Whalesbook Logo

Whalesbook

  • Home
  • About Us
  • Contact Us
  • News
  • Stocks
  • Premium
Back

Your Data, Your Rights! India's New Law Makes Companies Reveal Breaches Instantly!

Tech

|

Updated on 14th November 2025, 9:12 PM

Whalesbook Logo

Author

Satyam Jha | Whalesbook News Team

alert-banner
Get it on Google PlayDownload on App Store

Crux:

India's new Digital Personal Data Protection law is now operational. Companies handling digital data must immediately inform affected users and the Data Protection Board about any breaches, detailing the incident, consequences, and mitigation steps. They are also required to publish their Data Protection Officer's contact information. While the Data Protection Board is established, core data handling obligations for companies will become enforceable only after 18 months.

Your Data, Your Rights! India's New Law Makes Companies Reveal Breaches Instantly!

▶

Detailed Coverage:

India's Digital Personal Data Protection law is now active, introducing significant changes for entities processing digital data. A primary requirement is the prompt notification of data breaches to both affected users and the newly formed Data Protection Board. This notification must include specifics about the breach, its extent, timing, consequences, and the measures being taken to address it and safeguard user interests.

Companies will also need to provide the Board with updated breach information within 72 hours. Additionally, businesses engaged in online data processing must prominently display the contact details of their Data Protection Officer on their website or app, serving as the point of contact for user queries regarding data processing.

However, the full legal force of these rules will take time. The Data Protection Board has been constituted, but the substantive obligations for data fiduciaries will only be enforceable after an 18-month period. This creates an interim phase where the Board exists but has limited immediate enforcement power over these specific duties.

Impact Rating: 9/10 This law mandates increased transparency and accountability for companies handling personal data in India. It poses a significant compliance challenge but aims to enhance user privacy rights and build trust in the digital ecosystem. Businesses must invest in robust data breach response mechanisms and transparent data handling practices.

Difficult Terms Data Breach: An incident where sensitive, protected, or confidential data is accessed, disclosed, or used without authorization. Data Protection Board: A statutory body established under the Digital Personal Data Protection Act to oversee its implementation and enforce its provisions. Data Fiduciaries: Entities that determine the purpose and means of processing personal data. Prominently Publish: To make information easily visible and accessible to users, typically by displaying it clearly on a website or mobile application.

Aerospace & Defense Sector

₹100 Cr Defence Deal Alert! Indian Army Orders New Drones from ideaForge - Huge Boost for Investors!

₹100 Cr Defence Deal Alert! Indian Army Orders New Drones from ideaForge - Huge Boost for Investors!

Environment Sector

SC's Devastating Blow to Mining? Saranda Forest Declared Wildlife Sanctuary, Development HALTED!

SC's Devastating Blow to Mining? Saranda Forest Declared Wildlife Sanctuary, Development HALTED!

Shocking UN Report: India's Cities Overheating! Cooling Demand to TRIPLE, Emissions Skyrocket – Are YOU Prepared?

Shocking UN Report: India's Cities Overheating! Cooling Demand to TRIPLE, Emissions Skyrocket – Are YOU Prepared?

India's Water Wealth: ₹3 Lakh Crore Opportunity Unlocked by Reusing Wastewater – Jobs, Growth & Resilience Boom!

India's Water Wealth: ₹3 Lakh Crore Opportunity Unlocked by Reusing Wastewater – Jobs, Growth & Resilience Boom!