FDPPI is your Privacy Companion

FDPPI is launching the next C.DPO.DA. certification program as a virtual program during week ends in a convenient 3 hour slot per day.

The program will extend for a total of 18 hours between 10.00 am to 1.00 pm on April 12, 13, 19, 20, 26 and 27.

An optional Exam preparatory session is also planned on May 4, 2025.

The fees for the program would be Rs 35000/- +GST , totalling Rs 41300/-

A Early Bird discount will be applicable upto 31st march 2025  amounting to Rs 5000/-.

Those availing the early Bird Discount would pay Rs 30000/- plus GST totalling to Rs 35400/-.

Current members of FDPPI will have a discount of Rs 7000/- (20%) and the total fee for them with GST would be Rs 33040/- (This will be applicable to the employees of the Corporate members also.)

Finally, on popular request,

a) a special discount of 15% would be available for all those who are already certified as Data Protection Professionals under DSCI, ISACA and CIPP. Such professionals may pay Rs 29750/- plus GST of Rs 5355/- totalling Rs 35105/- ( FDPPI may request for proof of certification)

b) a special discount of 10% would be available to all those who have been certified by an appropriate certification agency for ISO 27001 as lead implementer or auditor. Fees payable by them would be Rs 31500/- plus GST of Rs 5670/- totalling Rs 37170/- ( FDPPI may request for proof of certification)

Ujvala Consultants which is a patron member of FDPPI would also sponsor a few deserving professionals who cannot afford the above fees and a special request thereof may be sent to Naavi.

Those who have already enrolled to the virtual recorded sessions program on the website of FDPPI or Cyber Law College will be provided a complementary entry to this 18 hour program on request.

All Paid Participants would be eligible for one free sitting for the examination worth Rs 10000/- and also one year complementary membership of FDPPI worth Rs 6000/-

As a summary the following table indicates the fees payable:

For Registration

Step 1: Please make the  payment as per the above table.

Step 2: Complete the following registration form. 

PAY HERE

As the era of DPDPA dawns in India, we have the eternal question…

India does not have a culture of Privacy. Will a Data Principal respect his own privacy and use the provisions of the law? ..Will  he lodge complaints to the DPB?  …. How do we create awareness of the rights in the minds of the public at large?

At the same time, the question on the other side …of the organizations also linger…

Will organizations comply with the law? … Will they keep ignoring the law and wait for DPB start imposing the fines…whenever they can?…. Will they also be bogged down by ignorance and inability to interpret the law?

This lack  of  “In-Depth understanding” of the law on both the individuals and the organizations is likely to be one of the reasons why DPDPA 2023 implementation in India could be delayed beyond reasonable time.

As an organization with a commitment to “Privacy in Practice”, FDPPI has undertaken a new project “Privacy Mitra Yojana” with the objective of assisting both the individuals and the organizations to spread the knowledge of DPDPA 2023 and its benefits across the country .

Under this project FDPPI invites members of the public to register themselves as “Privacy Mitra”  and contribute towards the efforts of FDPPI to spread awareness of Privacy and DPDPA 2023 in Schools, Colleges as well as industry circles.

We have created a Linkedin Group for those of you who are interested in joining this movement. You can join the Group here:

Privacy Mitra Linkedin Group

FDPPI has organized the next in-person Training for C.DPO.DA. at Mumbai on January 24, 25 and 26.

Registration is open now:

Registration fee Rs 45000/- plus GST (Total Rs 53100/-)

Early Bird Discounted price : Rs 35000/- plus GST (Total Rs 41300/- )

Early Bird Discount for upto 15th January 2025 only

You can register by making a payment here

Kindly indicate your full name, designation, e-mail address along with the payment. You will receive an acknowledgement soon after payment.

The program coverage is as follows

The program will be inaugurated  by Mr Abhishek Solanki of CERT IN and sessions will be conducted by Naavi and Ramesh Venkataraman.

Consequent to the publication of draft DPDPA Rules, it has become essential for responsible Corporate Managements to take some corporate action o DPDPA Compliance immediately.

FDPPI recommends  the following actions.

1. Pass a resolution that the Company has taken note of the issue of draft rules and the potential impact of the enforcement of DPDPA in the coming financial year.

2. Pass a resolution appointing a suitable person as a “DPDPA Compliance Officer” who may be later promoted if suitable as a DPO.

3. Depute the Compliance officer to a training like C.DPO.DA. of FDPPI so that he can make a detailed assessment and recommend further action.

