1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • India to force VPN companies to hand over user data

    From TechnologyDaily@1337:1/100 to All on Fri Apr 29 20:15:04 2022
    India to force VPN companies to hand over user data

    Date:
    Fri, 29 Apr 2022 19:00:07 +0000

    Description:
    The Indian government has issued a set of new directions that require IT
    firms to store and provide user data upon request.

    FULL STORY ======================================================================

    Using your favorite VPN in India may soon be impossible thanks to new regulations that will require VPN providers to collect and store a wide range of data on their customers for a period of five years.

    As reported by ENTRACKR , the Computer Emergency Response Team ( CERT-in ) which is under the control of the countrys Ministry of Electronics and Information Technology has issued a new set of directions in an effort to coordinate response activities as well as emergency measures with respect to cyber security incidents.

    Share your thoughts on Cybersecurity and get a free copy of the Hacker's Manual 2022 . Help us find how businesses are preparing for the post-Covid world and the implications of these activities on their cybersecurity plans. Enter your email at the end of this survey to get the bookazine, worth $10.99/10.99.

    VPN providers arent the only companies that will be required to store
    customer data though as the directions also apply to data centers, cryptocurrency exchanges and Virtual Private Server ( VPS ) providers as
    well.

    Beginning in June of this year, companies in these industries will be
    required to register customer names, customer ownership patterns, customer contact information and the reason they have purchased their services in the first place. Improving cyber incident response at a cost

    CERT-ins new order appears to be aimed at ensuring the government agency can respond to all manner of cyber incidents within six hours of their discovery. While the order itself may be well-intentioned, the range of data CERT-in is asking organizations to store and provide upon request is quite unusual.

    CERT-in requires organizations to report data breaches, fake mobile apps, attacks on server infrastructure and even unauthorized access to a users social media accounts. Additionally, businesses that fail to provide the necessary information are governed by Section 70B(7) of the IT Act which
    could lead to up to one year in prison. Read More

    Ban VPN services in India, says parliamentary panel



    Bitcoin in India could be banned again in crackdown on cryptocurrencies


    India picks tiny video conferencing start-up to replace Zoom

    Another snag in the Indian governments plan is that most VPNs have a no-logs policy or at the very least, only keep user data temporarily. As a result of CERT-ins new directions, many VPN providers and other IT companies could potentially stop doing business in India as they can no longer legally
    operate in the country.

    The new directions will go into effect at the end of June unless the window for compliance is extended which very well could be the case. Until then though, consumers and businesses in the country should pick up one of the
    best India VPNs while they still can. Protect your sensitive company data
    when working remotely with one of the best business VPNs

    Via ENTRACKR



    ======================================================================
    Link to news story: https://www.techradar.com/news/india-to-force-vpn-companies-to-hand-over-user- data/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)