FDPPI is your Privacy Companion

FDPPI has organized the next in-person Training for C.DPO.DA. at Mumbai on January 24, 25 and 26.

Registration is open now:

Registration fee Rs 45000/- plus GST (Total Rs 53100/-)

Early Bird Discounted price : Rs 35000/- plus GST (Total Rs 41300/- )

Early Bird Discount for upto 15th January 2025 only

You can register by making a payment here

Kindly indicate your full name, designation, e-mail address along with the payment. You will receive an acknowledgement soon after payment.

The program coverage is as follows

The program will be inaugurated  by Mr Abhishek Solanki of CERT IN and sessions will be conducted by Naavi and Ramesh Venkataraman.

Consequent to the publication of draft DPDPA Rules, it has become essential for responsible Corporate Managements to take some corporate action o DPDPA Compliance immediately.

FDPPI recommends  the following actions.

1. Pass a resolution that the Company has taken note of the issue of draft rules and the potential impact of the enforcement of DPDPA in the coming financial year.

2. Pass a resolution appointing a suitable person as a “DPDPA Compliance Officer” who may be later promoted if suitable as a DPO.

3. Depute the Compliance officer to a training like C.DPO.DA. of FDPPI so that he can make a detailed assessment and recommend further action.

In order to assist such companies who want to take off, FDPPI will be providing the following services .

1. Conduct C.DPO.DA. program for 3 days at Mumbai on January 24, 25 and 26 (Registration now open with Early Bird Discount available now).

2.Conduct a similar physical program in Delhi if possible before March 2025. (To be Scheduled)

3.Conduct at least one Virtual program before March 2025 (To Be Scheduled)

4. Institute a quick Business Impact Assessment through a Virtual interaction with corporate Managements (on a short virtual session) on request. (At a Cost of Rs 10000-25000)

(P.S: Considering the current assignments of FDPPI/Naavi booked with FDPPI, there could be scope for not more than 5 to six assessments before March 2025).

Interested company officials need to contact FDPPI immediately by visiting the website www.fdppi.in or contact Naavi through www.naavi.org.

To All Information Security Auditors in India

Dear Friend,

Greetings and good wishes for a prosperous new year from FDPPI (Foundation of Data Protection Professionals in India).

FDPPI is  committed to the promotion of a Privacy Compliance culture in India through its various programs. “No Excuses, Just Be Compliant” is the nudge for Indian companies. 

Towards this objective, FDPPI is conducting certification programs in the area of Privacy with focus on DPDP Act 2023 (Digital Personal Data Protection Act 2023). The Certification program is available  on tap as an online program titled Certified DPO and Data Auditor (C.DPO.DA). From time to time, we also conduct  3 days in-person training program of C.DPO.DA at various centres.

For audit firms engaged in Information Security related audits such as ISO 27001, PCI DSS, etc., this Certification is a great opportunity to transform themselves into the new area of “Data Audit”.
If you are a Cert In empanelled auditor, you may remember the email dated 5^th September, 2024 from the empanelment division of CERT-In in which CERT-In had recommended the training program of C.DPO. DA. (Certified DPO and Data Auditors) conducted by FDPPI as an essential training for the auditors. Following the above circular from CERT-In, one in-person program was conducted at Bangalore for 3 days on September 27, 28 and 29. The Program was well received and Dr Ashutosh Bahuguna from CERT-In also addressed the participants during the training program.

In view of the forthcoming Rules for implementation of DPDP Act 2023, we have planned next 3 days C.DPO.DA in-person training program in Mumbai from 24^th to 26^th January, 2025.

During this program, there will be a detailed discussion on the implementation of DPDPA compliance in organizations along with how to audit and certify for compliance. The discussions will be based on the legal framework set by IT Act 2000 and DPDPA 2023 and how the FDPPI developed framework of DGPSI (Data Governance and Protection Standard of India) is going to meet the compliance.  The program will be based on case study discussions and cover all aspects of DPDPA 2023. To the extent necessary references will be made to GDPR as a data protection law and audit frameworks of ISO  so that the participants will have a well-grounded understanding of global Data Protection laws and the different audit frameworks.
We urge you to kindly depute one or more of your auditors to attend the program. At the end of the program, all participants will be provided with participation certificates and also an invitation to take an online examination. Those who pass the online examination would be eligible for a full certification of C.DPO. DA. from FDPPI.

As you may be aware, DPDP Act 2023 has mandated that all Significant Data Fiduciaries are required to conduct annual audits of their compliance from external data auditors. Also, those who intend to register as “Consent Managers”  need to undergo a mandatory audit of their platforms to be in compliance of DPDP Act 2023. Hence it is a new business opportunity for audit firms, especially those who are already accredited with CERT-In.
At present, C.DPO.DA certification is the only certification that addresses the requirements of “Data Auditor” as envisaged under the DPDP Act 2023. Participants will be provided with necessary books and materials to enable them successfully pass through the examination as part of the program.
I am enclosing a brochure for the Mumbai Program which is self-explanatory. You can also contact Sri Bondaiah Adepu, President, FDPPI Mumbai Chapter for more details. (Ph: 9004419020).
While the 3-day physical program was designed for the CERT-In empanelled auditors, it is also suitable for all Information Security auditors who want to transform to the Data Auditor status. Hence the program is not limited to CERT-In empanelled auditors. Others who are interested in becoming either a DPO or a Data Auditor are welcome to attend the same.

The registration link for the program is here:
https://fdppi.iletsolutions.com/c-dpo-da-training-2025/

If you have any problem in registering in this above link, you may make the payment through the link at www.fdppi.in also. You can also send an email to naavi with the subject line “Mumbai Training” for any clarifications.

