Abstract

The rapid advancement of technology, including Artificial Intelligence, Cloud Computing, Blockchain, and the Internet of Things, has introduced unprecedented challenges to data privacy and regulatory compliance. The European Union's General Data Protection Regulation (GDPR) and India's Digital Personal Data Protection Act (DPDP Act) aim to safeguard individual privacy rights while fostering technological innovation. However, the evolving nature of digital ecosystems complicates their implementation. This paper explores how emerging technologies challenge GDPR and DPDP Act compliance, particularly in areas such as data minimization, informed consent, automated decision-making, and cross-border data transfers. It examines the limitations of these regulations in addressing AI-driven data processing, profiling risks, and the black-box nature of algorithmic decision-making. The study also evaluates the gaps in privacy-by-design principles, sector-specific governance, and accountability frameworks within these regulatory landscapes. Through a comparative analysis, the paper proposes solutions such as standardized consent management systems, transparency-enhancing mechanisms in AI models, and the integration of privacy-centric designs in technological innovations. By balancing regulatory compliance with digital transformation, this research aims to provide insights into fostering a privacy-conscious technological future.

Keywords