Digital Policy Alert logo

India: Entry into force with grace period of Digital Personal Data Protection Act including cross-border data transfer regulation

Policy overview

Description

Entry into force with grace period of Digital Personal Data Protection Act including cross-border data transfer regulation

On 11 August 2023, the Digital Personal Data Protection Act entered into force after receiving Presidential assent. The Act allows the transfer of personal data but enables the Central Government to restrict data transfers to foreign countries or territories outside India through a notification.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Cross-border data transfer regulation
Regulated Economic Activity
cross-cutting
Implementation Level
national
Government Branch
legislature
Government Body
parliament

Complete timeline of this policy change

Hide details
2022-11-18
in consultation

On 18 November 2022, India's Ministry of Electronics and Information Technology (MeitY) opened a pu…

2023-01-02
processing consultation

On 2 January 2023, the public consultation on the Digital Personal Data Protection (DPDP) Act, whic…

2023-08-03
under deliberation

On 3 August 2023, the Digital Personal Data Protection Act was introduced in the Indian Parliament …

2023-08-07
under deliberation

On 7 August 2023, the Digital Personal Data Protection Act was passed by the Lok Sabha (Parliament’…

2023-08-09
adopted

On 9 August 2023, the Digital Personal Data Protection Act was adopted by the Rajya Sabha (Parliame…

2023-08-11
in grace period

On 11 August 2023, the Digital Personal Data Protection Act entered into force after receiving Pres…