These Rules may be cited as the Data Protection (Reasonable Measures for Engaging Data Processors) Rules, [2022]. They shall provide for reasonable measures that an engaging entity/a data controller must take when engaging a data processor in order to satisfy the requirements of section 25 of the Act.