Cyber Security Compliance & Regulations
The cyber security insurance companies and the Indian government have realized the need for cyber security. Therefore, the appropriate bodies have taken several initiatives in order to confront cyber criminals and threats.
Here are some cyber security compliance & regulations in India.
-
The Information Technology (IT) Act, 2000
The IT Act of 2000 is one of the significant acts to address the challenges faced by the government due to cyber criminals and state-sponsored hackers. The act provides a legal framework in order to deal with electronic transactions.
It comprises provisions for privacy, data protection and cybercrime. In addition, it ensures the security of cyberspace in India. The act was amended later in 2008 and added several new offences to eradicate cyber crimes.
The act provides legal recognition of electronic records. The IT act was also brought to address the UNCITRAL (United Nations Commission on International Trade Law) model law on electronic commerce and electronic signature.
-
The Personal Data Protection Bill, 2019
It is a proposed law and yet to become an act and extend to the whole of India. The law or bill seeks to regulate the protection of individuals' data. It ensures the protection of privacy and backs the right to privacy granted in the Indian constitution.
The personal data protection bill was introduced in Lok Sabha in December 2019, and it is in the revision process of the parliamentary committee. It would ascertain the cyber security compliance & regulation in India.
The personal data protection bill defines personal data as data pertaining to a natural human being that can be utilized for identification. For example, the Aadhaar card.
Justice K.S. Puttaswami & Anr. V. Union of India & Ors, is a landmark judgment of the Supreme Court of India. It is also known as the “right to privacy case”.
The verdict came in favour of Justice Puttaswamy. The apex court recognized the right to privacy as a fundamental right under articles 14, 19 and 21 of the Indian constitution.
-
The National Cyber Security Policy, 2013
It is a documented policy released in 2013 by the government of India to safeguard cyberspace and develop the infrastructure. It seeks to strengthen the ability of the country to intercept cyber threats by building a cyber ecosystem.
Let us discuss some key features of The National Cyber Security Policy, 2013
The policy was brought to secure the cyberspace of businesses, citizens and the government of India. It aims to develop a framework and infrastructure to establish a mechanism to protect the interest of individuals.
The policy includes several objectives, such as:
- To enhance the security and infrastructure to protect the critical information of the nation
- To develop technologies via research and solution to address the national security requirement
- To promote the regulatory framework for the cyberspace ecosystem
Conclusion
Companies dealing in the IT sector must purchase or subscribe to a cyber insurance policy to ensure cyber security. The Indian legislature has brought several acts and policies to prevent cyber risks. With time, the legislature made several amendments to deal with the new risks and establish cyber security compliance & regulations in India.
Expert advice made easy
