When did the DPDP Rules 2025 come into effect?

The Ministry of Electronics and IT (MeitY) notified the DPDP Rules 2025 on 13 November 2025. Phase 1 — definitions, the Data Protection Board's constitution and procedures, and digital functioning of the Board — became operative on 14 November 2025. Consent management rules (Phase 2) take effect in November 2026, and the bulk of substantive obligations apply by 13 May 2027.

Does the DPDP Act apply to AI systems?

Yes. The DPDP Act applies to any AI or machine-learning system that processes the personal data of Indian data principals, regardless of whether the system is internal or consumer-facing. The enterprise running the AI is the Data Fiduciary and carries the full set of obligations on consent, purpose, security, and breach response.

What is a Data Fiduciary in the context of AI?

A Data Fiduciary is the entity that determines the purpose and means of processing personal data. If your enterprise builds, deploys, or operates an AI system that processes personal data of Indian residents, you are the Data Fiduciary. Vendors processing on your behalf are Data Processors and remain under your accountability.

What does DPDP say about automated decision-making?

The Act expects that individuals are not subjected to decisions based solely on automated processing without meaningful human oversight. This makes explainability, fairness testing, and human-in-the-loop review essential parts of compliance for AI developers — particularly in credit, insurance, hiring, and any high-stakes domain.

How quickly must a personal data breach be notified?

Under the DPDP Act, Data Fiduciaries must notify the Data Protection Board of India and affected data principals of personal-data breaches within timelines prescribed under the Rules. Operationally this means an incident-response plan that can detect, classify, escalate, and notify within hours, not days.

What are the penalties under the DPDP Act?

The Act provides for graded financial penalties up to ₹250 crore per instance, depending on the nature and severity of the violation — including failure to take reasonable security safeguards, failure to notify a personal-data breach, and failure of a Significant Data Fiduciary to meet enhanced obligations.

How does DPDP compare with GDPR for AI compliance?

DPDP is broadly principles-based and lighter-touch than GDPR. It focuses on consent, purpose limitation, and security; it does not yet have the AI-specific provisions of the EU AI Act or the explicit Article 22 automated-decision protections of GDPR. However, DPDP's right to dispute automated decisions and the SDF impact-assessment regime move in the same direction. Enterprises serving both India and the EU should design once for the stricter standard and back it down where allowed.

What should enterprises do in the next 12 months?

Inventory every AI system that processes personal data; map data flows, vendors, and retention; rebuild consent journeys against the Phase 2 consent-management rules; stand up the breach-response runbook with Board-notification timelines; and implement audit logging across every AI agent invocation. Significant Data Fiduciaries should commission their first DPIA now, not in May 2027.

DPDP Act AI Compliance India: 2026 Guide for Enterprises

Q: Are there special obligations for Significant Data Fiduciaries?

Yes. The Central Government can notify a Data Fiduciary as a Significant Data Fiduciary (SDF) based on volume and sensitivity of data, risk to data principals, sovereign or electoral risk, and impact on public order. SDFs face additional obligations: Data Protection Impact Assessments, periodic audits, and appointment of an India-resident Data Protection Officer.

The Digital Personal Data Protection Act 2023 was always going to reshape how Indian enterprises build AI. With the DPDP Rules 2025 notified on 13 November 2025 and Phase 1 enforcement live since 14 November 2025, the question is no longer "what will the law require"; it is whether your AI systems are wired to comply by the time consent rules turn on in November 2026 and substantive obligations land on 13 May 2027.

This guide is the practical playbook. It covers what the Act says about AI specifically, the phased Rules timeline, who counts as a Data Fiduciary, the special obligations for Significant Data Fiduciaries, how automated decisions must be governed, and the engineering controls that make compliance defensible in an audit. Written for enterprise leaders, AI engineering teams, and the compliance officers who will sign off on production deployments.

