Thursday, January 26, 2012

Google’s New Privacy Policy And Terms Of Service As On March 2012

Google is presently managing 60 different privacy policies across multiple products and services of Google and is in the process of replacing them with a single privacy policy that’s a lot shorter and easier to read. The updated Google Privacy Policy and Terms of Service are available online to read and analyse. These changes will take effect on March 1, 2012.

Google new privacy policy would allow sharing of personal information for many reasons including for legal reasons. Google will share personal information with companies, organizations or individuals outside of Google if it has a good-faith belief that access, use, preservation or disclosure of the information is reasonably necessary to:

(a) Meet any applicable law, regulation, legal process or enforceable governmental request.
(b) Enforce applicable Terms of Service, including investigation of potential violations.
(c) Detect, prevent, or otherwise address fraud, security or technical issues.
(d) Protect against harm to the rights, property or safety of Google, our users or the public as required or permitted by law.

Google’s enforcement aspects have also been explained by the new privacy policy. Google regularly reviews its compliance with the Privacy Policy. Google also adheres to several self regulatory frameworks. When Google receives formal written complaints, Google will contact the person who made the complaint to follow up. Google works with the appropriate regulatory authorities, including local data protection authorities, to resolve any complaints regarding the transfer of personal data that Google cannot resolve with our users directly.

Google’s Terms of Services (TOS) also carry many interesting aspects. These TOS provide that the user must follow any policies made available to him within the Services. Google does not allow misusing its Services. For example, a user must not interfere with Google’s Services or try to access them using a method other than the interface and the instructions that Google provides. A user may use Google’s Services only as permitted by law, including applicable export and re-export control laws and regulations. Google may suspend or stop providing its Services to the user if he does not comply with Google’s terms or policies or if Google is investigating suspected misconduct.

Google’s Services display some content that is not Google’s. This content is the sole responsibility of the entity that makes it available. Google may review content to determine whether it is illegal or violates its policies, and Google may remove or refuse to display content that Google reasonably believe violates its policies or the law. But that does not necessarily mean that Google reviews content.

Google responds to notices of alleged copyright infringement and terminate accounts of repeat infringers according to the process set out in the U.S. Digital Millennium Copyright Act.

Google provides information to help copyright holders manage their intellectual property online. If you think somebody is violating your copyrights and want to notify Google, you can find information about submitting notices and Google’s policy about responding to notices in its Help Center.

The laws of California, U.S.A., excluding California’s conflict of laws rules, will apply to any disputes arising out of or relating to these terms or the Services. All claims arising out of or relating to these terms or the Services will be litigated exclusively in the federal or state courts of Santa Clara County, California, USA, and you and Google consent to personal jurisdiction in those courts.

Video Conferencing Laws In India

Video conferencing is increasingly being used for the purposes of digital evidencing in India. Video conferencing would also be an important part of e-courts of India once they would be established. Presently, video conferencing is used for many computerised courts in India.

The information technology act 2000 (IT Act 2000) is the cyber law of India that has provided a legal framework for electronic governance, electronic commerce and many other aspects of online dealing. By implications, the IT Act 2000 also allows use of video conferencing for various purposes.

Despite these provisions and active use of video conferencing in India, video conferencing in India is a troubled technology. The recent episode of Rajasthan government and Rajasthan police not allowing the video conferencing of Salman Rushdie shows Indian anxiety with use information technology.

This controversy happened because we have no dedicated video conferencing laws and regulations in India. Obviously, we have no dedicated video conferencing blocking laws in India as well. In the absence of a clear cut law, Indian government is still applying traditional methods to regulate video conferencing in India. However, if at all any law applies to video conferencing in India the same must be the IT Act 2000 and not any Police Act or local law.

Surprisingly, few of our posts pertaining to video conferencing disappeared from Google India’s SERPs and Blogs search results and appeared again only after reporting of the same. It seems controversial posts that are well within the constitutional right to speech and expressions are screened in India once they are posted. But who is doing so is still a big question that must be answered to properly analyse the role of Internet intermediaries in India in this regard.

