Security & Compliance

Overview

The Digital Personal Data Protection (DPDP) Rules, effective from November 14, 2025, establish a comprehensive framework for the protection of personal data in India. These rules set out obligations for organizations handling digital personal data and grant important rights to individuals (data principals).

Key Provisions

• Consent-Driven Processing: Personal data must be collected and processed only with clear, informed consent from individuals.
• Data Principal Rights: Individuals have the right to access, correct, erase, and port their personal data.
• Data Fiduciary Obligations: Organizations must implement security safeguards, notify breaches, and ensure data minimization and purpose limitation.
• Cross-Border Transfers: Transfers of personal data outside India are subject to government-approved safeguards.
• Grievance Redressal: Data principals can seek redressal for violations through a dedicated Data Protection Board.

Our Commitment

Jiffy Benefits is fully committed to complying with the DPDP Rules. Our platform is designed to ensure:

• Transparent data collection and processing practices
• Robust consent management and user controls
• Timely breach notifications and incident response
• Support for all data principal rights
• Continuous monitoring and compliance updates

For more details on DPDP compliance or to exercise your data rights, please contact our Data Protection Officer at privacy@jiffybenefits.com.