India: Ministry of Electronics and Information Technology issued Digital Personal Data Protection Rules including cybersecurity regulation

Ministry of Electronics and Information Technology issued Digital Personal Data Protection Rules including cybersecurity regulation

On 13 November 2025, the Ministry of Electronics and Information Technology issued the Digital Personal Data Protection Rules implementing the Digital Personal Data Protection Act of 2023. The rules impose obligations on Data Fiduciaries and Data Pr…

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

cross-cutting

Implementation Level

national

Government Branch

executive

Government Body

other regulatory body

Complete timeline of this policy change

Hide details

2025-01-03

in consultation

On 3 January 2025, the Ministry of Electronics and Information Technology opened a public consultat…

2025-03-05

processing consultation

On 5 March 2025, the Ministry of Electronics and Information Technology closes the public consultat…

2025-11-13

adopted

On 13 November 2025, the Ministry of Electronics and Information Technology issued the Digital Pers…

Description

Ministry of Electronics and Information Technology issued Digital Personal Data Protection Rules including cybersecurity regulation

Scope

Complete timeline of this policy change