Showing posts with label Perry4Law Techno Legal Base (PTLB). Show all posts
Showing posts with label Perry4Law Techno Legal Base (PTLB). Show all posts

Thursday, February 9, 2012

Cyber Security Laws In India

With the growing incidences of cyber attacks against India, cyber security in India has got the attention of Indian government. Cyber security in India is not satisfactory. Whether it is legal framework or practical implementation, cyber security of India is still lagging far behind that other nations.

We have no dedicated cyber security laws in India and we urgently need a dedicated cyber security legal framework in India. Further, cyber security capabilities of India must be strengthened so that cyber attacks against India’s critical infrastructures can be prevented.

The cyber laws and cyber security trends of India 2011 by Perry4Law and Perry4Law Techno Legal Base (PTLB) has clearly showed the cyber security vulnerabilities of India. Cyber terrorism against India, cyber warfare against India, cyber espionage against India and cyber attacks against India have already increased a lot. Even the cyber law trends of India 2012 by PTLB have also projected an increased rate of cyber crimes in India and cyber attacks against India in the year 2012.

Cyber security laws in India have not been formulated because there is very low cyber law and cyber security awareness in India. As a result we have very few cyber law firms in India and cyber security law firms in India.

Further, cyber security research, training and education in India are also not fully developed. PTLB is managing the exclusive techno legal cyber security centre of India. In the absence of qualitative educational institutes in India, cyber security courses in India are still maturing. Further, cyber security skills development in India is greatly affected in the absence of practical techno legal trainings in this crucial field.

Indian government has now shown some positive response for strengthening cyber security in India. A national critical information infrastructure protection centre (NCIPC) of India has also been proposed by Indian government. This is appositive development and Perry4Law and PTLB welcome this effort of Indian government.

Friday, February 3, 2012

Modernisation of Postal Department Of India In Pipeline

The postal department of India is performing many crucial functions. With the passage of time, the postal department of India also needs technological upgradation and modernisation initiatives. This is not a difficult task to achieve as the department of post is attached with the union ministry of communication and information technology (MCIT).

Realising the potential of a modern postal department, the union minister of MCIT Mr. Kapil Sibal has started the modernisation and upgradation process of postal department of India. We at Perry4Law and Perry4Law Techno Legal Base (PTLB) believe that there are many aspects of e-commerce, e-governance and banking that can be combined with the postal department of India.

In fact, the postal department of India has already applied to the Reserve Bank of India (RBI) for a banking licence. Mr. Kapil Sibal had written to the Finance Minister, Mr. Pranab Mukherjee, to expedite the granting of the banking licence.

Further, a national postal policy targeting expansion and modernisation of the postal network would be announced during this year. Although the India government does not intend to issue licences to courier service companies yet it would make it mandatory for them to register.

The national postal policy of India aims at modernising postal services in India. The policy is expected to make the department of post adopt a more financially viable revenue model. It would also provide affordable services at all points in the country as part of its Universal Service Obligations of India.

There is a good scope of public private partnership (PPP) in this modernisation drive. For instance, various value added services can be provided through the PPP model. Similarly, PPP can also help the department of post in expanding its products and services range beyond the current core functions.

India currently has 1.55 lakh post offices, 95 per cent of which are situated in rural areas. With the use of information technology, urban areas can be provided better postal services. This is a good step in right direction and Perry4Law and PTLB welcomes the same.

Monday, January 23, 2012

Legal Issues Of Cloud Computing In India

Cloud computing is a process in which essential hardware and software based services are provided by a third party with no requirement to install such hardware and software by the service seeker. In other words, computational powers, hardware upgrades and latest software are provided on rent in an online environment where individuals and organisations can use the same.

Cloud computing is basically a cost saving mechanism where hardware and software costs are saved by using third party hardware and software. However, cloud computing has its own share of troubles especially in countries like India.

For instance, as per the research and studies of Perry4Law and Perry4Law Techno Legal Base (PTLB), cloud computing in India is risky and India is not ready for cloud computing. Now even other companies have endorsed this conclusion and it has been reported that chief information officers (CIOs) in India are not comfortable using cloud computing in India.

So the chief problem that is emerging in India is that cloud computing in India is still not trusted and India is still not ready for cloud computing. We have no cloud computing policy of India.

This is the reason why cloud computing in India is still at the infancy stage. The primary reasons for this situation is absence of legal framework for cloud computing in India, missing privacy laws, absence of data protection laws in India, inadequate data security in India, etc. Even the basic level cloud computing regulations in India are missing.

Even the cloud computing due diligence in India is missing and companies and individuals are using the same in great disregard of the various laws of India. Cloud computing service providers in India are required to follow cyber law due diligence in India. The cyber law due diligence for Indian companies is now well established but cloud computing and e-commerce service providers are not taking it seriously.

In fact, some companies are already facing a criminal trial in India for posting of objectionable contents by third parties on their platforms. Cloud companies are also required to follow the cyber law of India before they establish their businesses in India. This seems to be missing for the time being.

