Regulation & Compliance - June 5, 2026 - 7 min read
DPDP Rules 2025 and the Insurance Compliance Timeline: What the Phased Clock Means for Insurers, Brokers and TPAs
The Digital Personal Data Protection Rules 2025, notified on 13 November 2025, put a phased clock on the obligations insurers, brokers and TPAs carry as Data Fiduciaries. This post sets out the three-stage sequence to 13 May 2027, what consent, breach notification and data-principal rights demand operationally, and how it intersects with the IRDAI cyber guidelines.
By Sarvada Editorial Team