Government talks tough with VPN service providers and tech companies: The Government of India has given a stern warning to the companies providing Virtual Private Network (VPN) service. The government says that any service providers who are not ready to follow the new guidelines of the government, they will have to stop their operations in India. Minister of State for Electronics and IT Rajiv Chandrashekhar said this while releasing the Frequently Asked Questions (FAQ) regarding cybercrime on Wednesday.
The Union Minister said that no VPN service provider working in India can be given the exemption that they do not follow the rules and regulations of the country. Clarifying the government’s tough stand in this matter, he said that if a VPN service provider does not keep logs, then it should start doing so now. But if a VPN service provider wants to hide the information and keep the users of its services anonymous, then it has no way but to cover its business from India. He said that if you do not want to follow the laws, then this is your only option.
According to the new guidelines of the Ministry of Electronics and IT, Government of India, cloud and VPN service companies, data center companies and companies running virtual private servers doing business in India have to protect the data of users of their services for at least 5 years. Gotta keep it. Some VPN companies say that due to this new rule of the government, there is a risk of creating flaws in the cyber security system. But the government does not agree with his argument.
Chandrashekhar said that we have also made a rule that these companies will have to give complete information to the government within 6 hours of detecting any cyber breach in their system. He said that the government is not going to give any relaxation even in this rule. He said that cybercrimes are very complex and fast paced, so giving information about them immediately is very important in terms of investigation, forensic analysis and vigilance.
In fact, the Indian Computer Emergency Response Team (CERT-In), in a guideline issued on April 28, has asked all government and private agencies, Internet service providers and social media platforms to inform them within 6 hours of detecting a breach in cyber security. His report has to be provided. But the American technology industry organization ITI, which has membership of giant tech companies like Google, Facebook, IBM (IBM) and Cisco, has urged the Indian government to change these guidelines.ITI says that these new rules of the government will have a bad effect on cyber security in India. The organization says that before finalizing any rule in this regard, the government should discuss in detail with all the parties related to it. ITI has also expressed its concern about the new rules of the Government of India and its very wide scope. But now it is clear from the stand of the government that it is not in any mood to relax in this matter.