While Internet intermediaries have declined to pre screen users generated contents yet post screening is happening in many cases. If this post screening is happening due to Internet intermediary law of India then such post screening and removal may be fine if legally and constitutionally done. This is so because if the companies and Internet intermediaries fail to observe cyber law due diligence in India they may face civil and criminal trials in India.

It would be a good idea to clarify the position of use of video conferencing in India by Indian government so that its uses, abuses and regulation can be legally managed.

Wednesday, January 25, 2012

Foreign Exchange (Compounding Proceedings) Rules, 2000 Of India

Reserve Bank of India (RBI) has been appointed as one of the Compounding Authority under the Foreign Exchange Management Act 1999 (FEMA 1999) that can compound certain contravention under the FEMA 1999. The regional offices of RBI have been given compounding powers under the FEMA Act 1999.

Further, the RBI master circular on compounding of contraventions under Indian FEMA 1999 has been recently issued. It prescribes a set procedure for compounding of contraventions under Indian FEMA 1999. The compounding authority (CA) can compound contraventions committed under the FEMA Act 1999 if an application has been duly made in the prescribed manner. Even a post compounding procedure of compounding authority under the Indian FEMA 1999 has been prescribed.

The Central Government has formulated the Foreign Exchange (Compounding Proceedings) Rules, 2000 under section 46 read with sub-section (1) of section 15 of the FEMA, 1999. The Rules are as follow:

(1) These Rules have come into force on the 1st day of June, 2000.

(2) Definitions - In these rules, unless the context otherwise requires -
(a) 'Act' means the Foreign Exchange Management Act, 1999 (42 of 1999);
(b) 'Authorised officer' means an officer authorised under sub-rule (1) of rule 3;
(c) 'Applicant' means a person who makes an application under section 15 (1) of the Act to the compounding authority;
(d) 'Compounding Order' means an order issued under sub-section (1) of Section 15 of the Act;
(e) 'Form' means a form appended to these rules;
(f) 'Section' means a section of the Act;
(g) All other words and expressions used in these rules and not defined but defined in the Act, shall have the meaning respectively assigned to them in the Act.

(3) (1) 'Compounding Authority' means the persons authorised by the Central Government under sub-section (1) of section 15 of the Act, namely;
(a) An officer of the Enforcement Directorate not below the rank of Deputy Director or Deputy Legal Adviser (DLA).
(b) An officer of the Reserve Bank of India not below the rank of the Assistant General Manager.

(4) Power of Reserve Bank to compound contravention -
[(1) If any Person contravenes any provisions of Foreign Exchange Management Act, 1999 (42 of 1999) except clause (a) of Section 3 of the Act.]
(a) In case where the sum involved in such contravention is ten lakhs rupees or below, by the Assistant General Manager of the Reserve Bank of India;
(b) In case where the sum involved in such contravention is more than rupees ten lakhs but less than rupees forty lakhs, by the Deputy General Manager of Reserve Bank of India;
(c) In case where the sum involved in the contravention is rupees forty lakhs or more but less than rupees hundred lakhs by the General Manager of Reserve Bank of India;
(d) In case the sum involved in such contravention is rupees one hundred lakhs or more, by the Chief General Manager of the Reserve Bank of India;

Provided further that no contravention shall be compounded unless the amount involved in such contravention is quantifiable.

(2) Nothing contained in sub-section (1) shall apply to a contravention committed by any person within a period of three years from the date on which a similar contravention committed by him was compounded under these rules.

Explanation: For the purposes of this rule, any second or subsequent contravention committed after the expiry of a period of three years from the date on which the contravention was previously compounded shall be deemed to be a first contravention.

(3) Every officer specified under sub-rule (1) of rule 4 of the Reserve Bank of India shall exercise the powers to compound any contravention subject to the direction, control and supervision of the Governor of the Reserve Bank of India.