In fact, many legal experts in India have opined that India must not use software as a service (SaaS), cloud computing, m-governance, etc till proper legal frameworks and procedural safeguards are at place. This has also been accepted by the CIOs community and it is now for the Indian government to do the needful.

Monday, January 16, 2012

Cyber Law Trends Of India 2012

The cyber law trends of India 2011 were provided by Perry4Law and Perry4Law Techno Legal Base (PTLB). This trend covered many techno legal issues that are of tremendous importance to various stakeholders. However, it seems various stakeholders have still not taken issues like cyber law, cyber security, cyber due diligence, e-discovery, social media due diligence, etc seriously.

The year 2012 would be even more challenging for various stakeholders in India and world wide. This is more so for US based companies and websites that are increasingly involved in various conflict of laws issues with India. Some of the issues that may be challenging of various stakeholders in 2012 include legal issues of cyber security, privacy and data protection requirements, cloud computing security and privacy issues, e-surveillance and Internet censorship issues, cyber due diligence requirements, social media due diligence, data privacy laws, online IP violations including copyright violations issues, etc.

The cyber law due diligence in India struck the first blow in the year 2012. Companies like Google, Yahoo, Microsoft, Facebook, etc are already facing criminal prosecution under the cyber law of India and other criminal laws. So serious is the situation that the executives of parent companies of these companies have been summoned to personally appear before Indian court.

Further, online copyright violations by US websites are also testing the effectiveness of US laws vis-à-vis foreign IP rights enforcement. Many websites in US are talking advantage of the conflict of laws and hide behind US laws to escape copyright violation liabilities. In fact, the US copyright office is trying to streamline the Digital Millennium Copyright Act (DMCA) 1998 requirements pertaining to DMCA agents so that safe harbour protection cannot be misused by US based websites.

Perry4Law and PTLB believe that the year 2012 would bring many techno legal challenges in the fields like cyber law, cyber security, e-discovery, cyber law due diligence, online IP enforcements, etc. Further, new fields like e-legal due diligence and technological legal due diligence in India would also assume significance. It would be a good idea to formulate suitable policies in this regard by various stakeholders.

US Companies, India, Conflict Of Laws And Criminal Liabilities

Companies like Google, Microsoft, Yahoo, etc and social media websites like Facebook, etc are currently facing criminal trail in India for not removing objectionable contents from their respective websites.

According to cyber law of India and laws of other jurisdiction, the safe harbour protection of Internet intermediaries is lost the moment they are notified of the offending act or omission. However, till they are notified regarding offending contents, they are not liable for violations committed by their users.

However, US companies are not following Indian laws and they are insisting upon following of US laws even if Indian laws are clearly violated. For instance, websites located in US are openly violating the copyright of Indian websites and when they are contacted in this regard to remove the copyright violating posts they ask Indians to use US laws like Digital Millennium Copyright Act (DMCA) 1998.

Surprisingly, even if these US companies are informed in writing and with relevant information like weblinks of copyright violating posts and copyright subsisting posts, they still insist upon following of DMCA procedure. What is more frustrating is that a majority of these US websites and companies are themselves not following the requirements of DMCA and hence are not entitled to its safe harbour protection.

Even in the case of cyber laws, US companies are applying US standards and are not following Indian standards. This is a classic situation that is occurring due to conflict of laws. This is also the reason why an international cyber law treaty is required to being harmonious application of cyber law principles.

US need to change its policy regarding enforcement of foreign IP rights and cyber laws. By not respecting the laws of other countries, US websites and companies are imposing laws like SOPA and PIPA upon themselves. Further, companies like Google must pay special attention as they are deriving revenue out of online advertisements placed upon such copyright violating posts. This makes them not only a beneficiary but also liable for damages in appropriate cases.

Companies like Microsoft, Yahoo, Google and Facebook are facing prosecution under the Indian cyber law. Further, if we analyse the cyber law trends in India of 2012 and cyber security trends of India 2012, such prosecutions are going to increase further in future. Insisting upon following of US laws to take action against offenders and websites located in US would not serve any purpose if branches or subsidiaries of such companies are located in India. Further, if such websites and companies fail to comply with Indian laws, Indian government can block such foreign websites in India.

The present litigation before Indian courts is just a beginning and US companies and websites must start respecting Indian laws. If cyber crimes are committed with great disregard to Indian laws and the copyright and other IP rights are openly violated by such companies and websites, their prosecution in India is inevitable. Perry4Law and Perry4Law Techno Legal Base (PTLB) strongly recommend that such foreign companies and websites must ensure cyber due diligence in India to escape various civil, criminal and financial obligations.

Corruption And Technology Related Due Diligences In India

The recent spate of corruption related disclosures in India has sent a strong message to Indian and foreign companies to ensure that their business are strictly in compliance with Indian and foreign laws. Naturally, companies that have entered into merger and acquisitions (M&A) in the past are now looking forward to ensure that nothing fishy happened during such M & A transactions.

