By Gitika Sharma
The Indian government has announced the Promotional and Regulatory Bill for the Online Gaming Act, 2025 — banning all real-money online games, to come into effect from October 1. As a corollary to it, many pending regulations under the Digital Personal Data Protection (DPDP) Act, 2023 are to be notified by September 28. These two initiatives constitute one of the largest regulation shifts ever witnessed by India’s digital space.
The Internet gambling bill was passed by Parliament this year and reached presidential signature in August. The legislation seeks to regulate and promote the Internet gaming sector while distinctly marking out allowable formats such as e-sports, social network games, and educational games from prohibited “online money games” based on deposits, bets, or stakes transferable to real currency. The legislation goes to great lengths to prevent promotion and publicity and financial aid for prohibited formats as well, and thus its scope is all-encompassing.
There will be an imperative and urgent demand for compliance by stakeholders from the industry itself. The sites for gaming are requested to implement stringent verification measures, ensure safeguards for juveniles, impose deposit and spend limits, and develop grievance redressal channels. The legislation covers equally those who advertise and star while endorsing games over the net, while banks and payment channels are instructed to stop monetary flows associated with prohibited games. There are already many firms decreasing scale or discontinuing their money-gaming operations to align with the enforcement deadline. The twin reforms will have a major impact on consumers and the broader digital economy at large. To millions of citizens, banning games is an effort to address growing concerns regarding addiction, loss of funds, and exploitation of vulnerable citizens, especially children. The data protection legislation is equally seeking to address mounting concerns regarding the misuse of personal information, ubiquitous data theft, and the lack of accountability by corporations when it comes to sensitive digital information. The two initiatives coupled are being portrayed as much-needed steps to ensure citizens’ financial security, privacy, and digital health as the online space grows increasingly quickly.
Even more radical are the DPDP Act provisions whose working rules are set to become operational once its implementation schedule is announced. They will detail how digital personal information will be obtained, processed, stored and transferred and add oomph to calls for informed user consent. Harsh punishments for noncompliance aim to ensure accountability. For technology, media, e-commerce, and financial enterprises overall, it is a notification by the law to bring about a new era of tighter data governance.
While there are concerns over potential interconnections with existing legislation and consequences for areas such as journalism, the administration has signaled its intent to align user safety with innovation. Both plans are set to take effect a week apart, and India’s digital space is set to enter a period of regulation, oversight, and accountability.