HomeLatest NewsCyber SecurityDPDP rules signal need for stronger AI access controls, says Saviynt’s Nitin Varma

DPDP rules signal need for stronger AI access controls, says Saviynt’s Nitin Varma

Following the government’s notification of rules to operationalise the DPDP Act, Nitin Varma said identity and access governance must be central to AI deployments to ensure accountability and real time oversight.

Preferred Source of Google

The government’s notification of rules to operationalise the Digital (DPDP) Act has prompted fresh discussion on the need for stronger identity and access controls in artificial intelligence systems, according to a senior industry executive.

The rules, issued this week, give practical effect to the DPDP Act and outline compliance requirements for organisations that handle personal data. They also specify the rights available to individuals. Implementation will take place in phases.

In the backdrop of the notification, Nitin Varma, Senior Vice President and Managing Director for India and SAARC at , said the development coincides with a shift in how access governance is viewed in AI deployments.

Advertisement
Digital Senate
Digital Senate
Digital Senate is a premier conference uniting government leaders, technologists and innovators to share ideas, success stories and strategies on digital governance, public sector transformation, cybersecurity and emerging technologies in India.
Register Now →
CIO Prism
CIO Prism
CIO Prism unites forward-thinking technology leaders to exchange transformative insights, shape digital strategies, and foster innovation, empowering enterprises to excel in an era of rapid technological change.
Register Now →

“India’s new Framework signals a decisive shift, identity and access governance is now a national level priority for safe and responsible AI,” Varma said.

He said that as organisations use AI in decision making and mission critical functions, risks are linked not just to data but to the access privileges granted to people, systems and autonomous agents.

“As organisations embed AI into core decision making and mission critical workflows, the real challenge is not model sophistication but ensuring that only the right people, systems and autonomous agents receive the right level of access for the right purpose at the right time and can be held accountable for how that access is used,” he said.

Advertisement

Varma added that conventional access controls are not built for the speed and automation associated with AI.

“Traditional periodic controls were not designed for the velocity, scale and autonomy that AI environments demand,” he said.

He said companies will need identity platforms that provide continuous oversight and real time policy enforcement as AI systems become more integrated into enterprise operations.

Advertisement

“Indian enterprises will now require converged intelligence driven identity platforms that offer continuous assurance, real time policy enforcement and AI led risk detection,” he said.

Varma said the combination of the DPDP rules and the government’s AI governance approach should prompt organisations to reassess how identity is managed as part of digital transformation.

“This is a pivotal moment for organisations to modernise identity governance and build a secure ready foundation for AI,” he said.

Get the day's headlines from Tech Observer straight in your inbox

By subscribing you agree to our Privacy Policy, T&C and consent to receive newsletters and other important communications.
Tech Observer Desk
Tech Observer Desk
Tech Observer Desk at TechObserver.in is a team of technology reporters led by a senior editor who brings latest updates and developments from the world of technology.
- Advertisement -
Powered By Veeam Logo
- Advertisement -

Subscribe to our Newsletter

By subscribing you agree to our Privacy Policy, T&C and consent to receive newsletters and other important communications.
- Advertisement -

UIDAI records 2.5 lakh email updates in two days via free Aadhaar App service

UIDAI recorded over 2.5 lakh email updates within two days of launching a free email update service on the Aadhaar App. The service, available until 31 December 2026, removes the need for physical visits to enrolment centres.

RELATED ARTICLES