These Indian and foreign companies are worried about the potential legal and tax liabilities arising out of various scams and corporate frauds and they are engaging law firms to do a due diligence analysis on the M&As or foreign direct investments (FDIs) they’ve made in India. Law firms are carrying out legal due diligence exercises to detect any loopholes that could result in liabilities on behalf of their clients to avoid litigation possibilities arising out of deals done in the past.

Some multinational companies are also doing legal due diligence to ensure that the Indian subsidiaries and companies they are about to invest or have already invested in are complying with the foreign laws like Foreign Corrupt Practices Act (FCPA) 1977 of the US and the UK Bribery Act 2010.

Even companies that are now exploring the possibility of M&A are taking precautions before entering into such partnerships. While there is no particular department for dealing with all the aspects of corporate business at a single place (Ministry of Corporate Affairs deals with corporate matters) yet department of information technology (DIT) is the chief department that deals with technology related issues. These include cyber law, cyber security, e-commerce, e-governance, spectrum allocation, telecom licensing, etc.

However, till now companies were not very cautious in their dealings in cyberspace and technology related fields. The information technology act 2000 (IT Act 2000) is the cyber law of India that prescribes various cyber law due diligence in India for areas like e-commerce, e-governance, Internet intermediary liability in India, social media due diligence in India, etc.

However, companies are in controversy these days in India. For instance, doubts have been raised regarding the manner in which Reliance and Airtel blocked websites in India. Similarly, some have even suggested that DIT must investigate the case of blocking of websites in India by Reliance, Airtel and other Internet service providers (ISPs).

Similarly, companies like Google, Facebook, etc are already in cyber law legal tangle in India. Indian government is claiming that these companies failed to comply with Indian laws, including cyber law of India. While the guilt or innocence of these companies is still to be established yet this episode has shown the importance of cyber due diligence for Indian companies.

Cyber crimes at social media websites in India are increasing and these social media platforms cannot ignore the same especially once they are made aware of the same. The social media websites investigation in India is going to increase and more and more e-discovery for social media in India would be conducted. Even cyber law due diligence for banks in India is going to increase.

Another area that requires a special mention is the contemporary practice known as e-legal due diligence in India. This requires domain specific techno legal expertise and a sound knowledge of both technical and legal aspects. It is an advanced and improved form of traditional legal due diligence in India that is done in an offline environment. With companies now shifting their data and information to data centers and virtual data rooms (VDRs), e-legal due diligence in India and abroad would be the norm.

Perry4Law and Perry4Law Techno Legal Base (PTLB) strongly recommend that Indian and foreign companies must conduct a thorough corruption and technology related due diligence analysis in India as soon as possible.

Wednesday, January 11, 2012

Electronic Authentication Policy Of India

Electronic authentication (e-authentication) is a very useful service provided it is safe, secure and reliable. Similarly, e-authentication must also be supported by a sound legal framework that governs its uses and abuses.

We have no e-authentication policy in India. Even we have no legal framework for e-authentication in India. Although some efforts in this regard were made through the Aadhar project of India yet the very constitution and functioning of Aadhar project is unconstitutional. For some strange reasons, the unique identification authority of India (UIDAI), which is managing the Aadhar project, thinks that it is above constitution of India. This attitude of Aadhar and UIDAI has brought it to a stage where it is about to be scrapped.

So as on date we have no legal framework for e-authentication in India, no authority that can deal with e-authentication in India and no policy framework for e-authentication in India that has been implemented at the national level. If this is not enough, we have no encryption usage policy of India that can ensure cyber security of e-authentication in India.

If both cyber security in India and use of encryption in India are missing, the credibility of any e-authentication system is in great doubt. Possibility of data breaches and cyber attacks cannot be ruled out. Securing of critical national infrastructure of India from cyber attacks has still not achieved and introducing an e-authentication system without robust cyber security is not a wise move.

The cyber security trends in India 2011 by Perry4Law Techno Legal Base (PTLB) indicate that cyber security in India is still ignored by various stakeholders. Whether it is banks or strategic computers of Indian government, all of them have proved to be vulnerable to cyber attacks.

E-authentication is also useful for providing mobile banking services in India. Cyber security of Internet banking in India is still poor and e-banking risks in India are abundant. Mobile banking cyber security in India is still to be established before it can be explored in India.

E-authentication cannot succeed in India till we take care of various techno legal policy issues. Without removing various obstacle of e-authentication, using the same in India would create more problem than solutions providing.

Sunday, January 1, 2012

Cyber Law Of India Should Be Reformed

Technological issues when collaborated with legal framework bring complex situations. It is very difficult to provide a legal framework for technological issues. India is also trying to grapple with this problem. Although cyber law in India has been enacted in the form of information technology act 2000 (IT Act 2000) yet it has remained archaic and non performer. The cyber law trends in India 2011 proved this point.

