Data Privacy Day: why trust, consent and control now define digital business

Data privacy is no longer a background concern. It sits at the centre of how digital trust is built, tested and, often, lost.

Every message a customer receives, every consent box they tick and every invisible data exchange happening behind the screen shapes that trust. As digital interactions deepen across banking, commerce, healthcare and public platforms, the margin for error has shrunk. One unclear message. One unexplained data request. And confidence slips away.

What stands out today is a clear shift in expectations. Users are not rejecting digital services. They are demanding control. They are willing to wait, pay more and even compromise on speed if security and transparency are visible upfront. From verified messaging and consent-driven data sharing to privacy-by-design architectures and responsible AI governance, organisations are being asked to prove their intent before they prove their innovation.

On Data Privacy Day, industry leaders across communications, financial services, infrastructure, analytics, cybersecurity and automation echo the same reality. Privacy is no longer a compliance task handled in isolation. It is now a business imperative, a risk discipline and a foundational layer of digital trust. And it is earned one interaction at a time.

Nicholas Kontopoulos, Vice President of Marketing - Asia Pacific & Japan, Twilio -

“Trust is often won or lost in a single customer message. If consumers cannot immediately recognise who is speaking to them or why a message was sent, they will not engage and confidence is lost before the conversation begins. Our latest Digital Patience research shows that people in India stay patient when they feel in control. The data shows that 63% will accept a short wait if it delivers better security. Additionally, 38% prioritise keeping their personal data is safe when interacting with a brand via digital channels, and 56% would even pay extra for peace of mind. The mandate is clear. Prove identity upfront and make privacy visible. To keep customers, you must prove who you are immediately. Using verified messaging experiences across email and WhatsApp Business can help address this challenge. Clear sender identity and consistent branding signal legitimacy and responsible data use helps customers engage with confidence. On top of that, explain what you collect and why, and ask for consent before you act. When customers feel secure and in charge, they stay loyal. In digital business, trust is earned one message at a time.” 

Manoj Paul, MD, Equinix India:

“As India enters a more mature phase of its digital economy, responsible data governance is being sharpened through the implementation of the Digital Personal Data Protection Rules (DPDP). The Rules place accountability, transparency and user consent at the centre of data-driven growth, at a time when digital services are becoming deeply embedded across financial services, healthcare, manufacturing and public infrastructure. In this evolving landscape, Equinix plays a central role by providing secure, neutral and globally interconnected digital infrastructure that helps organisations manage data responsibly while maintaining compliance and performance.

By enabling scalable architectures and trusted interconnection ecosystems, Equinix supports enterprises as they navigate the operational and governance requirements of the DPDP framework. On Data Privacy Day, Equinix reaffirms its commitment to supporting our customers in upholding the highest standards of data protection and digital trust.

We remain dedicated to empowering businesses with secure, resilient and compliant infrastructure with accessibility to digital ecosystems in India and worldwide. By working alongside customers, partners and policymakers, Equinix continues to support a future where innovation thrives on a foundation of trust, security and responsible data stewardship.”

Maurizio Garavello, SVP for Asia Pacific & Japan, Qlik.

“As AI becomes more autonomous, data privacy stops being a compliance checkbox and becomes a design principle. You can’t build trusted AI on opaque data or unclear ownership. Organisations need to know where data lives, who can act on it, and how decisions are governed – especially as agents begin to operate on their behalf. Privacy, governance, and transparency are what turn AI from a risk into a reliable partner. Without that trust layer, scale simply won’t happen”

Drew Bagley, VP and Counsel, Privacy and Cyber Policy, CrowdStrike

“Data Privacy Day is a reminder that privacy and cybersecurity rise or fall together, and those strategies must always be aligned. With AI becoming embedded across the enterprise and driving workflows, and constant data movement, we almost take for granted the new paradigm for access to and sharing of data. But real protection depends on visibility, privacy by design, and resilience that operates in real time.”

Peter White, Chief Product Officer, Automation Anywhere,

“As agentic systems operate with increasing autonomy and process unprecedented volumes of sensitive data, privacy is no longer optional. It is core infrastructure for responsible AI and automation. Embedding security and privacy by design at the architectural level is a critical element that will define systems which can scale from pilots to real-world operational usage. When privacy and security are built-in, organisations can move fast without breaking trust and introducing unnecessary risks.”

Achyuth Krishna, Head of Enterprise IT, Security, and Procurement, Whatfix:

“Generative AI has turned data into a double-edged sword. While it drives unprecedented automation, the cost of a single misstep has risen to nearly USD 4.5 million per IBM's 2025 Cost of a Data Breach Report. To thrive in 2026, leadership must shift from "defensive" privacy to "offensive" trust. The Strategy for 2026:

1. Democratize Control: Replace opaque data collection with user-centric dashboards. When users have clear sightlines into how AI uses their data, adoption friction disappears.

2. Anticipate the Threat: Move toward AI-driven security that identifies behavioural anomalies in real-time. Resilience must be embedded in the code, not just the firewall.

3. Embrace Regulatory Rigor: Treat the DPDP Act and GDPR not as constraints, but as blueprints for data minimisation. Collecting only what is necessary reduces the "attack surface" and streamlines operations.

A PwC's 2025 Responsible AI Survey confirms the shift that 60% of executives report responsible AI practices directly drive ROI and efficiency. By building with privacy at the core, organizations don't just protect their data, they protect their future. At Whatfix, this philosophy guides how we operate and build. Data privacy and security are embedded across our product suite through privacy-by-design, AI-driven threat detection, automated safeguards, and strong internal practices, including continuous employee training. By placing trust at the center, we help create digital systems that are secure, resilient, and built for the future.”