All insights
ChecklistNotice and consent

Notice under Section 5 of the DPDP Act

What a Data Fiduciary should review before putting consent and notice experiences into production.

Data>Nuance

Section 5 concerns the notice that accompanies or precedes a request for consent. A notice should be reviewed as a product control, not simply as legal text.

Review points

  • Describe the personal data and specified purpose clearly.
  • Explain how the individual may exercise rights and make a complaint.
  • Make withdrawal and contact paths findable in the actual product journey.
  • Ensure translated or accessible versions remain aligned with the approved text.

Notices should be tested with the data flow and consent record design.

This publication is general information and is not legal advice for a specific organisation or matter.

Continue reading

Children's data

Children's data checks for edtech products in India

A practical DPDP readiness guide for edtech products handling children's data across student accounts, schools, parents, vendors and support flows.

Read insight

Children's data

Age gating design under the DPDP Act

A practical guide to age gating design under the DPDP Act, covering age signals, product triggers, parent flows, feature controls and evidence records.

Read insight

Start with context

Book a focused DPDP Act consultation.

Bring an upcoming launch, notice review, data mapping question, incident readiness issue or implementation deadline. We will help identify the right next step.