Cyber law of India needs to be rejuvenated. The emphasis must be to develop and protect Indian cyberspace rather than considering as a threat to be tackled through Internet censorship, websites blocking, e-surveillance, phone tapping and similar anti civil liberties protection in cyberspace.

Similarly stress should be given to cyber security of India through cyber security due diligence and mandatory obligations. The cyber security trends in India 2011 have proved that various stakeholders in India are not paying enough attention to cyber security. This is more so regarding banks in India that are not following the cyber security guidelines of Reserve Bank of India (RBI).

Perry4Law and Perry4Law Techno Legal Base (PTLB) believe that a major reason for poor performance on Indian cyber law and cyber security is that we have mixed all the aspects in a single law. For instance, although IT Act 2000 covers issues like cyber law, cyber security, cyber forensics, encryption, e-governance, e-commerce, cyber terrorism, etc yet the same are covered by a single section or more. This way none of them are individually effective.

We must have a separate and dedicated law for each of these issues that seem to have been dumped into a single law making it ineffective and useless for those issues. Further, the information technology amendment act 2008 (IT Act 2008 amendments) have further complicated the issue. By making almost all the cyber crimes “bailable”, Indian government has created a big nuisance for itself.

Perry4Law and PTLB hope that the year 2012 would bring major relief in this regard. Law making is a lengthy and tedious process and the sooner it is started the better it would be for the larger interest of India.

Monday, December 26, 2011

Ethical Hacking Training And Courses In India

The need of ethical hackers in India has emerged out of the necessity to tackle growing cases of cyber crimes and cyber attacks. For too long strategic systems and computers located at Indian government departments and sensitive faculties have been targeted by cyber criminals and enemy states. Incidences of cyber espionage against India have increased a lot.

Naturally, India needs a skilled ethical hacking workforce that can ward off such cyber threats. Cyber skills development in India has, therefore, gained importance and demand for skilled workforce in fields like cyber security, cyber forensics, cyber law, etc has increased globally.

These fields are techno legal in nature that required a thorough understanding of both technical and legal aspects at the same time. Neither technical nor legal knowledge in itself is sufficient. Techno legal e-learning courses in India need to be developed to meet the techno legal demands of India.

Ethical hacking trainings and courses in India need to be developed on techno legal lines. Similarly, ethical hacking training institutes in India must also ensure that the trainings provided by them are techno legal in nature. Further, ethical hacking training providers in India must also ensure that they provide only practical trainings and courses whose main aim should be to develop techno legal skills.

Ethical hacking skills development in India is not an easy task. The amalgamation of technology and law is not easy to teach. It is even more difficult to practically apply these techno legal principles in real life. At Perry4Law Techno Legal Base (PTLB) we understand these issues and are providing the exclusive techno legal ethical hacking trainings and courses in India. Other techno legal courses are also provided by PTLB that covers areas like cyber law, cyber forensics, cyber security, etc. PTLB is also managing the exclusive techno legal ethical hacking software and tools repository in India.

PTLB e-learning platform is providing ethical hacking training and courses in India among various other techno legal courses, trainings, educations and skills development initiatives. We hope these initiatives of PTLB would be useful for all the stakeholders.

Saturday, December 24, 2011

Financial Frauds And IT Crimes In Indian Companies Is Increasing

Financial frauds and cyber crimes have plagued Indian corporate sector. IT and cyber frauds in Indian companies has increased a lot. Corporate IT frauds and cyber crime investigations in India have also increased. This has also necessitated cyber due diligence for Indian companies.

White collar crimes and financial frauds are increasing in India. By its very nature these high profile crimes affect corporate sector. Indian companies are also facing increased corporate frauds, financial frauds, white color crimes and technological frauds.

With growing dependence upon information and communication technology (ICT) for various corporate functions, corporate systems and corporate assets are exposed to diverse forms of cyber attacks. Further, data privacy laws in India, data protection laws in India, privacy laws in India, etc have further added responsibilities for corporate sector of India.

Further, companies in India are also required to follow cyber law due diligence in India and cyber security due diligence in India. However, absence of techno legal cyber skills and cyber crimes investigation trainings in India, technology related crimes and cyber crimes have increased in India. Companies in India are facing growing threats from malware attacks, phishing attacks, ATM frauds, online banking threats, trading fraud, etc.

Clearly, Indian companies are not prepared to deal with these sophisticated technology crimes and organised crimes. Recently the companies bill 2011 has been tabled in lok sabha that carries few reformatory provisions in this regard. It was planned to give more powers to serious frauds investigation office (SFIO) of India. Under the proposed companies bill 2011, SFIO has been given a statutory recognition. This is a good step as it would help in curbing corporate frauds in India.

Perry4Law and Perry4Law Techno Legal Base (PTLB) strongly recommend that it is high time for Indian companies to take care of the cyber due diligence and cyber security due diligence requirements under various laws of India. These due diligence requirements are essential part of overall audit strategy of each company. The sooner cyber law and cyber security are taken seriously by Indian companies the better it would be for the larger interest of all stakeholders.

