Calculators, field guides, decision trees, RFP templates, and playbooks — built for the Indian regulator stack. All free to use without signup. The blog is the long-form companion to these tools.
Twelve resources covering DPDP, SEBI CSCRF, RBI, CERT-In, SOC 2, ISO 27001, and VAPT. Updated as regulations change. The blog is updated weekly with new long-form content.
Calculate your DPDP Section 33 Schedule penalty exposure based on turnover, severity, and mitigation posture. Statutory ceilings up to ₹250 Crore.
The six-hour incident reporting runbook — step-by-step workflow, internal escalation chain, regulator notification templates, common mistakes that extend the timeline.
How to verify a vendor's CERT-In empanelment, what categories matter, what changes in 2026, and the cross-referenced public list of currently-empanelled firms.
Pick the right first certification based on your buyer pipeline, geography, and stage. Indian / APAC vs US / EU branching, with the joint-engagement option for mixed pipelines.
Data Fiduciary obligations, lawful basis, consent manager wiring, DPIA, Significant Data Fiduciary classification, Section 33 penalty framework, and audit-ready evidence.
The six SEBI CSCRF domains explained for stock brokers, AMCs, and Market Infrastructure Institutions. Quarterly cadence, MSOC integration, cyber-resilience drill expectations.
Five-minute self-assessment to gauge how close your organisation is to SOC 2 Type II readiness. Covers access management, change management, vendor risk, and evidence discipline.
Pre-structured VAPT RFP template — scope, methodology, deliverables, auditor qualifications, commercial terms, evaluation criteria. Sector-specific customisations included.
Your enterprise prospect just asked for SOC 2 — the 90-day triage playbook. Day-1 buy-time email, Days 2-7 build-week, Days 8-30 programme start, Days 31-90 fieldwork.
The six factors that drive incident-response retainer cost — SLA, included hours, tier, on-site posture, regulator-reporting depth, engagement model.
The seven factors that drive VAPT engagement cost — scope breadth, methodology depth, tester seniority, re-test policy, reporting granularity, on-site posture, empanelment.
The six factors that drive SOC 2 Type II cost in India — TSC scope, observation window, organisation size, multi-cloud complexity, readiness maturity, auditor pedigree.
India regulators as first-class frameworks. Bharat-resident evidence. Pricing locked in INR for the first 12 months. We are onboarding ten design partners through Q2-Q3 2026 ahead of general availability.