New Delhi: India’s new Digital Personal Data Protection (DPDP) Rules are accelerating the need for stronger data governance frameworks across enterprises. With the rules notified on 13 November 2025 and an 18-month compliance window now active, companies face increased pressure to address data sprawl, strengthen safeguards, and ensure accountable use of personal data.
Skyflow has announced a Data Privacy Vault designed to meet the technical requirements outlined in the DPDP framework. The platform focuses on isolating and securing personal data through encryption, tokenization, masking, and obfuscation, while enabling controlled use of data in analytics and AI workflows. It also incorporates purpose-based access controls, retention governance, audit logs, and mechanisms to support consent management and data principal rights.
Industry assessments highlight the scale of the compliance challenge. A 2024 Protiviti–CII survey found that only 24% of Indian organisations consider themselves prepared for emerging privacy requirements, underscoring widespread risks associated with fragmented data environments.
Cybersecurity experts note that the notification of DPDP Rules signals a shift towards privacy-centric architectures. Early adopters in sectors such as e-commerce and financial services report integrating data privacy vaults to strengthen operational accountability and meet evolving regulatory expectations.