Friday, December 23, 2011

Corporate IT Frauds And Cyber Crimes Investigation In India

Corporate frauds and crimes have taken a new shape in the present information technology age. Data theft, privacy violations, intellectual property rights (IPRs) violation, trade secrets theft, financial frauds, etc have also increased in the corporate sector of India. Even white collar crimes and organised crimes have increased a lot.

Clearly, IT and cyber frauds in Indian companies have increased a lot. These frauds have necessitated cyber due diligence for Indian companies. Further, these IT frauds and corporate cyber crimes have necessitated for their timely and proper investigation. Corporate laws of India must be suitable amended to address these issues in India.

There are multiple investigation agencies in India depending upon the nature of the wrong or crime. Corporate frauds and corporate cyber crimes can be prosecuted at the administrative level or in civil and criminal courts.

Investigation of corporate IT frauds and corporate cyber crimes is a complicated process that requires techno legal training and expertise. These offences require a good working knowledge of both technical and legal knowledge.

Cyber crime investigation methods in India are still maturing. There are very few cyber crime investigators in India that can investigate a cyber crime in techno legal manner. Cyber crime investigation training in India is urgently required so that more such investigators can be produced. With growing cases of corporate IT frauds and corporate cyber crimes, the demand for such cyber crime investigators in India is going to increase.

Perry4Law and Perry4Law Techno Legal Base (PTLB) are providing world renowned and exclusive techno legal trainings to various stakeholders. Some of the areas covered by PTLB are cyber due diligence training in India, cyber forensics trainings in India, cyber security training in India, corporate IT frauds prevention training in India, cyber crime investigation training in India, etc.

Recently, corporate frauds like Satyam fraud, Citibank fraud at Gurgaon, etc came to the light in India. More such frauds may be possible in near future. Realising the gravity of the situation, Indian government decided to further strengthen the powers of serious frauds investigation office (SFIO) of India. The proposed companies bill 2011 has also decided to grant a statutory recognition to SFIO so that corporate frauds can be effectively tackled. Further, corporate and banking laws in India are in the process of being strengthened.

This is a good decision. However, SFIO must develop techno legal expertise to effectively tackle the growing cases of corporate IT frauds and corporate cyber crimes in India. SFIO should immediately start developing techno legal capabilities so that we have a strong and effective authority that can not only deter corporate IT frauds but can also successfully prosecute and punish them. Perry4Law and PTLB would extend their techno legal expertise in this regard if requested by SFIO or any other law enforcement agency or other agency of Indian government.

Cyber Due Diligence For Indian Companies

Cyber due diligence in India has finally arrived in India. The information technology act, 2000 (IT Act 2000) is the sole cyber law of India. IT Act 2000 prescribes cyber due diligence requirements on the part of various stakeholders like banks, companies, individuals, Internet intermediaries, e-commerce sites, etc.

However, till now cyber due diligence in India has not been taken seriously. This is so because cyber law awareness is not very good among various stakeholders. Similarly, civil and criminal prosecutions for lack of cyber due diligence in India is a rare phenomenon. Since ignorance of law if no excuse, in future cases for lack of cyber due diligence would increase in India.

IT and cyber frauds in Indian companies is increasing these days. However, a majority of Indian companies are not performing cyber due diligence in India. The companies in India are required to follow cyber law due diligence in India and cyber security due diligence in India. In the absence of proper due diligence these companies may find themselves in trouble.

Social media laws in India and social networking laws in India would bring their own share of cyber due diligence. Cyber law on social media and networking sites in India is pretty stringent and employees of a company may violate the same intentionally or unintentionally. Internet intermediary law in India and cyber due diligence cannot be taken lightly in India anymore.

Another sector that is urgently demanding cyber due diligence is banking industry of India. Cyber due diligence for banks in India is long due. Banks and companies in India are facing growing threats from malware attacks, phishing attacks, ATM frauds, online banking threats, trading fraud, etc. If a bank cannot show that it performed cyber due diligence and such cyber frauds and cyber crimes occurred without its negligence, it may be required to bear the financial loss. Presently Indian banks are not complying with cyber law due diligence requirements in India.

Finally, the scope and use of e-discovery in India is also increasing. Whether it is a corporate investigation, civil suit or criminal proceedings, e-discovery is playing a decisive role world over. Further, e-discovery laws and practices in India are developing as well. Even e-discovery related litigation, LPO and KPO services in India are growing.

Perry4Law and Perry4Law Techno Legal Base (PTLB) strongly recommend that cyber due diligence training in India needs to be developed so that cyber due diligence compliances by various stakeholders is possible. This training should be a regular and integral part of the corporate strategy of each company. There is no escape from cyber due diligence in India and companies must accept this reality as soon as possible.

