Professional Documents
Culture Documents
India's cyber law, the Information Technology Act of 2000, covers many
regulations to address cybercrime and protect digital assets. Here are the
main types of regulations covered by cyber law in India:
Cybercrime
Cyber law in India defines and penalizes various types of cybercrimes, such
as hacking, cyberstalking, identity theft, phishing, and cyberterrorism.
Consumers trust cyber laws to protect them from online fraud. These laws
are in place to prevent identity theft, credit card theft, and other online
financial crimes. A person guilty of identity theft may face federal or state
criminal charges.
Intellectual Property
Online companies often depend on cyber law to protect their trade secrets.
Take an example of Google and other online search engines. They spend
much time developing algorithms that produce search results and other
features like maps, smart assistance, and flight search services, etc. Cyber
lawyers help clients take legal action to protect their trade secrets.
Data Security
Cyber law in India protects personal and sensitive data by regulating its
collection, use, storage, and disclosure.
Cybersecurity
Some terms of the employment contract fall under cyber law, including
non-disclosure and non-compete clauses. This can also include the usage of
company email or other digital resources by the employees.
Cyberbullying
The law prohibits cyberbullying and provides legal recourse for victims.
Social Media
Cyber law in India regulates the use of social media platforms and holds
them accountable for the content posted by users.
Electronic Evidence
Cyber Tribunals
The law provides for establishing cyber tribunals to deal with cybercrime
cases and disputes arising from electronic transactions.
Characteristics of Cyber law
Cyber laws exist to protect people from online fraud. They prevent online
crimes, including credit card and identity theft. A person who commits such
thefts stands to face criminal charges.
Data protection laws: Increased data breaches pose the need for
strengthening data protection laws to protect internet users' personal
information.
Artificial Intelligence and Machine Learning: AI can optimize data
breaches and interpret emerging security threats through machine learning
techniques. In future, we will see more and more use of AI and ML to
determine vulnerable information and information systems, recognize
connections between threats, and locate profiles of cybercriminals.
Internet of Things (IoT): Blockchain data encryption ensures that
the data is not accessible by unauthorized parties while flowing through
untrusted networks. As more devices become connected to the internet, there
is a need for laws and regulations to address issues such as data privacy,
security, and liability.
Blockchain technology: The use of blockchain technology is
increasing in various industries, and laws and regulations are needed to
govern its use, particularly in data privacy and security areas.
India’s Digital Personal Data Protection Act, 2023: Data Privacy
Compliance
This Act is now in effect and governs the processing of digital personal
data in India, regardless of whether the data was originally collected in
digital or non-digital format and subsequently digitized. Under the DPDP
Act, state agencies may be exempted from its provisions at the
government’s discretion. This legislation is designed to bolster data
protection and accountability for entities such as internet companies,
mobile apps, and businesses that handle citizens’ data. Furthermore, it’s
worth noting that the DPDP Act will have implications for India’s trade
negotiations with other nations. It aligns with global data protection
standards, taking inspiration from models like the EU’s GDPR and
China’s PIPL.
The Indian Digital Personal Data Protection Act (preceded by the Digital
Personal Data Protection Bill) establishes a national framework for
protecting personal data.
the DPDP replaces the limited data protections afforded by the Indian
Information Technology Act of 2008
In addition to providing guidelines for data security and data privacy, the
DPDP also established the Data Protection Board of India to help enforce its
protocols. This supervisory board has the power to investigate complaints
and issue fines but cannot issue guidance or impose new regulations. All
regulatory powers related to the DPDP remain with the Government of India.
The DPDP’s scope of application is extensive
The act protects the personal data of all data principals and restricts the
activities of all data fiduciaries regardless of private or corporate operating
status.
Data Principals
Under the DPDP, “data principal” refers to individuals whose personal
data is being collected, stored, or otherwise interacted with. This term is
essentially the same as a “data subject” under the EU’s GDPR.
Data Fiduciaries
Data fiduciaries are data controllers or any other type of entity that
determines the purpose of a data principal’s personal data. This definition
includes startups and entities working alongside processors or other third-
party service providers who store or otherwise use personal data.
Personal Data
While the DPDP only applies to digital personal data or personal data that a
data fiduciary has subsequently converted to digital form after collection, the
act’s definition of personal data is expansive.
What Rights Does the DPDP Grant to Data Principals?
The Indian government enacted the DPDP to prevent personal data
breaches and extend data privacy rights to all applicable data principals.
Under the act, data principals possess the following fundamental rights:
The right to give consent for the processing of personal data
The right to withdraw consent for the processing of personal data
The right to access information about personal data
The right to erasure and the right to correct, update, and complete
personal data
The right to readily available grievance redressal in the event a data
fiduciary fails to carry out their obligations under the act
The right to nominate any other individual to carry out their data
principal rights in the event of death or incapacity
Under What Circumstances Can Data Fiduciaries Process Personal Data?
In Chapter II, the DPDP explicitly outlines the legal grounds for processing
personal data. To begin their data processing procedures, data fiduciaries
must first request and obtain verifiable consent from each data principal.
When a data fiduciary requests consent from a data principal, it must also
include the following information in the request:
The type of personal data that the fiduciary will process and the
specified purpose for which the fiduciary will process such data
An explanation of the process a data principal can follow to withdraw
their consent
An explanation of how the data principal can pursue grievance
redressal, including the contact information of any relevant POC or consent
manager that can assist with the process
The process the data principal can follow to submit a formal
complaint to the Data Protection Board of India
Intellectual property is a key aspect for economic development~ Craig
Venter
The legal rights are given to the person who invented / created something
new and different which had not been done before. The legal rights are given
to the person for a period of time or his delegate to make full use of that
particular idea. There are mainly three types of intellectual property rights:
copyrights, trademark and patents.
i. Copyright:
This right is given to the person who creates something for the public such
as books, movies, songs etc. The rights are automatically given to the creator
and the person has rights to make copies of the product, distribute in public
or use the content for any live performance.
ii. Trademark:
It is a legal right given to any name, logo, symbol or slogan for their
personal use and to publicly show their brand. For example: Nike has a Tick
sign and a slogan Just Do it. Copying the content can be charged section 63
of copyright act 1957.
iii. Patents:
The title is giving the rights to its owner(s) which forbids others /
competitors to make such products for a period of time.
There are many issues which a content creator goes through when
he/she wants to get an Intellectual Property Right.
I. Patent Evergreening Prevention: The most common intellectual
property right problem is to prevent the Patent Evergreening Prevention so
that any person / company cannot patent by making minor changes to
something forever. Section 3(d) in the Indian Patent Act is one of the biggest
issues with the Intellectual Property Right.
III. The Product Patent Process: A product patent safeguards the goods.
The Product Patent process gives a large amount of protection to the product.
The problem lies that the patent is given for the process via which one makes
the product rather than the product. Which reduces monopoly in the market.
India is a part of Trade-Related Aspects of Intellectual Property Rights
(TRIPS) agreement, this agreement needs that all is members should change
their patent regime from giving patent to process to giving patent to the
product. This will be a great task for the country as the process patent is
more beneficial as the country is still developing and it creates new and
different ways to produce the goods.