Module 1: Introduction to DPDPA and Role of DPDPA in Banking

• Introduction to Digital Personal Data Protection Act (DPDPA) and its relevance in the banking and financial sector
• The relevance of data protection in today’s digital and regulatory landscape
• Key principles and objectives of the DPDPA
• Nature and variants of data in banking and its contextual requirements to products & journeys
• Role of data and use of analytics in banking transformation
• Strategic alignment of data governance with business goals

Expected Outcome:

• Foundation of DPDPA and its importance in protecting personal data.
• Awareness of its impact on the banking and financial sectors.

Module 2: Deep Dive into DPDPA & Building Data Privacy and Security Framework

• Key data protection principles under DPDPA
• Data encryption across all stages
• Data controls (tokenization, anonymization, deletion handling)
• Consent management principles and Notice structure
• Responsibilities of banks & Financial Institutions as data fiduciaries, as well as Signification data fiduciaries
• Real-world implications for banking operations

Expected Outcome:

• Ability to implement security measures and understand compliance obligations under DPDPA.
  

Module 3: Consent Management Framework and Data Subject Rights in Banking

• Customer-centric consent systems
• Consent tracking, withdrawal
• Data discovery through consent mapping
• Consent Management Platform
• Notice Framework & Structure, and its alignment in customer journey
• Role and implementation of Consent Manager
• Customer Portal & Data Principal Rights: access, correction, portability, erasure, grievance redress
• Case studies in banking

Expected Outcome:

• Implement transparent and effective consent management practices.

Module 4: Data Governance Framework, DPIA and Risk Management

• Aligning governance policies with DPDPA
• Data classification, auditing, monitoring
• DPIA objectives, process, and considerations
• Conducting effective data audits

Expected Outcome:

• Develop or review governance frameworks to ensure DPDPA compliance.

Module 5: Data Life Cycle Management

• Data stewardship and accountability
• Stages: creation to deletion
• Strategic alignment with regulatory goals

Expected Outcome:

• Understand data lifecycle governance aligned with DPDPA.

Module 6: Implementing DPDPA in Products and Digital Journeys

• Understanding DPDPA compliance requirements in Products & digital Journeys
• Embedding data protection into design to implementation
• Data Processor Partnerships and Third-Party Management
• Compliance in digital services

Expected Outcome:

• Build compliant products & journeys, and setup robust partnerships and enforce third-party compliance