Circular: Annual Compliance Training — DPDP Act 2023 & Information Security

Circular No. 2025/CIR/005

Date: 03 June 2026

Subject: Mandatory Annual Compliance Training — DPDP Act 2023 & Information Security

In compliance with the Digital Personal Data Protection Act 2023 and our internal Information Security Policy, all staff members and associates must complete the annual compliance training.

Training Details

• Mode: Online, self-paced via the Academy portal
• Duration: Approximately 90 minutes
• Deadline for completion: 18 July 2026
• Assessment: End-of-training quiz (pass mark: 80%)

Topics Covered

• Overview of the DPDP Act 2023 — Key Provisions & Penalties
• Data Principal Rights — Access, Correction, Erasure & Grievance Redressal
• Data Fiduciary Obligations — Consent, Purpose Limitation & Data Retention
• Personal Data Breach — Detection, Reporting & Remediation Procedure
• Information Security Best Practices — Password Hygiene, Phishing Awareness, Device Security
• Incident Response Protocol — Whom to contact and escalation matrix

Staff who fail to complete the training by the deadline will have their system access restricted until compliance is achieved.

Issued by:
Information Security & Compliance, Nyaya Siddhanta