IT And Cyber Frauds In Indian Companies Is Increasing

White collar crimes and financial frauds are increasing in India. By its very nature these high profile crimes affect corporate sector. Indian companies are also facing increased corporate frauds, financial frauds, white color crimes and technological frauds.

With growing dependence upon information and communication technology (ICT) for various corporate functions, corporate systems and corporate assets are exposed to diverse forms of cyber attacks. Further, data privacy laws in India, data protection laws in India, privacy laws in India, etc have further added responsibilities for corporate sector of India.

Further, companies in India are also required to follow cyber law due diligence in India and cyber security due diligence in India. However, absence of techno legal cyber skills and cyber crimes investigation trainings in India, technology related crimes and cyber crimes have increased in India. Companies in India are facing growing threats from malware attacks, phishing attacks, ATM frauds, online banking threats, trading fraud, etc.

Clearly, Indian companies are not prepared to deal with these sophisticated technology crimes and organised crimes. Recently the companies bill 2011 has been tabled in lok sabha that carries few reformatory provisions in this regard. It was planned to give more powers to serious frauds investigation office (SFIO) of India. Under the proposed companies bill 2011, SFIO has been given a statutory recognition. This is a good step as it would help in curbing corporate frauds in India.

Perry4Law and Perry4Law Techno Legal Base (PTLB) strongly recommend that it is high time for Indian companies to take care of the cyber due diligence and cyber security due diligence requirements under various laws of India. These due diligence requirements are essential part of overall audit strategy of each company. The sooner cyber law and cyber security are taken seriously by Indian companies the better it would be for the larger interest of all stakeholders.

Thursday, December 22, 2011

Online Dispute Resolution (ODR) In India

Information and communication technology (ICT) is considered to be a good option for resolving disputes of modern days. Concepts like online dispute resolution (ODR) and e-courts are proof of the same.

Unfortunately, neither online dispute resolution in India nor e-courts in India has been accepted and implemented. In fact, we have a single techno legal e-courts training and consultancy centre of India and a single online dispute resolution (ODR) centre in India. Further, Perry4Law Techno Legal Base (PTLB) is the sole techno legal ADR and ODR services provider in India.

The scope for online dispute resolution (ODR) services in India in general and techno legal online dispute resolution (ODR) services in India in particular is really good. However, in order to capatilise the same, an early and proper start is necessary.

Online dispute resolution (ODR) and international response is still lukewarm but at least a beginning has been made there. While international online dispute resolution regime has started exploring use of ICT for disputes resolution, online dispute resolution in Asia is still growing. Online dispute resolution in Asian countries is largely confined to a single or two countries that also to a limited extent. Clearly online dispute resolution standards of practice for India and Asia need to be developed urgently.

In fact, techno legal ODR services have become necessary due to growing use of information technology for business and commercial purposes world over. For instance, ODR and cross border e-commerce transactions are also interrelated. Similar is the case regarding dispute resolution of cross border technology transactions.

Dispute resolution in technology transactions is the upcoming trend in the field of ODR. Dispute resolution of cross border technology transactions is a complicated process if we adopt traditional litigation methods to resolve them. Dispute resolution in technology transactions and dealings requires an effective, timely and cost effective mechanism. Traditional litigation is definitely not the place to achieve these objectives.

Obviously, we need an effective alternative to traditional litigation methods to resolve cross border technology transactions and dispute resolutions. Alternative dispute resolution (ADR) mechanisms like arbitration, conciliation, mediation, etc can be used effectively to resolve these technology transactions disputes. For instance, online dispute resolution (ODR) for cross border e-commerce transactions is already been used to resolved small value disputes.

Similarly, legal issues of media and entertainment industry of India have assumed tremendous importance. Entertainment and media industry dispute resolution in India can be resolved using online dispute resolution. Dispute prevention and resolution in the film and media industry in India is presently not exploring use of online dispute resolution.

However, nothing can strengthen ODR more than international efforts and international coordination activities. International legal standards for online dispute resolution (ODR) and international harmonisation of ODR is urgently required.

United Nations can play am important role in international development and international harmonisation of ODR. United Nations and online dispute resolution are closely related in this regard. In fact, UNCITRAL, ODR and India are interconnected and we need an international harmonisation of ODR legal framework as well as suitable policies at the national level. Efforts in this direction have already been undertaken at the international level and very soon we may see some development in this regard.

Alternative dispute resolution in India is well known in India and we need to make efforts in the direction of ODR as well. While doping so we must keep in mind the requirements of privacy laws in India, dispute resolution and ODR. Online commercial arbitration in India also needs to be developed. The sooner these issues are addressed the better it would be for the growth and development of ODR in India.

Tuesday, December 20, 2011

E-Delivery Of Public Services Development Policy Loan (DPL) Project Of India

Electronic delivery of services is an effective method to introduce transparency in governmental dealings and to reduce corruption therein. Similarly, e-delivery of services can also bring efficiency that can reduce costs and unnecessary time taking by government departments.

