K&S Digiprotect’s latest article, “An Analysis of Indian Medical Laws from the Perspective of Patient Data Privacy”, authored by S. Chandrasekhar and Aman Varma, has been published on Lexology.
The article offers a comprehensive examination of India’s fragmented healthcare regulatory landscape and its intersection with the Digital Personal Data Protection Act, 2023 (DPDPA). It analyses constitutional principles, central and state medical statutes, practitioner-specific ethical regulations, and healthcare activity–specific laws to identify how patient data is collected, processed, retained, and protected under Indian law.
By mapping long-standing medical recordkeeping and confidentiality obligations against the newer, horizontal data protection framework under the DPDPA, the article provides practical insights for hospitals, healthcare institutions, medical professionals, and digital health platforms navigating patient data compliance in India.
The piece concludes that effective implementation of the DPDPA—alongside existing medical laws—can modernize healthcare data governance, strengthen patient trust, and elevate accountability across India’s healthcare ecosystem.
ABOUT THE AUTHORS
S Chandrasekhar
S Chandrasekhar is the MD & CEO of K&S Digiprotect. He has over 32 years of experience. He is a Lead Auditor and Implementor- ISO-27001 (2022) and is qualified as a Lead Privacy Auditor (DSCI) and Certified Information Privacy Manager (CIPM) by the International Institute of Privacy Professionals (IAPP).
- chandrasekhar@knsdigiprotect.com
Aman Verma
Aman Verma is the Manager – Legal & Regulatory Affairs at K&S Digiprotect. His area of work spans across helping data fiduciaries with data privacy compliances to handling regulatory affairs under telecom, media, and technology law areas.
- aman@knsdigiprotect.com