Skip to content
checkDPDP

Apply · DPDP Certification

Get any Indian website DPDP-Certified by checkDPDP

Open to every website that processes personal data of people in India — SaaS, BFSI, healthtech, edtech, D2C, e-commerce, publishers, government portals, and consent platforms. We run a free, independent audit against the DPDP Act 2023 + Rules 2025 and issue a live, publicly verifiable certificate — DPDP Gold, Verified or Aligned. Compliance deadline: 13 May 2027.

Why apply for the DPDP Certification

  • Protection from DPDP penalty exposure

    Our 40-point audit flags every Schedule-band gap before the Data Protection Board can. Gaps closed before enforcement = penalty risk reduced from ₹250 cr to near-zero.

  • Public, verifiable trust badge

    Approved sites get a live SVG badge that re-renders daily from our index. Visitors click it and land on your public verification page — instant trust, no claim-washing.

  • India-first, India-correct

    We test against Section 5 notice, Section 6 consent, Section 8 security, the 22 Eighth-Schedule languages and the Centre's cross-border rules. Not a recycled GDPR badge.

  • Free first round

    Apply for free. If you pass — badge issued. If you don't — we send the prioritised fix-list. Remediate, reply, and we re-audit at no charge.

60-second application

Tell us about your website

Our team reviews each application personally. If approved, your DPDP audit runs automatically and you'll have a verdict by email — usually the same day.

Free first round. We'll only contact you about your application — no marketing.

How it works

From application to live badge — same day

  1. Step 01

    Submit

    Tell us your URL, email, and a sentence or two about your site.

  2. Step 02

    Review

    Our team checks that the site is in scope (India operations, public, not in build).

  3. Step 03

    Auto-audit

    On admin approval our DPDP audit engine scores you across 40 checkpoints.

  4. Step 04

    Verdict

    You receive your badge link if you pass — or a free fix-list if you don't.

FAQ

DPDP Certification — answered

What does the checkDPDP DPDP Certification actually verify?
A 40-checkpoint audit mapped to the DPDP Act 2023 + Rules 2025: Section 5 privacy notice, Section 6 consent UX (granular, withdraw-as-easy-as-grant), Section 8(5) security safeguards, Section 8(6) breach reporting, Section 9 children-data, third-party trackers loading only post-consent, cross-border transfer disclosures, and the Data Principal rights mechanism.
Will this certification protect me from a DPDP penalty?
No certification stops the Data Protection Board from inspecting you, but Section 33(2) of the DPDP Act explicitly lets the Board consider the steps you took to mitigate risk when deciding penalties. Holding an active, independently-issued DPDP Certification is exactly that: documentary evidence of due diligence, refreshed daily.
How is the score calculated?
Composite = DPDP fit (45%) + Security posture (40%) + Ease/deployability (15%), each on a 1–5 scale, rounded to a 0–100 Protection score. The live scan column re-runs the same DPDP audit engine we use at /scan on your homepage daily at 02:00 UTC.
What are the certification tiers?
DPDP Gold (85–100), DPDP Verified (70–84), DPDP Aligned (55–69). Below 55 we don't issue a badge — we send a free fix-list so you can re-apply.
How long does the audit take?
Application review: usually under 1 business day. Once an admin approves, the automated DPDP audit runs in seconds and the result email goes out immediately. You'll have a verdict the same day.
How long does a certification last?
Always live. Unlike paper certificates that go stale, our badge re-renders from your daily score — so it always reflects your current state, not last year's. If your site regresses below threshold, the badge updates automatically.
Can I display the badge on my site?
Yes — every approved site gets a one-line embed snippet on their verification page. It's a live SVG hosted on checkDPDP that re-fetches daily. Visitors clicking the badge land on the public verification page where they can confirm the score is real.
How can I improve my score before applying?
Run the free /scan first to see your current gaps. Common quick wins: replace the "Accept" banner with a granular CMP, block trackers until consent, publish a Grievance Officer contact, ship the /your-rights mechanism, add HSTS + CSP headers. Most sites lift 15–25 points with two weeks of work.