Facebook, Google, Other Top Tech Firms Warn Indian Cybersecurity Rules May Create an Environment of Fear

VPN service provider ExpressVPN removed its servers from India on Thursday after refusing to limit Internet freedom.

Facebook, Google, Other Top Tech Firms Warn Indian Cybersecurity Rules May Create an Environment of Fear

IAMAI represents firms including Facebook, Google, and Reliance

Highlights
  • IAMAI proposed to extend the six-hour window
  • CERT comes under the IT ministry
  • The cost of complying with such directives could be "massive"
Advertisement

Indian cybersecurity rules due to come into force later this month will create an "environment of fear rather than trust", a body representing top tech companies has warned the government, calling for a one-year delay before the rules take effect.

The Internet and Mobile Association of India (IAMAI), which represents firms including Facebook, Google, and Reliance, wrote this week to India's IT ministry criticising a directive on cybersecurity set out in April.

Among other changes the directive from the Indian Computer Emergency Response Team (CERT) requires tech companies to report data breaches within six hours of noticing such incidents and to maintain IT and communications logs for six months.

In the letter seen by Reuters, IAMAI proposed to extend the six-hour window, noting the global standard for reporting cyber-security incidents is generally 72 hours.

CERT, which comes under the IT ministry, has also asked cloud service providers such as Amazon and virtual private network (VPN) companies to retain names of their customers and IP addresses for at least five years, even after they stop using the company's services.

The cost of complying with such directives could be "massive", and proposed penalties for violation including prison would lead to "entities ceasing operations in India for fear of running afoul," the IAMAI letter said.

On Thursday, VPN service provider ExpressVPN removed its servers from India, saying it "refuses to participate in the Indian government's attempts to limit Internet freedom".

IAMAI's letter follows one from 11 significant tech-aligned industry associations earlier this week, which said the new requirements made it difficult to do business in India.

India has tightened regulation of big tech firms in recent years, prompting pushback from the industry and in some cases even straining trade ties between New Delhi and Washington.

New Delhi has said the new rules were needed as cybersecurity incidents were reported regularly but the requisite information needed to investigate them was not always readily available from service providers.

© Thomson Reuters 2022


Will crypto tax hurt the industry in India? We discuss this on Orbital, the Gadgets 360 podcast. Orbital is available on Spotify, Gaana, JioSaavn, Google Podcasts, Apple Podcasts, Amazon Music and wherever you get your podcasts.
Affiliate links may be automatically generated - see our ethics statement for details.
Comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Oppo Reno 8Z 5G Clears NBTC, EU Declaration; May Pack 4,500mAh Battery With 33W Charging
Share on Facebook Gadgets360 Twitter Share Tweet Snapchat Share Reddit Comment google-newsGoogle News
 
 

Advertisement

Follow Us

Advertisement

© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
Trending Products »
Latest Tech News »