独家
解释:VPN新规则意味着什么在印度互联网用户
出具的指令,印度的网络监督机构——印度计算机紧急响应小组(、),旨在解决cyvercrime, 2022年6月27日生效
-
Ashwini Vaishnaw袋10点的官员腐败指控
不到16年经验的官员受到缺口,而高级年级有一个长期的经验。凹陷水平相当于政府部门的联合秘书,虽然缺口是在主管级别。
-
-
-
印度现在已经通过了一项法律,要求所有虚拟专用网络(VPN)服务提供者为至少5年存储用户数据。国家指令不仅适用于VPN公司,但对云服务提供商,数据中心和加密交流,收集特定,广泛的客户数据,即使在用户删除自己的帐户或取消订阅。公司将存储用户名,IP地址,使用模式,其他形式的身份信息,并报告“未经授权的访问社交媒体账户”指令的一部分。那些不遵守可能面临一年监禁。
出具的指令,印度的网络监督机构——印度计算机紧急响应小组(、),旨在解决cyvercrime,生效于2022年6月27日,和要求VPN提供商保持以下数据的了解你的客户什么政策五年:
验证用户/客户的名字
雇佣期间
ip分配给用户
电子邮件地址,IP地址和时间戳的时候登记使用
招聘的目的服务
地址和联系号码进行验证
所有权模式的用户
现在,使用VPN的主要目的是保持一个IP地址的私人用户可以避开网站追踪,追踪用户的数据和位置。与新变化,VPN公司将被迫存储服务器和用户隐私将不再是一个核心功能。
注意:VPN采用指数由AtlasVPN维护,数据显示,印度记录超过2.7亿的VPN用户2021年,大约20%的人口。vpn的使用智能手机用户达到25.27%在2021年的前六个月从3.28%人口在2020年,根据数据从谷歌播放存储由感应塔和苹果应用程序商店。还:根据2020年全球VPN使用情况报告,印度是VPN的第二大市场,45%的互联网通过VPN使用情况,从2018年的38%。
什么是最大的USP VPN,尤其是在线交易吗?
“vpn隐藏你的位置和IP地址时共享一个开放的网络。他们添加一层加密数据,这意味着有更少的机会有人偷听你的通讯或拦截私人信息,如登录凭证或密码。这使它非常安全访问你的银行账户在公共wi - fi,“说Murari曾经,首席技术官,BankBazaar.com。
VPN将分配一个用户一个临时的或一个影子IP地址。企业通常使用vpn,允许员工远程登录到他们的工作系统,无需任何妥协的风险,他们将处于危险之中。
根据卡巴斯基,VPN的主要工作是隐藏你的IP地址从你的ISP和其他第三方。这允许您发送和接收网上信息没有任何的风险,但是你和VPN提供商看到它。
通过VPN,你所有的数据流量路由通过一个加密的虚拟隧道。这掩盖了你的IP地址当你使用互联网,让它的位置看不见人。VPN连接也是安全的外部攻击。VPN可以从任何地方访问区域限制内容。许多流媒体平台并不是在每一个国家。你仍然可以使用VPN访问它们。人们常常把vpn当他们国家的政府阻止有用的应用程序。最常见的一个例子是VoIP服务——简称互联网协议语音,或者简单来说,通过互联网电话服务,如WhatsApp,电报,Skype,等等。
直到现在,VPN提供商在印度没有存储日志的活动。有些供应商可能会记录你的行为,但不要将此信息传递给第三方。这意味着任何潜在的用户行为记录仍永久隐藏。但这是现在开始改变。
repurcussions政府的行动是什么?
洗钱将变得艰难
偷来的身份和银行欺诈是非常现实的问题。而隐私是重要的VPN服务提供商和用户为了避免被跟踪,政府此举将有助于跟踪反社会元素,网络罪犯沉溺于网上各种令人发指的活动。洗钱的新规定还将关闭门和数字上升的银行一样,vpn扮演一个重要角色在打开房间这样的非法活动,“说Sucheta塔,MD印度,分行个人理财软件。
银行欺诈和诈骗将下降
“印度作为一个国家肯定会出现下滑的情况下对银行欺诈和诈骗的实现VPN的新规定。骗子,骗子就不能躲在面具后面的VPN从今以后,和将会暴露他们犯下的罪行。《条例》将带来急需的问责与稳定银行业,”基金会的联合创始人和首席运营官——Bridgeup Jahangir Panday表示。
但是这对用户意味着什么呢?
