The Digital Personal Data Protection Act, 2023

The Digital Personal Data Protection Act, 2023 (2nd Edition, 2026) by Yogesh V Nayyar provides a clear and practical interpretation of India's newly implemented data protection framework, aligned with global standards. This edition explains the structure and purpose of the Act, including the concepts of data, data processing, data principals, data fiduciaries, and the statutory rights and duties governing them. It contextualises the law within international developments and constitutional privacy jurisprudence, tracing its evolution from the landmark Justice K.S. Puttaswamy judgment to the establishment of a dedicated regulatory mechanism for personal data protection. Designed as a comprehensive reference, the book helps readers understand the legal, procedural, and compliance implications of the DPDP Act, 2023 and the Digital Personal Data Protection Rules, 2025.

Key Features:

• Includes the complete text of the Digital Personal Data Protection Act, 2023, and DPDP Rules, 2025, for direct reference.
• Comparative analysis of international data protection frameworks such as EU GDPR, UK regulations, UN conventions, OECD Guidelines, ASEAN Framework, APEC Privacy Framework, and Convention 108+.
• Addresses supersession and transition from the Information Technology Act, 2000/2008.
• Structured explanations supported by case studies, case laws, and practical examples for real-world understanding.
• Clarifies regulatory processes, including rights to erasure, complaint mechanism before the Board, enforcement actions, and penalties.
• Extensive FAQs and conceptual breakdowns to simplify complex compliance obligations for organisations.

This handbook is an essential reference for lawyers, judges, compliance officers, data protection officers, in-house legal teams, privacy and IT security professionals, corporate policy makers, and regulatory consultants responsible for implementing personal data governance.