(4) Every application for compounding any contravention under this rule shall be made in Form to the Reserve Bank of India, Exchange Control Department, Central Office, Mumbai along with a fee of Rs. 5000/- by Demand Draft in favour of compounding authority.

(5) The Power of Enforcement Directorate to compound contraventions -

2[(1) If any Person contravenes provisions of Section 3(a) of Foreign Exchange Management Act.]

(a) In case where the sum involved in such contravention is five lakhs rupees or below, by the Deputy Director of the Directorate of Enforcement;
(b) In case where the sum involved in such contravention is more than rupees five lakhs but less than rupees ten lakhs, by the Additional Director of the Directorate of Enforcement;
(c) In case where the sum involved in the contravention is rupees ten lakhs or more but less than fifty lakhs rupees by the Special Director of the Directorate of Enforcement;
(d) In case where the sum involved in the contravention is rupees fifty lakhs or more but less than one crore rupees by Special Director with Deputy Legal Adviser of the Directorate of Enforcement;
(e) In case the sum involved in such contravention is one crore rupees or more, by the Director of Enforcement with Special Director of the Enforcement Directorate.
Provided further that no contravention shall be compounded unless the amount involved in such contravention is quantifiable.

(2) Nothing contained in sub-section (1) shall apply to a contravention committed by any person within a period of three years from the date on which a similar contravention committed by him was compounded under these rules.

Explanation: For the purposes of this rule, any second or subsequent contravention committed after the expiry of a period of three years from the date on which the contravention was previously compounded shall be deemed to be a first contravention.

(3) Every officer of the Directorate of Enforcement specified under sub-rule (1) of this rule shall exercise the powers to compound any contravention subject to the direction, control and supervision of the Director of Enforcement.

(4) Every application for compounding any contravention under this rule shall be made in Form to the Director, Directorate of Enforcement, New Delhi, along with a fee of Rs.5000 by DD in favour of the Compounding Authority.

(6) Where any contravention is compounded before the adjudication of any contravention under section 16, no inquiry shall be held for adjudication of such contravention in relation to such contravention against the person in relation to whom the contravention is so compounded.

(7) Where the compounding of any contravention is made after making of a complaint under sub-section (3) of section 16, such compounding shall be brought by the authority specified in rule 4 or rule 5 in writing, to the notice of the Adjudicating Authority and on such notice of the compounding of the contravention being given, the person in relation to whom the contravention is so compounded shall be discharged.

(8) Procedure for Compounding -

(1) The Compounding Authority may call for any information, record or any other documents relevant to the compounding proceedings.
(2) The Compounding Authority shall pass an order of compounding after affording an opportunity of being heard to all the concerned as expeditiously as possible and not later than 180 days from the date of application.

(9) Payment of amount compounded -

The sum for which the contravention is compounded as specified in the order of compounding under sub-rule (2) of rule 8, shall be paid by demand draft in favour of the Compounding Authority within fifteen days from the date of the order of compounding of such contravention.

(10) In case a person fails to pay the sum compounded in accordance with the rule 9 within the time specified in that rule, he shall be deemed to have never made an application for compounding of any contravention under these rules and the provisions of the Act for contravention shall apply to him.

(11) No contravention shall be compounded if an appeal has been filed under section 17 or section 19 of the Act.

(12) Contents of the order of the Compounding Authority -

(1) Every order shall specify the provisions of the Act or of the rules, directions, requisitions or orders made there under in respect of which contravention has taken place along with details of the alleged contravention.
(2) Every such order shall be dated and signed by the Compounding Authority under his seal.

(13) Copy of the order - One copy of the order made under rule 8(2) shall be supplied to the applicant and the Adjudicating Authority as the case may be.

Tuesday, January 24, 2012

Post Compounding Procedure Of Compounding Authority Under Indian FEMA Act 1999

In this special column, Mr. B.S.Dalal, Senior Partner at Perry4Law and a Techno Legal Banking and Financial Expert, is discussing the post compounding procedure for Compounding Of Contraventions Under Indian FEMA, 1999, as followed by the Compounding Authority.

