The Act is bringing much-needed clarity on consent, data retention, fiduciary obligations and accountability for all entities handling personal data.
FinTech BizNews Service
Mumbai, November 14, 2025: The Government of India has notified the Digital Personal Data Protection (DPDP) Rules, 2025, marking the full operationalisation of the DPDP Act, 2023. Together, the Act and Rules create a simple, citizen-focused and innovation-friendly framework for the responsible use of digital personal data.
Vishal Maru, Global Processing Head, Financial Software and Systems (FSS), points out:
“The Digital Personal Data Protection (DPDP) Act, passed in 2023, laid the foundation for India’s first comprehensive personal-data protection framework. With today’s notification of the DPDP Rules, the Act has formally been operationalised, bringing much-needed clarity on consent, data retention, fiduciary obligations and accountability for all entities handling personal data.
This comes at a crucial moment for the financial ecosystem, where AI-driven systems are rapidly scaling across payments, risk, and customer experience.
The message is clear, data governance is now both a regulatory imperative and a strategic advantage. At FSS, we welcome this move and are deepening our focus on privacy-by-design, lifecycle data controls and transparent AI pipelines to ensure our processing platforms remain trusted, compliant and future-ready.”