用户隐私死
而vpn将仍然是合法的,它将会在印度监管。此外,VPN用户现在的风险被受人监视和失去隐私的目标。
“用户的能力依赖于所提供的隐私和匿名vpn,数据中心和云存储设施真正的和合法的活动,也可能受到影响。也,增加大规模数据泄露在很多科技公司的实例,用户数据存储服务提供商可以始终处于危险之中,“Anupam Shukla说,伙伴,先锋的法律。
“新VPN的规则可能违反“隐私权”的客户,枚举第二十一条的规定直接VPN提供商保持用户的个人数据为5年或更长时间的违反,可能相当于罚款或监禁。同时,遵守相同的,所有的VPN提供商将不得不修改其隐私政策等单方面修改,执行合同,可能违反合同行为的基本原则可能会妨碍用户的权利。这将是相当有趣的方向等收集个人数据是否属于的权力、阐明在70 b(4)的行为,“Ayush Sharma说,法律Paerners女士的管理合伙人。
“要求vpn详尽保持详细记录,他们从根本上破坏用户的隐私寻求浏览互联网没有国家或私人企业监视他们的行动。规则错误地假定那些寻求匿名有隐瞒,“说Vrinda班达里,位于德里的一个律师。
KYC准备严格验证
用户/用户KYC也可能面临更严格的验证过程,还需要提供招聘服务的原因除了他们的数据被服务提供者在一段时间内保留5年或更多。合规成本的增加,服务提供商提供服务,也可以修改率伙伴,AnantLaw拉胡尔戈埃尔说。
法律的意义是什么?
在印度一些VPN提供商服务器正在考虑关闭他们的服务器,但是你是否可以连接到相同的VPN提供商的服务器位于其他国家仍然是一个灰色地带。
“尽管方向沉默的治外法权的应用程序,直到政府进一步明确,很难排除这些方向的适用性异物位于印度考虑,企业拥有自己的网络信息技术法案,即父立法,领土外的适用性,“圣人阿南德说,伙伴,卡恩的法律。
”的安全互联网用户不应该为代价的其余的隐私。政府应该实施一个健壮的数据保护机制引入规则之前,授权服务提供者的个人数据的收集。不幸的是,期待已久的数据隐私法案依然遥遥无期。这些规则也影响的VPN服务提供商提供一个没有日志政策,迫使这些VPN返工整个技术或退出。实现可能变得具有挑战性,考虑到短期内规则生效之前,“Anupam Shukla说,伙伴,先锋的法律。
“在每一个业务球员可能是多个,但自然和道德的业务都是一样的,当破坏,整个商业模式崩溃。同样可能发生与VPN正准备与新VPN碰撞规则将在下个月进来的地方。尽管VPN背后的基本想法是提供用户匿名性、规则迫使玩家存储5年的数据和要求时交给政府。这是VPN提供商的业务策略,他们正在考虑给他们的政策主导地位而不是指令,这可能也有助于VPN被宣布非法在印度,”哈斯Jain说,与伙伴,PSL倡导者和律师。
VPN服务提供者将被要求报告网络事件、并维护所有数据包括雇佣,IP地址,所有权模式等一段5年。“这意味着公司需要创建专门的细胞在其IT部门来处理这些需求,“拉胡尔高尔说,伙伴,AnantLaw。
出具的指令,印度的网络监督机构——印度计算机紧急响应小组(、),旨在解决cyvercrime,生效于2022年6月27日,和要求VPN提供商保持以下数据的了解你的客户什么政策五年:
验证用户/客户的名字
雇佣期间
ip分配给用户
电子邮件地址,IP地址和时间戳的时候登记使用
招聘的目的服务
地址和联系号码进行验证
所有权模式的用户
现在,使用VPN的主要目的是保持一个IP地址的私人用户可以避开网站追踪,追踪用户的数据和位置。与新变化,VPN公司将被迫存储服务器和用户隐私将不再是一个核心功能。
什么是最大的USP VPN,尤其是在线交易吗?
