The government of India is likely to extend the deadline for complying with the Indian Computer Emergency Response Team (CERT-In) for the micro, small, and medium enterprises (MSMEs) as well as small and medium enterprises (SMEs) by three months.
According to CERT-In’s guidelines, all enterprises, intermediaries, data centres and government organisations are required to report any data breach to the government within six hours of becoming aware of it. While larger companies and VPN providers have complied with the directive, some SMEs and MSMEs are facing problems.
Earlier this year, the Minister of State for Electronics and IT said that VPN service providers who are not willing to comply with the guidelines were free to leave. However, the ministry is more flexible to the needs of the SMEs and has extended the compliance deadline for the second time.
The guidelines also required VPN service providers to collect sensitive data including IP addresses, verification addresses and contact details from their customers as part of KYC norms and provide the same to the government when required.
See What’s Next in Tech With the Fast Forward Newsletter
Tweets From @varindiamag
Nothing to see here - yet
When they Tweet, their Tweets will show up here.
