IT’S THE LAW (05/03/2022)
India’s Computer Emergency Response Team (CERT-In) just set a strict new directive applicable to data centers, Virtual Private Servers (VPS), Virtual Private Networks (VPN), Cloud Service providers, crypto exchanges and others that serve as intermediaries. Effective from late June, organizations will be required to maintain logs containing specified customer data for minimum 5 years, report cyber incidents of concern to CERT within 6 hours, and to respond requests for data CERT-In may impose for “protective and preventive” reasons.