“vpn隐藏你的位置和IP地址时共享一个开放的网络。他们添加一层加密数据,这意味着有更少的机会有人偷听你的通讯或拦截私人信息,如登录凭证或密码。这使它非常安全访问你的银行账户在公共wi - fi,“说Murari曾经,首席技术官,BankBazaar.com。
VPN将分配一个用户一个临时的或一个影子IP地址。企业通常使用vpn,允许员工远程登录到他们的工作系统,无需任何妥协的风险,他们将处于危险之中。
通过VPN,你所有的数据流量路由通过一个加密的虚拟隧道。这掩盖了你的IP地址当你使用互联网,让它的位置看不见人。VPN连接也是安全的外部攻击。VPN可以从任何地方访问区域限制内容。许多流媒体平台并不是在每一个国家。你仍然可以使用VPN访问它们。人们常常把vpn当他们国家的政府阻止有用的应用程序。最常见的一个例子是VoIP服务——简称互联网协议语音,或者简单来说,通过互联网电话服务,如WhatsApp,电报,Skype,等等。
直到现在,VPN提供商在印度没有存储日志的活动。有些供应商可能会记录你的行为,但不要将此信息传递给第三方。这意味着任何潜在的用户行为记录仍永久隐藏。但这是现在开始改变。
repurcussions政府的行动是什么?
洗钱将变得艰难
偷来的身份和银行欺诈是非常现实的问题。而隐私是重要的VPN服务提供商和用户为了避免被跟踪,政府此举将有助于跟踪反社会元素,网络罪犯沉溺于网上各种令人发指的活动。洗钱的新规定还将关闭门和数字上升的银行一样,vpn扮演一个重要角色在打开房间这样的非法活动,“说Sucheta塔,MD印度,分行个人理财软件。
银行欺诈和诈骗将下降
“印度作为一个国家肯定会出现下滑的情况下对银行欺诈和诈骗的实现VPN的新规定。骗子,骗子就不能躲在面具后面的VPN从今以后,和将会暴露他们犯下的罪行。《条例》将带来急需的问责与稳定银行业,”基金会的联合创始人和首席运营官——Bridgeup Jahangir Panday表示。
但是这对用户意味着什么呢?
用户隐私死
而vpn将仍然是合法的,它将会在印度监管。此外,VPN用户现在的风险被受人监视和失去隐私的目标。
“用户的能力依赖于所提供的隐私和匿名vpn,数据中心和云存储设施真正的和合法的活动,也可能受到影响。也,增加大规模数据泄露在很多科技公司的实例,用户数据存储服务提供商可以始终处于危险之中,“Anupam Shukla说,伙伴,先锋的法律。
“新VPN的规则可能违反“隐私权”的客户,枚举第二十一条的规定直接VPN提供商保持用户的个人数据为5年或更长时间的违反,可能相当于罚款或监禁。同时,遵守相同的,所有的VPN提供商将不得不修改其隐私政策等单方面修改,执行合同,可能违反合同行为的基本原则可能会妨碍用户的权利。这将是相当有趣的方向等收集个人数据是否属于的权力、阐明在70 b(4)的行为,“Ayush Sharma说,法律Paerners女士的管理合伙人。
“要求vpn详尽保持详细记录,他们从根本上破坏用户的隐私寻求浏览互联网没有国家或私人企业监视他们的行动。规则错误地假定那些寻求匿名有隐瞒,“说Vrinda班达里,位于德里的一个律师。
KYC准备严格验证
用户/用户KYC也可能面临更严格的验证过程,还需要提供招聘服务的原因除了他们的数据被服务提供者在一段时间内保留5年或更多。合规成本的增加,服务提供商提供服务,也可以修改率伙伴,AnantLaw拉胡尔戈埃尔说。
法律的意义是什么?
在印度一些VPN提供商服务器正在考虑关闭他们的服务器,但是你是否可以连接到相同的VPN提供商的服务器位于其他国家仍然是一个灰色地带。
“尽管方向沉默的治外法权的应用程序,直到政府进一步明确,很难排除这些方向的适用性异物位于印度考虑,企业拥有自己的网络信息技术法案,即父立法,领土外的适用性,“圣人阿南德说,伙伴,卡恩的法律。
”的安全互联网用户不应该为代价的其余的隐私。政府应该实施一个健壮的数据保护机制引入规则之前,授权服务提供者的个人数据的收集。不幸的是,期待已久的数据隐私法案依然遥遥无期。这些规则也影响的VPN服务提供商提供一个没有日志政策,迫使这些VPN返工整个技术或退出。实现可能变得具有挑战性,考虑到短期内规则生效之前,“Anupam Shukla说,伙伴,先锋的法律。
“在每一个业务球员可能是多个,但自然和道德的业务都是一样的,当破坏,整个商业模式崩溃。同样可能发生与VPN正准备与新VPN碰撞规则将在下个月进来的地方。尽管VPN背后的基本想法是提供用户匿名性、规则迫使玩家存储5年的数据和要求时交给政府。这是VPN提供商的业务策略,他们正在考虑给他们的政策主导地位而不是指令,这可能也有助于VPN被宣布非法在印度,”哈斯Jain说,与伙伴,PSL倡导者和律师。
VPN服务提供者将被要求报告网络事件、并维护所有数据包括雇佣,IP地址,所有权模式等一段5年。“这意味着公司需要创建专门的细胞在其IT部门来处理这些需求,“拉胡尔高尔说,伙伴,AnantLaw。
India has passed a law that now demands all virtual private networks (VPN<\/a>) service providers to store user data for at least five years. The national directive applies not only to VPN companies, but to cloud service providers, data centres and crypto exchanges, to collect specific, extensive customer data even if after users delete their account or cancel their subscription. Companies will have to store user names, IP addresses, usage patterns, other forms of identifiable information, and report \u201cunauthorized access to social media accounts\u201d as part of the directive. Those who don't comply could potentially face up to a year in prison.
