Section 11: Right to Access Information

Chapter: Rights and Duties of Data Principal

Maximum Penalty: Up to ₹200 Crore

Overview

Right to obtain a summary of data, processing activities, and shared entities. This section falls under the "Rights and Duties of Data Principal" chapter of the Digital Personal Data Protection Act 2023, which was enacted to establish a comprehensive framework for data protection in India.

Key Points of Section 11

• Data Principals have the right to access summary of personal data being processed and processing activities
• Right to access includes information about other Data Fiduciaries with whom data has been shared
• Access must be provided in a clear and understandable format

Who This Applies To

All Data Fiduciaries handling individual data access requests

Compliance Action Steps

1. Build data access request portals or workflows
2. Implement data mapping to locate all personal data across systems
3. Define SLAs for responding to access requests

How Complynz Helps

Complynz automates compliance with Section 11 through AI-powered assessments, policy templates, and continuous monitoring. Our platform maps each DPDP provision to actionable controls so your team can achieve and maintain compliance efficiently.

Take Free DPDP Assessment | DPDP Compliance Checklist | View Pricing

Back to Complete DPDP Guide