Skyflow Launches DPDP Data Privacy Vault to Help Indian Enterprises Navigate New Data Protection Rules

Skyflow Launches DPDP Data Privacy Vault to Help Indian Enterprises Meet New Rules | AIM

Skyflow has introduced a new DPDP Data Privacy Vault Platform for Indian enterprises as the country begins implementing the Digital Personal Data Protection (DPDP) Act. The company says the platform is built to help organisations protect personal data, govern its use, and adopt AI within the law's technical requirements. The DPDP Rules, notified on November 13, 2025, give companies 18 months to comply. Penalties can go up to ₹250 crore per violation, placing pressure on enterprises to overhaul data protection systems. Skyflow says its new platform centralises and isolates sensitive personal data to address what it calls "personal data sprawl," a growing problem as data moves across apps, logs, data lakes, SaaS tools and AI workflows. A 2024 Protiviti-CII survey found that only 24% of Indian organisations felt prepared for new privacy challenges. The platform introduces controls such as polymorphic encryption, format-preserving tokenisation, masking and obfuscation to secure data across its lifecycle. It also includes purpose-based access controls, retention governance, audit-ready logs, and tools to enforce consent updates and data principal rights. Skyflow says the system also supports analytics and AI model training through entity-preserving tokens without exposing raw personal data. "India has 1.4 billion people and will soon have 1.4 trillion agents with AI," said Anshu Sharma, CEO and co-founder of Skyflow. "Protecting the personal data of 1.4 billion people requires purpose-built infrastructure and architecture, not incremental fixes." Industry leaders say the DPDP rules will push companies to rethink data governance. "The notification of the DPDP Rules marks a pivotal moment in India's data privacy and governance landscape," said Murali Rao, senior partner and leader, cybersecurity consulting, EY India. He added that organisations must operationalise privacy vaults and dynamic access controls to manage personal data with accountability. Early adopters say the vault model is helping both compliance and trust. "Skyflow enables us to meet compliance requirements while ensuring our customers' personal data is handled with the highest standards of security," said Ashutosh Sharma, GM strategy and product ops at Urbanic. With the compliance window now active, Skyflow says organisations that shift to a privacy vault architecture will be better positioned to participate in India's expanding AI economy.

Skyflow Launches India-Ready DPDP Data Privacy Vault for Enterprise Compliance

Skyflow announced the launch of a purpose-built solution to meet Digital Personal Data Protection (DPDP) Act's toughest technical requirements. Skyflow's DPDP Data Privacy Vault Platform helps enterprises exclusively protect personal data, govern its use, and accelerate safe AI innovation, while staying compliant with the rules. The DPDP Rules, notified on November 13, 2025, officially mark India's shift towards a privacy-first digital economy. With only 18 months to comply and penalties reaching up to ₹250 crore (~$30 million) per violation, enterprises must modernize their personal data protection architecture now. The Personal Data Sprawl Problem India's rapid digital growth has powered major advances across sectors, but it has also created massive exposure. Personal data now flows through every product, decision, and AI workflow, and in the process gets copied into countless systems. This "Personal data sprawl" shows up in app databases, logs, analytics warehouses, SaaS tools, reports, data lakes, and AI training pipelines. It's a growing risk: a 2024 Protiviti-CII survey found that only 24% of Indian organizations feel prepared for the privacy challenges posed by emerging technologies. The result is fragmented data that's nearly impossible to govern, protect, or use safely for AI with traditional security models.