What the DPDP Act Actually Says About AI

The DPDP Act does not single AI out by name. It does not need to. The Act applies to "the processing of digital personal data" — and an AI system that ingests, infers from, or acts on personal data is processing it under the Act's definition. Every AI use case that touches a customer's name, contact, financial behaviour, location, biometric data, browsing history, voice, image, or any combination falls inside the scope.

Two implications follow. First, AI compliance is not a separate workstream from data-protection compliance — it is data-protection compliance, applied to a system that often processes orders of magnitude more data than the legacy applications around it. Second, the Act's principles — consent, purpose limitation, data minimisation, accuracy, storage limitation, security, accountability — apply to model training data, retrieval corpora, vector embeddings, prompt logs, and output records, not just transactional databases.

The DPDP Rules 2025 Phased Timeline

The Rules notified on 13 November 2025 follow a three-phase implementation schedule. The dates that matter for AI programmes:

Phase	Effective	Scope
Phase 1 (immediate)	14 Nov 2025	Definitions, Data Protection Board constitution, Board procedures, digital functioning
Phase 2 (1 year)	Nov 2026	Rule 4 — Consent Management; obligations of Consent Managers
Phase 3 (18 months)	13 May 2027	Most substantive obligations on Data Fiduciaries — security, breach notification, data principal rights, SDF obligations

The Data Protection Board of India is operational, complaint mechanisms are live, and early enforcement actions have already begun. The 18-month runway is generous on paper and tight in practice — most enterprises will discover that consent re-architecture alone consumes a year.

Who Is a Data Fiduciary?

A Data Fiduciary is "any person who alone or in conjunction with other persons determines the purpose and means of processing of personal data." If your enterprise decides to deploy an AI system and decides what data goes into it, you are the Data Fiduciary. Your cloud provider, your model vendor, your annotation partner, your evaluation tooling — they are Data Processors acting on your instructions. The accountability sits with you.

The Central Government may notify a Data Fiduciary as a Significant Data Fiduciary (SDF) based on the volume and sensitivity of personal data processed, risk to data principals, potential impact on India's sovereignty and integrity, risk to electoral democracy, security of the State, and public order. SDF obligations include:

Appointment of an India-resident Data Protection Officer accountable to the board
Periodic Data Protection Impact Assessments
Periodic audits
Other measures the Government may prescribe

If you operate at scale in BFSI, healthcare, telecom, e-commerce, or social media — assume SDF designation is plausible and resource accordingly.

Automated Decision-Making Under DPDP

The Act expects that individuals are not subjected to decisions based solely on automated processing without meaningful human oversight. The implications for AI engineering teams are concrete. Credit-scoring agents, insurance-underwriting agents, hiring screens, fraud-flagging systems, and any high-stakes classifier must:

Be explainable — at minimum, expose the factors that drove the decision
Be auditable — maintain a tamper-evident trail of inputs, model version, prompt, retrieved context, and output
Be reviewable — give the data principal a path to dispute the outcome and trigger human re-examination
Be tested for fairness — measured for bias across protected attributes relevant to the decision
Carry human-in-the-loop checkpoints for the highest-stakes calls

For enterprises building agentic systems, this is where structured agent evaluation and the Responsible AI India posture earn their cost — they are how you produce the evidence that automated decisions were not solely automated.

Consent Under DPDP — Why It Breaks Most AI Systems

Consent under DPDP must be free, specific, informed, unconditional, and unambiguous, with a clear affirmative action. The notice supporting consent must be in plain language, available in English and any of the Eighth Schedule languages chosen by the data principal, and must specify the personal data being collected and the purpose of processing.

For AI systems, three patterns commonly fail this test. First, broad consent for "improving services" does not cover model training; consent for training is a separate, specific purpose. Second, consent obtained for one product cannot be re-used to train a model deployed in another product. Third, consent withdrawal must propagate downstream — including into vector stores, fine-tuned model checkpoints, and cached outputs — which most enterprise AI stacks are not engineered to handle.

