Board

This project is a community-driven initiative by Securze, created with the goal of making the Digital Personal Data Protection Act (DPDPA) accessible and easier to understand for everyone. We sincerely acknowledge and appreciate the efforts of all our review panel members, whose time, expertise, and valuable feedback have been instrumental in shaping this guide. Your contributions have added immense value, ensuring accuracy and clarity for the wider community. Thank you for your commitment and support in making this initiative successful.

1. Lead

Harsh Parekh

Founder & CEO, Securze

Conceptualization, Drafting, and Project Leadership

---

2. Content and Research

Team Secure

Research, Legal Reference Compilation, and Documentation Support

---

3. Review Panel

Gokulavan Jayaraman, Infosec Leader – Mahindra Group | PMP | CISSP | CISM | CISO | CISA | CCSP | CRISC | DPO | GRC Specalist | ISO27001 | ISO9000 LA

Gokulavan Jayaraman is a highly respected cybersecurity, data privacy, and risk-management leader with over two decades of experience safeguarding large enterprises. His expertise spans information security, privacy governance, fraud risk management, business continuity, vendor risk, and building organisation-wide security maturity across NBFC, Manufacturing, BPO, KPO, and global service environments. With a strong command of regulatory frameworks, data-protection laws, and industry best practices, he has consistently enabled organisations to stay resilient, compliant, and operationally effective in a rapidly evolving threat landscape.

---

Gauri Saple - CISA, ISO 27001, 42001, 22301, 27701 LA

Gauri Saple is an experienced GRC and Cybersecurity Consultant with over more than a decade experience and expertise in building and strengthening governance, risk, and compliance frameworks across diverse IT and OT environments. She serves as Principal Consultant with multiple organisations, leading end-to-end implementations of ISMS, BCMS, and Privacy Programs (ISO 27001, 27701, 22301, 42001), conducting comprehensive ITGC and process control audits, SOC 2 readiness assessments, and regulatory compliance reviews aligned with SEBI, RBI, and the DPDP Act. Gauri has developed risk management methodologies, audit frameworks, control libraries, and assessment toolkits that help organisations operationalise governance and uplift their cybersecurity maturity. She has extensive experience working with financial institutions, fintech companies, SOC service providers, and industrial sectors - translating regulatory and security requirements into practical, measurable controls that enhance enterprise resilience and accountability

---

Sundaravenkataraman Sundararaman, GRC Lead - OneCard

Sundar is a fintech-focused cybersecurity and GRC leader, currently GRC Lead at FPL Technologies (OneCard), where he partners with CXOs to align security and privacy with business goals. He builds and uplifts programs across incident management, SOC/SIEM, cloud security, and cryptography, with hands-on experience implementing PCI DSS, ISO 27001, and RBI-aligned controls. Previously CISO/AVP at LivQuik and a long-time security leader at M2P Fintech, he is a frequent speaker and panelist on data protection and cyber resilience.

---

Swapnali Naik, Independent Consultant

Swapnali Naik with over 23 years of extensive experience is a seasoned audit and compliance professional with deep expertise in ISO 9001, 20000, 27001, ITGC, SOC controls, Data Centre and customer audits, and enterprise risk management. She has been recognized by BSI auditors for excellence in streamlining audit processes, timely closure of findings, and driving stronger governance through risk-based internal controls and compliance frameworks.