In a legal landscape where technology evolves faster than policy, leaders who can translate complexity into clarity stand out as true navigators of the digital era. Shreya Suri, Partner at CMS India, is one of India’s most influential voices in TMT, FinTech, cybersecurity, and emerging tech regulation. With a decade-long tenure at CMS and a career shaped by both disputes and high-stakes advisory work, she represents the rare professional who can decode law, anticipate risk, and guide innovation with balance and foresight.
On this special Ganesh Chaturthi episode of the Emerging Lawyer Series @ Koffee Conversation, Shreya brings nuance, warmth, and unmistakable sharpness. Her insights cover everything — RBI crackdowns, DPDP Act implementation, OTT disruption, AI governance, cyber frameworks, gaming regulation, platform liability, product structuring, and what it truly means to be a young lawyer in a sector that reinvents itself every quarter.
Shreya’s journey into TMT wasn’t linear — it was organic. She began her career in litigation and regulatory investigations, working on SEBI and CCI matters. A move to CMS opened doors to corporate transactions, fundraises, M&A, and product advisory. But what truly shifted her trajectory was the rise of India’s tech boom. With founders, fintechs, and global companies seeking guidance, she naturally gravitated toward this emerging space — helping businesses navigate untested models, regulatory uncertainty, and policy grey zones.
Over 10 years, she helped build CMS India’s advisory practice structurally — from decoding digital lending frameworks to advising cross-border clients on cybersecurity, data lifecycle management, and compliance design. Her foundation in disputes sharpened her foresight, helping her draft, negotiate, and advise with courtroom clarity. Today, she mentors young lawyers, contributes to national dialogues, and remains a trusted voice for companies building the future of tech.
Key Highlights of the Koffee Conversation with Shreya Suri:
- Entered TMT law organically while advising fast-growing tech clients in early years.
- Credits mentorship, trust, and ideation culture at CMS for her long-term journey.
- RBI’s crackdown on fintechs stems from fraud risks, market saturation, and responsible governance gaps.
- Strongly believes innovation and regulation can coexist when guardrails are clear.
- DPDP implementation must begin with data mapping, purpose limitation, and third-party accountability.
- Notes a major misconception: data protection ≠ cybersecurity; it requires legal interpretation + tech alignment.
- GDPR compliance does not equal DPDP compliance due to narrower consent grounds in India.
- Advises CISOs/DPOs to build privacy champions across departments for long-term sustainability.
- Telecom sector faces dual-layer compliance with DPDP + DOT cybersecurity directions.
- Biggest red flag for app developers: UI/UX that triggers regulatory notices due to poor legal hygiene.
- Creative mandates often arise when laws are grey — e.g., digital lending, crypto, and aggregator guidelines.
- Dual experience in disputes + advisory gives her foresight in drafting, risk mitigation, and policy interpretation.
- Mentors juniors by pushing them to read laws before joining TMT teams — ignorance isn’t acceptable.
- AI tools improve speed and accuracy but can’t replace nuanced legal advice grounded in judgment.
- Describes herself as “persevering” — a trait reflected in her relentless pursuit of excellence.
🎥 Watch the full Koffee Conversation with Shreya Suri on YouTube — a powerful masterclass in tech law, fintech regulation, digital governance, and the mindset needed to thrive in India’s fastest-evolving legal sector.
0 Comments