Download Brochure

The new year resolution that FDPPI is pursuing for 2025 is to further promote the urgency for DPDPA Compliance during the year.

Towards this direction, FDPPI continues to

a) Build Awareness

b) Build Expertise

c) Provide the framework for compliance

d) Collaborate with PET developers

Currently there are lots of activities by different individuals and organizations about creating awareness of DPDPA. We welcome all these initiatives though there could be some differences of views on some aspects of the law here and there. Essentially the differences may come because other professionals may still be under the influence of the GDPR while we try to have an independent Jurisprudential view on different aspects of law. 

Whether it is the definition of what is “Personal Data” , How to identify the “Significant Data Fiduciary”, How to work on the rights of Grievance redressal and Nomination, or Data Monetization,  FDPPI may have a slightly different  view than some of the other professionals.

However, FDPPI welcomes the efforts of all community leaders in making “Data Privacy” a buzz word in the industry.

FDPPI now focusses on the next generation of work which is the enabling of implementation through the suggested DGPSI framework which can be used for implementation as well as third party audit and certification.

When a new thought like DGPSI comes to the market, there will be many who will continue to stick by the old practices…. and say “You should have done what others have done for years”. 

It is time to leave such advisors to the past and move ahead with DGPSI. The Birla Opus paint advertisement provides a similar message which describes exactly the sentiments I echo on DGPSI vs other frameworks.

DGPSI is an implementation framework that focusses on compliance of DPDPA. It has some revolutionary thoughts related to data classification, process based compliance, distributed responsibility, data monetization etc. In the past few months we are already seeing that some of the practitioners of other frameworks shifting their stand and saying this is also our view and can be implemented in the current framework as well.  I welcome such softening of the stand on DGPSI and look forward to them adopting DGPSI as a whole or incorporate its principles within the other frameworks they would like to stand by.

We intend discussing this concept of DGPSI as a framework for DPDPA compliance in depth during the three  day workshop at Mumbai on January 24, 25 and 26. 

Contact today to register yourself. This could be a turning point in the career of all ISMS auditors who would like to become a DPDPA Auditor.

Say No to dogmas  and yes to the new generation framework of DGPSI.

Naavi

FDPPI would celebrate the January 2025 as the DGPSI month. During this month we intend to cover how DPGSI as a framework covers several DPDPA compliance issues.

We welcome questions from professionals about their DPDPA compliance queries.

Naavi

FDPPI’s  previous C.DPO.DA. physical program in Bengaluru was a grand success. now it is time for the next program at Mumbai set to take place on January 24/25 and 26.

Watch out for more details:https://fdppi.iletsolutions.com/c-dpo-da-training-2025/

This program will cover the requirements of a DPO and a Data auditors in India.

The coverage includes DPDPA 2023 along with the essence of GDPR, challenges of the DPO, requirements of a data auditor, DGPSI framework of implementation, audit and assessment of DPDPA compliance with several case studies.

Registrations are now open. Join today.

Naavi

The two day event Indian Data Protection Summit 2024 came to a successful conclusion with the valedictory function where Dr Bharat Panchal of Bhima Sugam gave the valedictory address. Mr Abhishek Solanki, senior scientist from CERT-In was a gues of honour along with Mr Yashvantha Kumar of Cyber Crime Division Bangalore and Dr A Nagaratna of NLSUI.

During the two days, more than 56 speakers participated in the program including 13 from outside the country. The 8 key notes, 7 panel discussions and 4 Focus Group discussions made the conference a wholesome event. With an excellent organizational support from the KLE, and special efforts of Suresh Balepur, and Ashok Kini, managing the hospitality, the event was memorable.

The publication of the book “DGPSI-The Perfect Prescription for DPDPA compliance” during the event marked a significant development of FDPPI’s efforts to facilitate DPDPA compliance in the industry. Hopefully this would also be a significant milestone in the development of Data Protection Compliance in India.

The set of these twin books would server the purpose of providing the information on Privacy as a Fundamental right, the DPDPA as an act, the Governance aspects related to Data protection and the practitioner’s guide for implementation and audit. Though the rules are yet to be notified for DPDPA, the DGPSI booklet serves presently as a Jurisprudential exposition that tries to identify how each of the DPDPA provisions may be implemented.

A detailed report of the event will be available later and the registered delegates would also get a link to the videos to be published virtually.

In the annual flagship event of FDPPI, namely the Indian Data Protection Summit 2024 (IDPS 2024) set to be held on November 30 and December 1, 2024 at Bengaluru, FDPPI recognizes those who contribute to Privacy and Data Protection in India.

Yesterday we lost Justice K S. Puttaswamy who had contributed to the rising of the Privacy Consciousness in India leading to the passing of DPDPA 2023. FDPPI had the satisfaction of recognizing him with a title of “Privacy Pitamaha” during our 2023 AGM. Continuing our appreciation of his contribution to the Privacy eco system in India, FDPPI has decided that this year, the “Privacy Advocate of the year Award” would be “Dedicated to the memory of the Privacy Pitamaha, Late Justice Sri K.S.Puttaswamy”.

Nominations will be open upto 10th November 2024 and the nomination form would be available here https://fdppi.iletsolutions.com/idps-2024-award-nominations.

There will also be 4 other categories of awards namely “Privacy Knight”, “Privacy Squad”, Privacy Champion (Organization) and “Privacy Innovator”. Out of these, the Privacy Champion Award would be “Dedicated to the memory of Padma Vibhushan, Late Sri Ratan Tata”.

We hope that these leaders who have left this world will continue to inspire our professionals through these awards.