Uncategorized
DPDPA vs GDPR: What Indian Startups Must Know
DPDPA vs GDPR: What Indian Startups Must Know Introduction Data privacy isn’t just a legal checkbox — it’s now a trust currency. With the Digital Personal Data Protection Act (DPDPA) coming into force in India and the GDPR reigning in the EU, startups that want to scale internationally must understand how these two laws compare. Key Differences Jurisdiction: GDPR has extraterritorial reach, DPDPA is primarily India-focused but applies to foreign entities handling Indian data. Consent Model: GDPR’s consent is explicit; DPDPA allows deemed consent in some cases. Penalties: GDPR fines go up to €20M or 4% of global turnover; DPDPA fines can hit ₹250 crore. Data Principal Rights: Both laws give rights to access, rectify, and erase — but GDPR is more detailed on portability. Startup Action Plan Startup Action Plan Draft unified privacy notices for global users. Integrate privacy-by-design early. CTA: Need a DPDPA-GDPR compliance roadmap? Contact us:- queries@priqai.com