The directive, issued by India's cyber watchdog - the Indian Computer Emergency Response Team (CERT-In), meant to tackle cyvercrime, comes into effect on 27 June, 2022 and mandates VPN providers<\/a> to maintain the following data as part of the know your customer (KYC) policy for five years:
Validated name of subscribers\/customers
Period of hire
IPs allotted to the user
Email address, IP address and time stamp used at the time of registration
Purpose of hiring services
Validated address and contact numbers
Ownership pattern of the subscribers
Now, the primary aim of using a VPN is to keep one's IP address private so users can stay clear of website trackers that track user data and location. With the new change, VPN companies will be forced to store servers and user privacy will no more be a core functionality.
The directive, issued by India's cyber watchdog - the Indian Computer Emergency Response Team (CERT-In), meant to tackle cyvercrime, comes into effect on 27 June, 2022 and mandates VPN providers<\/a> to maintain the following data as part of the know your customer (KYC) policy for five years:
Validated name of subscribers\/customers
Period of hire
IPs allotted to the user
Email address, IP address and time stamp used at the time of registration
Purpose of hiring services
Validated address and contact numbers
Ownership pattern of the subscribers
Now, the primary aim of using a VPN is to keep one's IP address private so users can stay clear of website trackers that track user data and location. With the new change, VPN companies will be forced to store servers and user privacy will no more be a core functionality.
<\/div><\/div>Point to note: Data from VPN adoption Index maintained by AtlasVPN, showed that India recorded more than 270 million VPN users in 2021, which is around 20% of the population. The usage of VPNs among smartphone users reached 25.27 per cent in the first six months of 2021 from 3.28 per cent population in 2020, as per data extracted from Google Play Store and Apple App Store by Sensor Tower. Also this: According to the Global VPN Usage Report 2020, India was the second-largest market for VPN, with 45% of internet<\/a> usage happening through VPN, up from 38% in 2018.
What is the biggest USP of a VPN, especially for online transactions?
<\/strong>
\"VPNs hide your location and IP address when sharing an open network. They add another layer of encryption to your data, which means there are fewer chances of someone eavesdropping on your communications or intercepting private information like login credentials or passwords. This makes it very safe to access your bank account on public Wi-Fi,\" said Murari Sridharan, CTO, BankBazaar.com.
A VPN will assign a user a temporary or a shadow IP address. Corporates usually use VPNs to allow employees to remotely log in to their work systems, without having to risk any sort of compromises that would put them in jeopardy.
What is the biggest USP of a VPN, especially for online transactions?
<\/strong>
\"VPNs hide your location and IP address when sharing an open network. They add another layer of encryption to your data, which means there are fewer chances of someone eavesdropping on your communications or intercepting private information like login credentials or passwords. This makes it very safe to access your bank account on public Wi-Fi,\" said Murari Sridharan, CTO, BankBazaar.com.
A VPN will assign a user a temporary or a shadow IP address. Corporates usually use VPNs to allow employees to remotely log in to their work systems, without having to risk any sort of compromises that would put them in jeopardy.
<\/div><\/div>According to Kaspersky, the primary job of a VPN is to hide your IP address from your ISP and other third parties. This allows you to send and receive information online without the risk of anyone but you and the VPN provider seeing it.
