Browsing: laws & government

The General Data Protection Regulation (GDPR) is the European Union’s primary law governing the collection, use, storage, and protection of personal data. Enforced since 25 May 2018, it sets strict legal obligations for organizations that handle personal information of individuals located in the EU. What makes GDPR unique is its global reach: companies do not need to be established in Europe to fall under its jurisdiction. Any organization anywhere in the world can be subject to GDPR if it processes personal data of people in the EU in connection with offering goods or services to them or monitoring their behavior.…

India’s Department of Telecommunications (DoT) has enforced a new SIM-binding rule starting March 1, 2026. The directive applies to messaging platforms that use mobile numbers for user authentication, including WhatsApp, Telegram, Signal and similar apps. The order was originally issued on November 28, 2025, giving companies 90 days to comply. What Is SIM-Binding? Currently, most messaging apps verify users using a one-time password (OTP) sent to their registered mobile number during sign-up. After verification, the app can continue functioning even if the SIM card is removed or deactivated, particularly in multi-device and web versions. Under the new SIM-binding rule: The…

New Delhi | Mann Ki Baat – Episode 131 Prime Minister Narendra Modi addressed the nation in the 131st episode of ‘Mann Ki Baat’, where he spoke about Artificial Intelligence (AI), India’s growing global role in technology, and rising cybercrime threats such as digital arrest scams. During his address, PM Modi referred to the AI Summit held in New Delhi, calling it the largest AI summit ever hosted in modern India. He said the summit witnessed participation from global delegates who closely observed India’s rapidly advancing AI capabilities. The Prime Minister highlighted that international guests were especially impressed by how…

India has taken a significant step toward strengthening its cybersecurity ecosystem as Bharti Airtel partnered with global cloud security company Zscaler to launch an AI-powered Cyber Threat Research Center in the country.The initiative aims to enhance India’s ability to detect, analyze, and respond to advanced cyber threats targeting critical infrastructure. The research center will focus on using artificial intelligence and advanced analytics to study emerging cyber risks, including sophisticated malware, ransomware, phishing campaigns, and attacks on cloud and enterprise networks. With cyberattacks becoming more complex and frequent, the collaboration is expected to improve real-time threat intelligence and proactive defense strategies.…

India and Israel have agreed to further strengthen cooperation in Artificial Intelligence (AI) and Cybersecurity, recognizing the growing role of advanced technologies in national security and global digital stability. The collaboration was discussed during recent high-level engagements involving government representatives, technology experts, and industry leaders. The focus was on addressing emerging cyber threats, particularly those powered by artificial intelligence, such as automated cyberattacks, deepfake-enabled fraud, and advanced intrusion techniques targeting government and enterprise systems. Officials highlighted that while AI is accelerating innovation across sectors, it is also being increasingly misused by cybercriminals. As a result, both countries emphasized the importance…

Overview As artificial intelligence continues to reshape digital content creation, governments and regulators worldwide are introducing stricter frameworks to control the misuse of synthetic media. In 2026, the focus has clearly shifted from banning AI technologies to enforcing transparency, accountability, and rapid enforcement. New AI regulations now emphasize mandatory labeling of AI-generated content, permanent content credentials, accelerated takedown timelines for harmful material, and increased legal responsibility for online platforms. Why AI Regulation Is Tightening in 2026 The rapid growth of generative AI has made it easier to create realistic images, videos, and audio that can mislead users. Authorities have raised…

Why This Matters in 2026 Many organizations still believe that the CERT-In Cyber Security Directions, 2022 are outdated because of the year mentioned in the title.This is incorrect. The year 2022 only refers to the notification date, not validity.As of 2026, these directions are fully active, legally binding, and enforced under the Information Technology Act, 2000. 🔗 Official CERT-In Notification (Primary Proof)https://www.cert-in.org.in/PDF/CERT-In_Directions_70B_28.04.2022.pdf Are CERT-In Directions Still Applicable in 2026? Yes. 100% applicable. 🔗 CERT-In Official Websitehttps://www.cert-in.org.in/ 👉 This makes the directions current compliance requirements, not historical rules. Who Must Follow CERT-In Directions (2026) As per the official document, the following…

were notified by the Government of India under the Information Technology Act, 2000 and came into force on 11 April 2011. These rules regulate how organizations handle Sensitive Personal Data or Information (SPDI) in electronic form and impose legal accountability for negligence in data protection. Applicability The rules apply to every body corporate, including companies, firms, sole proprietorships, and professional entities that: Foreign entities are also covered if the data processing has a nexus with India. Sensitive Personal Data or Information (SPDI) SPDI under the rules includes: Information that is publicly available or disclosed under the RTI Act is excluded.…

Background and Legislative Origin The Information Technology Act, 2000 (IT Act) was enacted by the Parliament of India to address the legal challenges arising from the use of computers, networks, and electronic data.The Act was passed in 2000 and came into force on 17 October 2000. It was India’s first law specifically designed to regulate digital activity and cybercrime. Purpose of the IT Act The Act was introduced to: The core intent is to ensure that digital activities are subject to the rule of law. Scope and Applicability The IT Act applies to: It applies to individuals, companies, service providers,…

In recent years, the use of personal data in India has increased rapidly. From mobile apps and websites to banks and online services, companies collect and process large amounts of personal information every day. To regulate this and protect individuals, the Indian government introduced the Digital Personal Data Protection Act, 2023, commonly known as the DPDP Act. This law sets clear rules on how personal data must be handled and what responsibilities organizations have when dealing with user data. Why was the DPDP Act introduced? Before 2023, India did not have a dedicated data protection law. Data misuse, leaks, and…