In order to assist such companies who want to take off, FDPPI will be providing the following services .

1. Conduct C.DPO.DA. program for 3 days at Mumbai on January 24, 25 and 26 (Registration now open with Early Bird Discount available now).

2.Conduct a similar physical program in Delhi if possible before March 2025. (To be Scheduled)

3.Conduct at least one Virtual program before March 2025 (To Be Scheduled)

4. Institute a quick Business Impact Assessment through a Virtual interaction with corporate Managements (on a short virtual session) on request. (At a Cost of Rs 10000-25000)

(P.S: Considering the current assignments of FDPPI/Naavi booked with FDPPI, there could be scope for not more than 5 to six assessments before March 2025).

Interested company officials need to contact FDPPI immediately by visiting the website www.fdppi.in or contact Naavi through www.naavi.org.

To All Information Security Auditors in India

Dear Friend,

Greetings and good wishes for a prosperous new year from FDPPI (Foundation of Data Protection Professionals in India).

FDPPI is  committed to the promotion of a Privacy Compliance culture in India through its various programs. “No Excuses, Just Be Compliant” is the nudge for Indian companies. 

Towards this objective, FDPPI is conducting certification programs in the area of Privacy with focus on DPDP Act 2023 (Digital Personal Data Protection Act 2023). The Certification program is available  on tap as an online program titled Certified DPO and Data Auditor (C.DPO.DA). From time to time, we also conduct  3 days in-person training program of C.DPO.DA at various centres.

For audit firms engaged in Information Security related audits such as ISO 27001, PCI DSS, etc., this Certification is a great opportunity to transform themselves into the new area of “Data Audit”.
If you are a Cert In empanelled auditor, you may remember the email dated 5^th September, 2024 from the empanelment division of CERT-In in which CERT-In had recommended the training program of C.DPO. DA. (Certified DPO and Data Auditors) conducted by FDPPI as an essential training for the auditors. Following the above circular from CERT-In, one in-person program was conducted at Bangalore for 3 days on September 27, 28 and 29. The Program was well received and Dr Ashutosh Bahuguna from CERT-In also addressed the participants during the training program.

In view of the forthcoming Rules for implementation of DPDP Act 2023, we have planned next 3 days C.DPO.DA in-person training program in Mumbai from 24^th to 26^th January, 2025.

During this program, there will be a detailed discussion on the implementation of DPDPA compliance in organizations along with how to audit and certify for compliance. The discussions will be based on the legal framework set by IT Act 2000 and DPDPA 2023 and how the FDPPI developed framework of DGPSI (Data Governance and Protection Standard of India) is going to meet the compliance.  The program will be based on case study discussions and cover all aspects of DPDPA 2023. To the extent necessary references will be made to GDPR as a data protection law and audit frameworks of ISO  so that the participants will have a well-grounded understanding of global Data Protection laws and the different audit frameworks.
We urge you to kindly depute one or more of your auditors to attend the program. At the end of the program, all participants will be provided with participation certificates and also an invitation to take an online examination. Those who pass the online examination would be eligible for a full certification of C.DPO. DA. from FDPPI.

As you may be aware, DPDP Act 2023 has mandated that all Significant Data Fiduciaries are required to conduct annual audits of their compliance from external data auditors. Also, those who intend to register as “Consent Managers”  need to undergo a mandatory audit of their platforms to be in compliance of DPDP Act 2023. Hence it is a new business opportunity for audit firms, especially those who are already accredited with CERT-In.
At present, C.DPO.DA certification is the only certification that addresses the requirements of “Data Auditor” as envisaged under the DPDP Act 2023. Participants will be provided with necessary books and materials to enable them successfully pass through the examination as part of the program.
I am enclosing a brochure for the Mumbai Program which is self-explanatory. You can also contact Sri Bondaiah Adepu, President, FDPPI Mumbai Chapter for more details. (Ph: 9004419020).
While the 3-day physical program was designed for the CERT-In empanelled auditors, it is also suitable for all Information Security auditors who want to transform to the Data Auditor status. Hence the program is not limited to CERT-In empanelled auditors. Others who are interested in becoming either a DPO or a Data Auditor are welcome to attend the same.

The registration link for the program is here:
https://fdppi.iletsolutions.com/c-dpo-da-training-2025/

If you have any problem in registering in this above link, you may make the payment through the link at www.fdppi.in also. You can also send an email to naavi with the subject line “Mumbai Training” for any clarifications.

