A major change came on November 14 after the government announced that new rules require deletion of inactive user data, affecting e-commerce platforms, social media companies, and online gaming services. Under these rules, any user who does not log in or use a platform for three years will have their personal data erased. This move aims to protect millions of Indians as the country’s digital space continues to grow.
The rule applies to online gaming companies with more than 5 million users and to social media and e-commerce platforms with over 20 million users. Before deleting the data, companies must alert inactive users at least 48 hours earlier, giving them a chance to log in and keep their information. This step ensures that users remain informed and in control of their data.
India’s digital growth is especially strong in states like Punjab, which had more than 20.4 million internet users in 2022. Cities such as Chandigarh, home to several tech startups, now need to update their systems to follow the DPDP Act. These businesses must explain to users what data they collect and how they use it.
Larger companies, known as significant data fiduciaries, face even stricter rules. Since they handle massive amounts of personal information, they must conduct yearly audits and perform a Data Protection Impact Assessment. These checks help ensure that companies fix weaknesses and continue protecting user rights.
The DPDP Act also allows cross-border data sharing, but only with strict safeguards. The government insists that companies must take extra care when sending user data to foreign countries, especially those controlled by another government. This helps prevent misuse of sensitive information.
These new requirements mark a turning point for digital privacy in India. As more people shop, play games, and communicate online, strong data protection rules have become essential. Companies must now train staff, update technology, and clearly inform users about privacy policies. This transition period gives them time to meet the new standards effectively.
Furthermore, these rules will help build trust between users and digital businesses. When people know their data is safe, they feel more comfortable using online services. As Chandigarh and other major cities continue to grow. And strong privacy rules will support better digital services and more responsible data handling.
In summary, the DPDP Act makes personal data safety a national priority. It also ensures that people understand their rights in the digital world. With these changes, India is moving toward a safer and more transparent online future, one where new rules require deletion of inactive user data and protect every user.
