Latest cybersecurity news.
Hacks, breaches, vulnerabilities, regulatory moves — tracked and contextualised for Indian security teams.
DPDP Significant Data Fiduciary Rules: What Indian Businesses Must Prepare For
India’s Ministry of Electronics and Information Technology (MeitY) has been expected to finalise the rules under the Digital Personal Data Protection (DPDP) Act 2023 — and the draft provisions around Significant Data Fiduciaries (SDFs) are the most consequential for mid-to-large businesses. If your organisation processes personal data at scale, the SDF designation carries obligations that […]
Read moreSignificant Data Fiduciary Under DPDP: 2026 Obligations Guide
What Significant Data Fiduciary status means under DPDP, how to tell if you qualify, and the extra obligations Indian organisations must prepare for in 2026.
Read moreDPDP Consent Manager Framework 2026: What CISOs Must Build
What the DPDP consent manager framework requires, the 13 November 2026 date, and how Indian data fiduciaries should prepare now.
Read moreDPDP Rules 2025: Compliance Deadlines Every Indian Firm Must Hit in 2026
The DPDP Rules are notified — here is the enforceable timeline and a quarter-by-quarter readiness plan for Indian businesses in 2026.
Read moreIndia AI Rules 2026: Deepfake Labelling, DPDP and What Compliance Now Demands
India AI rules 2026 explained: deepfake labelling under the IT Rules, DPDP duties for AI training data, plus a practical compliance checklist for business.
Read moreScenario Brief: What Tighter RBI Cyber Master Direction Controls Would Mean for PSOs
Tabletop-ready regulatory scenario: continuous control monitoring, board-level cyber risk committees, and a 4-hour SLA on critical incident notification for PSOs.
Read moreScenario Brief: How a DPDP Penalty for S3 Misconfiguration Could Unfold
Tabletop-ready compliance scenario: how a public S3 bucket leaking identity documents could lead to a major DPDP Board penalty, and what Data Fiduciaries should do.
Read moreDPDP Phase 2 Effective Date Locked: What Indian SaaS Must Ship by August 2026
What just shifted MeitY’s notification of Phase 2 of the DPDP Rules has locked the effective date for several previously-flagged sections. The headline change is that the bulk of operational obligations on data fiduciaries — grievance redressal SLAs, breach-notification timelines, the Consent Manager interaction model, and the cross-border negative-list mechanic — go live on 1 […]
Read more