Preparing for India’s Digital Personal Data Protection (DPDP) Act
Published by Merlin M on 16, December 2025

India has introduced a new data protection law, the Digital Personal Data Protection Act, 2023 (DPDP Act). It sets out how organizations should collect, use, and protect personal data in the digital ecosystem.
At Adjutas, we believe transparency builds trust. This post explains how we are preparing for the DPDP Act and what it means for our customers.
What is the DPDP Act?
The DPDP Act is India’s first comprehensive law focused on protecting digital personal data. Its objective is simple: to give individuals more control over their personal data while ensuring organizations handle that data responsibly and securely.
The law introduces concepts such as user consent, purpose limitation, data security, and accountability. These principles align closely with how modern SaaS platforms should operate.
Our Approach to DPDP Compliance
Over the coming months, we will be implementing updates across our systems and processes to align with the DPDP Act. These updates are aimed at strengthening how we manage personal data, not changing how you use our product.
Our focus areas include:
- Clearer documentation of what data we collect and why
- Stronger internal controls around data access and security
- Well-defined data retention and deletion practices
- Improved transparency around user rights and grievance handling
Where required, we will update our policies, workflows, and technical safeguards to meet the expectations set out under the law.
What This Means for You
As we roll out these updates, you may notice changes in how we describe data usage, how certain preferences are managed, or how data-related requests are handled. Any material changes will be communicated clearly and in advance.
Importantly:
- There is no action required from you at this time
- Our services will continue to function as usual
- We will keep you informed as our DPDP implementation progresses
Data Storage and Processing
Like most modern technology platforms, we use trusted cloud service providers to operate our services efficiently and securely. Depending on the service, data may be processed or stored within India or in other jurisdictions, in line with applicable legal requirements and safeguards under the DPDP Act.
Our priority remains the security, confidentiality, and responsible use of your data, regardless of where it is processed.
Staying Transparent
Compliance is not a one-time exercise. As guidance evolves and implementation progresses, we will continue to review and improve our practices.
We are committed to keeping our customers informed and ensuring that data protection remains a core part of how we build and operate our products.
If you have any questions or would like to know more about our approach to data protection, you can reach us.