Kyloen Completes Comprehensive DPDP Act 2023 Compliance Framework for Children's AI Data
Industry-first implementation of verifiable parental consent and child data governance aligned with India's Digital Personal Data Protection Act
New Delhi, India
Kyloen today announced the completion of its comprehensive compliance framework under India's Digital Personal Data Protection Act, 2023 (DPDP Act), establishing what the company describes as the most rigorous data governance standard for any children's AI product operating in India.
The framework includes verifiable parental consent collection before any child profile creation, minimum necessary data processing, transparent cross-border data transfer disclosures, and a designated Grievance Officer accessible at grievance@kyloen.com. All conversation data is processed using enterprise-grade AI, which operates under a strict zero-training-data policy for child conversations.
Key Compliance Measures
Kyloen's DPDP framework implements automated data minimisation at the infrastructure level. Conversation logs are processed in real-time for safety monitoring but are not retained beyond the period necessary to deliver the service. Parents retain full rights to access, correct, and permanently delete their child's data through the Parent Dashboard, with deletion completing within 30 days of request.
"Indian children deserve digital products built with genuine care, not just compliance checklists. We designed our data architecture from the ground up to protect children, not to collect data about them," said Neha Kapoor, Founder and CEO.
Kyloen has engaged Unified Chambers and Associates as legal counsel for ongoing regulatory compliance monitoring. The company publishes its complete privacy practices and data processing documentation at kyloen.com/privacy.