For instance, Securities and Exchange Board of India (SEBI) is planning to use electronic initial public offer (E-IPO) in India. With this investors would be able to bid for shares electronically and without the need for signing any papers physically. This could also be used as a mean to provide an exit to companies which are listed exclusively on defunct exchanges.

Similarly, Indian judiciary is exploring the possibility of using an electronic bail communication system in India. This system would ensure sending of bail order in real time so that unreasonable detention in jail can be avoided.

Further, with the passing of the proposed Cable TV Networks (Regulation) Second Amendment Bill 2011 of India, digital television services would be offered to consumers at affordable prices and with superior quality.

Even on the front of social networking, Indian government is considering enacting a framework and guidelines for use of social media for government organisations. This would ensure an interaction between government departments and general public on crucial issues and public grievances. A good social media policy of India can be really helpful in this regard.

Even private outsourcing models have been developed where citizen to government LPO and KPO services in India would be extended in future. This would be an extension of e-delivery of services from private sector to the government in India as pioneered by Perry4Law and Perry4Law Techno Legal Base (PTLB).

Recently the World Bank and Indian government signed a loan agreement of $150 million for the e-delivery of public services in India. In order to get the benefits of such loan, electronic services delivery in India has been proposed in the past. E-delivery of public services in India would still take few years as we have no legal framework for mandatory e-governance in India.

With the proposed draft Electronic Delivery of Services Bill 2011 (EDS Bill 2011) Indian government has for the first time shown its willingness to provide e-governance services in India. However, the proposed Draft Electronic Services Delivery Bill 2011 “failed” to provide mandatory e-governance services in India. The real problem with Indian e-governance initiatives in general and proposed ESD Bill 2011 in particular is that legal framework for mandatory electronic services delivery in India is still missing from it.

Legal framework for mandatory e-governance services in India is long due. Till mandatory e-governance services in India are ensured, e-delivery services in India cannot succeed.

An electronic services delivery policy of India must be formulated as soon as possible that must mandate a compulsory e-delivery of services in India. Such e-delivery of services must be provided in a time bound manner to be successful. Till now there are no hints of these pre requisites and the e-delivery of public services DPL project of India cannot succeed in these circumstances.

Monday, December 19, 2011

Electronic Bail Granting And Communication System In India

Granting of bail in a criminal matter ensures the right to life and liberty of an individual. While granting a bail, it is ensured that the normal life off the grantee is not jeopardised due to the initiation of a criminal proceeding. In many cases, although the bail is granted yet its communication and final execution may take some time. This seems to be an unreasonable exercise and avoidable evil.

Information and communication technology (ICT) can easily, instantly and most effectively solve this problem that Indian judiciary has unnecessarily prolonged. Use of ICT for judicial and legal reforms in India is well recognised and establishment of e-courts in India could bring many far reaching legal and judicial reforms in India.

Although e-courts project of India has been launched since 2003 yet it has still not seen the light of the day. There are many reasons why e-courts in India failed to take a start. Lack of will and technical expertise seem to be the main reasons. We must concentrate upon “e-courts capacity development” aspect that is still missing. We have to ensure e-courts related skills development in India that is presently missing. Further, ICT training for judges in India is also long due.

Establishment of e-courts in India must be expedited. We have a single techno legal e-courts training and consultancy centre of India managed by Perry4Law Techno Legal Base (PTLB) that is working in this direction.

However, some positive developments are also taking place in India. Few judges in India are encouraging use of ICT for judicial purposes and to ensure a speedier justice. For instance, it has been recognised that bail orders through e-mail can be sent. Further validity of electronic legal notices in India is by and large confirmed and acknowledged.

Supreme Court of India recently decided to experiment with email notices to respondents to cut the delay in the traditional method of serving notices. The bench clarified that it is not making a new rule but providing for an additional mode for service of notices. The traditional method of notice sending is still kept intact.

The bench also realised that there may be some difficulties in implementing this initiative. It asked all the lawyers present in the court about putting in practice the serving of notice through emails, at least to start with in commercial matters.

Recently a petition in Bombay High Court challenged the detention of an accused that has been either acquitted or released on bail. It was contended that if the accused are acquitted or released on bail, the time taken to communicate the acquittal by the court to jail authorities resulted in illegal detention. In order to mitigate the hardships to such accused, it was suggested that the current practice of using snail mail for communication of acquittal and bail orders be replaced with a web-based service that links all district courts. The court inquired as to the cyber security efficacy of this proposal and asked the National Informatics Centre (NIC) to give its opinion in this regard. The NIC vouched for the feasibility and cyber security of such a proposal.

However, NIC opined that while a web-based portal would be safe as a temporary measure, using emails for communication would be vulnerable to fraud. NIC suggested two methods - delivery through web portals and emails, and highlighted security issues and procedures to ensure that no fraudulent orders are accessed for action. NIC also suggested that in future digital signatures can also be sued to further secure such electronic communications.

