The India DPDPA is now a reality

Get Compliant with Arrka

Check your DPDPA Readiness!

Take the Free Assessment Today.

Why Arrka?

Been equipping and empowering organizations to implement & operationalize Privacy compliance for a decade.
‘Cut our teeth’ on GDPR – enabling over a 100 clients in India alone
The Arrka Privacy Management Platform (APMP) – first and only end-to-end Privacy Management Platform proudly Made-in-India, servicing the world
We do ONLY Data Privacy. Focused. Niche. Highly Specialised

Take the Arrka Privacy Assessement

Check Your DPDPA Readiness

The DPDPA: Primer for Organizations

The DPDPA Implementation Ready Reckoner

Trusted Partners for

Our clients talk for us

We collaborated with Arrka to evaluate our current data protection methods, determine any necessary improvements, and provide guidance on implementing changes with minimal disruption to our business operations. Arrka reviewed the system we had in place, and then advised and suggested the policies that we would need to have to ensure we were PDPB (Personal Data Protection Bill) compliant and trained our team on PDPB.

We are an Engineering Software Development company working with large & demanding clients across the world. We decided to move on the journey to achieve Security Compliance ISO 27001 recently. For our journey, we needed a reliable partner which could help us along the way. Arrka with its experienced team and out-of-the-box platform have been meticulous and persistent in formulation and implementation of the security strategies across the company.

"After our experience with other Privacy Management solution providers, I can surely say that Arrka is the best solution right now. Its return on investment allows our organization to be compliant with data privacy laws. Arrka provides us with a trusted and powerful platform that enables us to ensure compliance across ISO, ISMS & GDPR. They provide excellent service to help us to manage our privacy, review KPIs of our IT Security systems and ensure that we are staying on the right path".

Quick Assessments

Gap Assessments, DPIAs, Third Party Assessments, Client Assessments - all built in.

Policies, Templates, Workflows, Contract Management on tap

Generate privacy policies, enable PbD, set up & manage DSRRs, manage client & vendor contracts.

Personal Data Management

Identify your Personal Data (PD), Map PD flows to Third parties/ Clients, set up & manage your PD Inventory.

Central Privacy Portal

A portal for your Data Principles to manage their consents, view notices, exercise choices and Rights.

FAQs on India DPDPA compliance

We are not located in India. Is the India DPDPA applicable to my organization?

– DPDPA is applicable to your organization if:
o You interact with individuals who reside in India for your products & services
o You don’t necessarily ‘sell’ to residents in India but target and profile them online for your business
o You have employees based in India.
– DPDPA is also applicable to your organization if:
o Yours is a B2B business where your clients are organizations who operate in India, and they share the personal data of Indian residents with you.

We have a privacy policy and the required documentation in place for the India DPDPA. Are we not already compliant? What more is needed?

– Your policy needs to be translated into reality.
o For e.g., when you state in your policy that you use the Personal Data you collect only for a list of, say, 5 purposes, then you need to ensure that you put the right processes and controls in place to ensure that actually happens in reality. Further, you need to monitor these to ensure they actually work.
– Similarly, you may have a documented process for catering to an incoming Rights request from a Data Principals. This has to be operationalized so that when someone actually exercises their rights with you, you are geared up for it.
o For e.g., someone may ask you to erase her data with you. For this, you need to know all the places where her data is located – within your organization as well as with any vendors or partners. You need to have a mechanism to authenticate the request – to ensure it is not a fraudulent request. You need to have people in your organization trained to track and respond to such requests. And several such other steps.
– All of this – and more – can be deployed and managed easily and effectively with Arrka’s solution.

We have no one in our organization who understands DPDPA in depth nor does anyone have the time to spend on this. Yet we have to comply. How does Arrka help?

– We at Arrka have done all the hard work on your behalf – so you don’t need to spend time understanding what DPDPA is all about. All of this is baked into the platform via our Frameworks and libraries.
– Further, we have a team of consultants who will handhold you through the whole process to get you going. And if you need help for day-to-day management of your DPDPB program, then the Arrka team can take that on as well. In short, we work as your extended DPDPDB Compliance team.

We haven’t really got our Data Security together either. Can Arrka help with that?

– Yes, Arrka’s platform is designed to equip you to take care of both your privacy as well as security compliance and governance needs.

I would like to comply with ISO27001/27701 as well in parallel. Can Arrka do that as well?

– Yes, Arrka can do both in tandem

We have users and customers across 10 different countries – each of whom have their own privacy laws. How does the Arrka solution work in this case?

– The Arrka platform is designed to help you do ‘simultaneous compliance’. Which means you can comply with all the applicable Data Privacy & Security Laws & Standards simultaneously, in one go. Further, you can add on any new law or standard anytime without having to go back to the starting point.

We already have a legal counsel who is our ‘Go-to’ person for DPDPA. Why would I need the Arrka platform then?

– This is great news. The Arrka platform perfectly synchronizes with the work done by your legal counsel and operationalizes all that the legal team does.

If we use the Arrka solution, will our customer or employee customer data reside on the Arrka platform?

– Not at all! Your data continues to remain exactly where it is. The Arrka platform only helps you manage the compliance end-to-end, for which we do not need access to the actual data at any point in time.

If we use the Arrka solution, will we need to deploy anything on our servers?

– No. Nothing is required to be installed or deployed on your servers

If we need to reach out and talk to a Privacy expert at any point in time, can Arrka help with that?

– Yes, Arrka has a pool of Privacy Experts who can step in to help you with any queries you have or any assistance you may need.

We're Ready, Let's Talk.

Contact Info

Email Us

info@arrka.com

Login