Navigating the CERT-In directives for business operations.
Regulations, community engagement and change.
On 28th April 2022 the Indian Computer Emergency Response Team (CERT-In) issued new directions (PDF) under sub-section (6) of section 70B of the Information Technology Act, 2000 relating to information security practices, procedure, prevention, response, and reporting of cyber incidents for The Safe & Trusted Internet.
These were not preceded by any public consultations, creating confusion in the organizations and businesses impacted by these changes. The directons cover aspects related to the timeframe for reporting cyber security incidents, maintenance of the user identification data, transaction information for crypto exchanges and wallets, maintenance of customer details by data centers, cloud services, VPN providers, and maintenance of logs in the Indian jurisdiction.
What will be the impact of these directions on businesses?
Rootconf and Privacy Mode are co-organizing with FOSS United Foundation an event on the 20th May 2022 to discuss the impact of these directions on various businesses, along with discussing recommendations for the directive to fall in line with privacy and business requirements. This hybrid (online and on-site) event will be held at the Zerodha office in Bengaluru.
The event will help the audience gain a better understanding of the impact, especially around data governance and operational practices. The following key concerns will also be discussed.
- Gaps and unknowns in the text of the directions.
- Challenges in complying with the requirements criteria set in the directions.
- Impact on data governance strategies, risk management, and operational aspects of businesses.
- Methods of engagement to refine and improve such requirements.
A report based on a discussion regarding the impact of CERT-In on various businesses, that took place among many tech practitioners, is available on the link below:
Hosted by
Supported by
Co-organizer
Deep dives into privacy and security, and understanding needs of the Indian tech ecosystem through guides, research, collaboration, events and conferences. Sponsors: Privacy Mode’s programmes are sponsored by: more
Co-organizer
FOSS United is a non-profit foundation that aims at promoting and strengthening the Free and Open Source Software (FOSS) ecosystem in India. more
Sponsor of Privacy Mode
Omidyar Network India invests in bold entrepreneurs who help create a meaningful life for every Indian, especially the hundreds of millions of Indians in low-income and lower-middle-income populations, ranging from the poorest among us to the existing middle class. To drive empowerment and social i… more
Hosted by
Supported by
Co-organizer
Deep dives into privacy and security, and understanding needs of the Indian tech ecosystem through guides, research, collaboration, events and conferences. Sponsors: Privacy Mode’s programmes are sponsored by: more
Co-organizer
FOSS United is a non-profit foundation that aims at promoting and strengthening the Free and Open Source Software (FOSS) ecosystem in India. more
Sponsor of Privacy Mode
Omidyar Network India invests in bold entrepreneurs who help create a meaningful life for every Indian, especially the hundreds of millions of Indians in low-income and lower-middle-income populations, ranging from the poorest among us to the existing middle class. To drive empowerment and social i… more