About AutoCops · Built in India

We build the boring software that DPDP teams quietly trust

AutoCops is an integrated DPDP compliance platform built in India for the Digital Personal Data Protection Act, 2023. We exist because most privacy software was written for someone else's law — not yours. We are a small team that thinks operational discipline beats slideware every time, and we are betting our company on that opinion.

Why we exist

Indian privacy programmes deserve Indian software

For two decades, the standard approach to data privacy in India was to import a global tool, translate the labels, and hope the obligations would map cleanly onto the GDPR features it was actually built for. They never quite did. The terminology was wrong. The workflows were wrong. The escalation paths terminated at regulators that don't exist in India. The audit reports were calibrated to the Information Commissioner's Office in the United Kingdom, not the Data Protection Board of India.

When the DPDP Act was passed in 2023, the gap became obvious. The Act has its own vocabulary (Data Fiduciary, Data Principal, Significant Data Fiduciary, Consent Manager), its own structure (14 chapters, the 2025 Rules, sectoral guidance still emerging), and its own enforcement culture (complaint-driven, fast, sceptical of paper compliance). None of the imported tools fit. So we built AutoCops.

The team is small on purpose. Every feature in the platform was either demanded by a customer with a real problem or hand-built by a practitioner who had done that work the painful way at a previous company. We don't build features for slideware. We build features for the operator at 7:42am on a Saturday when the breach alert fires.

How we build

Six principles that shape every decision

These are not values posters. These are the rules we use to decide what ships, what doesn't, and what we say no to.

01

Operations over paperwork

Most privacy programmes fail at execution, not at policy. We optimise for what your team has to do on Monday morning — not what looks impressive in a slide deck. Every feature has to earn its place by reducing real operational friction.

02

Indian-built, Indian-resident

AutoCops is built in India for the Digital Personal Data Protection Act, 2023. The application runs on your own GCP or AWS region in `asia-south1`. Personal data of Indian Data Principals never leaves the country. Sovereignty isn't a marketing line — it's the architecture.

03

Open architecture, no lock-in

Every record AutoCops creates is exportable. Every workflow is inspectable. Every API is documented. If you ever want to leave, we will help you migrate out. We earn your renewal by being useful, not by holding your data hostage.

04

Practitioner-grade, not consultant-grade

Our questionnaires, controls, and templates are written by people who have done this work in production. They are calibrated to what regulators actually look for, not what compliance theatre says they should. If the answer is "it depends," we tell you so.

05

The boring path beats the heroic one

The DPDP programmes that survive enforcement are not the ones with the cleverest controls. They are the ones with consistent, auditable, day-after-day execution. We optimise the boring path — the one that works at 3am on a Saturday when nobody's watching.

06

Quantitative honesty

We will not tell you that you are 92% compliant when you have not earned it. We will not let you publish a posture score that is theatre. The score is the score. If it is uncomfortable, that is the point — discomfort is what motivates real work.

Our story so far

From first commit to today

  1. 2024

    Project starts

    Two privacy practitioners and a senior engineer start building what would become AutoCops, after watching a third Indian organisation try and fail to bolt a global privacy suite onto their DPDP programme.

  2. Late 2024

    First production deployment

    An Indian bank goes live on the consent ledger, the DSR workflow, and the breach incident module. The first real grievance lands within the first month and is resolved inside the SLA.

  3. Mid 2025

    DPDP Rules notified

    The DPDP Rules 2025 land. AutoCops has the rule changes shipped to production deployments within ten days. We learn that hot-patch infrastructure is the most underrated feature in compliance software.

  4. Late 2025

    Multi-tenant architecture

    The platform reaches v2.0 — multi-tenant, multi-region, multi-language. Same codebase serves a one-person legal consultancy and a 5000-person enterprise. Both pay only for what they use.

  5. 2026

    Where we are now

    v2.1.2 is in development. The platform covers 11 capability modules across the full DPDP control framework. Customers in banking, healthcare, fintech, and edtech are running their day-to-day privacy operations on AutoCops.

What this gets you

Four moments where AutoCops earns its keep

When the regulator calls

You have evidence

Every action your team has taken on a Data Principal request, every consent acceptance, every breach declaration — all timestamped, all hash-chained, all exportable. Your defence writes itself.

When the board asks the score

You have an honest answer

Live posture from the live control framework, calibrated against the actual Act. No vanity metrics, no green-washed dashboards, no quarterly slide-deck theatre.

When a vendor changes country

You see it before they do

Cross-border tracking against the live Section 16 notification list. When a country gets restricted, every affected vendor is flagged in your inbox the same day.

When a Data Principal complains

You answer in time

SLA-tracked grievance workflow. The clock starts when the email lands. Escalation triggers automatically. The Board sees a Fiduciary that takes its obligations seriously.

Customers

Quietly trusted by Indian compliance teams

Our customers are mostly under NDA — privacy software customers tend to be private about their privacy software, which is healthy. Below is what we can share publicly.

3+
Indian banks
in production
2
Healthcare networks
live integrations
4
Fintech platforms
rolled out in Q1
200+
DPDP controls tracked
across the live framework

Partners

Working with implementation partners across India

We're not a consultancy. For organisations that want help implementing AutoCops, we have partner relationships with respected DPDP advisory firms in Bengaluru, Mumbai, and Delhi. We can introduce you to a partner whose style fits your team.

Ask for a partner introduction

Talk to us

30 minutes, your data, your questions

Book a demo with one of our compliance engineers. Or take the free 5-minute assessment first if you want to know where you stand before talking to us.

Book a demo Run free assessment