India · Private Sector

AI governance for the DPDPA transition.

Sentinel for India — anchored on the Digital Personal Data Protection Act (DPDPA) and DPDP Rules 2025, notified Nov 13, 2025. Phased compliance through May 13, 2027.

The pressure

DPDPA rules notified. Full compliance May 13, 2027.

India's DPDP Rules 2025 were notified Nov 13, 2025 with phased application: Data Protection Board established now, Consent Managers from Nov 2026, substantive compliance from May 13, 2027. AI use that processes personal data falls squarely inside DPDPA. India has not yet legislated horizontal AI law — but the MeitY AI advisories and a likely DigiIndia framework are tracking.

Nov 13 2025

DPDP Rules notified

Nov 2026

Consent Managers operational

May 13 2027

Substantive DPDPA compliance

TBC

Sentinel availability tracks DPDPA phase-in

Frameworks pre-loaded

Every framework India cares about — encoded as data, cross-mapped on day one.

The Sentinel Framework Engine ships with these frameworks as machine-readable data, with explicit cross-maps. When you assess a use case, the workpaper, the review pack, and the auditor evidence trail are generated from this library — not authored from scratch.

Digital Personal Data Protection Act (DPDPA) 2023

Phased

India's comprehensive privacy law.

Effective: Phased through May 13, 2027

DPDP Rules 2025

Phased

Operational rules under DPDPA. Notified Nov 13, 2025; phased application.

Effective: Notified Nov 13, 2025

Information Technology Act 2000 (IT Act) + amendments

In force

India's foundational tech / cyber law including intermediary obligations.

MeitY AI Advisories

Guidance

Ministry of Electronics and Information Technology guidance on AI use.

RBI / SEBI / IRDAI sector AI guidance

Guidance

Sector-regulator guidance for financial services, securities, and insurance AI.

Plus universal AI standards (every jurisdiction)

ISO/IEC 42001:2023 — AI Management SystemNIST AI Risk Management Framework 1.0 (under federal review, 2026)OECD AI PrinciplesNational Framework for the Assurance of AI in Government (June 2024) — jointly endorsed by Commonwealth + all AU states/territories

Framework references are tracked actively but should be confirmed in detailed scoping for any live engagement.Last validated: 12 May 2026

Who Sentinel is for in India

Built for international private sector.

DPO, Chief Compliance Officer, or CISO at Indian enterprises and multinationals operating in India. Sentinel's launch timing aligns with India's full DPDPA effective date — register interest now to secure founding-partner terms.

What ships, regardless of jurisdiction:

✓M1 · AI Use-Case Register
✓M2 · AIAF / equivalent Workpaper
✓M3 · AI Review Committee Workflow
✓M4 · Risk Register
✓M5 · Transparency Register
✓M6 · Regulatory Gap Tracker
✓M7 · Evidence Vault + Audit Log
✓M8 · Re-attestation Engine

What changes between jurisdictions is the Framework Library pack — the regulations, statutes, and guidance pre-loaded. The platform structure stays the same.

Help shape Sentinel for India Private Sector.

Tell us your jurisdiction-specific needs and we'll prioritise the framework pack accordingly. Registered organisations get founding-partner terms when their jurisdiction goes live.

Sentinel · Arrochar Consulting · sales@arrocharconsulting.com

Sentinel in other jurisdictions

🇦🇺Available now

NSW Local Government

🇦🇺In pipeline

Victorian Local Government

🇦🇺In pipeline

Queensland Local Government

🇦🇺Register interest

Western Australian Local Government

🇦🇺Register interest

Tasmanian Local Government

🇦🇺Register interest

Northern Territory Local Government

🇦🇺Register interest

South Australian Local Government

🇦🇺In pipeline

Australian Private Sector