Reserve Bank of India (RBI) is one of the Compounding Authority under the Indian Foreign Exchange Management Act (FEMA), 1999 that compounds certain contravention under the FEMA Act 1999. The regional offices of RBI have been given compounding powers under the FEMA Act 1999.

RBI master circular on compounding of contraventions under Indian FEMA 1999 has been recently issued. It prescribes a set procedure for compounding of contraventions under Indian FEMA 1999. The compounding authority (CA) can compound contraventions committed under the FEMA Act 1999 if an application has been duly made in the prescribed manner.

Once an application has been made in prescribed manner and a compounding order has been made, the post compounding procedure starts. It is as follows:

(1) The sum for which the contravention is compounded as specified in the order of compounding under sub-rule (2) of Rule 8 of Foreign Exchange (Compounding Proceedings) Rules, 2000 is payable by way of a demand draft in favour of the “Reserve Bank of India” within fifteen days from the date of the order of compounding of such contravention. The demand draft has to be deposited in the manner as directed in the compounding order.

(2) The provisions of the Rules do not confer any right on the contravener, after a compounding order is passed, to seek to withdraw the order or to hold the compounding order as void or request a review of the order passed by the CA.

(3) In case of failure to pay the sum compounded within the time specified in the compounding order, it shall be deemed in terms of Rule 10 of the Foreign Exchange (Compounding Proceedings) Rules, 2000, that the contravener had never made an application for compounding of any contravention under these Rules.

(4) On realization of the demand draft for the sum for which contravention is compounded, a certificate in this regard shall be issued by the Reserve Bank subject to the specified conditions, if any, in the order.

(5) In respect of the contraventions of FEMA, 1999 (as defined in section 13 of the FEMA, 1999), which are not compounded by the Compounding Authority, other relevant provisions of FEMA, 1999, shall apply.

However, there are certain pre-requisites for compounding process that must be met by the contravener before a compounding order can be passed. These are as follow:

(1) In respect of a contravention committed by any person within a period of three years from the date on which a similar contravention committed by him was compounded under the Compounding Rules, such contraventions would not be compounded. Such contravention would be dealt with under relevant provisions of the FEMA, 1999 for contravention. Any second or subsequent contravention committed after the expiry of a period of three years from the date on which the contravention was previously compounded shall be deemed to be a first contravention.

(2) Contraventions relating to any transaction where proper approvals or permission from the Government or statutory authority concerned, as the case may be, have not been obtained, such contraventions would not be compounded unless the required approvals are obtained from the authorities concerned.

(3) Cases of contravention, such as, those having a money laundering angle, national security concern and / or involving serious infringements of the regulatory framework or where the contravener fails to pay the sum for which contravention was compounded within the specified period in terms of the compounding order, shall be referred to the Directorate of Enforcement for further investigation and necessary action under FEMA, 1999 or to the authority instituted for implementation of the Prevention of Money Laundering Act 2002, (PMLA) or to any other agencies, for necessary action , as deemed fit.

(4) The Reserve Bank generally advises the persons concerned of their choice and option to make an application for compounding as and when such contraventions come to its notice. The facts constituting such contraventions will be brought to the notice of the Directorate of Enforcement in case no application for compounding is made within the time indicated by the Reserve Bank.

RBI Master Circular On Compounding Of Contraventions Under Indian FEMA, 1999

In this special column, Mr. B.S.Dalal, Senior Partner at Perry4Law and a Techno Legal Banking and Financial Expert, is discussing the current position of Compounding Of Contraventions Under Indian FEMA, 1999.

In the past, Reserve Bank of India (RBI) has liberalised and decentralized many crucial issues of Indian Foreign Exchange Management Act (FEMA), 1999. This includes the procedure for compounding of contraventions under the FEMA 1999. Now the RBI has issued a master circular that further elaborates about this crucial issue.

