Summary: The Internet and Mobile Association of India (IAMAI) has formally urged the government to retain the originally notified 18-month transition period for DPDP compliance. The body warns that accelerating the deadline to 3 or 12 months introduces serious operational risks, as companies struggle to re-engineer data architectures and renegotiate global vendor contracts.
Business Impact: Compliance Friction. For businesses in the region, a compressed timeline means higher legal costs and a greater risk of “unintended exposure” as security testing is rushed to meet deadlines. It creates significant policy uncertainty for global cloud providers.
Why It Happened: Industry bodies are pushing back against government proposals to fast-track enforcement for “Significant Data Fiduciaries” and children’s data processing rules before necessary guidance is provided.
Recommended Executive Action: Do not wait for the deadline. Conduct a “Data Mapping” exercise immediately to identify where you rely on third-party processors. Start renegotiating SLAs now to include DPDP obligations to avoid a last-minute compliance gap.
Hashtags: #DPDP #DataPrivacy #Compliance #IAMAI #CyberLaw #IndiaTech