Via the VPN, all your data traffic is routed through an encrypted virtual tunnel. This disguises your IP address when you use the internet, making its location invisible to everyone. A VPN connection is also secure against external attacks. A VPN allows you to access regionally restricted content from anywhere in the world. Many streaming platforms are not available in every country. You can still access them using the VPN. People often turn to VPNs when their countries\u2019 governments block useful applications. One of the most common examples are VoIP services - short for Voice over Internet Protocol, or in simple terms, phone services over the internet, such as WhatsApp, Telegram, Skype, etc.
Up until now, VPN providers in India did not store logs of your activities. Some provider may record your behavior, but do not pass this information on to third parties. This means that any potential record of your user behavior remains permanently hidden. But this is now set to change.
What are the repurcussions of the government's move?
<\/strong>
Money laundering will become tough
<\/strong>
Stolen identities and banking fraud are very real concerns. While privacy is important for both VPN service providers and users to avoid being tracked, the government's move will help to trace anti-social elements and cybercriminals indulging in various heinous activities online. The new regulation will also shut door for money laundering as with the rise in digital banking, VPNs were playing a big role in opening rooms to such illegal activities,\" said Sucheta Mahapatra, MD India, Branch Personal Finance App.
Bank frauds and scams will dip
<\/strong>\"India as a nation will definitely see a dip in cases with regard to bank frauds and scams due to the implementation of the new VPN regulations. Fraudsters and scammers will not be able to hide behind the mask of a VPN henceforth, and will be exposed for the crimes that they commit. The regulations will bring in much needed accountability and stability in the banking sector,\" said Jahangir Panday, Co-founder and COO - Bridgeup.
But what does this imply for users?
<\/strong>
User privacy dead
<\/strong>
While VPNs will still remain legal, it will now be regulated in India. Moreover, VPN users are now at the risk of being targets of surveillance and loss of privacy.
\"Users' ability to rely on the privacy and anonymity offered by VPNs, data centers and cloud storage facilities for genuine and legitimate activities, may also be impacted. Also, with the rise in instances of large-scale data breaches at many technology companies, the user data stored by the service providers could always be at risk,\" said Anupam Shukla, Partner, Pioneer Legal.
\"The new VPN Rules<\/a> could potentially violate the \u201cRight to Privacy\u201d of the customers, as enumerated under Article 21 as the rules direct the VPN providers to keep the personal data of users for 5 years or longer and the violation of which may tantamount to fine or jail term. Also, to comply with the same, all the VPN providers will have to amend their privacy policy and such unilateral amendments, post execution of contract, may violate the basic principles of Contract Act which may hamper the rights of the users. It will be rather interesting to see whether a direction for such collection of personal data will fall under the powers of Cert-IN as enunciated under 70B (4) of the IT Act,\" said Ayush Sharma, Managing Partner of MS Law Paerners.
\"By requiring VPNs to exhaustively maintain detailed records, they fundamentally undermine the privacy of users who seek to browse the internet without having state or private corporations monitoring their actions. The rules wrongly presume that those seeking anonymity have something to hide,\" said Vrinda Bhandari, a Delhi-based lawyer.
Get ready for stricter KYC verification
<\/strong>
The users\/ subscribers may also have to face stricter KYC verification process and will also be required to provide the reasons for hiring of services apart from their data being retained by service provider for a period of 5 years or more. With the increased cost of compliance, the service providers may also revise the rates for provisioning of services, said Rahul Goel, Partner, AnantLaw.
What are the legal implications?
<\/strong>
Some VPN providers with servers in India are considering shutting down their servers in the country, but whether you can connect to the same VPN provider\u2019s servers located in other countries is still a grey area.
\"Although the directions are silent on their extraterritorial application, until further clarity on this by the government, it would be difficult to rule out the applicability of these directions on foreign body corporates having their networks located in India considering that the Information Technology Act, which is the parent legislation, has an extra-territorial applicability,\" said Rishi Anand, Partner, DSK Legal.
\"The security of a few internet users<\/a> should not come at the cost of the privacy of the rest. Government should have implemented a robust data protection mechanism before introducing rules that mandate the collection of personal data by the service providers. Unfortunately, the long-awaited data privacy bill is nowhere in sight. These rules also impact the VPN service providers who offer a no-log policy, forcing these VPNs to either rework their entire technology or exit the country. The implementation may become challenging, considering the short period before the rules come into effect,\" said Anupam Shukla, Partner, Pioneer Legal.