Phase 2 of the Rules (November 2026) introduces Consent Managers as a formal category — registered intermediaries that capture, manage, and surface consent on behalf of data principals. Enterprises building AI products should design now for an architecture where consent state is a queryable, propagating signal, not a checkbox in a sign-up form.

Breach Notification and the AI Operating Model

The DPDP Act requires Data Fiduciaries to notify the Data Protection Board and affected data principals of any personal-data breach within prescribed timelines. AI systems introduce three new breach surfaces that traditional breach playbooks do not cover:

Prompt-injection exfiltration — an attacker manipulates a customer-facing agent into revealing personal data from its context window
Model output leakage — a fine-tuned model regurgitates training data, including PII
Vector store and retrieval leakage — misconfigured retrieval permissions return personal data to the wrong tenant

Your incident-response runbook must classify these as personal-data breaches, route them through the same notification path as a database compromise, and contain forensic evidence sufficient for a Board enquiry. Without LLMOps-grade observability — full prompt and output traces, retention controls, tenant isolation — you cannot detect the breach, let alone respond inside the prescribed window. See our companion guide on LLMOps in Production.

How DPDP Interacts with Sectoral Regulators

DPDP is the floor, not the ceiling. Sector regulators add layered AI obligations that operate alongside the Act:

RBI — the FREE-AI Committee report (issued 13 August 2025) sets 7 Sutras, 6 Pillars, and 26 recommendations for AI in regulated entities, including board-approved AI policies, AI disclosures in annual reports, and an AI sandbox
SEBI — the May 2019 circular requires registered mutual funds to file quarterly AI/ML usage reports with AMFI; the June 2025 consultation paper proposes broader governance, fairness, and disclosure obligations across the securities market
IRDAI — sectoral guidance on insurer use of AI in underwriting and claims is evolving
MeitY — advisories on labelling generated content, mitigating bias, and explicit consent for under-tested models

An Indian enterprise building AI in a regulated sector must satisfy DPDP plus the relevant sectoral regime. Designing once for the strictest applicable standard is the only sustainable approach.

A 12-Month Compliance Roadmap

If you are starting now, the work breaks into four quarters:

Q1 — Inventory and gap analysis. Catalogue every AI system that processes personal data. Map data flows, vendors, retention windows, and existing consent state. Score each system against DPDP requirements.
Q2 — Consent and notice rebuild. Re-architect consent journeys against Phase 2 (November 2026) requirements. Implement consent state as a queryable, propagating signal across applications, model layer, vector store, and logs.
Q3 — Engineering controls. Stand up audit logging across agent invocations, tenant isolation in retrieval, breach-detection runbooks, automated-decision review paths, and bias testing for high-stakes models.
Q4 — Governance and audit. Appoint accountable owners (Data Protection Officer for SDFs), commission the first DPIA, run a tabletop breach simulation, and align internal audit programmes to the new regime.

This sequence gets you to operational compliance with months to spare before May 2027 — and far more importantly, it gets your AI roadmap unblocked. Programmes that delay the compliance work end up rebuilding their AI estate in 2027 under regulator scrutiny.

What an Audit-Ready AI System Looks Like

The phrase "we are DPDP-compliant" does not survive a Data Protection Board enquiry. Evidence does. An audit-ready AI system can produce, on demand:

The consent state of every data principal whose data sits in training corpora, vector stores, or prompt logs — including timestamp, scope, language, and any subsequent withdrawal
The full lineage of any model output a customer disputes — prompt, retrieved context, model version, parameters, and the human reviewer (if any) who approved the action
The risk classification, fairness test results, and DPIA (where applicable) for every production AI system
The breach detection rules, the response runbook, and any breach-test exercises run in the last twelve months
The vendor register with Data Processor agreements covering every external service that touches personal data

If you cannot produce these on twenty-four hours' notice, the gap is not paperwork — it is engineering.

Talk to humaineeti about your DPDP & AI posture

DPDP Act AI Compliance, India.