India DPDP Act 2023 · Wix App

DPDP compliance for your Wix site. Installed in one click.

DPDPA.support turns any Wix site into a compliant data fiduciary under India's Digital Personal Data Protection Act, 2023 — a per-purpose consent ledger, cookie and tracker gating, data-principal self-service, and a DPO console. Far more than a cookie banner.

Install on Wix See how it works

Self-hosted · Multi-tenant · Billed securely via Wix

12: Wix data sources covered for access
1-click: install & auto-provision
2027: ready before the 13 May deadline

One compliance engine · every platform

Live on Wix today. Rolling out everywhere your data lives.

DPDPA.support is built platform-by-platform so the same consent ledger, rights portal and DPO console work wherever your business runs. Wix is live now — more are on the way.

WixLive WordPressSoon ShopifySoon HubSpotSoon BigCommerceSoon

WebflowSoon SquarespaceSoon MagentoSoon SalesforceSoon Custom / APISoon

The deadline is real

The clock is real. The rules are notified.

The DPDP Rules 2025 are notified and the Data Protection Board of India is constituted. Two statutory dates now bind every business handling personal data on a Wix site — and the work of mapping data, capturing per-purpose consent with proof, and honouring erasure takes time. DPDPA.support gets your site on the right side of both: one install, not a legal project.

Rule 4 · Consent Manager integration

13 November 2026

—days —hrs —min —sec

Consent Manager integration becomes mandatory under Rule 4.

All substantive obligations

13 May 2027

—days —hrs —min —sec

Lawful consent, breach reporting, data-principal rights, and security safeguards all land.

One platform

Every DPDP obligation, in a single circle.

Consent, rights, erasure, audit and discovery — installed at the centre of your Wix site and working together, not stitched from point tools.

DPDPA.support

Consent ledgerEvery grant & withdrawal recorded per purpose, with proof.
Cookie & tracker gatingAnalytics and ad scripts blocked until the visitor consents.
My Data self-serviceMembers manage consent & rights on your own site, in their language.
Access & erasureOne-click access reports across 12 sources; erasure with legal-hold.
DPO consoleRespond to grievances, run the erasure queue, look up principals.
Discovery & RoPAAuto-find where PII lives, classify it, build your RoPA for export.

Zero-touch compliance

It maps your data, builds the records, and runs the rights — for you.

On install, DPDPA.support discovers where personal data lives across your site, classifies it, and auto-builds your compliance artifacts. No spreadsheets, no consultants.

Zero-touch discovery

Scans members, contacts, orders, bookings, forms and more — finds every place personal data lives and classifies it automatically.

RoPA, auto-built

Your Record of Processing Activities is generated from what's actually on your site — and exported for the Data Protection Board on demand.

DPO console & consent ledger

A per-purpose consent ledger with proof, plus a DPO console to respond to grievances and run access / erasure with legal-hold.

DPIA reports Coming soon

Guided Data Protection Impact Assessments built from your discovered data map — on the roadmap as part of the Intelligence tier.

Cookie & tracker gating

Analytics and advertising scripts stay blocked until the visitor consents — enforced, not just a banner.

Ready before the deadline

One install gets your site standing on the right side of the 13 Nov 2026 and 13 May 2027 DPDP deadlines — without a compliance project.

Verified on a real tenant

Trackers stay blocked until consent.

Analytics and advertising scripts do not fire until the data principal consents — enforced through Wix TAG_OVERRIDE, not just hidden behind a banner.

overrides created

trackers gated

duplicates on re-run

How it works

Install reads your site. You answer two questions. Done.

One click provisions your tenant — fiduciary record, app, API keys and a published policy — with every secret stored in OpenBao per instance, never in code or the browser.

1
Install
One click from the Wix App Market.
2
Provision
Tenant, API keys & published policy — secrets in OpenBao.
3
Consent
Events flow Wix → CMS over signed webhooks.
4
Rights
Principals self-serve at your-site/my-data.
5
DPO
Grievances, erasure queue & RoPA in one console.

What you get

A compliance platform, not a cookie banner.

Consent ledger

Every decision recorded per purpose with proof of who, what, when and how — an append-only audit trail built for accountability.

My Data self-service

At your-site/my-data, members are auto-resolved from Wix identity with OTP step-up — per-purpose toggles, in English and Hindi.

Access & erasure

One-click access reports across twelve Wix sources; erasure that stops processing, with legal-hold and proof-of-purge.

DPO console

A grievance respond-and-action flow for grievances, an erasure queue, and principal lookup — resolved in one place, not a spreadsheet.

Discovery & RoPA

Auto-discover where PII lives, classify it, and map it to DPDP purposes and a Record of Processing Activities — ready for DPB export.

Self-hosted & isolated

Secrets in OpenBao per instance, tenant-bound sessions, fail-closed isolation, and RS256-signed webhooks on every event.

FAQ

DPDP questions, answered plainly.

Is this more than a cookie banner?

Yes. DPDPA.support is a consent management and compliance platform: a per-purpose consent ledger with proof, tracker gating enforced via TAG_OVERRIDE, data-principal self-service for access and erasure, and a DPO console. A banner records a click; this records compliance.

Where is my data hosted?

The platform is self-hosted and multi-tenant on our infrastructure. Every tenant's secrets live in OpenBao per instance, sessions are tenant-bound, isolation is enforced fail-closed, and webhooks are verified with RS256 signatures. You stay in Wix; the system of record is the multi-tenant TSI DPDP CMS with an append-only audit store.

How does erasure work under legal hold?

On erasure, processing stops instantly — consents withdrawn, Wix marketing consent revoked, subscriptions cancelled, marketing labels stripped. Records then freeze under a documented legal-hold and auto-purge with proof when the retention clock expires. Withdrawal is two-way, pushing from the CMS back to Wix so marketing genuinely stops.

How is it billed?

Every plan is billed securely via Wix, monthly, with no setup fees and no contracts. Plans start at $9/mo for consent capture and scale into full DPO tooling and AI-assisted classification as your compliance programme matures.

Is DPDPA.support a Board-registered Consent Manager?

No. To be precise about roles: this is the fiduciary's own consent management and compliance platform — not a Board-registered Consent Manager. It helps you meet your obligations as a data fiduciary.

Get DPDP-compliant before the deadline forces it.

The 13 May 2027 deadline does not move. Install DPDPA.support on your Wix site, complete a two-field onboarding, and start capturing consent with proof today.

Install on Wix Book a demo