Introduction: 

The term Artificial intelligence and Machine learning has been the buzzword for the past few years, for instance, Google Executives including CEO Sundar Pichai used the word ” AI” for at least 150 times during a 2-hour Google I/O 2023 Keynote announcement. To substantiate the same, PwC published a report titled “PwC’s Global Artificial Intelligence Study: Sizing the Prize” published in 2017 predicts that AI could contribute up to $15.7 trillion to the global economy. To keep pace with this rapid development, preserve consumer privacy, and ensure robust data protection, various regulatory authorities have released whitepapers and regulations to articulate compliance mandates for organizations aiming to efficiently use artificial intelligence and machine learning technologies without violating core data protection and privacy rights.

To catch up with the compliance trend, the Indian government after 5 years of several rounds of consultation, finally passed a comprehensive legislation for Data Protection titled “Digital Personal Data Protection Act 2023” and the act has mandated several mandatory compliance requirements for companies operating and providing services in India. In addition to the compliance requirements under the DPDP Act, the Honorable Indian IT Minister Rajeev Chandrasekhar during a press conference mentioned that several Data protection rules (since most of the provisions in the act left the scope of compliance procedures to be guided by delegated legislations) will come out within mid of October 2023 and notifies that the maximum grace period for compliance will not be more than 12 months.  

Read More