The compounding of contraventions under FEMA, 1999 is a voluntary process by which an applicant can seek compounding of an admitted contravention of any provision of FEMA, 1999 under Section 13(1) of the FEMA, 1999.

The compounding provisions are presently available till 30th June 2012 as they are subject to a sunset clause of one year. In short, the master circular would cease to be operative on July 1, 2012 and would be replaced by a new Master Circular in this regard.

Under the FEMA 1999, if an individual/person violates the provisions of this Act or corresponding rules, notifications, direction, etc, he shall, upon adjudication, be liable to a penalty up to thrice the sum involved in such contravention where the amount is quantifiable or up to Rupees Two lakh, where the amount is not quantifiable.

For repeated infringers more stringent provisions have been prescribed. The Act provides that where the contravention is a “continuing one”, further penalty, which may extend to Rupees Five thousand for every day after the first day during which the contravention continues, may be imposed.

As per the Rule 4 of the Foreign Exchange (Compounding Proceedings) Rules, 2000, the powers to compound the contraventions have been prescribed for compounding authorities with regard to the sum involved in such contravention and no contravention shall be compounded unless the amount involved in the contravention is quantifiable.

The Foreign Exchange (Compounding Proceedings) Rules, 2000 empowers RBI to compound contraventions under FEMA, 1999. The provisions of Section 15 of FEMA, 1999 permit compounding of contraventions and empower the Compounding Authority to compound any contravention as defined under Section 13 of the Act on an application made by the person committing such contravention either before or after the institution of adjudication proceedings.

The responsibility of administering compounding of contraventions has been entrusted to RBI except contraventions that are covered under Section 3(a) of FEMA, 1999. Thus, collectively the compounding powers of RBI and the Directorate of Enforcement (DoE), respectively, are as under:

(a) RBI has been empowered to compound the contraventions of all the Sections of FEMA, 1999, except clause (a) of Section 3 of the Act,

(b) Directorate of Enforcement would exercise powers of compounding under clause (a) of Section 3 of FEMA, 1999 (dealing essentially with Hawala transactions).

For effective implementation of compounding process under FEMA, 1999, RBI has framed the procedure for compounding of contraventions. Once a contravention has been compounded by the Compounding Authority, no proceeding or further proceeding will be initiated or continued, as the case may be, against the contravener.

The Regional Offices of the RBI, as mentioned below, can compound the contraventions of FEMA involving (i) delay in reporting of inward remittance, (ii) delay in filing of form FC-GPR after allotment of shares and (iii) delay in issue of shares beyond 180 days (viz. paragraphs 9(1)(A), 9(1)(B) and 8, respectively, of the Schedule I to the Foreign Exchange Management (Transfer or Issue of Security by a Person Resident Outside India) Regulations, 2000, notified vide Notification No. FEMA 20/2000-RB dated 3rd May 2000 and as amended from time to time:

(a) Bhopal, Bhubaneshwar, Chandigarh, Guwahati, Jaipur, Jammu, Kanpur, Kochi, Patna and Panaji for amount of contravention below Rupees One hundred lakh only (Rs. 1,00,00,000 /-).

(b) Ahmedabad, Bangalore, Chennai, Hyderabad, Kolkata, Mumbai and New Delhi for amount of contravention without any limit.

Video Conferencing Blocking Laws In India

Video conferencing has revolutionized the way our say to day affairs are managed. Video conferencing facilitates many important commercial and personal communications in a cost effective and efficient manner.

Obviously, video conferencing is regulated by laws of various nations. However, we have no dedicated video conferencing law in India. Of course, some shades of video conferencing regulations are governed by the cyber law of India incorporated in the form of information technology act 2000 (IT Act 2000).

However, there is no express provision that talks about blocking of video conferencing in India except to the extent permitted by the IT Act 2000. Video conferencing, just like other electronic communications, should be allowed unless it can be blocked as per the provisions of IT Act 2000 or other applicable laws. Even for such blocking of video conferencing in India, the norms established by the IT Act 2000 or any other similar law must be followed.

