DPDP and Cybersecurity: Why the Safest Data May Be the Data You Delete
Fri Jun 05 2026
Privacy
thecyberexpress.com
By Malcolm Gomes, COO, IDfy
Seventy percent of all sensitive data sitting in enterprise systems right now has not been accessed, used, or reviewed in years, according to a Data Risk report from 2021. It was never deleted when it should have been and, in a breach, it is just as exposed as everything else. For years, enterprises treated personal data as an asset to be collected first and governed later. More data meant better personalization, sharper analytics, stronger fraud models, and business intelligence. But in DPDP and cybersecurity, that equation is changing. Data without a clear purpose is no longer an asset. It is an attack surface.
India’s cyber risk environment makes this urgen...