India’s digital economy faces increasing compliance burdens due to overlapping cybersecurity laws from various regulatory bodies. Companies are challenged with inconsistent requirements in breach reporting, audits, and vulnerability assessments. Experts call for harmonization under a single governance body to reduce complexity and costs, especially urging the Data Protection Board under the DPDP Act to take on this role.
“Currently, a patchwork exists pulling people in all directions, but (there is) no strict enforcement, that’s why we see a plethora of data breaches, no relief for consumers, no nationwide cyber security policy for our data and infrastructure,” said Mishi Choudhary, founder of Software Freedom Law Centre.
