As organisatio ns prepare for compliance with India’s Digital Personal Data Protection Act, 2023 (DPDPA), the first step is understanding their current data protection posture. In this session from Spice Route Legal’s Cocktails & Compliance – Financial Services Edition, Vishnu Naduvakkad (Associate) explains how organisations can conduct a DPDPA gap assessment, map data processing activities, and identify compliance gaps under India’s evolving data protection framework. The discussion covers:

• Structuring an effective DPDPA gap report
• Mapping organisational data processing activities
• Identifying conflicts with sectoral regulations
• Using a structured compliance matrix to prioritise risks
• Building a practical roadmap for operationalising DPDPA compliance

A useful primer for banks, fintechs, digital platforms, and companies handling personal data in India.