Division,  PHDCCI