Mumbai, IndiaMonday, 16 March 2026
A Property ofMeridian Bridge Strategy

DPDP News

Daily Intelligence on India's Data Law

Daily Briefing24 February 2026

DPDP Daily Brief — Breaches Mount, WhatsApp Vows Privacy, Samsung Unveils Privacy Tech

By AI Editor5 min read

Top Story

Twin AI data leaks expose over a billion personal KYC records and private media files

Today's Headlines

1. Galaxy S26 Ultra leaks in full hands-on video: Live images, benchmark scores, and new Privacy Display revealed

Source: Livemint Tech | Read Original →

Ahead of its official launch, Samsung's Galaxy S26 Ultra has been extensively leaked, showcasing its features including a notable "Privacy Display." This development underscores a growing trend in consumer electronics towards integrating advanced privacy-enhancing technologies directly into hardware, signaling increasing user demand for data protection at the device level. While not a direct DPDP compliance mandate, it highlights market expectations that businesses developing apps or services for such devices should consider.

2. Twin AI data leaks expose over a billion personal KYC records and private media files

Source: Livemint Tech | Read Original →

Two significant data breaches linked to AI applications have compromised over a billion personal records globally, with IDMerit exposing 1 billion records and the Video AI Art Generator app leaking 8.27 million media files due to misconfigured cloud storage. These incidents serve as a stark reminder for Indian businesses, particularly Data Fiduciaries and Data Processors, of their stringent obligations under the DPDP Act 2023, including the potential for penalties up to ₹250 Cr per incident for non-compliance with data security duties and breach notification under Section 8 and Section 17.

3. WhatsApp tells Supreme Court it does not share data with Meta

Source: The Hindu Tech | Read Original → WhatsApp has informed the Supreme Court that it does not share user data with its parent company, Meta, and confirmed its full compliance with the National Company Law Appellate Tribunal's (NCLAT) directions regarding user consent for historical data sharing. This ongoing legal scrutiny, though predating the DPDP Act, reinforces the critical importance of obtaining explicit and informed consent from data principals for any data processing activities, as mandated by Section 6 of the Act, and maintaining transparency as per Section 7 (Notice) requirements.

Stay Compliant

Not sure if your business meets DPDP standards? Start with a free check:

🔍 Run Your Free DPDP Audit →

16 questions. 60 seconds. Instant risk report.

Published by DPDP News, a Meridian Bridge Strategy initiative. For compliance consulting, book a free call.
← Back to Front PageMore Archives →