\"In every business, players might be multiple but nature and ethics of business is the same and when that is compromised, the entire business model collapses.Same might happen with VPN which is gearing up to collide with the new VPN rules slated to come in place next month. While the basic idea behind VPN is to provide user anonymity, the rules force the players to store the data for 5 years and hand it to the Government when asked for. This is against the business policy of VPN providers and they are contemplating giving primacy to their policies rather than to directives and this might, as well, contribute to VPNs being declared illegal in India,\" said Siddharth Jain, Co-Founding Partner, PSL Advocates & Solicitors.
The VPN service providers will now be required to report cyber incidents to CERT-In and also maintain all data including period of hire, IP addresses, ownership pattern etc for a period of 5 years. \"This means that the companies will be required to create dedicated cells within their IT departments to handle these requirements,\" said Rahul Goel, Partner, AnantLaw.
<\/div><\/div>
Via the VPN, all your data traffic is routed through an encrypted virtual tunnel. This disguises your IP address when you use the internet, making its location invisible to everyone. A VPN connection is also secure against external attacks. A VPN allows you to access regionally restricted content from anywhere in the world. Many streaming platforms are not available in every country. You can still access them using the VPN. People often turn to VPNs when their countries\u2019 governments block useful applications. One of the most common examples are VoIP services - short for Voice over Internet Protocol, or in simple terms, phone services over the internet, such as WhatsApp, Telegram, Skype, etc.
Up until now, VPN providers in India did not store logs of your activities. Some provider may record your behavior, but do not pass this information on to third parties. This means that any potential record of your user behavior remains permanently hidden. But this is now set to change.
What are the repurcussions of the government's move?
<\/strong>
Money laundering will become tough
<\/strong>
Stolen identities and banking fraud are very real concerns. While privacy is important for both VPN service providers and users to avoid being tracked, the government's move will help to trace anti-social elements and cybercriminals indulging in various heinous activities online. The new regulation will also shut door for money laundering as with the rise in digital banking, VPNs were playing a big role in opening rooms to such illegal activities,\" said Sucheta Mahapatra, MD India, Branch Personal Finance App.
Bank frauds and scams will dip
<\/strong>\"India as a nation will definitely see a dip in cases with regard to bank frauds and scams due to the implementation of the new VPN regulations. Fraudsters and scammers will not be able to hide behind the mask of a VPN henceforth, and will be exposed for the crimes that they commit. The regulations will bring in much needed accountability and stability in the banking sector,\" said Jahangir Panday, Co-founder and COO - Bridgeup.
But what does this imply for users?
<\/strong>
User privacy dead
<\/strong>
While VPNs will still remain legal, it will now be regulated in India. Moreover, VPN users are now at the risk of being targets of surveillance and loss of privacy.
\"Users' ability to rely on the privacy and anonymity offered by VPNs, data centers and cloud storage facilities for genuine and legitimate activities, may also be impacted. Also, with the rise in instances of large-scale data breaches at many technology companies, the user data stored by the service providers could always be at risk,\" said Anupam Shukla, Partner, Pioneer Legal.
\"The new VPN Rules<\/a> could potentially violate the \u201cRight to Privacy\u201d of the customers, as enumerated under Article 21 as the rules direct the VPN providers to keep the personal data of users for 5 years or longer and the violation of which may tantamount to fine or jail term. Also, to comply with the same, all the VPN providers will have to amend their privacy policy and such unilateral amendments, post execution of contract, may violate the basic principles of Contract Act which may hamper the rights of the users. It will be rather interesting to see whether a direction for such collection of personal data will fall under the powers of Cert-IN as enunciated under 70B (4) of the IT Act,\" said Ayush Sharma, Managing Partner of MS Law Paerners.
\"By requiring VPNs to exhaustively maintain detailed records, they fundamentally undermine the privacy of users who seek to browse the internet without having state or private corporations monitoring their actions. The rules wrongly presume that those seeking anonymity have something to hide,\" said Vrinda Bhandari, a Delhi-based lawyer.
Get ready for stricter KYC verification
<\/strong>
The users\/ subscribers may also have to face stricter KYC verification process and will also be required to provide the reasons for hiring of services apart from their data being retained by service provider for a period of 5 years or more. With the increased cost of compliance, the service providers may also revise the rates for provisioning of services, said Rahul Goel, Partner, AnantLaw.
What are the legal implications?
<\/strong>
Some VPN providers with servers in India are considering shutting down their servers in the country, but whether you can connect to the same VPN provider\u2019s servers located in other countries is still a grey area.