This is a good development in the right direction. It would be even better if granting of bail itself can be done in a cyber secure online environment. When e-courts are finally established in India, both application for bail as well as its granting and communication can be done through online mechanisms. Perry4Law and PTLB strongly recommend use of such methods in future.

Saturday, December 17, 2011

Cyber Law On Social Media And Networking Sites In India

Social media and networking sites have a crucial role to play. Now even governments across the world acknowledge this importance of social media websites. India is one such country that is currently trying to deal with social media sites. However, we have no dedicated social media laws in India. It has even been reported that guidelines for social media contents monitoring in India would be issued very soon.

However, till now we have no social media policy in India. Even we do not have dedicated social networking laws in India that can take care of the misuses of social platforms. However, the framework and guidelines for use of social media for government organisations has been recently suggested by department of information technology. Theses guidelines provide an Indian social media framework for governmental departments and organisations that employees of these organisations must follow.

Social media is considered to be an Internet intermediary as per Indian cyber law. The recent controversy of Internet censorship in India has once again reiterated the importance of effective social media laws in India.

Cyber law due diligence in India has become very stringent. This applies to various fields and to multiple stakeholders. For instance, cyber due diligence for banks in India is now a well known requirement for banks in India. However, Internet intermediaries are the most widely covered stakeholders in this regard. Intermediaries liability for cyber law due diligence in India is really tough.

Indian government is very keen in regulating the contents of social media in a constructive manner. This occasionally results in censorship of Internet in India. Further, Indian government is now openly acknowledging surveillance of Internet traffic in India.

Recently Internet intermediaries in India have been asked to pre screen contents before they are posted on their websites. India wants companies like Google and Facebook to censor users’ contents before they are posted.

In a related incidence, Yahoo has filed a petition raising the questions regarding the right to privacy of a company that stores sensitive data of its customers and users and to what extent authorities can coerce it to part with the information considered necessary to either track terror perpetrators or thwart future attacks. The Google’s outcry for lack of Internet intermediary law in India is another example of growing dissatisfaction towards Indian cyber laws, especially Internet intermediary laws of India.

However, social media sites have certain techno legal obligations and liabilities as per Indian laws. For instance, social networking sites are liable for online IPRs violations, including online copyright violations in India. Although we have no law on the lines of online copyright infringement liability limitation Act (OCILLA) of United States yet the “safe harbour” provisions protecting intermediaries are not available under certain conditions as per Indian laws. Social networking sites must be aware of these limitations while operating in India. However, if social media sites are working within the framework of Indian laws, unreasonable e-surveillance, Internet censorship and websites blocking should not be by Indian government.

The corporate environment of India is changing rapidly as per global; requirements. Corporate laws in India are proposed to be streamlined with the introduction of the proposed Companies Bill 2011. The foreign direct investment (FDI) in India has been liberalised in many sectors. Even FDI in pharmaceuticals sector in India has been liberalised. Securities and Exchange Control Board (SEBI) has also proposed an electronic Initial public offer in India (E-IPO in India). These steps are pointing towards and open and transparent governmental functioning and not e-surveillance and Internet censorship oriented model.

Internet censorship in India can create problems for not only FDI in India but also for the growth of various sectors including banking sector of India. An integrated modern banking law for India is already in pipeline and an e-surveillance model of India would not be beneficial for the same.

Perry4Law and Perry4Law Techno Legal Base (PTLB) strongly recommend that Indian government must enact strong and effective social media laws, e-governance laws and e-commerce laws in India. Social networking laws in India must be so drafted as would benefit all the stakeholders.

Wednesday, November 30, 2011

Online Dispute Resolution Services Are Growing

International online dispute resolution (international ODR) is no more a fiction. With growing disputes being resolved through an online mechanism, ODR has also assumed significance. ODR has significant advantages over not only traditional litigation methods but also against alternative dispute resolution (ADR) mechanisms.

International community is working really hard in the direction of recognising use of ODR as an effective dispute resolution mechanism. For instance, European Union has been considering use of ODR for cross border consumer disputes. Similarly, efforts of United Nations to streamline ODR are also well known. Similarly, use of ODR for cross border e-commerce transactions is also suggested. Similarly, WIPO is also using ODR for dispute resolution.

These international efforts must also be implemented at the national level. In other words, ODR needs international harmonisation to be effective. If we implement ODR at the international level alone, using ODR at national level would never be successful.

For instance, online dispute resolution in India is still evolving. ADR and ODR services in India are still in their infancy stages. Obviously, online dispute resolution services in India are still maturing. We have very few online dispute resolution centers in India. Further, Perry4Law Techno Legal Base (PTLB) is the sole techno legal ADR and ODR services provider in India.

Interest in ODR must be invoked among the stakeholders at both national and international level. ODR can be really effective where stakeholders are located at different jurisdiction. With the help of technology, disputes can be resolved without even leaving the residence of any party. Let us hope that ODR would be used at mass scale and at all levels to resolve disputes in the best possible manner.