What does GDPR mean for companies in India? Regardless of their location, organizations processing personal data of individuals from the EU or organizations having a presence in the EU must be GDPR compliant. Indian organizations also need to upgrade their technology, as well as practices and introduce data encryption modules. Most organizations will need to, if they havent already, update their privacy policies and implement sufficient safeguards, as required under the GDPR. They will also need to understand the rights of the data subject and adhere to practices keeping these rights in mind.