\"Although the directions are silent on their extraterritorial application, until further clarity on this by the government, it would be difficult to rule out the applicability of these directions on foreign body corporates having their networks located in India considering that the Information Technology Act, which is the parent legislation, has an extra-territorial applicability,\" said Rishi Anand, Partner, DSK Legal.
\"The security of a few internet users<\/a> should not come at the cost of the privacy of the rest. Government should have implemented a robust data protection mechanism before introducing rules that mandate the collection of personal data by the service providers. Unfortunately, the long-awaited data privacy bill is nowhere in sight. These rules also impact the VPN service providers who offer a no-log policy, forcing these VPNs to either rework their entire technology or exit the country. The implementation may become challenging, considering the short period before the rules come into effect,\" said Anupam Shukla, Partner, Pioneer Legal.
\"In every business, players might be multiple but nature and ethics of business is the same and when that is compromised, the entire business model collapses.Same might happen with VPN which is gearing up to collide with the new VPN rules slated to come in place next month. While the basic idea behind VPN is to provide user anonymity, the rules force the players to store the data for 5 years and hand it to the Government when asked for. This is against the business policy of VPN providers and they are contemplating giving primacy to their policies rather than to directives and this might, as well, contribute to VPNs being declared illegal in India,\" said Siddharth Jain, Co-Founding Partner, PSL Advocates & Solicitors.
The VPN service providers will now be required to report cyber incidents to CERT-In and also maintain all data including period of hire, IP addresses, ownership pattern etc for a period of 5 years. \"This means that the companies will be required to create dedicated cells within their IT departments to handle these requirements,\" said Rahul Goel, Partner, AnantLaw.
<\/div><\/div>
Follow and connect with us on Twitter<\/a>, Facebook<\/a>, Linkedin<\/a>, Youtube<\/a><\/div>","NumberOfSentences":{"minfo":"62.0","minfoseo":"62-0"},"AutomatedReadabilityIndex":{"minfo":"14.0","minfoseo":"14-0"},"LastPublishMilliTime":{"minfo":"1652419624644","minfoseo":"1652419624644"},"ReadabilityGradeLevel":{"minfo":"College","minfoseo":"college"},"GadgetsMarkedReviewed":{"minfo":"0","minfoseo":"0"},"HashCode":{"minfo":"-376685321","minfoseo":"-376685321"},"latestnewsflag":{"minfo":"1.0","minfoseo":"1-0"},"canonicalURL":{"minfo":"https:\/\/timesofindia.indiatimes.com\/business\/india-business\/explained-what-the-new-vpn-rules-means-for-internet-users-in-india\/articleshow\/91510719.cms","minfoseo":"https\/timesofindia-indiatimes-com\/business\/india-business\/explained-what-the-new-vpn-rules-means-for-internet-users-in-india\/articleshow\/91510719-cms"},"NumberOfCharacters":{"minfo":"9576.0","minfoseo":"9576-0"},"NumberOfWords":{"minfo":"1568.0","minfoseo":"1568-0"},"key":{"0":{"keyid":"13918437","value":"vpn rules","smid":"0","keynameseo":"vpn-rules","keytype":"","keycount":"totalcount","weightage":"100"},"2":{"keyid":"1601135","value":"vpn providers","smid":"0","keynameseo":"vpn-providers","keytype":"","keycount":"totalcount","weightage":"20"},"3":{"keyid":"201519","value":"VPN","smid":"0","keynameseo":"VPN","keytype":"","keycount":"totalcount","weightage":"20"},"4":{"keyid":"13908908","value":"Online transactions in India","smid":"0","keynameseo":"Online-transactions-in-India","keytype":"","keycount":"totalcount","weightage":"20"},"5":{"keyid":"6626738","value":"online transactions","smid":"0","keynameseo":"online-transactions","keytype":"","keycount":"totalcount","weightage":"20"},"6":{"keyid":"155166","value":"ip address","smid":"0","keynameseo":"ip-address","keytype":"","keycount":"totalcount","weightage":"20"},"7":{"keyid":"128628","value":"Internet users","smid":"0","keynameseo":"Internet-users","keytype":"","keycount":"totalcount","weightage":"20"},"8":{"keyid":"35562","value":"internet security","smid":"0","keynameseo":"internet-security","keytype":"","keycount":"totalcount","weightage":"20"},"9":{"keyid":"6375096","value":"cybercrime","smid":"0","keynameseo":"cybercrime","keytype":"","keycount":"totalcount","weightage":"20"}},"authorsplit":{"author":{"artau":"Sunainaa