BAR AND BENCH – Dating apps often continue tracking users even after accounts are deleted through cookies, SDKs, shadow profiles, cross-app identifiers, and third-party data sharing. India’s new Digital Personal Data Protection Act (DPDP Act) and the 2025 Rules directly challenge these practices by enforcing rights such as mandatory data erasure, purpose-limited processing, stronger security standards, restricted cross-border transfers, and heavy penalties for violations. Under the new law, dating platforms must justify and minimise any retained data, improve transparency, and overhaul vague retention policies.
See full article at Bar and Bench