Who must comply with the DPDP Act?

All businesses that process digital personal data of Indian citizens — whether inside or outside India — must comply with the DPDP Act. This includes SaaS companies, HRMS providers, e-commerce platforms, healthcare organisations, and more.

What are the penalties for non-compliance?

Penalties under the DPDP Act can reach up to ₹250 crore per violation for significant data breaches. The enforcement deadline is May 2027.

Quick Answer

What is the DPDP Act 2023 compliance checklist? A DPDP Act 2023 compliance checklist covers eight core areas: (1) Appoint a Grievance Officer and publish contact details, (2) Update Privacy Notice to meet DPDP requirements, (3) Build a valid consent mechanism for all personal data processing, (4) Create a data inventory mapping all personal data flows, (5) Sign DPAs with all Data Processors, (6) Implement a Data Principal Rights fulfilment process, (7) Establish a breach detection and notification procedure, and (8) Define data retention periods and deletion mechanisms for each data category.

Free Tool — No Login Required

DPDP Act 2023 Compliance Checklist — 8 Steps to Full Compliance

Q: What is the DPDP Act?

The Digital Personal Data Protection Act, 2023 (DPDP Act) is India's comprehensive data privacy law. It governs how organisations collect, store, and process personal data of Indian citizens.

Audit your organisation's readiness across 8 compliance categories. Get an instant score and identify your highest-risk gaps.

50Checkpoints

8Categories

~8 minTo Complete

May 2027Enforcement Deadline

0 / 50 Complete — 0%

Tell us about your organisation

This helps us contextualise your compliance score and tailor the remediation report to your sector.

Your Name

Company Name

Work Email

Sector

Employee Count

Your DPDP Compliance Score

Based on your responses across 8 compliance categories

0% Complete

Calculating…

Top 3 Compliance Gaps — Focus Here First

Score by Category

Get Your Personalised 50-Point Remediation Report

We'll analyse your gaps and send a step-by-step action plan — specific to your sector and company size. Free, no spam.

Report request received. Check your inbox within 24 hours.