Research and Articles
Hotline
- Capital Markets Hotline
- Companies Act Series
- Climate Change Related Legal Issues
- Competition Law Hotline
- Corpsec Hotline
- Court Corner
- Cross Examination
- Deal Destination
- Debt Funding in India Series
- Dispute Resolution Hotline
- Education Sector Hotline
- FEMA Hotline
- Financial Service Update
- Food & Beverages Hotline
- Funds Hotline
- Gaming Law Wrap
- GIFT City Express
- Green Hotline
- HR Law Hotline
- iCe Hotline
- Insolvency and Bankruptcy Hotline
- International Trade Hotlines
- Investment Funds: Monthly Digest
- IP Hotline
- IP Lab
- Legal Update
- Lit Corner
- M&A Disputes Series
- M&A Hotline
- M&A Interactive
- Media Hotline
- New Publication
- Other Hotline
- Pharma & Healthcare Update
- Press Release
- Private Client Wrap
- Private Debt Hotline
- Private Equity Corner
- Real Estate Update
- Realty Check
- Regulatory Digest
- Regulatory Hotline
- Renewable Corner
- SEZ Hotline
- Social Sector Hotline
- Tax Hotline
- Technology & Tax Series
- Technology Law Analysis
- Telecom Hotline
- The Startups Series
- White Collar and Investigations Practice
- Yes, Governance Matters.
- Japan Desk ジャパンデスク
Technology Law Analysis
August 25, 2022Stricter cybersecurity norms and reporting requirements - why MNCs and start-ups alike are gearing up for rippling change
Summary
In this article, we analyse the new cyber security compliance and reporting regime under the directions and FAQs recently issued by the Indian Computer Emergency Response Team (CERT-In), which is the national agency for cybersecurity related functions in India, and operates under the Ministry of Electronics and Information Technology (MeitY). The directions provide for additional compliance requirements such as maintenance of logs, know your customer (KYC) requirements, in addition to stipulating a strict 6-hour reporting timeline for certain kinds of cyber security incidents.
The article provides an insight into what global businesses need to know if they have tech infrastructure or subsidiaries in India, or are even remotely targeting Indian users.
The online version of the article was published on OneTrust DataGuidance - Insights, and can be accessed here.
The article was also published in the Data Protection Leader Magazine (Volume 4 Issue 4, July 2022), of which the full issue can be downloaded here.
– Varsha Rajesh, Aniruddha Majumdar & Aaron Kamath
You can direct your queries or comments to the authors