Chadha","aunameseo":"sunainaa-chadha","artauid":"479256048","artauemail":"sunainaa.chadha@gmail.com","auFullName":"Sunainaa Chadha","pubname":"TOI Online","designame":"Journalist","audetailsxml":{"authordetails":[],"details":{"detail":[{"@attributes":{"type":"occupation"}},{"@attributes":{"type":"beat"}}]}},"aulinksxml":{"links":{"link":{"twitter":[],"facebook":[],"googlePlusUrl":[],"contributorUrl":[]}}},"autype":"GENERAL"}},"similarlytagged":[{"msid":"92138533","stname":"MeitY unlikely to relent on six-hour rule of Cert-In despite pushback from industry","artsyn":"The decision of the ministry was conveyed to the industry as well as other stakeholders on Friday at a roundtable meeting chaired by Minister of State for Information Technology Rajeev Chandrasekhar.","seolocation":"telecomnews\/meity-unlikely-to-relent-on-six-hour-rule-of-cert-in-despite-pushback-from-industry","seolocationalt":"MeitY unlikely to relent on six-hour rule of Cert-In despite pushback from industry","url_seo":"meity-unlikely-to-relent-on-six-hour-rule-of-cert-in-despite-pushback-from-industry"},{"msid":"91533422","stname":"Explained: What the new VPN rules means for internet users in India","artsyn":"The directive, issued by India's cyber watchdog - the Indian Computer Emergency Response Team (CERT-In), meant to tackle cyvercrime, comes into effect on 27 June, 2022","seolocation":"telecomnews\/explained-what-the-new-vpn-rules-means-for-internet-users-in-india","seolocationalt":"Explained: What the new VPN rules means for internet users in India","url_seo":"explained-what-the-new-vpn-rules-means-for-internet-users-in-india"}],"primeid":0,"storytags":{"categoryTag":{"sectionid":"49830939","sectionname":"TelecomNews","seolocation":"telecomnews","seolocationalt":"telecomnews"},"otherTags":[{"keyid":"13918437","value":"vpn rules","smid":"0","keynameseo":"vpn-rules","keytype":"","keycount":"totalcount","weightage":"100"},{"keyid":"6357247","value":"internet","smid":"0","keynameseo":"internet","keytype":"","keycount":"totalcount","weightage":"50"},{"keyid":"1601135","value":"vpn providers","smid":"0","keynameseo":"vpn-providers","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"201519","value":"VPN","smid":"0","keynameseo":"VPN","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"13908908","value":"Online transactions in India","smid":"0","keynameseo":"Online-transactions-in-India","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"6626738","value":"online transactions","smid":"0","keynameseo":"online-transactions","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"155166","value":"ip address","smid":"0","keynameseo":"ip-address","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"128628","value":"Internet users","smid":"0","keynameseo":"Internet-users","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"35562","value":"internet security","smid":"0","keynameseo":"internet-security","keytype":"","keycount":"totalcount","weightage":"20"},{"keyid":"6375096","value":"cybercrime","smid":"0","keynameseo":"cybercrime","keytype":"","keycount":"totalcount","weightage":"20"}],"filterTags":[]},"formattedTags":{"companyTags":[],"otherTags":[{"name":"Online transactions in India"},{"name":"online transactions"},{"name":"internet security"},{"name":"Internet users"},{"name":"vpn providers"},{"name":"ip address"},{"name":"cybercrime"},{"name":"vpn rules"},{"name":"internet"},{"name":"VPN"}],"newsCategoryTags":[{"name":"TelecomNews","seolocation":"telecomnews"}],"breadcrumbTags":["vpn rules","internet","vpn providers","VPN","Online transactions in India","online transactions","ip address","Internet users","internet security","cybercrime"],"filterTags":[]},"breadcrumbTags":["vpn rules","internet","vpn providers","VPN","Online transactions in India","online transactions","ip address","Internet users","internet security","cybercrime"],"Alttitle":{"minfo":""},"Altdescription":{"minfo":""},"amp_url":"\/\/www.iser-br.com\/amp\/news\/explained-what-the-new-vpn-rules-means-for-internet-users-in-india\/91533422"}" data-news-images="null" data-newsletter-by="0" data-newsletter-date="a" data-hasbottomcarousel="" data-alldetailsopen="0" data-multipleanalyticshit="" data-deeplink="https://ettelecom.app.link?$deeplink_path=" data-socialshareformat="default">
