Driven by excellence, focused on strategies for the longer term.

This is the crux of who we are. It is an articulation of precision in purpose, from the Firm’s beginnings to where we are today. Our collective eye is unerringly trained on tomorrow.

Deep sectoral expertise across services and industries.

Our insistence on strategic advisory exacts an in-depth understanding of and involvement with our clients’ businesses and industries. We engage not just individual businesses, but also contribute to the country’s legal and regulatory frameworks.

Personal commitment supported by experience and grit.

We commit early. We pull together internally for greater support. Every effort is sincere, every individual deeply dedicated to their task, their role, to the Firm.

Our undertakings for long-term impact are an organic extension of our purpose.

They are to employ our deep knowledge of the law beyond the business, the transaction, the deal. To use the opportunities and skills we possess, to reflect on the culture we’re creating. Individually and collectively, these are our efforts to help shape the thinking of our future generations, and arm them with strategies for true, sustainable growth.

Knowledge-sharing is intrinsic to equity and inclusivity.

This is a repository of thought leadership, deep insights and strong viewpoints, legal and other news and events and how they impact the industry and our clients.

Relevance is critical to growth. It necessitates a firm that is dynamic and responsive.

Amplifying intrinsic talent, sharpening skills, expanding knowledge, is vital to leading. It defines every aspect of how our firm functions and transacts. This is how we create new benchmarks and set industry standards.

  • Connect
Jul 29, 2025

MEITY Releases Business Requirement Document on Consent Management Systems under DPDP Act

The Ministry of Electronics and Information Technology (‘MeitY’) has released a ‘Business Requirement Document for Consent Management under the DPDP Act, 2023’ (‘BRD’), detailing its proposed outline of the functional and technical requirements of consent management systems that align with the requirements of the Digital Personal Data Protection Act, 2023 (‘DPDP Act’).

The BRD sets out the entire lifecycle of user consent management – collection, validation, updating, renewal, and withdrawal. Key features under the BRD include real-time consent notifications, a user dashboard for tracking and modifying consents, comprehensive logging for auditability, and a grievance redressal mechanism with real-time status updates.

For stakeholders, the BRD is relevant as it provides a blueprint for establishing consent management systems. While integrating and utilising consent managers as envisaged under the BRD will simplify compliance obligations for data fiduciaries, the ultimate legal responsibility may still rest with the data fiduciary, and further clarity on the attribution of liability will need to be provided prior to implementation.

TAGS

SHARE

Subscribe

DISCLAIMER

These are the views and opinions of the author(s) and do not necessarily reflect the views of the Firm. This article is intended for general information only and does not constitute legal or other advice and you acknowledge that there is no relationship (implied, legal or fiduciary) between you and the author/AZB. AZB does not claim that the article's content or information is accurate, correct or complete, and disclaims all liability for any loss or damage caused through error or omission.

RELATED READING

Inter Alia

RBI Relaxes Norms for FPIs Investing in Corporate Debt Securities through General Route

Jul 29, 2025 | Regulatory & Securities
Inter Alia

TRAI Launches Digital Consent Management Pilot with RBI

Jul 29, 2025 | Data Privacy & Protection Technology Media and Telecommunication
Inter Alia

Amendments to InvIT Regulations and REIT Regulations

Jul 29, 2025 | Capital Markets Regulatory & Securities