⚠️ DPDP Act 2023 · Enforced May 2027

Know your DPDP compliance score in 5 minutes. Free.

Every Indian business processing personal data must implement ‘reasonable security safeguards’ or face ₹250 Crore penalties.

Results delivered in 5 minutes via email. No credit card. No sales call.

Want a different scan type? Book any scan free on our home page.

Schedule I

What DPDP Actually Requires

The Act defines 7 categories of obligations. Non-compliance with any single category can trigger the full ₹250 Crore penalty.

01

Reasonable Security Safeguards

Implement encryption, access controls, and vulnerability management proportionate to the data you process.

02

Consent Management

Obtain free, specific, informed consent with clear withdrawal mechanisms — in all 22 scheduled languages.

03

Data Principal Rights

Respond to access, correction, and erasure requests within 48 hours of receipt.

04

Breach Notification

Report personal data breaches to CERT-In within 6 hours and notify affected individuals without delay.

05

Data Fiduciary Obligations

Maintain processing records, conduct periodic audits, and appoint a Data Protection Officer if classified as Significant.

06

Retention Limits

Delete personal data when consent is withdrawn or the purpose is fulfilled — no indefinite storage.

07

Children's Data Protection

Obtain verifiable parental consent before processing data of individuals under 18. No behavioral tracking.

Source: DPDP Act 2023, Schedule I

Honest Scope

Bachao.AI is not a certification body. We cannot issue ISO 27001, SOC 2, or DPDP certificates.

Implement technical controls
Generate evidence documentation
Map infrastructure against DPDP
Connect to certified vCISO network

Start Free. Upgrade When Ready.

Get your DPDP score instantly — no sign-up, no credit card. Upgrade only if you need the full compliance toolkit.

Free

₹0

No credit card required

  • DPDP score 0–100
  • Top 5 compliance gaps
  • Severity rating
  • Email delivery
  • No sign-up hassle
Recommended

Full Report

₹2,000

One-time. No recurring fees.

  • Detailed gap analysis per requirement
  • 16 evidence templates
  • Breach notification template
  • Board presentation deck
  • vCISO review call
  • Re-assessment in 90 days
  • Fix quote from Bachao.AI

DPDP Enforcement Timeline

The clock is already ticking. There is no grace period after May 13, 2027.

1

Nov 2025

Board constituted

2

Nov 2026

Registration opens

3

May 13, 2027

Full enforcement

Time remaining until enforcement

--Days
--Hours
--Min
--Sec
Source: MeitY — DPDP Act 2023

The Penalties Are Real

₹250 Cr

Max penalty per violation

DPDP Act 2023, Schedule I

₹500 Cr

Cumulative annual cap per entity

DPDP Act 2023, Section 33

For a startup with ₹2 Crore revenue — a single ₹250 Crore penalty is 125 years of revenue.

Source: DPDP Act 2023, Schedule I & Section 33

Don’t wait for enforcement.

Check your DPDP score now — free.

Get Your Free DPDP Score →

No sign-up. No credit card. Results in 5 minutes.

Free DPDP Check ₹0Scan Now ₹1,999