The All India Gaming Federation (AIGF), the apex industry body for online gaming in India, has submitted its comments and recommendations to the Ministry of Electronics and Information Technology (MeitY) with regards to the Draft Digital Personal Data Protection Rules, 2025 (DPDP Rules). As the oldest and most diverse federation in the online gaming sector, AIGF’s emphasized the need for a balanced and practical regulatory framework that fosters innovation while ensuring data privacy and security for over 40 crore Digital Nagriks.
The recommendations aimed to enhance clarity and compliance feasibility for online gaming platforms, which represent a combined valuation of over USD 10 billion. AIGF also proposed revisions focused on safeguarding user data without imposing disproportionate compliance burdens on businesses, particularly the emerging MSME gaming startup sector.
AIGF Recommendations to MeitY
Key Recommendations Submitted by AIGF were the following:
Security Safeguards (Rule 6): Revising Rule 6(1)(a) to allow Data Fiduciaries the flexibility to adopt ‘appropriate measures’ rather than mandating ‘reasonable measures’. This recommendation emphasizes enabling businesses to choose security mechanisms best suited to their operational structures without facing undue financial or operational strain.
Personal Data Breach Reporting (Rule 7): Introducing a materiality threshold for reporting data breaches to the Data Protection Board (DPB) and adopting a staggered reporting approach. This would prevent unnecessary alarm while ensuring a structured and effective reporting framework.
Read More about BGMI
- BGMI Redeem Codes Today: KRAFTON India Rolls Out 59 New Redeem Codes to Unlock Premium Rewards
- BGMI 4.2 Update Leaks Reveal Prime Wood Genesis Mode and New Features
- BGIS 2026 Teaser Drops, Registrations Open This Month
- Krafton India Awards 2025 Vote Link, All Categories, and Nominees
- BGMI Player Transfer Window Deadline Extended, Check New Date
- BGMI Esports Roadmap 2026: Four Official Events, 4 Open For All Event, and Awards
Intimation to Affected Users (Rule 7): Modifying Rule 7(1) to include a materiality threshold for notifying affected users in case of data breaches. The recommendation suggests a phased approach to user notifications, allowing Data Fiduciaries adequate time to assess and compile accurate information before reaching out to users.
Retention Timelines (Rule 8): Clarity on the application of user-base thresholds, particularly for online gaming intermediaries managing multiple platforms. This request aims to simplify compliance for platforms exceeding 50 lakh registered users.
Commenting on the recommendations, Roland Landers, CEO of AIGF, stated: “The DPDP Act and Rules are a significant regulatory development that will require substantial operational changes for businesses. We appreciate the consultative approach taken in shaping these regulations and look forward to actively participating in the stakeholder engagement process. AIGF remains committed to working collaboratively to ensure a smooth transition, support our members in navigating these changes, and help shape a regulatory framework that balances data protection with the sustainable growth of India’s gaming ecosystem.”
