Free · No signup required · 2 minutes

Free DPDP Applicability & SDF Risk Assessment

Answer a few questions about your data and operations to find out whether the DPDP Act 2023 applies to you, and whether you likely qualify as a Significant Data Fiduciary.

Frequently asked questions

What is a Significant Data Fiduciary (SDF) under the DPDP Act?

A Significant Data Fiduciary is an organisation the Government of India designates (based on factors like data volume, sensitivity, and risk to data principals) as subject to extra obligations under Section 10 of the DPDP Act 2023 — including appointing a Data Protection Officer, conducting Data Protection Impact Assessments, and annual independent data audits.

Is this assessment official or legally binding?

No. This is a free self-assessment tool based on the same risk-scoring logic used inside the Metasight platform, intended to give you a fast, directional read on your DPDP exposure. It is not a formal legal determination — talk to our team or a qualified advisor for a definitive assessment.

How is the risk score calculated?

The score weighs six factors known to drive DPDP applicability and SDF risk: volume of data principals, operating in a critical sector (banking, healthcare, telecom, government), sensitive data categories (health, children's data, government IDs, financial data), cross-border transfers, AI/automated profiling, and public-facing platform scale.