Section 16: Consent Managers

Chapter: Rights and Duties of Data Principal

Maximum Penalty: Up to ₹150 Crore

Overview

Framework for intermediaries managing consent across Data Fiduciaries. This section falls under the "Rights and Duties of Data Principal" chapter of the Digital Personal Data Protection Act 2023, which was enacted to establish a comprehensive framework for data protection in India.

Key Points of Section 16

• Penalty up to ₹10,000 for Data Principals who violate their duties
• Applies to filing false complaints, suppressing information, or impersonation
• Board decides penalties based on nature and gravity of the breach

Who This Applies To

Data Principals who misuse their rights under the Act

Compliance Action Steps

1. Inform users of their duties and potential penalties
2. Maintain evidence of any false or frivolous claims received
3. Report serious violations to the Data Protection Board

How Complynz Helps

Complynz automates compliance with Section 16 through AI-powered assessments, policy templates, and continuous monitoring. Our platform maps each DPDP provision to actionable controls so your team can achieve and maintain compliance efficiently.

Take Free DPDP Assessment | DPDP Compliance Checklist | View Pricing

Back to Complete DPDP Guide