It seems the norms laid down by the IT Act 2000 have not been followed by the Rajasthan government and Rajasthan police and by not allowing the video conferencing of Salman Rushdie, without complying with the requirements of IT Act 2000, they have clearly transgressed the constitutional limitations that they are constitutionally bound to observe.

The fundamental right to speech and expression cannot be defeated through arbitrary and extraneous methods. Right to speech and expression can be curtailed only as per the well established constitutional procedure.

Although the intentions of Rajasthan government may be legal and justified yet the manner of executing those intentions is clearly unconstitutional. The legality and constitutionality of the Rajasthan government’s action is still doubtful and appropriate action must be taken in this regard.

Video Conferencing Laws And Regulations In India

Use of vide conferencing in business community of India is not new and it is in use for long. Even use of vide conferencing for legal and judicial purposes is not new in India. Courts in India have been using video conferencing for litigation purposes especially for receiving evidence from witness.

Even Indian laws like Information Technology Act, 2000 (IT Act 2000), Code of Criminal Procedure, 1973, Indian Evidence Act, 1872, etc allows use of video conferencing for various legal and judicial purposes. The cyber law of India even confers recognition to electronic documents, e-governance and e-commerce.

Use of information technology for legal and judicial purposes is well known. For instance, IT can be use for establishment of e-courts in India. Similarly, IT can also be used for establishing online dispute resolution (ODR) mechanism in India. Even electronic bail granting and communication system in India may be a possibility in near future.

However, use of video conferencing in India is not free from trouble. Recently a man who filed his divorce petition through a video conference from Canada was directed to make a personal appearance in the court. Now personal appearance is a concept that strikes at the very concept of e-courts and video conferencing.

Similarly, the recent cancellation of the Salman Rushdie’s video conferencing in India is another example of troubled use of the same in India. It seems the permission to broadcast such video conferencing was not given by the police.

Crucial speech and expression and law and order maintenance issues are involved in such cases. There is an urgent need to formulate clear and constitutional norms and regulations regarding video conferencing in India.

Monday, January 23, 2012

Legal Issues Of Cloud Computing In India

Cloud computing is a process in which essential hardware and software based services are provided by a third party with no requirement to install such hardware and software by the service seeker. In other words, computational powers, hardware upgrades and latest software are provided on rent in an online environment where individuals and organisations can use the same.

Cloud computing is basically a cost saving mechanism where hardware and software costs are saved by using third party hardware and software. However, cloud computing has its own share of troubles especially in countries like India.

For instance, as per the research and studies of Perry4Law and Perry4Law Techno Legal Base (PTLB), cloud computing in India is risky and India is not ready for cloud computing. Now even other companies have endorsed this conclusion and it has been reported that chief information officers (CIOs) in India are not comfortable using cloud computing in India.

So the chief problem that is emerging in India is that cloud computing in India is still not trusted and India is still not ready for cloud computing. We have no cloud computing policy of India.

This is the reason why cloud computing in India is still at the infancy stage. The primary reasons for this situation is absence of legal framework for cloud computing in India, missing privacy laws, absence of data protection laws in India, inadequate data security in India, etc. Even the basic level cloud computing regulations in India are missing.

Even the cloud computing due diligence in India is missing and companies and individuals are using the same in great disregard of the various laws of India. Cloud computing service providers in India are required to follow cyber law due diligence in India. The cyber law due diligence for Indian companies is now well established but cloud computing and e-commerce service providers are not taking it seriously.

In fact, some companies are already facing a criminal trial in India for posting of objectionable contents by third parties on their platforms. Cloud companies are also required to follow the cyber law of India before they establish their businesses in India. This seems to be missing for the time being.

In fact, many legal experts in India have opined that India must not use software as a service (SaaS), cloud computing, m-governance, etc till proper legal frameworks and procedural safeguards are at place. This has also been accepted by the CIOs community and it is now for the Indian government to do the needful.

