How does DPDP protect children's data?

Section 9 requires verifiable parental consent before processing a child's personal data and prohibits behavioral tracking or targeted advertising directed at children.

The Act treats anyone under 18 as a child—stricter than GDPR's default age in many EU states.

Age-gating, parental verification, and separate privacy notices for minors are essential for edtech, gaming, and consumer apps.

Related Act sections

Tools & resources

Back to Complete DPDP Guide | All DPDP FAQs

DPDP implementation support

  • Gap assessment & remediation roadmap (INR 49,999+)
  • Breach runbook & DPBI templates
  • SDF / DPO / DPIA programs

DPDP consulting services | hello@complynz.com