India's draft privacy rules introduce dynamic controls for easier implementation, sector-specific data localisation, and differentiated data fiduciary treatment. They mandate upfront data declaration, processing purposes, and end-use details, with phased implementation to aid data collecting entities in upgrading security measures while ensuring adequate privacy protection.
