Browsing: laws & government

India has taken a significant step toward strengthening its cybersecurity ecosystem as Bharti Airtel partnered with global cloud security company Zscaler to launch an AI-powered Cyber Threat Research Center in the country.The initiative aims to enhance India’s ability to detect, analyze, and respond to advanced cyber threats targeting critical infrastructure. The research center will focus on using artificial intelligence and advanced analytics to study emerging cyber risks, including sophisticated malware, ransomware, phishing campaigns, and attacks on cloud and enterprise networks. With cyberattacks becoming more complex and frequent, the collaboration is expected to improve real-time threat intelligence and proactive defense strategies.…

India and Israel have agreed to further strengthen cooperation in Artificial Intelligence (AI) and Cybersecurity, recognizing the growing role of advanced technologies in national security and global digital stability. The collaboration was discussed during recent high-level engagements involving government representatives, technology experts, and industry leaders. The focus was on addressing emerging cyber threats, particularly those powered by artificial intelligence, such as automated cyberattacks, deepfake-enabled fraud, and advanced intrusion techniques targeting government and enterprise systems. Officials highlighted that while AI is accelerating innovation across sectors, it is also being increasingly misused by cybercriminals. As a result, both countries emphasized the importance…

Overview As artificial intelligence continues to reshape digital content creation, governments and regulators worldwide are introducing stricter frameworks to control the misuse of synthetic media. In 2026, the focus has clearly shifted from banning AI technologies to enforcing transparency, accountability, and rapid enforcement. New AI regulations now emphasize mandatory labeling of AI-generated content, permanent content credentials, accelerated takedown timelines for harmful material, and increased legal responsibility for online platforms. Why AI Regulation Is Tightening in 2026 The rapid growth of generative AI has made it easier to create realistic images, videos, and audio that can mislead users. Authorities have raised…

Why This Matters in 2026 Many organizations still believe that the CERT-In Cyber Security Directions, 2022 are outdated because of the year mentioned in the title.This is incorrect. The year 2022 only refers to the notification date, not validity.As of 2026, these directions are fully active, legally binding, and enforced under the Information Technology Act, 2000. 🔗 Official CERT-In Notification (Primary Proof)https://www.cert-in.org.in/PDF/CERT-In_Directions_70B_28.04.2022.pdf Are CERT-In Directions Still Applicable in 2026? Yes. 100% applicable. 🔗 CERT-In Official Websitehttps://www.cert-in.org.in/ 👉 This makes the directions current compliance requirements, not historical rules. Who Must Follow CERT-In Directions (2026) As per the official document, the following…

were notified by the Government of India under the Information Technology Act, 2000 and came into force on 11 April 2011. These rules regulate how organizations handle Sensitive Personal Data or Information (SPDI) in electronic form and impose legal accountability for negligence in data protection. Applicability The rules apply to every body corporate, including companies, firms, sole proprietorships, and professional entities that: Foreign entities are also covered if the data processing has a nexus with India. Sensitive Personal Data or Information (SPDI) SPDI under the rules includes: Information that is publicly available or disclosed under the RTI Act is excluded.…

Background and Legislative Origin The Information Technology Act, 2000 (IT Act) was enacted by the Parliament of India to address the legal challenges arising from the use of computers, networks, and electronic data.The Act was passed in 2000 and came into force on 17 October 2000. It was India’s first law specifically designed to regulate digital activity and cybercrime. Purpose of the IT Act The Act was introduced to: The core intent is to ensure that digital activities are subject to the rule of law. Scope and Applicability The IT Act applies to: It applies to individuals, companies, service providers,…

In recent years, the use of personal data in India has increased rapidly. From mobile apps and websites to banks and online services, companies collect and process large amounts of personal information every day. To regulate this and protect individuals, the Indian government introduced the Digital Personal Data Protection Act, 2023, commonly known as the DPDP Act. This law sets clear rules on how personal data must be handled and what responsibilities organizations have when dealing with user data. Why was the DPDP Act introduced? Before 2023, India did not have a dedicated data protection law. Data misuse, leaks, and…

The Delhi High Court has issued a directive making electronic Know Your Customer (e-KYC) verification mandatory for all domain name registrations in India. The court ordered that domain registrars must verify the identity of every registrant before activating a domain name and must not allow anonymous or unverified registrations. The directive also states that privacy masking of domain ownership details cannot be enabled by default and may only be applied after identity verification has been completed. Registrars have been instructed to maintain accurate and verified registrant data and to share updated records with the National Internet Exchange of India on…

New York State has enacted a new cybersecurity-focused procurement law that restricts the technology products state and local government agencies are allowed to purchase. The law requires the State Chief Information Officer to create and maintain a list of technology products and vendors that government agencies are prohibited from buying due to cybersecurity and national security risks. The restrictions primarily apply to technology supplied by companies that may be subject to foreign government control or data-sharing obligations, which lawmakers said could pose risks to sensitive government information. Under the law, state and municipal agencies must avoid purchasing any product placed…