Huawei And ZTE In Telecom Security Tangle Of India

With the proposal to establish National Telecom Network Security Coordination Board (NTNSCB) of India, the issues of cyber security and telecom security in India have arisen once again. Even the national telecom policy of India 2011 reflects these concerns.

The issues pertaining to telecom security policy in India and telecom equipments security framework in India are not new. The home ministry of India and ministry of information and communication technology have been raising security concerns regarding telecom hardware manufactured by foreign dealers. Concerns regarding possible existence of backdoors in such hardware are frequently raised in India.

There is no mechanism in India through which telecom hardware and software can be analysed for backdoors and malware. Indian government has declared that telecom equipments must be certified by TEC before use in India. A proposal to store call data records has also been given. The norms for import of telecom equipments in India would also be formulated very soon (may be already formulated).

At present, India has two separate policy guidelines for import of telecom gear. Chinese vendors such as Huawei and ZTE follow the July 2010 guidelines while Western telecom equipment manufacturers were given the option of following the policy issued in late 2009, after they refused to operate in India under the July rules.

According to latest news, in an internal report, the security unit of the department of telecommunication (DoT) has raised fresh concerns about Chinese equipment vendors - Huawei and ZTE. The report adds that India must also be on the guard against equipment from the West, including US and Europe. It has been reported that the new security norms had brought all these vendors under a common security framework.

To counter the possible threats from foreign hardware vendors, India is encouraging to develop indigenous hardware manufacturing capabilities. In fact, India has announced to give preferences, including tax cuts, to indigenously manufactured telecoms equipment, despite concerns raised by the United States and the European Union, which had said that such concessions would violate WTO commitments.

There is an urgent need to provide reasonable and sufficient regulatory norms regarding telecom security in India. The sooner they are formulated the better it would be for all the telecom stakeholders in India.

National Telecom Network Security Coordination Board (NTNSCB) Of India

Announcement pertaining to telecom security and cyber security in India have been made from time to time. Even a new national telecom policy of India 2011/2012 has also been suggested by Department of Telecommunication (DoT), India.

DoT has also suggested the creation of the Telecoms Security Council of India (TSCI) that would look into security related aspects of hardware and network equipments. In the past proposals for the establishment of Telecom Security Regulatory Authority of India (TSRAI) were also mooted.

However, till now we have no telecom security policy in India and telecom equipments security framework in India. There is no mechanism in India through which telecom hardware and software can be analysed for backdoors and malware. Now Indian government has declared that telecom equipments must be certified by TEC before use in India. A proposal to store call data records has also been given. The norms for import of telecom equipments in India would also be formulated very soon. Similarly, a telecom security policy of India may also be drafted.

In the past news regarding establishment of various authorities to safeguard telecom security in India have also surfaced. These proposed authorities include Authority for Telecom Security in India, Telecom Security Council of India, etc. Further legal framework to streamline telecom related issues in India have also bee suggested. The National Spectrum Act of India is also in pipeline.

Now as per the latest news, Indian government is planning to form a new body to supervise telecom and cyber security in India. This may be a good step in right direction or just another declaration with no actual implementation, just like the past declarations.

The proposed body plans to oversee telecom and cyber security to avoid overlap between various ministries and intelligence agencies that are currently handling this issue. The proposed body has been given the name National Telecom Network Security Coordination Board (NTNSCB) of India.

It has been proposed to establish the same at Department of Information technology (DIT) and it may be headed by the telecom secretary. The NTNSCB will have representatives from the defence and home ministries, intelligence agencies, IT department, intelligence bureau, National Security Advisor and NTRO, among others reports Economic Times.

In addition to suggesting measures to address network security related issues, NTNSCB will also set up objectives and targets to the various departments and agencies handling telecom and cyber security related issues. The NTNSCB may also facilitate the Central Monitoring system (CMS) Project of India. This is a good step and its implementation is urgently required.