ErasureDocs
DPDP

DPDP overview

How Erasure helps teams operationalize DPDP-shaped privacy work — not legal advice.

DPDP overview

India’s Digital Personal Data Protection (DPDP) Act is a primary reason teams evaluate Erasure.

This section maps common operational needs to what Erasure does today. It is not legal advice and not a certificate of compliance.

What teams typically need to operationalize

Need (simplified)Without infrastructureWith Erasure
Tell people what you collect and whyAd-hoc banner, no version historyPublish a notice with purposes; freeze versions
Prove what someone agreed toNo durable recordReceipts tied to a consent version
Honour erasure requestsEmail → manual SQLRights cases, jobs, multi-system run
Know where personal data livesTribal knowledgeSystems + Data Maps
Show what happenedScattered logsEvidence packages you can export

The operating loop

Workflow · DPDP-shaped operations in Erasure

  1. Notice & consent — publish config; collect choices with receipts
  2. Map — connect systems; define where subject data lives
  3. Fulfil rights — verify, start deletion jobs, record outcomes
  4. Evidence — export packages for internal review

Pages in this section

PageFocus
ConsentCollecting and proving consent
NoticeVersioned notices subjects see
WithdrawalPreference changes as new receipts
Deletion requestsRights lifecycle honesty
EvidenceExportable packages
Operational checklistPractical readiness — not certification

What Erasure is not (for DPDP buyers)

  • Not automated policy drafting
  • Not a full GRC / DPO suite
  • Not “instant total compliance”
  • Not proof about systems you never connected

What to do next

Start with Consent, or if you are new to the product, Getting Started.