The Washington Post, June 29, 2022. Under the rules issued by India’s Computer Emergency Response Team, known as CERT-In, firms and government agencies have to report incidents like hacks and data leaks within just six hours of learning of them. Read more

The Economic Times, June 26, 2022. India’s power corridors are abuzz again with a number of policies and legislations which are set to directly impact how technology and internet companies conduct their business in the country.  Read more

The Register, June 3, 2022. Lobby group BSA | The Software Alliance has written to India's government, pointing out impractical requirements, inconsistencies, and flaws in the nation's recently announced infosec reporting rules. The organization says the problems can only be addressed with extensive consultations and a delay to implementation. Read more

The Indian Express, September 15, 2020. The idea of a non-personal data governance framework and a regulator for the same may be “premature and not entirely necessary” in India as of now as the country is yet to have a personal data protection regime in place, startups and tech policy bodies have said in their submissions to the nine-member non-personal data governance committee. Read more