Every engagement is scoped to your size, sector and risk profile. Below is what we do — and how it fits into a coherent compliance posture, supported where it helps by our Consent Mitra platform.
A 4-to-6 week structured diagnostic that maps your current data practices against every applicable clause of the DPDPA. You receive a prioritised remediation roadmap with effort, cost and risk estimates — usable by your board and your auditors.
We translate the gap assessment into working artefacts: privacy notices that hold up legally and read well, consent flows that work in your apps, retention schedules engineers can enforce, and a breach response playbook tested through tabletop exercises.
For organisations classified as Significant Data Fiduciaries, the DPDPA requires the appointment of a Data Protection Officer based in India and accountable to the board. Our retainer model gives you a qualified, dedicated DPO without the cost of an in-house hire.
Compliance is a people problem before it's a paperwork problem. We deliver role-based training tailored to boards, frontline staff, engineering teams and HR — with completion certificates that form part of your audit evidence.
Annual independent audits performed against the DPDPA and its supporting rules. We produce a documented evidence pack that can withstand regulator scrutiny, customer due diligence, and board review — and we tell you what to fix before anyone else asks.
Data Protection Impact Assessments for new products, vendor onboarding and high-risk processing — with documented sign-off your board can defend if challenged by the Data Protection Board.