Download Brochure

The new year resolution that FDPPI is pursuing for 2025 is to further promote the urgency for DPDPA Compliance during the year.

Towards this direction, FDPPI continues to

a) Build Awareness

b) Build Expertise

c) Provide the framework for compliance

d) Collaborate with PET developers

Currently there are lots of activities by different individuals and organizations about creating awareness of DPDPA. We welcome all these initiatives though there could be some differences of views on some aspects of the law here and there. Essentially the differences may come because other professionals may still be under the influence of the GDPR while we try to have an independent Jurisprudential view on different aspects of law. 

Whether it is the definition of what is “Personal Data” , How to identify the “Significant Data Fiduciary”, How to work on the rights of Grievance redressal and Nomination, or Data Monetization,  FDPPI may have a slightly different  view than some of the other professionals.

However, FDPPI welcomes the efforts of all community leaders in making “Data Privacy” a buzz word in the industry.

FDPPI now focusses on the next generation of work which is the enabling of implementation through the suggested DGPSI framework which can be used for implementation as well as third party audit and certification.

When a new thought like DGPSI comes to the market, there will be many who will continue to stick by the old practices…. and say “You should have done what others have done for years”. 

It is time to leave such advisors to the past and move ahead with DGPSI. The Birla Opus paint advertisement provides a similar message which describes exactly the sentiments I echo on DGPSI vs other frameworks.

DGPSI is an implementation framework that focusses on compliance of DPDPA. It has some revolutionary thoughts related to data classification, process based compliance, distributed responsibility, data monetization etc. In the past few months we are already seeing that some of the practitioners of other frameworks shifting their stand and saying this is also our view and can be implemented in the current framework as well.  I welcome such softening of the stand on DGPSI and look forward to them adopting DGPSI as a whole or incorporate its principles within the other frameworks they would like to stand by.

We intend discussing this concept of DGPSI as a framework for DPDPA compliance in depth during the three  day workshop at Mumbai on January 24, 25 and 26. 

Contact today to register yourself. This could be a turning point in the career of all ISMS auditors who would like to become a DPDPA Auditor.

Say No to dogmas  and yes to the new generation framework of DGPSI.

Naavi

FDPPI would celebrate the January 2025 as the DGPSI month. During this month we intend to cover how DPGSI as a framework covers several DPDPA compliance issues.

We welcome questions from professionals about their DPDPA compliance queries.

Naavi

FDPPI’s  previous C.DPO.DA. physical program in Bengaluru was a grand success. now it is time for the next program at Mumbai set to take place on January 24/25 and 26.

Watch out for more details:https://fdppi.iletsolutions.com/c-dpo-da-training-2025/

This program will cover the requirements of a DPO and a Data auditors in India.

The coverage includes DPDPA 2023 along with the essence of GDPR, challenges of the DPO, requirements of a data auditor, DGPSI framework of implementation, audit and assessment of DPDPA compliance with several case studies.

Registrations are now open. Join today.

Naavi

The two day event Indian Data Protection Summit 2024 came to a successful conclusion with the valedictory function where Dr Bharat Panchal of Bhima Sugam gave the valedictory address. Mr Abhishek Solanki, senior scientist from CERT-In was a gues of honour along with Mr Yashvantha Kumar of Cyber Crime Division Bangalore and Dr A Nagaratna of NLSUI.

During the two days, more than 56 speakers participated in the program including 13 from outside the country. The 8 key notes, 7 panel discussions and 4 Focus Group discussions made the conference a wholesome event. With an excellent organizational support from the KLE, and special efforts of Suresh Balepur, and Ashok Kini, managing the hospitality, the event was memorable.

The publication of the book “DGPSI-The Perfect Prescription for DPDPA compliance” during the event marked a significant development of FDPPI’s efforts to facilitate DPDPA compliance in the industry. Hopefully this would also be a significant milestone in the development of Data Protection Compliance in India.

The set of these twin books would server the purpose of providing the information on Privacy as a Fundamental right, the DPDPA as an act, the Governance aspects related to Data protection and the practitioner’s guide for implementation and audit. Though the rules are yet to be notified for DPDPA, the DGPSI booklet serves presently as a Jurisprudential exposition that tries to identify how each of the DPDPA provisions may be implemented.

A detailed report of the event will be available later and the registered delegates would also get a link to the videos to be published virtually.