How does EchelonGraph detect DPDP Act DPDP-8 violations?

EchelonGraph automatically detects DPDP Act DPDP-8 violations using scanner rule DPDP-008. The scanner checks cloud infrastructure configurations in real-time and flags non-compliant resources.

What audit questions are asked for DPDP Act DPDP-8?

Self-service portal? SLA per right? Last rights-request handling time?

🇮🇳DPDP Act DPDP-8Rule: DPDP-008high

Data Principal Rights

Description

Data principals have rights to access, correction, erasure, grievance redressal.

⚠️ Risk Impact

Slow or incomplete rights fulfillment produces complaints + DPB investigations.

🔍 How EchelonGraph Detects This

DPDP-008Automated scanner rule

EchelonGraph's Tier 1 Cloud Scanner automatically checks for this condition across all connected cloud accounts. Violations are flagged as high-severity findings with remediation guidance.

🔧 Remediation

Self-service rights portal. Defined SLA per right. Documented procedures.

💀 Real-World Attack Scenario

A user requested data access; the company responded in 45 days (no SLA documented). User complained to DPB; investigation expanded; ₹38 crore penalty.

💰 Cost of Non-Compliance

Rights violations: ₹20-₹80 crore.

📋 Audit Questions

1.Self-service portal?
2.SLA per right?
3.Last rights-request handling time?

⚡ Common Pitfalls

⛔No portal — manual handling
⛔No SLA tracking
⛔Rights handling slow

📈 Business Value

Compliant rights handling reduces complaint risk + customer friction.

⏱️ Effort Estimate

Manual

Portal + workflow

With EchelonGraph

EchelonGraph integrates with DSR platforms

🔗 Cross-Framework References

GDPR-Art15

Automate DPDP Act DPDP-8 compliance

EchelonGraph continuously monitors this control across all your cloud accounts.

Start Free →